Exploit the possiblities
Showing 1 - 25 of 84 RSS Feed

Files Date: 2010-03-16 to 2010-03-17

Digital Forensics Framework 0.5.0
Posted Mar 16, 2010
Authored by Christophe M., Solal J. | Site digital-forensic.org

DFF (Digital Forensics Framework) is a simple but powerful tool with a flexible module system which will help you in your digital forensics works, including file recovery due to error or crash, evidence research and analysis, etc. DFF provides a robust architecture and some handy modules.

Changes: This release includes several bugfixes and a new API and graphical features: file carving with an enhanced algorithm, a complete rewrite of the hexadecimal viewer, research functions in the API, a new gallery viewer with speed improvements, a partition mapper that allows extended partitions to be added, and automation capabilities based on MIME type for improved GUI navigation.
tags | tool, forensics
MD5 | ae8674a3ec7268d1f500bb5eb5a828bc
Core Security Technologies Advisory 2009.0803
Posted Mar 16, 2010
Authored by Core Security Technologies, Diego Juarez, Nicolas A. Economou | Site coresecurity.com

Core Security Technologies Advisory - A vulnerability found in the memory management of the Virtual Machine Monitor makes memory pages mapped above the 2GB available with read or read/write access to user-space programs running in a Guest operating system.

tags | advisory
MD5 | 936c26e59571a54c68f677c92c973253
Windisc 1.3 Stack Buffer Overflow
Posted Mar 16, 2010
Authored by Rick | Site corelan.be

Windisc version 1.3 suffers from a stack buffer overflow vulnerability. Full exploit code included.

tags | exploit, overflow
MD5 | ae169a1b3bef09878c6b43b25193a365
FCKEditor 2.0 RC3 Shell Upload
Posted Mar 16, 2010
Authored by Aodrulez

FCKEditor version 2.0 RC3 suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | b59c2afa640cc668f579fb57c3dac4e0
Ubuntu Security Notice 912-1
Posted Mar 16, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 912-1 - It was discovered that Audio File Library contained a heap-based buffer overflow. If a user or automated system processed a crafted WAV file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. The default compiler options for Ubuntu should reduce this vulnerability to a denial of service.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, ubuntu
advisories | CVE-2008-5824
MD5 | cea5bb89800954462cbfdec1bfb278eb
Zero Day Initiative Advisory 10-032
Posted Mar 16, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-032 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the serv.exe process which listens by default on TCP port 7210. The process trusts a value from a handshake packet and uses it as a length when copying data to the stack. If provided a malicious value and packet data, this can be leveraged to execute arbitrary code under the context of the SYSTEM user.

tags | advisory, remote, arbitrary, tcp
MD5 | e2375d89695fe12b1a00cc15adebefb0
Clan Tiger Cross Site Request Forgery
Posted Mar 16, 2010
Authored by Pratul Agrawal

Clan Tiger CMS suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 8ac6d6d229428e13402d0a1955b048ba
Chilly CMS Cross Site Scripting
Posted Mar 16, 2010
Authored by Pratul Agrawal

Chilly CMS suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e97b751f44416cb2cc09edb43df20446
Chilly CMS Cross Site Request Forgery
Posted Mar 16, 2010
Authored by Pratul Agrawal

Chilly CMS suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 6f5f88f67ef821bb958d06369419b319
WFTPD 3.3 Remote Denial Of Service
Posted Mar 16, 2010
Authored by dmnt

WFTPD version 3.3 remote unhandled exception denial of service exploit.

tags | exploit, remote, denial of service
MD5 | 8323be9aa4f257a477d0cf841e451e32
SugarCRM Cross Site Scripting
Posted Mar 16, 2010
Authored by Jeromie Jackson

SugarCRM versions prior to 5.5.0a and 5.2.0l suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-0465
MD5 | 65028fdd56e01094100a9af2f5680c25
Zero Day Initiative Advisory 10-031
Posted Mar 16, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-031 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable software utilizing Apple's WebKit library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists due to a failure to unregister a callback pointer during the destruction of a particular type of element when embedded inside a 'blink' container. The application dereferences the original resource which can can be leveraged by an attacker to execute arbitrary code under the context of the current user.

