This Metasploit module exploit smashes several pointers. A heap-based buffer overflow can occur when calling the undocumented "sp_replwritetovarbin" extended stored procedure. This vulnerability affects all versions of Microsoft SQL Server 2000 and 2005, Windows Internal Database, and Microsoft Desktop Engine (MSDE) without the updates supplied in MS09-004. Microsoft patched this vulnerability in SP3 for 2005 without any public mention.
22edb58a5f3eb94beb9d96ca4c1c67aaf6a45c0df8336fcfd1b91c3de3a418baSun Microsystems SunScreen Firewall local root exploit that spawns a shell on tcp port 1524.
48b25d9b1d67e00e988fa7f1f96311c9fd7c9980d28849043cb2bb94b55c28fdCultBooking version 2.0.4 suffers from a local file inclusion vulnerability.
24bcdd6125c7cc4b3d51be8dee944fb8ce491872476affee2bd28200a712e6f8This Python script is a tool that can be used to check windows workstations and servers if they have accessible shared resources.
d2a52d5c575a937dda9b0844fef2f9aa7f4f1849fbdf2777ecaf4c2e001dccd3CultBooking version 2.0.4 suffers from cross site scripting vulnerabilities.
24e1154c89c42c178796c636bb67c5e08c8ad7b7e1f4211c0ba0b0ae79186a25The Joomla B2 Portfolio component version 1.0.0 suffers from a remote SQL injection vulnerability.
1fd97f133305e13c2f534bab23ec06fd46db7e19813511fa4f3416aa10195917PHP Link Directory version 4.1.0 suffers from a cross site request forgery vulnerability.
bb90ef1b8d278dfdc8084d3df057b4ca393711fdaa16a18bccbce423e9857b18MC Content Manager suffers from path disclosure and remote SQL injection vulnerabilities.
79ff444202068751e97532edf45a7be59536d42ac9254e58655c806de059b940The vulnerability that was identified in the RSA Key Manager (RKM) C client 1.5 which may expose the product to SQL Injection attack has been addressed. An attacker having access to encrypted data could have leveraged this vulnerability to alter the RKM C Client 1.5 cache.
5c1419da8eb09fefd4748549c1aa1ef71df8b044be88f8d59ee8e34d154d7cadGolden FTP Server version 4.70 PASS command buffer overflow exploit.
134b3fcfa0f6c3cf94cd9d5299233951932b930d567aa52433d947fe6e165596Elite Gaming Ladder version 3.6 suffers from a remote blind SQL injection vulnerability.
f0777cc8552a6036eb00e0b50ac6a3d73d27d321cb574b3cb1c46b4011f56ab9Whitepaper that discusses a security token prediction vulnerability in Google Scholar alerts.
3cf72288cc52a5fdca22cae1d62858b7565ad40233aa1294bce10a40253fff48WordPress Uploader version 1.0.0 suffers from a cross site scripting vulnerability.
16093e2f61e28329bae00265d529cc1f45f18312a5a43062653cdc942ded7a44Inetserv version 3.23 suffers from a SMTP denial of service vulnerability.
8fe11631d405e34be8c2f4953aa9ea412cb29ccb8bf1c5c023e9173ffeaad6ddThis is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
59057d727d902d8b04b2ce0ba8f288c6e02cb65aca183cc8d559a4a66426581bWordPress Media Manager plugin suffers from a shell upload vulnerability.
07c3c888e55d3f8222e719ffb692ea52cb6ff8ca2ff2c701e7912e5249e5525eIGNOU Website suffers from a remote SQL injection vulnerability.
761e7993168e82e9a39ef347dce0a37aa37b8dc8d1693434a39a19d5eac7003ePHP Coupon Script version 6.0 suffers from a remote blind SQL injection vulnerability.
524ca9958d76167131074bab2df98edc6652a756d4ac1934c9d4fa31e4be5676Inetserv version 3.23 suffers from a POP3 denial of service vulnerability.
b01bc8ea3eb2994b20ee9bb0b56f3031be71188f22df1fdf28330c71a087439dSecunia Security Advisory - Fedora has issued an update for sssd. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
ac6f8e527046bbbdea3323add607555ac5c23f520f29bb9d5ccaa892568ce0e2Secunia Security Advisory - Fedora has issued an update for wordpress-mu. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
cf82215d8616724c89d2393a8871fed2050766525e15dfe4d77090bfe2d704cbSecunia Security Advisory - A vulnerability has been reported in Gallery, which can be exploited by malicious users to compromise a vulnerable system.
1f6ec15881bdf84935b9c429e7e62b7a992b7920210ecf1114f741967b1ac6b0Secunia Security Advisory - Multiple vulnerabilities have been discovered in CultBooking, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.
8740b386c69a60db68521bb62359f55659d3353dfa57dbc369ec5730e7cc272eSecunia Security Advisory - Two vulnerabilities have been discovered in InetServer, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
fc7a3242006021379b914025b3ae8c2a06d77730274bcce015512a237d48bfbaSecunia Security Advisory - Gentoo has issued an update for adobe-flash. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct click-jacking and cross-site scripting attacks, disclose sensitive information, bypass certain security restrictions, and compromise a user's system.
d58952d54cc04c76f8dcd58baa0f44bf6b515f3f12095b312616c69bea271a78
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed