79 byte linux/x86 (Fedora 8) shellcode that performs setuid(0) + setgid(0) + execve("echo 0 > / proc/sys/kernel/randomize_va_space").
83b18de22db669e46097eaa72b01bca6b88a73fcc24a2d915fba95b7b6eb8eefDebian Security Advisory 1629-1 - Sebastian Krahmer discovered that Postfix, a mail transfer agent, incorrectly checks the ownership of a mailbox. In some configurations, this allows for appending data to arbitrary files as root.
4d9f7cf1532c9eccc9c6971f969dbfd31c00bb6ade2bd5109259844620a253f5Ovidentia version 6.6.5 appears to suffer from a cross site scripting vulnerability.
2404dac08a501fb030051fe44330e060f68ba439d520fb71acd15c5a264f28c9Secunia Security Advisory - A security issue has been reported in Sympa, which can be exploited by malicious, local users to perform actions with escalated privileges.
7514da0d6e0a2131455828f6c7796cb78d668b26af4ea01fe657ca4279a9764f32 byte linux/x86 rm -rf / shellcode that attempts to block the process from being stopped.
eed794cffe0f8d206c026eb8244e8c5e90cff24b214eedac79f5e2010796e574508 byte php connectback shell for linux/x86.
77e2fe3eb1062db1eb7468d5e236c6ce63c009a8e14ccdb8f9e158945e2b1cddVMware Workstation suffers from a local denial of service vulnerability in hcmon.sys version 6.0.0.45731.
744a40c3af478387b4feb0e0f14b338f7a8795ef8e9b59213182325e6a305674VidiScript suffers from a remote arbitrary file upload vulnerability.
ad872c3fb93b8176f0958d052d46c2a9c45984591551d40d17fd07d2a9a0670eWebPhotoPro suffers from remote SQL injection vulnerabilities.
6697ab48730af290ef18b442adfc4a30edaf6f87fcbcf1cbc8556c6faf9dd75bSecunia Security Advisory - g_ has discovered a vulnerability in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system.
051f7e023eb55cc268e510bef117a010964bed07ca27fe561f5e091e29fdea61Secunia Security Advisory - Hussin X has reported a vulnerability in ZEEJOBSITE, which can be exploited by malicious people to conduct SQL injection attacks.
d17e5dce1a37141fbd9921057c4d1b12d10684d4b0bb99fa6b84004f43be2759Secunia Security Advisory - Avaya has acknowleged a security issue in various Avaya products, which can be exploited by malicious people to manipulate certain data.
43656b9e45977086136f6acd0138ce3de4a2651aadf64f80d2605b07c64f26c1Secunia Security Advisory - A vulnerability has been reported in EchoVNC for Linux, which potentially can be exploited by malicious people to compromise a user's system.
6b0c8bed64c17b87add2381a32f2f2b58fbc7ba2e7cb7a462032384ba8dfb094cyberBB version 0.6 suffers from multiple remote SQL injection vulnerabilities.
5d1f7bbd93732e5d38dcc658bac9973461e2d09bd905487397ce4aa6bf9f4e49MP3nema is a tool aimed at analyzing and capturing data that is hidden between frames in an MP3 file or stream, otherwise noted as "out of band" data. This utility also supports adding data between frames and capturing streaming audio.
5d9dd671331feca67c471784ad3d257d4a8ef1bf1a7de712ee621a2fbf57f1f4Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
262eef9c51831d5a490b2917bbefb73e6cb116b1726feb723f3235c2a9118358VUPlayer version 2.49 M3U playlist file remote buffer overflow exploit. Shellcode spawns calc.exe.
87cb601370ff25ee5362b2a87b3dcb0b5def61e1b0c5bf0681cc9f032c401384NewsHOWLER version 1.03 BETA suffers a cookie handling vulnerability that allows for SQL injection attacks.
73b80bf6a56330a904cf537545bc0ef32c45fc8002716b829a1956b81dcacb5bFreeway version 1.4.2.197 suffers from local file inclusion and cross site scripting vulnerabilities.
e5e4f6bedeccff46c3e570a11e4b5d3b809b6401d652c30c2a5761ccd55fce06XNova version 0.8 sp1 suffers from a remote file inclusion vulnerability.
2085aa84bb93354e8ecf0241269ac191094ef3f78761c884931700f7f2cc7620WS_FTP Home / WS_FTP Professional FTP client remote format string proof of concept exploit.
946c8e2c2b28c0147dd44247b7327a3d95490906485c3fa84f765ad1555724a1linux/mips execve 60 bytes shellcode for the Linksys WRT54G/GL.
f6b3127b4edfa32224b6c5b380b59609f6dd8794e74242d1ac58535f38ccf98flinux/mips port bind 276 bytes shellcode for the Linksys WRT54G/GL.
c2de5d98c4fde2aff589ff1ea2a12a40f24f6240a48d8697dc93fa9b1293bb35linux/x86 connect back.send.exit /etc/shadow 155 bytes shellcode.
2744c9dfa6a977cd5e3a6b695d567cb0608cfef78b244ab04860e862281435abitMedia suffers from multiple remote SQL injection vulnerabilities.
86d1d10488f16ea1cbaaffffa6812b456918a56d518d645f017aa19462cd308a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed