This archive contains all of the 356 exploits added to Packet Storm in August, 2009.
4f8d8ea9646d4e22bde910ff285f60de42280dc778202bda1dc326f5a9244f4bSolarWinds TFTP Server versions 9.2.0.111 and below remote denial of service exploit.
cee50b517e8a70d45f5b63ded8e50ae0b5fb619c59073aeef77aec19d4f2c555Debian Security Advisory 1875-1 - Josh Triplett discovered that the blacklist for potentially harmful TeX code of the teximg module of the Ikiwiki wiki compiler was incomplete, resulting in information disclosure.
1fe17fa53f249fc5c36e3c996cfb922e51554af0cfeb36714592cf26166e409dMandriva Linux Security Advisory 2009-224 - Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messages by creating a mailbox file corresponding to another user's account name. This update provides a solution to this vulnerability.
484433b051fc58ba1b7f551d28aa47085b0e7f28d53fd1880c4b8aecfd1a1824Mandriva Linux Security Advisory 2009-223 - Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ 2.7.0 and 2.8.0 allows context-dependent attackers to cause a denial of service (application crash) via vectors involving nested parentheses and invalid byte values in simply nested DTD structures, as demonstrated by the Codenomicon XML fuzzing framework. This update provides a solution to this vulnerability.
a3906b3d2d9df7d4e98bc6f329777e914a9694aab0e0df43f586012842663e1dMicrosoft IIS version 5.0 FTP server remote stack overflow exploit for Windows 2000 SP4. Binds a shell to port 4444.
ce40cb6da965a415dbfc5397a6839d38275511d3ed979f7ce1fdfec8d8278203Microsoft IIS versions 5.0 and 6.0 FTP server remote stack overflow exploit for Windows 2000.
19aff66ba11cf22843fc9c8141c7d0a3402067ee062ec94813adce26357def3dModern Script versions 5.0 and below suffer from a remote SQL injection vulnerability.
20cfeb432b2736d18a695ab1a797763a4d1b13a756c82031d2e2923696f6c221BandCMS version 0.10 suffers from remote SQL injection vulnerabilities in news.php.
aeb9b51d910978b4c803f9b16c91952e44cc0431b9205bda920a251f943f674dRe-Script version 0.99 Beta suffers from a remote SQL injection vulnerability in listings.php.
b2828c67bb1d82fdce180807e7bf7531eaf351dae61e0fe076c7471cd3f440deLinux 2.6 kernel versions below 2.6.19 32bit ip_append_data() ring() root exploit.
6b3854b9705b083f7f9e7faa054eaf8f3ab87452b3fd6f314d6f943c4e92d17aHex Workshop versions 4.23, 5.1, and 6.0 universal local buffer overflow exploits.
8f56c1778991de7de8f5bfd165c24df126982ca2faaf0d20bb61c9a600293509Ultimate Player version 1.56 Beta universal local buffer overflow exploit.
4619a6765f0bf5284d85ce64b9b1a03789c2d5352e6f5913482da95c83eff9a1Secunia Security Advisory - Evgeny Legerov has discovered a vulnerability in Zmanda Recovery Manager for MySQL, which can be exploited by malicious people to compromise a vulnerable system.
47607cbc7f3f6c772001dc067f961806b048d5d9c031eeefaf4581f413760cc0Secunia Security Advisory - A vulnerability has been reported in Mojarra Scales, which can be exploited by malicious people to disclose sensitive information.
a96b63d96254685aa17f3421af21fd166fdeeb243131dbf0ec86c392ad880accSecunia Security Advisory - A vulnerability has been reported in JSFTemplating, which can be exploited by malicious people to disclose sensitive information.
788fb86d56747b7db528ad916a74830d2b6623976d25c58209efd30fde5ced76Secunia Security Advisory - Fedora has issued an update for libmikmod. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
865dfac5dafca230ddf6d024bec7a5ed3abfe41d197bcc0af5bf1d48d7c875e7Secunia Security Advisory - A vulnerability has been reported in ikiwiki, which can be exploited by malicious users to disclose sensitive information.
b29d8a66c9fd08adf82edca42aa0b27fe92ec51b2308ac202343c96e0cdfaa4dSecunia Security Advisory - Russ McRee has discovered a vulnerability in BIGACE Web CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
9a5f6609d18c28b1130218fd8e85b2a154e5af7b5b2c7e78462da88d35803977Secunia Security Advisory - A vulnerability has been discovered in FlexCMS, which can be exploited by malicious people to conduct SQL injection attacks.
65bf1b9d195e55b9e23846a3c4dbb853427aa56cd3adc43d44fecfaa23e2b6cdSecunia Security Advisory - A vulnerability has been discovered in FlexCMS, which can be exploited by malicious people to conduct SQL injection attacks.
f9f616a85bc7027fccf20218b404ac7481cdc69084a545235cd43909189d7baeSecunia Security Advisory - Gaurav Baruah has discovered a vulnerability in SolarWinds TFTP Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
ff1df15cb58fe63a54a7377c4fc03dcfc97dc7ba2cada534837d384f63c7b039Secunia Security Advisory - A vulnerability has been reported in Xerox WorkCentre, which can be exploited by malicious people to bypass certain security restrictions.
d115ac5d529b67a9baa395c9b0f3a20548bd014fa9a0c8609f792293111bb5d3Secunia Security Advisory - A vulnerability has been reported in multiple Hitachi products, which can be exploited by malicious people to bypass certain security restrictions.
1c346997f6a598cdf7c2a8a17f07b8f1ff3b738a9b55cf4e53d49137fecd0f01Secunia Security Advisory - Inj3ct0r has reported some vulnerabilities in Danneo CMS, which can be exploited by malicious people to conduct SQL injection attacks.
61e7fe7ae878ffa7f474d4f1f3558d35b60a2b965b761ff588d451765b4bb3d1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed