Section: .. / Last 100 Files /
| /// File Name: | MDVSA-2010-142.txt | Description:
| Mandriva Linux Security Advisory 2010-142 - The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences, which triggers a free of an invalid, uninitialized pointer in the slap_mods_free function, as demonstrated using the Codenomicon LDAPv3 test suite. OpenLDAP 2.4.22 allows remote attackers to cause a denial of service via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smr_normalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schema_init.c, as demonstrated using the Codenomicon LDAPv3 test suite. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 16505 | | Related CVE(s): | CVE-2010-0211, CVE-2010-0212 | | Last Modified: | Jul 28 18:42:06 2010 | | MD5 Checksum: | 7c99ef64bfc0338ec6f317c16f73ff04 |
|
| /// File Name: | uplusftp-overflow.txt | Description:
| UPlusFTP Server version 1.7.1.01 remote buffer overflow post authentication exploit. | | Author: | Karn Ganeshen,corelanc0d3r | | File Size: | 2777 | | Last Modified: | Jul 28 18:34:54 2010 | | MD5 Checksum: | 60a3b2b94f3545e1846005844320d4f2 |
|
| /// File Name: | symantecams-flaw.txt | Description:
| Symantec Antivirus Corporate Edition AMS Intel Alert Handler service (hndlrsvc.exe) proof of concept command execution exploit. | | Author: | Spider | | Related File: | foofus-20100726.txt | | File Size: | 5229 | | Last Modified: | Jul 28 14:20:54 2010 | | MD5 Checksum: | 99af1c5cdd484a0a3d2744bc9ee6a38d |
|
| /// File Name: | jira-xss.txt | Description:
| Jira version 4.0.1 suffers from a cross site scripting vulnerability. | | Author: | MaXe | | File Size: | 2336 | | Last Modified: | Jul 28 14:19:27 2010 | | MD5 Checksum: | bd54a2222350829abde01d653c24d6a4 |
|
| /// File Name: | secunia-autonomykvrp.txt | Description:
| Secunia Research has discovered two vulnerabilities in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerabilities are caused by boundary errors in the SpreadSheet Lotus 123 reader (wkssr.dll) when parsing certain records. This can be exploited to cause stack-based buffer overflows via specially crafted files. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4449 | | Related CVE(s): | CVE-2010-0133 | | Last Modified: | Jul 28 14:18:24 2010 | | MD5 Checksum: | 1e07e58e799d937de79f9a8685c827aa |
|
| /// File Name: | secunia-autonomykvindex.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to potentially compromise a vulnerable system. The vulnerability is caused by an error in the SpreadSheet Lotus 123 reader (wkssr.dll) when allocating an array of pointers during the parsing of a certain record type combined with how strings are later indexed. This can be exploited to corrupt memory via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4524 | | Related CVE(s): | CVE-2010-1524 | | Last Modified: | Jul 28 14:17:09 2010 | | MD5 Checksum: | 3d559dc765a3666312900d97ec293124 |
|
| /// File Name: | zemana-escalate.txt | Description:
| Zemana AntiLogger with AntiLog32.sys versions 1.5.2.755 and below suffer from a local privilege escalation vulnerability. | | Author: | th_decoder | | File Size: | 2802 | | Last Modified: | Jul 28 14:10:54 2010 | | MD5 Checksum: | 3c52a66eb2c31dd73df27b7a44faf0b1 |
|
| /// File Name: | ceteraecommerce-sqlxss.txt | Description:
| Cetera eCommerce versions 14.0 and below suffer from cross site scripting and remote SQL injection vulnerabilities. | | Author: | MustLive | | File Size: | 2951 | | Last Modified: | Jul 28 14:08:24 2010 | | MD5 Checksum: | 2eaa26eb1f22884df3d3167bc069e4b0 |
|
| /// File Name: | secunia-wkssriu.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. The vulnerability is caused by an integer underflow error in the SpreadSheet Lotus 123 reader (wkssr.dll) when parsing the size of a specific record type. This can be exploited to cause a heap-based buffer overflow via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4554 | | Related CVE(s): | CVE-2010-1525 | | Last Modified: | Jul 28 14:05:08 2010 | | MD5 Checksum: | 50abca786543ffdc74a394e0ff72c086 |
|
| /// File Name: | secunia-autonomywosr.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error the WordPerfect 5.x reader (wosr.dll) when parsing data blocks and can be exploited to cause a heap-based buffer overflow via a specially crafted file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Dyon Balding | | Homepage: | http://secunia.com/ | | File Size: | 4465 | | Related CVE(s): | CVE-2010-0135 | | Last Modified: | Jul 28 14:03:59 2010 | | MD5 Checksum: | 54f75386e8a64e96a4a8814d3df82ed6 |
|
