Ubuntu Security Notice 880-1 - Stefan Cornelius discovered that GIMP did not correctly handle certain malformed BMP files. If a user were tricked into opening a specially crafted BMP file, an attacker could execute arbitrary code with the user's privileges. Stefan Cornelius discovered that GIMP did not correctly handle certain malformed PSD files. If a user were tricked into opening a specially crafted PSD file, an attacker could execute arbitrary code with the user's privileges. This issue only applied to Ubuntu 8.10, 9.04 and 9.10.
abfaff4f2057c4885200056001e88d026401c3e2ef40fbfc793fe89e6662298f
Built By Kleber version 1.0 suffers from a cross site scripting vulnerability.
ccb5be5138b166e0e759f455edef576a28d48f29c01360ae02a1468d446526c0
Lone Peak Video Productions version 1.0 suffers from a cross site scripting vulnerability.
ef1452343f29127cc5613b09b9851c034b4fc9d54a5ab4663aea921197a7af4b
markItUp version 1.0 suffers from a cross site scripting vulnerability.
6782ba384c4f8ad40d1897eaecffc7b56713a9239ceec34c797e9d6014150d2e
Zeeways Technology suffers from a remote SQL injection vulnerability.
7ee6b5219624f51cdc93e753aa1d07fdf4e0eb1a8f00cdb6a3e29bdda35d49a1
It appears that the VMWare server installer may fail to set the umask and/or file permissions upon installation.
ab3baa2673ce5d2da033a24d3862de9f64c2ea0e93bffed05160a6e08193f759
This Metasploit module exploits a stack-based buffer overflow in the Hewlett-Packard OmniInet NT Service. By sending a specially crafted MSG_PROTOCOL (0x010b) packet, a remote attacker may be able to execute arbitrary code with elevated privileges. This service is installed with HP OpenView Data Protector, HP Application Recovery Manager and potentially other products. This exploit has been tested against versions 6.1, 6.0, and 5.50 of Data Protector. and versions 6.0 and 6.1 of Application Recovery Manager. NOTE: There are actually two consecutive wcscpy() calls in the program (which may be why ZDI considered them two separate issues). However, this module only exploits the first one.
098a37312c7769272d53b6747df73473c2997a18bf5130110137953613125b72
This Metasploit module exploits a stack-based buffer overflow in the Hewlett-Packard OmniInet NT Service. By sending a specially crafted MSG_PROTOCOL (0x010b) packet, a remote attacker may be able to execute arbitrary code with elevated privileges. This service is installed with HP OpenView Data Protector, HP Application Recovery Manager and potentially other products. This exploit has been tested against versions 6.1, 6.0, and 5.50 of Data Protector. and versions 6.0 and 6.1 of Application Recovery Manager. NOTE: There are actually two consecutive wcscpy() calls in the program (which may be why ZDI considered them two separate issues). However, this module only exploits the second one.
6077abc4561b8bb88f893fcbc753edd3a1b15ac32e3ac4ebcdc7446ce7360c3c
Sniggabo CMS version 2.21 suffers from a cross site scripting vulnerability.
a892685595e5f19d5ff6f696e8d2e2479ef09161f35bd8df02752fcda68b3dfa
Ulisse's Scripts version 2.6.1 suffers from a remote SQL injection vulnerability in ladder.php.
3662f1abb30ab7a3dc33f968583b82391eeefb84830ffb52acf94002a3582c9d
ellistonSPORT suffers from multiple remote SQL injection vulnerabilities.
13e1b8534d82676f67d1d881b82b25b503fb59f7f4619cdbde6e376ac03126e5
Hispanic Digital Network suffers from a remote blind SQL injection vulnerability.
82dbb2ee981c637f1c517f45b22289d648a06591842e65e6e0ea1d698e3d73f8
The Joomla DM Orders component suffers from a remote SQL injection vulnerability.
acca147ab28795cbeed1eb35d6ef1dcbfc3689fbbafd4efd78d302216e31ad0b
SpawCMS suffers from a shell upload vulnerability.
5d11cbad7b08f0061a826ff274da19fa79b384f4fc27e6e32d27acb2a65fcca3
Cricinfo Games version 1.0 suffers from a cross site scripting vulnerability.
ff0b3d6735f644db3178df500e56d7500b4fefc1a40fe8529de8320b62ee759c
Delta Duo Script version 1.0 suffers from a cross site scripting vulnerability.
a6a04728ca06d0e2aece5a2b6b8e6d128dd9842237e5c77ff13ef29bec220ba4
Cb0ne Script version 1.0 suffers from a cross site scripting vulnerability.
ee3b83d1b6b35f8c12a53f5a7c77b5e674da59a0e58dae988af4bfcb039af7a5
SAMPLE Lord version 1.0 suffers from a cross site scripting vulnerability.
d8126e56a829049763953c2d609590352eac1ab2d647a107b5777f1503e738c2
RoundCubeWebmail version 0.2.x suffers from a cross site scripting vulnerability.
70e53fadb4f32dad69a12c8f085a7e51f55611388a5bfa6d594450da6c1951ad
Mediatraffic Script version 1.0 suffers from a cross site scripting vulnerability.
b2b8cdb3a59912d6d95ead62447045b4c5625bfcf7b27b35eea990e2feb7afe8
PNG Counter version 1.0 suffers from a cross site scripting vulnerability.
e407ae479e0e25afa26ad0d8bea8d8947fed83310ba6fb08dc814deee8d0804f
SafeCms versions 2.0.1.0 and below suffer from a cross site scripting vulnerability.
b95e985781f00b2d025644d8d5581fd4e7d7de144c6af3b2a0a3f9864f5f6339
Microsoft HTML Help Compiler buffer overflow proof of concept exploit.
e9fe9605397f9e68a7d203465bd5bc79da2294df71a4fb6b38f8e3f4676da78b
Novell eDirectory version 8.8 SP5 post authorization remote buffer overflow exploit.
e4717073408a321c6c8d5bcd8643d68090de5191d64938212bef8b1f5b834fd4
phpAV is a script designed to work as antivirus for malicious PHP scripts. It will search a given directory and related files for dangerous functions and provide a report.
68ab3725b4466890a2330c5c5dd11622666a09c408af5bb5c60f44d048036ba0