Exploit the possiblities
Showing 26 - 50 of 56 RSS Feed

Files Date: 2010-05-28 to 2010-05-29

Introduction To Cross Site Request Forgery
Posted May 28, 2010
Authored by Pouya Daneshmand

Whitepaper called Introduction to Cross Site Request Forgery. Written in Persian.

tags | paper, web, csrf
MD5 | eefc0e55d464289d49d50c97dc6d11bc
NCP Solutions 3.1 SQL Injection
Posted May 28, 2010
Authored by Mr.P3rfekT

NCP Solutions version 3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1f5ada850686bbe723ceecc4bba33466
LUCille Script 2.3 SQL Injection
Posted May 28, 2010
Authored by Mr.P3rfekT

LUCille Script version 2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | bb23bd6711652190c080dadfb74082d8
PacSec 2010 Conference Call For Papers
Posted May 28, 2010
Site pacsec.jp

PacSec 2010 Call For Papers - The conference will be held November 10th through the 11th in Tokyo, Japan.

tags | paper, conference
MD5 | d6d40ba1815f41a58fa760f054774188
Secunia Security Advisory 39975
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has acknowledged a vulnerability in various VMware ESX products, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | 9de3e01d5003e27cb22d405577405e0b
Secunia Security Advisory 39971
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has issued an update for VMware ESXi. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 1e55eef7e1a8ac78a27961d91837a05b
Secunia Security Advisory 39979
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has acknowledged a security issue in VMware vMA, which can be exploited by malicious, local users to potentially gain escalated privileges.

tags | advisory, local
MD5 | 5345541d2c42cd91b987dde1f562aa8d
Secunia Security Advisory 39980
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has acknowledged a vulnerability in VMware vMA, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | 6c60254fdc49c9e3cb059a841820d49f
Secunia Security Advisory 39976
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has acknowledged a vulnerability in VMware vMA, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | f9a5b5865f8cf525f1e35e0055eec2ff
Secunia Security Advisory 39920
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has acknowledged some vulnerabilities in VMware vMA, which can be exploited by malicious, local users to disclose certain system information, overwrite arbitrary files, bypass certain security restrictions, cause a DoS (Denial of Service) and gain escalated privileges, and by malicious people to cause a DoS.

tags | advisory, denial of service, arbitrary, local, vulnerability
MD5 | d6420c55fb551b318611deb4567575e7
Secunia Security Advisory 39950
Posted May 28, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - John Leitch has discovered a vulnerability in Home FTP Server, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | e9209f03d916919420599e6d6bf1d562
Home FTP Server 1.10.2.143 Directory Traversal
Posted May 28, 2010
Authored by AutoSec Tools

Home FTP Server version 1.10.2.143 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | ede0d3d5d8423afcee03d97693a105cb
Joomla MediQnA Local File Inclusion
Posted May 28, 2010
Authored by kaMtiEz | Site indonesiancoder.com

The Joomla MediQnA component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 1f909c0ec502d631927b988beb98751c
Mandriva Linux Security Advisory 2010-110
Posted May 28, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-110 - The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length. Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling. This update provides clamav 0.96.1 which is not vulnerable to these issues.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2010-1639, CVE-2010-1640
MD5 | 7730f9a8f37e64ad365081acfd64d3b2
Cross Site URL Hijacking Using Error Object In Firefox
Posted May 28, 2010
Authored by Soroush Dalili

Whitepaper called Cross Site URL Hijacking by using Error Object in Mozilla Firefox.

tags | paper
MD5 | e198c417ab153ee6038aa9568c6ec459
NuFW Authenticating Firewall 2.4.2
Posted May 28, 2010
Authored by regit | Site nufw.org

NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.

Changes: This release mainly fixes a compilation problem in gnutls mode and a memory leak in the client library.
tags | tool, remote, firewall
systems | unix
MD5 | c67aba9ad5047cd1d6e817992f94cc8d
Ubuntu Security Notice 945-1
Posted May 28, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 945-1 - It was discovered that ClamAV did not properly reallocate memory when processing certain PDF files. A remote attacker could send a specially crafted PDF and crash ClamAV. An out of bounds memory access flaw was discovered in ClamAV. A remote attacker could send a specially crafted Portable Executable (PE) file and crash ClamAV. This issue only affected Ubuntu 10.04 LTS.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2010-1639, CVE-2010-2077
MD5 | 6964cc7d506646d4a9451481ea19962e
Nginx 0.6.36 Path Traversal
Posted May 28, 2010
Authored by cp77fk4r

Nginx web server versions 0.6.36 and below suffers from a path traversal vulnerability.

tags | exploit, web, file inclusion
MD5 | 40bf6929d6ec6c7a546087a34b644476
Hampshire Trading Standards 1.0 SQL Injection
Posted May 28, 2010
Authored by Mr.P3rfekT

Hampshire Trading Standards Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 24d52e3a0be432e999ddda9d457c3907
Mandriva Linux Security Advisory 2010-109
Posted May 28, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-109 - gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times. This update fixes this issue.

tags | advisory
systems | linux, windows, mandriva
advisories | CVE-2010-0732
MD5 | 4f33b96fc2b36bf469ab639833cd044d
Improve File Uploaders' Protections
Posted May 28, 2010
Authored by Soroush Dalili

Whitepaper called Improve File Uploaders' Protections. It focuses on Windows-based web applications.

tags | paper, web, file upload
systems | windows
MD5 | 6a508de757b22246e88626379c618976
FreeBSD Security Advisory - Unvalidated Input In nfsclient
Posted May 28, 2010
Site security.freebsd.org

FreeBSD Security Advisory - The NFS client subsystem fails to correctly validate the length of a parameter provided by the user when a filesystem is mounted.

tags | advisory
systems | freebsd
advisories | CVE-2010-2020
MD5 | a5341b3f54cb8d0f4dd3cd393e1155fd
FreeBSD Security Advisory - Insufficient Sanitization In Jail
Posted May 28, 2010
Site security.freebsd.org

FreeBSD Security Advisory - The jail utility does not change the current working directory while imprisoning. The current working directory can be accessed by its descendants.

tags | advisory
systems | freebsd
advisories | CVE-2010-2022
MD5 | f32e75411ce8cc868fbbccffae21b982
Game ID 1.0 SQL Injection
Posted May 28, 2010
Authored by RoAd_KiLlEr

Game ID version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 17e12a29e824e41fa7181b02214f8222
Findings Vulnerabilities In YaFtp 1.0.14
Posted May 28, 2010
Authored by Soroush Dalili

Whitepaper called Finding vulnerabilities in YaFtp version 1.0.14.

tags | paper, vulnerability
MD5 | 85795579fbd0d50695a215a4bf9d2766
Page 2 of 3
Back123Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    4 Files
  • 19
    Nov 19th
    2 Files
  • 20
    Nov 20th
    9 Files
  • 21
    Nov 21st
    15 Files
  • 22
    Nov 22nd
    23 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close