tags | advisory, remote, arbitrary
systems | apple
MD5 | 43ec94b162ba7d2b0766fafde3e3e294
EGroupware Remote Command Execution
Posted Mar 16, 2010
Authored by Nahuel Grisolia | Site cybsec.com

CYBSEC Security Advisory - EGroupware suffers from a remote command execution vulnerability. Versions 1.4.001 / 1.4.002 / 1.6.001 / 1.6.002 and Premium Line versions 9.1 and 9.2 are affected.

tags | exploit, remote
MD5 | cd3392e71ec7dd6cd61ee3e6df2f1390
EGroupware Cross Site Scripting
Posted Mar 16, 2010
Authored by Nahuel Grisolia | Site cybsec.com

CYBSEC Security Advisory - EGroupware suffers from a reflected cross site scripting vulnerability. Versions 1.4.001 / 1.4.002 / 1.6.001 / 1.6.002 and Premium Line versions 9.1 and 9.2 are affected.

tags | exploit, xss
MD5 | edcf883b64ba6f5440633f8c051e01dc
OSSIM 2.2 Remote Command Execution
Posted Mar 16, 2010
Authored by Nahuel Grisolia | Site cybsec.com

CYBSEC Security Advisory - OSSIM version 2.2 suffers from a remote command execution vulnerability.

tags | exploit, remote
MD5 | d41bdbe4b05ef8ac976280685a559ab9
OSSIM 2.2 Shell Upload
Posted Mar 16, 2010
Authored by Nahuel Grisolia | Site cybsec.com

CYBSEC Security Advisory - OSSIM version 2.2 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
MD5 | 0d2575f09ecdeab1d769bcad45a27d0a
OSSIM 2.2 File Download
Posted Mar 16, 2010
Authored by Nahuel Grisolia | Site cybsec.com

CYBSEC Security Advisory - OSSIM version 2.2 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary
MD5 | c1260392b7369292d9f6003b0d6b7963
Online Community CMS By I-net SQL Injection
Posted Mar 16, 2010
Authored by Th3 RDX

Online Community CMS By I-net suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c953d33ead51b48209a45fa2489cdd63
Zigurrat CMS SQL Injection
Posted Mar 16, 2010
Authored by Isfahan University of Technology

Zigurrat CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ea2d6bbeac33bd7357d32c710bc3362e
Pars CMS SQL Injection
Posted Mar 16, 2010
Authored by Isfahan University of Technology

Pars CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c91edb7d57a0243b3445a51147e8cc9a
Debian Linux Security Advisory 2017-1
Posted Mar 16, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2017-1 - Dan Rosenberg discovered that the PulseAudio sound server creates a temporary directory with a predictable name. This allows a local attacker to create a Denial of Service condition or possibly disclose sensitive information to unprivileged users.

tags | advisory, denial of service, local
systems | linux, debian
advisories | CVE-2009-1299
MD5 | c7940506ee2f24afcaa65332c6a54d6b
CuteNews 1.4.6 Insecure Cookie Handling
Posted Mar 16, 2010
Authored by indoushka

CuteNews version 1.4.6 suffers from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
MD5 | 04d570d583a36d524fbe3d82c01d26b1
Family Connections 2.2 SQL Injection
Posted Mar 16, 2010
Authored by Blake

Family Connections version 2.2 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 7c8b7a5bc42c222e570cfc4490d6510d
Zero Day Initiative Advisory 10-030
Posted Mar 16, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-030 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari and other WebKit based browsers. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of the run-in value for display CSS styles. A specially crafted web page can cause a use after free() condition in WebKit's WebCore::RenderBlock() method. This can be further leveraged by attackers to execute arbitrary code under the context of the current user.

tags | advisory, remote, web, arbitrary
systems | apple
MD5 | 01f4bf61bb7cbb5256b0ad70e2ff46d0
Free Real Estate Contact Form 1.09 Local File Inclusion
Posted Mar 16, 2010
Authored by Pouya Daneshmand

Free Real Estate Contact Form version 1.09 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | b240e39bf6abbb836cbabe60252fbc52
Page 1 of 4
Back1234Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    15 Files
  • 15
    Dec 15th
    28 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close