Ubuntu Security Notice 880-1 - Stefan Cornelius discovered that GIMP did not correctly handle certain malformed BMP files. If a user were tricked into opening a specially crafted BMP file, an attacker could execute arbitrary code with the user's privileges. Stefan Cornelius discovered that GIMP did not correctly handle certain malformed PSD files. If a user were tricked into opening a specially crafted PSD file, an attacker could execute arbitrary code with the user's privileges. This issue only applied to Ubuntu 8.10, 9.04 and 9.10.
abfaff4f2057c4885200056001e88d026401c3e2ef40fbfc793fe89e6662298fBuilt By Kleber version 1.0 suffers from a cross site scripting vulnerability.
ccb5be5138b166e0e759f455edef576a28d48f29c01360ae02a1468d446526c0Lone Peak Video Productions version 1.0 suffers from a cross site scripting vulnerability.
ef1452343f29127cc5613b09b9851c034b4fc9d54a5ab4663aea921197a7af4bmarkItUp version 1.0 suffers from a cross site scripting vulnerability.
6782ba384c4f8ad40d1897eaecffc7b56713a9239ceec34c797e9d6014150d2eZeeways Technology suffers from a remote SQL injection vulnerability.
7ee6b5219624f51cdc93e753aa1d07fdf4e0eb1a8f00cdb6a3e29bdda35d49a1It appears that the VMWare server installer may fail to set the umask and/or file permissions upon installation.
ab3baa2673ce5d2da033a24d3862de9f64c2ea0e93bffed05160a6e08193f759This Metasploit module exploits a stack-based buffer overflow in the Hewlett-Packard OmniInet NT Service. By sending a specially crafted MSG_PROTOCOL (0x010b) packet, a remote attacker may be able to execute arbitrary code with elevated privileges. This service is installed with HP OpenView Data Protector, HP Application Recovery Manager and potentially other products. This exploit has been tested against versions 6.1, 6.0, and 5.50 of Data Protector. and versions 6.0 and 6.1 of Application Recovery Manager. NOTE: There are actually two consecutive wcscpy() calls in the program (which may be why ZDI considered them two separate issues). However, this module only exploits the first one.
098a37312c7769272d53b6747df73473c2997a18bf5130110137953613125b72This Metasploit module exploits a stack-based buffer overflow in the Hewlett-Packard OmniInet NT Service. By sending a specially crafted MSG_PROTOCOL (0x010b) packet, a remote attacker may be able to execute arbitrary code with elevated privileges. This service is installed with HP OpenView Data Protector, HP Application Recovery Manager and potentially other products. This exploit has been tested against versions 6.1, 6.0, and 5.50 of Data Protector. and versions 6.0 and 6.1 of Application Recovery Manager. NOTE: There are actually two consecutive wcscpy() calls in the program (which may be why ZDI considered them two separate issues). However, this module only exploits the second one.
6077abc4561b8bb88f893fcbc753edd3a1b15ac32e3ac4ebcdc7446ce7360c3cSniggabo CMS version 2.21 suffers from a cross site scripting vulnerability.
a892685595e5f19d5ff6f696e8d2e2479ef09161f35bd8df02752fcda68b3dfaUlisse's Scripts version 2.6.1 suffers from a remote SQL injection vulnerability in ladder.php.
3662f1abb30ab7a3dc33f968583b82391eeefb84830ffb52acf94002a3582c9dellistonSPORT suffers from multiple remote SQL injection vulnerabilities.
13e1b8534d82676f67d1d881b82b25b503fb59f7f4619cdbde6e376ac03126e5Hispanic Digital Network suffers from a remote blind SQL injection vulnerability.
82dbb2ee981c637f1c517f45b22289d648a06591842e65e6e0ea1d698e3d73f8The Joomla DM Orders component suffers from a remote SQL injection vulnerability.
acca147ab28795cbeed1eb35d6ef1dcbfc3689fbbafd4efd78d302216e31ad0bSpawCMS suffers from a shell upload vulnerability.
5d11cbad7b08f0061a826ff274da19fa79b384f4fc27e6e32d27acb2a65fcca3Cricinfo Games version 1.0 suffers from a cross site scripting vulnerability.
ff0b3d6735f644db3178df500e56d7500b4fefc1a40fe8529de8320b62ee759cDelta Duo Script version 1.0 suffers from a cross site scripting vulnerability.
a6a04728ca06d0e2aece5a2b6b8e6d128dd9842237e5c77ff13ef29bec220ba4Cb0ne Script version 1.0 suffers from a cross site scripting vulnerability.
ee3b83d1b6b35f8c12a53f5a7c77b5e674da59a0e58dae988af4bfcb039af7a5SAMPLE Lord version 1.0 suffers from a cross site scripting vulnerability.
d8126e56a829049763953c2d609590352eac1ab2d647a107b5777f1503e738c2RoundCubeWebmail version 0.2.x suffers from a cross site scripting vulnerability.
70e53fadb4f32dad69a12c8f085a7e51f55611388a5bfa6d594450da6c1951adMediatraffic Script version 1.0 suffers from a cross site scripting vulnerability.
b2b8cdb3a59912d6d95ead62447045b4c5625bfcf7b27b35eea990e2feb7afe8PNG Counter version 1.0 suffers from a cross site scripting vulnerability.
e407ae479e0e25afa26ad0d8bea8d8947fed83310ba6fb08dc814deee8d0804fSafeCms versions 2.0.1.0 and below suffer from a cross site scripting vulnerability.
b95e985781f00b2d025644d8d5581fd4e7d7de144c6af3b2a0a3f9864f5f6339Microsoft HTML Help Compiler buffer overflow proof of concept exploit.
e9fe9605397f9e68a7d203465bd5bc79da2294df71a4fb6b38f8e3f4676da78bNovell eDirectory version 8.8 SP5 post authorization remote buffer overflow exploit.
e4717073408a321c6c8d5bcd8643d68090de5191d64938212bef8b1f5b834fd4phpAV is a script designed to work as antivirus for malicious PHP scripts. It will search a given directory and related files for dangerous functions and provide a report.
68ab3725b4466890a2330c5c5dd11622666a09c408af5bb5c60f44d048036ba0
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed