what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 75 of 748 RSS Feed

Files Date: 2011-02-01 to 2011-02-28

glibc alloca() Memory Corruption
Posted Feb 25, 2011
Authored by Chris Evans | Site scarybeastsecurity.blogspot.com

Interesting blog entry that discusses how a glibc alloca()-based memory corruption vulnerability allowed for code execution.

tags | paper, code execution
SHA-256 | 6b372618ec2a21f674080b0819cbfb4ca8ee6bc398a1fbc24854277dc3dca356
CA HIPS Arbitrary Code Execution
Posted Feb 25, 2011
Authored by Ken Williams | Site www3.ca.com

CA Technologies support is alerting customers to a security risk associated with CA Host-Based Intrusion Prevention System (HIPS). A vulnerability exists that can allow a remote attacker to execute arbitrary code. CA Technologies has issued patches to address the vulnerability. The vulnerability is due to insecure method implementation in the XMLSecDB ActiveX control that is utilized in CA HIPS components and products. A remote attacker can potentially execute arbitrary code if he can trick a user into visiting a malicious web page or opening a malicious file. Versions prior to 8.1.0.88 are affected.

tags | advisory, remote, web, arbitrary, activex
advisories | CVE-2011-1036
SHA-256 | 1165984f0f9a0bde4ed83ed6d3943f818df52123eeb80a2f91a7d5dce511133b
Problems Faced By Cloud Computing
Posted Feb 25, 2011
Authored by L0rd CrusAd3r

Brief whitepaper discussing some problems faced when using cloud computing.

tags | paper
SHA-256 | 53a9ee31b17b5b3f1bb3226bfed1a087dce450306c1cb4d89f1193b47f77a5a5
oclHashcat GPU Hash Cracking Utility 0.25
Posted Feb 25, 2011
Authored by atom | Site hashcat.net

oclHashcat GPU hash cracking utility that has multi-GPU and multi-hash support. It supports dictionary-based and mask-attacks for hybrid cracking. Linux and Windows binaries are included.

tags | cracker
systems | linux, windows
SHA-256 | 19077748589c65f302bf68f488ac33ab55f6f1f62053087de4a1e3bbb3b370ce
oclHashcat+ Advanced GPU Hash Cracking Utility 0.03
Posted Feb 24, 2011
Authored by atom | Site hashcat.net

oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. Linux and Windows binaries are included.

tags | cracker
systems | linux, windows
SHA-256 | 196a49145a9a65032b5a225b6d7fe9397b32670c984be1fa6e801a298e9d301d
Hashcat CPU Cracking Utility 0.36
Posted Feb 24, 2011
Authored by atom | Site hashcat.net

Hashcat is a CPU hash cracking tool that supports multi-hash functionality and is multi-threaded. Linux and Windows binaries are included.

tags | cracker
systems | linux, windows
SHA-256 | b12331b96592de8246e7b870d155e03f55fef7b9dd344dee58df68bc26a54e43
WP Forum Server 1.6.5 SQL Injection
Posted Feb 24, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

WordPress Plugin WP Forum Server version 1.6.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c7b1746f764a0391671ea7e4522b2b38265456d0acd3791d41efa7c1f4464db3
IWantOneButton 3.0.1 Cross Site Scripting / SQL Injection
Posted Feb 24, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

IWantOneButton version 3.0.1 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 8fd8e8fa93009892023e743b3a25ba12ae97c562da5fd08139ae584c24e4372c
ParsCMS B2B SQL Injection
Posted Feb 24, 2011
Authored by d3c0der, H3X

ParsCMS B2B suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 6f70533153c76d2dda079a151a910e2fa31786f7504bc9cd8686cc1acc35c39a
Cumulus For Drupal Cross Site Scripting
Posted Feb 24, 2011
Authored by MustLive

Cumulus version 6.x-1.4 for Drupal suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 478e693b6cccffc031dddae6f788629a2591fc16323430c9645de745ebea9ff3
Mandriva Linux Security Advisory 2011-037
Posted Feb 24, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-037 - avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service via an empty IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244.

tags | advisory, remote, denial of service, udp
systems | linux, mandriva
advisories | CVE-2011-1002
SHA-256 | b4edc2d48e2b118b538b66c07b71c4376fd7f4b19f502be783b104e4065ba609
Relevanssi 2.7.2 Cross Site Scripting
Posted Feb 24, 2011
Authored by Saif El-Sherei

WordPress plugin Relevanssi User Searches version 2.7.2 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 76749fc499c98e9eac65ec4bb7effa27387d7bc7dfdddba9afb3483a0f68f2ea
GigPress 2.1.10 Cross Site Scripting
Posted Feb 24, 2011
Authored by Saif El-Sherei

WordPress plugin GigPress version 2.1.10 suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 60271d96a706125046c8d70c43a6ff00813e622943ff4ae8ee8dbfffeb923397
Elecard MPEG Player 5.7 Buffer Overflow
Posted Feb 24, 2011
Authored by badc0re

Elecard MPEG Player version 5.7 local buffer overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept
SHA-256 | e924badb6b079b6080a73804ebae6bfddae61d8bb4d1cbcdd18b7b2f41db3392
Novell Netware RPC XNFS xdrDecodeString Code Execution
Posted Feb 24, 2011
Authored by Francis Provencher

Novell Netware RPC XNFS xdrDecodeString proof of concept exploit that demonstrates an arbitrary code execution vulnerability.

tags | exploit, arbitrary, code execution, proof of concept
advisories | CVE-2010-4227
SHA-256 | 9bee9619b110c9cc533ba4115cbc37e05b3dbe59c286619fd9d13cdafbbc7aa2
HAM3D Shop Engine Shell Upload
Posted Feb 24, 2011
Authored by d3c0der

HAM3D Shop Engine suffers from a shell upload vulnerability.

tags | exploit, shell
SHA-256 | 6318c2a143d9918aa40288bbde3ac5ca7ae4a971c150af9e2777bc6404188cf3
XSSer Penetration Testing Tool 1.5-1
Posted Feb 24, 2011
Authored by psy | Site sourceforge.net

XSSer is an open source penetration testing tool that automates the process of detecting and exploiting XSS injections against different applications. It contains several options to try to bypass certain filters, and various special techniques of code injection.

Changes: Various updates.
tags | tool, scanner
systems | unix
SHA-256 | 4de4d18fc0472010c5289b7c509270a9628d2883314d90de3888b92ee68106a0
Victory FTP Server 5.0 Denial Of Service
Posted Feb 24, 2011
Authored by C4SS!0 G0M3S

Victory FTP Server version 5.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | 2f4e7d0cb8bdc8833fb1515569b0b34f64fa4dabc9566239341f150a14418ed2
Alcassoft's Sophia CMS SQL Injection
Posted Feb 24, 2011
Authored by p0pc0rn

Alcassoft's Sophia CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f085174405a2b16007a5d25d4727564e551ebdbbce238d9b5aa14f7088764c35
iPhone PDF Reader Pro 2.3 Directory Traversal
Posted Feb 24, 2011
Authored by IRCRASH, Khashayar Fereidani | Site ircrash.com

iPhone PDF Reader Pro version 2.3 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | 02569250d98ac973880f7a0c81ec18308ea71d7ca1f8682ab0cc5361fd1e164d
iPhone Guitar Directory Traversal
Posted Feb 24, 2011
Authored by IRCRASH, Khashayar Fereidani | Site ircrash.com

iPhone Guitar suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | 4d6bbf24558d8c444994bad35d232a50db125fb42a1cb34a6c171395a16db4c9
iPhone iShred 1.93 Directory Traversal
Posted Feb 24, 2011
Authored by IRCRASH, Khashayar Fereidani | Site ircrash.com

iPhone iShred version 1.93 suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | 2672bdf8a12f0f6096e4749c6433401c5e9cc241b2079f7198e3fa31e50cdc1c
Share 1.0 For iPhone / iPod Touch Directory Traversal
Posted Feb 24, 2011
Authored by Sunlight, R3dAl3rt, Hackkey

Share version 1.0 for iPhone / iPod Touch suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | daadc08c54015704e382a999abca47cf30b3fb00299067ebb97ca7bdae7ea6e4
myDBLite 1.1.10 For iPhone / iPod Touch Directory Traversal
Posted Feb 24, 2011
Authored by Sunlight, R3dAl3rt, Hackkey

myDBLite version 1.1.10 for iPhone / iPod Touch suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | 7186c249ee35d25c27247d782e3fc67ac4109256f4cd1668a8019d5c933e4b99
iDocManager 1.0.0 For iPhone / iPod Touch Directory Traversal
Posted Feb 24, 2011
Authored by Sunlight, R3dAl3rt, Hackkey

iDocManager version 1.0.0 for iPhone / iPod Touch suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
systems | apple, iphone
SHA-256 | 747557963d406362ded08fd7a7cd6e6045df00ee0ff22a5081d5a7f51a930ac4
Page 3 of 30
Back12345Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close