| /// File Name: | secunia-autonomyrtfsigned.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a signedness error when parsing the argument to the "\\ls" keyword within a list override table entry in RTF files. This can be exploited to cause a buffer overflow via a specially crafted RTF file. Successful exploitation may allow execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Dyon Balding | | Homepage: | http://secunia.com/ | | File Size: | 4490 | | Related CVE(s): | CVE-2010-0134 | | Last Modified: | Jul 28 14:02:22 2010 | | MD5 Checksum: | 051da84386777387a8d490662fbcab7b |
|
| /// File Name: | secunia-autonomywkssr.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error in the Spreadsheet Lotus 123 reader (wkssr.dll) when converting floating point values in certain record types. This can be exploited to cause a stack-based buffer overflow via a specially crafted file. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4562 | | Related CVE(s): | CVE-2010-0131 | | Last Modified: | Jul 28 13:59:30 2010 | | MD5 Checksum: | b86bf4c0e20e58cec482e0807c9fbb94 |
|
| /// File Name: | secunia-autonomycfp.txt | Description:
| Secunia Research has discovered a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error when parsing record data in compound documents. This can be exploited to cause a heap-based buffer overflow when an application using the vulnerable library parses e.g. a specially crafted Quattro Pro file. Successful exploitation allows execution of arbitrary code. Autonomy KeyView versions 10.4 and 10.9 are affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4672 | | Related CVE(s): | CVE-2010-0126 | | Last Modified: | Jul 28 13:55:45 2010 | | MD5 Checksum: | 51d0af3f78c93a798c10dd606371c9df |
|
| /// File Name: | apachetomcat-traversal.txt | Description:
| UTF-8 directory traversal /etc/passwd grabbing exploit for Apache Tomcat versions prior to 6.0.18. | | Author: | Simon Ryeo,mywisdom | | File Size: | 3544 | | Related OSVDB(s): | 47464 | | Related CVE(s): | CVE-2008-2938 | | Last Modified: | Jul 28 13:52:44 2010 | | MD5 Checksum: | be0f85711288d99a26465aac5493aec3 |
|
| /// File Name: | joomlaphotomapgallery-sql.txt | Description:
| Joomla PhotoMap Gallery version 1.6.0 suffers from multiple remote blind SQL injection vulnerabilities. | | Author: | Salvatore Fresta | | File Size: | 3585 | | Last Modified: | Jul 28 13:46:30 2010 | | MD5 Checksum: | 929ef26fbab0a2d1e5aa1b95348554d7 |
|
| /// File Name: | avarcade-insecure.txt | Description:
| AV Arcade version 3 suffers from insecure cookie and SQL injection vulnerabilities. | | Author: | saudi0hacker | | File Size: | 905 | | Last Modified: | Jul 28 13:44:53 2010 | | MD5 Checksum: | e24295757afa6e9f6b4a25d30a5fe4e7 |
|
| /// File Name: | nubuilder-rfi.txt | Description:
| nuBuilder version 10.04.x suffers from a remote file inclusion vulnerability. | | Author: | Ahlspiess | | File Size: | 1276 | | Last Modified: | Jul 28 13:43:14 2010 | | MD5 Checksum: | d451eae5886197e24dccb93485ece7ea |
|
| /// File Name: | dsa-2076-1.txt | Description:
| Debian Linux Security Advisory 2076-1 - It was discovered that GnuPG 2 uses a freed pointer when verify a signature or importing a certificate with many Subject Alternate Names, potentially leading to arbitrary code execution. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 9249 | | Related CVE(s): | CVE-2010-2547 | | Last Modified: | Jul 27 21:22:59 2010 | | MD5 Checksum: | 9e20355dee50b90ffcce599a243fd717 |
|
| /// File Name: | MDVSA-2010-141.txt | Description:
| Mandriva Linux Security Advisory 2010-141 - The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service via a Negotiate Protocol request with a certain 0x0003 field value followed by a Session Setup AndX request with a certain 0x8003 field value. The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (process crash), via a \\xff\\xff security blob length in a Session Setup AndX request. The updated packages provides samba 3.4.8 which is not vulnerable to these issues. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5981 | | Related CVE(s): | CVE-2010-1635, CVE-2010-1642 | | Last Modified: | Jul 27 21:20:06 2010 | | MD5 Checksum: | 61476c47e396c1762c6244eb9488a6f5 |
|
| /// File Name: | MDVSA-2010-140.txt | Description:
