Novell Netware version 6.5 SP8 suffers from a FTP related remote stack overflow vulnerability.
d70cb64062375e67c59fa55ccdfc4459fc2ba986572b94e42fd9a52b123d90c9OneCMS version 2.6 add administrator cross site request forgery exploit.
8ab8915fa1505c926a2308d040a9378f814880aab9448fd823e751fc2b13fe15StreamArmor is a sophisticated tool for discovering hidden alternate data streams (ADS) that can also clean them completely from the system. StreamArmor comes with a fast multi-threaded ADS scanner which can recursively scan over the entire system and quickly uncover all hidden streams. All such discovered streams are represented using specific color patterns based on threat level which makes it easy for human eye to distinguish between suspicious and normal streams.
b4edb0ddb4cf443c06ecdc7ade05e2b382760d2c669384164c61922999e15c22Powie's PSCRIPT Gastebuch versions 2.09 and below suffer from a remote SQL injection vulnerability.
a877dae77f90cb557ee806ec7270624ccd227158f317bddab76bdcc60d3f1812The Joomla Radio component suffers from a remote SQL injection vulnerability.
a9d001fecc7d6b066d3bfcccbd3d131d42d4c224aead4a13dbec9675a6ce24ebThe Joomla Business component suffers from a remote SQL injection vulnerability.
15a2efdf2f9a9819a16ad7682dfe74da30c48150e4b51f94f825cc6f4b97ba96The Joomla Departments component suffers from a remote SQL injection vulnerability.
10aa99c9ce2c211ffc6c2ad26d6beb4f193f459788a2cad9a70ff934455a4476ASX to MP3 Converter version 3.0.0.100 local stack overflow proof of concept.
b26a4687332849aa5253a9e509e57a89dbb8eb40b0b6376f44dfc9c0360cdb3eDocument on how to research and develop plugins for WhatWeb to identify content management systems, web application frameworks, etc. As an example it includes how to research and write a plugin for the SilverStripe CMS. The document covers passive plugin development only and is accurate for WhatWeb version 0.4.
5f3f119d174b65e22f243ac401684758be8a9c7c1fe680743529431b7ca20d1baircrack-ng and airdecap-ng suffer from a denial of service / crash vulnerability when reading specially crafted dump files. Exploit code to generate said dump files included.
b40761105074bbca410e972c1e0f176ba38ecfa43d8ad420888d18ef5a548d02PhotoPost vBGallery version 2.5 suffers from a remote SQL injection vulnerability.
a9e866c249ce1d2b696110e23e901d508b3e238c35f78be9b7bb6a6550f273c3This Metasploit module exploits a stack-based buffer overflow in EZB Systems, Inc's UltraISO. When processing .CUE files, data is read from file into a fixed-size stack buffer. Since no bounds checking is done, a buffer overflow can occur. Attackers can execute arbitrary code by convincing their victim to open an CUE file. NOTE: A file with the same base name, but the extension of "bin" must also exist. Opening either file will trigger the vulnerability, but the files must both exist.
fc09c8dc01c38a077fed4faed0017f5c4c92e09f67b17b911db36ba4850952aexwine version 1.0.1 .exe file local crash proof of concept exploit.
b9643633f7d5a68cbe65a1d44af0a460083068522c82abc63812548b840fa245Secunia Security Advisory - Easy Laster has reported a vulnerability in Flirt Matching SMS System, which can be exploited by malicious people to conduct SQL injection attacks.
ef4e8ef11d812d0eef3cc5db9c5bcf2ac442a91b8b4b41cec1022d490043858fSecunia Security Advisory - Fedora has issued an update for fcron. This fixes multiple security issues, which can be exploited by malicious, local users to disclose sensitive information.
5529ec7c52f241de74a94271b31ef37a1a2a0a856343b7301d70765a59389ff0Secunia Security Advisory - A vulnerability has been discovered in Open Web Analytics, which can be exploited by malicious people to compromise a vulnerable system.
1fdf900258f76e45e3554e7d6681229b8ceee3c087535b7859b21b94890b9b97Secunia Security Advisory - Debian has issued an update for curl. This fixes a security issue, which can potentially be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
38ad4a73bbaebd00d6f0f57934c605dd9208d820243fad45f865f62958bf13b8Secunia Security Advisory - A vulnerability has been discovered in Stud_PE, which can be exploited by malicious people to compromise a user's system.
69d0cf22a7c9f25004f60305d9509db0c25aaea3fb6747bafea98e28eb4f7eecSecunia Security Advisory - A vulnerability has been reported in Moodle, which can be exploited by malicious people to conduct cross-site scripting attacks.
1c508506a4267b420c06f1ff12defd562724b287d27fa735653aaacb5565457eSecunia Security Advisory - Easy Laster has reported a vulnerability in Date & Sex Vor und R
f02ee871cd77da8b129d05d20714511c92e3aa718115ed1323582bbda6f6f473Secunia Security Advisory - Fedora has issued an update for Moodle. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
6d2e8b40abc7b7140befb6f7245773ec8458eaba4eaf7a6a170720b2f663bb7eSecunia Security Advisory - Fedora has issued an update for krb5. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
6776c8eb6778d842fcf4d20dfb95bb247e318e0158014888609d1a1a84ab01c9Secunia Security Advisory - A vulnerability has been reported in Post Card, which can be exploited by malicious people to conduct SQL injection attacks.
b6edeb846c0be24b1dfc8121a14f296c6883f47b8b1a16191a6f27357ba6d01eSecunia Security Advisory - A vulnerability has been reported in the dcsFlashGames component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
eb79a49d0f1530a93f2738aed386a39060edb796e209dba8f5046c7fe9cf7fbaSecunia Security Advisory - A vulnerability has been discovered in N-13 News, which can be exploited by malicious people to disclose sensitive information.
a163ec6b6744e60183ddb1271bcbd750d2473983d8e353573bf2f4478c1f89b3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed