exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 19 of 19 RSS Feed

Files Date: 2012-04-21 to 2012-04-22

Secunia Security Advisory 48798
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Security-Assessment.com has reported some vulnerabilities in Oracle GlassFish Enterprise Server, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.

tags | advisory, vulnerability, xss
SHA-256 | 4f3f68b4f5dd34097626387dec51c6ca465a4e2681c060293c7d2adaaf8f9faf
Secunia Security Advisory 48883
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Oracle PeopleSoft Enterprise Portal, which can be exploited by malicious users to manipulate certain data.

tags | advisory
SHA-256 | f4391e84433e11602388064596f7d0cef7e5ccbcf04b0fb69c58bf5cf497f11d
Secunia Security Advisory 48849
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in Apache HTTP Server, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, web, local
SHA-256 | 7a5e378fc4e48a8e0183ab08cfa5729081cb1575a35c812bc58b5c9dcc62ed32
Secunia Security Advisory 48876
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Oracle PeopleSoft Enterprise CRM, which can be exploited by malicious people to manipulate certain data.

tags | advisory
SHA-256 | f9baa24af1906b6b48ad20e20b4060dcafdb991ba82ee5fca09cdde271130e3f
Secunia Security Advisory 48890
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Oracle MySQL Server, which can be exploited by malicious users to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
SHA-256 | 39ee297c96638f02db0222933d407b2eec3e937aed6421eafa72c3757fcca78d
Secunia Security Advisory 48863
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Oracle JDeveloper, which can be exploited by malicious people to manipulate certain data.

tags | advisory
SHA-256 | 2c07c9f48bb6a07cb5a43f8a06e902adad771208b5f383632d169c8cb55d4c44
Secunia Security Advisory 48895
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for openssl. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, debian
SHA-256 | 79a0f8997d0d7326cd59f049ca32b132a720810797d1e32133ad5a639b77033f
Secunia Security Advisory 48843
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Hitachi JP1/IT Desktop Management, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability, xss
SHA-256 | e0fdb9f7c33b5703a29340209d510b8b6eead3975c286d792e8c5b0a8a4fe19d
Secunia Security Advisory 48928
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ange Albertini has reported a vulnerability in Comodo Internet Security, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
SHA-256 | 02fa2887423deac80f7906b277f3c1f971ca90d8528acf3f1244bdb6f0187d7f
Secunia Security Advisory 48933
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in IBM Rational ClearQuest, which can be exploited by malicious people to compromise a user's system.

tags | advisory
SHA-256 | 13efb18d623d48d8fe0cb5f44579eb71813ab27c469e09931bf0d9edd2dba673
Secunia Security Advisory 48899
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for openssl. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
SHA-256 | 82a6476c98a9719e8e3809064c9c4f56f2eeb81749e7b4428547ddff6cba05bc
Secunia Security Advisory 48807
Posted Apr 21, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in RubyGems, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
SHA-256 | 3b3a89af66ccd7991e83315b1a0f8662e8292a2b97a4268e32f0141dbc67d8a0
Anchor CMS 0.6 Cross Site Scripting
Posted Apr 21, 2012
Authored by LiquidWorm | Site zeroscience.mk

Anchor CMS version 0.6 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 35ce7fe492082b3f0dbc311bb17b9f683d07a5358cf442db0aced21ca72574b3
Mobius Forensic Toolkit 0.5.12
Posted Apr 21, 2012
Site savannah.nongnu.org

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Changes: This release features the Skype Agent extension, an extension to browse Skype log files and show calls, chats, contacts, profiles, file transfers, SMS, and voicemails.
tags | tool, python, forensics
systems | unix
SHA-256 | ef519b483134470f497220bce5bf728dedf78e64c1f12c5efcb00358b9cf865e
Oracle GlassFish Server 3.1.1 Build 12 Cross Site Scripting
Posted Apr 21, 2012
Authored by Roberto Suggi Liverani | Site security-assessment.com

Security-Assessment.com has discovered that components of the Oracle GlassFish Server administrative web interface are vulnerable to both reflected and stored cross site scripting attacks. All pages where cross site scripting vulnerabilities were discovered require authentication. Oracle GlassFish Server version 3.1.1 build 12 is affected.

tags | exploit, web, vulnerability, xss
advisories | CVE-2012-0551
SHA-256 | 483308f8a564fa501d764b451f997bd57808a2fe9a67f2ce80beea114ee97f8c
Host Scanning In IPv6 Networks
Posted Apr 21, 2012
Authored by Fernando Gont

IPv6 offers a much larger address space than that of its IPv4 counterpart. The standard /64 IPv6 subnets can (in theory) accommodate approximately 1.844 * 10^19 hosts, thus resulting in a much lower host density (#hosts/#addresses) than their IPv4 counterparts. As a result, it is widely assumed that it would take a tremendous effort to perform host scanning attacks against IPv6 networks, and therefore IPv6 host scanning attacks have long been considered unfeasible. This document analyzes the IPv6 address configuration policies implemented in most popular IPv6 stacks, and identifies a number of patterns in the resulting addresses lead to a tremendous reduction in the host address search space, thus dismantling the myth that IPv6 host scanning attacks are unfeasible.

tags | paper
SHA-256 | 3e402c5d8f47be6b853bd514ed35744c8ab3f764907fb96603770a5396359be0
HP Security Bulletin HPSBUX02761 SSRT100823
Posted Apr 21, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBUX02761 SSRT100823 - Potential security vulnerabilities have been identified with HP-UX Running Apache. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS) or to gain a local increase of privilege. Revision 1 of this advisory.

tags | advisory, denial of service, local, vulnerability
systems | hpux
advisories | CVE-2011-3607, CVE-2012-0021, CVE-2012-0031, CVE-2012-0053
SHA-256 | 319215a9d1fc376117b39017f2de91098d97f397f16927e876fc23c36ab2c613
Liferay 6.0.5 ce WebDAV File Reading
Posted Apr 21, 2012
Authored by Jelmer Kuperus

By creating a specially crafted webdav request that contains an external entity it is possible to read files from Liferay Portal version 6.0.5 ce. Proof of concept code included.

tags | exploit, proof of concept
systems | linux
SHA-256 | 3cd00ba5d2fefa08a9eafaa941c8ee4bdbf23dae39cb2ccf5da00cbf88d064e4
Liferay 6.1 Default Configuration Compromise
Posted Apr 21, 2012
Authored by Jelmer Kuperus

By utilizing the json webservices exposed in Liferay Portal version 6.1 you can register a new user with any role in the system, including the built in administrator role. Proof of concept included.

tags | exploit, proof of concept
systems | linux
SHA-256 | 3f6c3c5b9e5e27e968adbe87afc167aa13e200b89a6647cbde10d03c9a021bac
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close