| Mandriva Linux Security Advisory 2010-140 - This is a maintenance and security update that upgrades php to 5.3.3 for 2010.0/2010.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible resource destruction issues in shm_put_var(). Fixed a possible information leak because of interruption of XOR operator. Fixed a possible memory corruption because of unexpected call-time pass by reference and following memory clobbering through callbacks. Fixed a possible memory corruption in ArrayObject::uasort(). Fixed a possible memory corruption in parse_str(). Fixed a possible memory corruption in pack(). Fixed a possible memory corruption in substr_replace(). Fixed a possible memory corruption in addcslashes(). Fixed a possible stack exhaustion inside fnmatch(). Fixed a possible dechunking filter buffer overflow. Fixed a possible arbitrary memory access inside sqlite extension. Fixed string format validation inside phar extension. Fixed handling of session variable serialization on certain prefix characters. Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed SplObjectStorage unserialization problems. Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user. Fixed possible buffer overflows when handling error packets in mysqlnd. Additionally some of the third party extensions and required dependencies has been upgraded and/or rebuilt for the new php version. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 42790 | | Related CVE(s): | CVE-2010-2531, CVE-2010-0397, CVE-2010-2225 | | Last Modified: | Jul 27 21:18:57 2010 | | MD5 Checksum: | 9728cbfda6ca6f7ff1a4ca0bc367b17c |
|
| /// File Name: | punbbpunpm-sql.txt | Description:
| PunBB versions 1.3.x and below with Pun_PM versions 1.2.6 and below remote blind SQL injection exploit. | | Author: | Dante90 | | File Size: | 7628 | | Last Modified: | Jul 27 21:16:23 2010 | | MD5 Checksum: | 6e2c0f3eee120f9b20dfae1d6ecb8956 |
|
| /// File Name: | joomlattvideo-sql.txt | Description:
| Joomla TTVideo component version 1.0 suffers from a remote SQL injection vulnerability. | | Author: | Salvatore Fresta | | File Size: | 1779 | | Last Modified: | Jul 27 21:15:13 2010 | | MD5 Checksum: | 804159f3c6ff44c128962d760a3b3e00 |
|
| /// File Name: | msvisualstudio-overflow | Description:
| Microsoft Visual Studio version 6.0 VCMUTL.dll unicode Active-X buffer overflow exploit. | | Author: | MadjiX | | File Size: | 3534 | | Last Modified: | Jul 27 21:14:11 2010 | | MD5 Checksum: | d97606695742264600bae5e755755fa4 |
|
| /// File Name: | ie67-dos.txt | Description:
| Microsoft Internet Explorer versions 6 and 7 suffers from a denial of service vulnerability. | | Author: | Richard Leahy | | File Size: | 560 | | Last Modified: | Jul 27 21:06:52 2010 | | MD5 Checksum: | 2752a461ecb310dd0db37c67b478c81e |
|
| /// File Name: | NocON2010-CFP.txt | Description:
| Call For Papers for the No cON Name 2010 Congress. This conference will be held in Barcelona, Spain, from October 18th through the 19th. | | Author: | No cON CFP | | Homepage: | http://www.noconname.org/ | | File Size: | 4325 | | Last Modified: | Jul 27 20:34:31 2010 | | MD5 Checksum: | c2aa734ac66dfe214966445e7bd4f875 |
|
| /// File Name: | socialmedia-lfi.txt | Description:
| Social Media version 2.0.0 suffers from a local file inclusion vulnerability. | | Author: | OoN_Boy | | File Size: | 2761 | | Last Modified: | Jul 27 20:24:54 2010 | | MD5 Checksum: | cfecac432433c100c61e1b5bd2b280fd |
|
| /// File Name: | stackbf.c | Description:
| Stack bruteforcing utility against buffer overflow programs with ASLR. Provides polymorphic shellcode for /bin/sh. | | Author: | gunslinger | | Homepage: | http://gunslingerc0de.wordpress.com/ | | File Size: | 1819 | | Last Modified: | Jul 27 20:20:37 2010 | | MD5 Checksum: | 68c6e59edcec5721f37a7e5d4572546a |
|
| /// File Name: | theetacms-sqlxss.txt | Description:
| Theeta CMS suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | High-Tech Bridge SA | | Homepage: | http://www.htbridge.ch/ | | File Size: | 4821 | | Last Modified: | Jul 27 20:10:58 2010 | | MD5 Checksum: | dbfc07930d0e37e7ee46e6f86ff96744 |
|
| /// File Name: | joomlaappointinator-sql.txt | Description:
| The Joomla Appointinator component version 1.0.1 suffers from remote SQL injection vulnerabilities. | | Author: | Salvatore Fresta | | File Size: | 1678 | | Last Modified: | Jul 27 20:08:27 2010 | | MD5 Checksum: | f3ba06cfcb83632d05900d500338dc58 |
|
| /// File Name: | syndeocms-xss.txt | Description:
| SyndeoCMS versions 2.9.0 and below suffer from multiple cross site scripting vulnerabilities. | | Author: | High-Tech Bridge SA | | Homepage: | http://www.htbridge.ch/ | | File Size: | 8190 | | Last Modified: | Jul 27 20:04:21 2010 | | MD5 Checksum: | 7968a477727cac0314791654ba903d9f |
|
| /// File Name: | MDVSA-2010-139.txt | Description:
| Mandriva Linux Security Advisory 2010-139 - This is a maintenance and security update that upgrades php to 5.2.14 for CS4/MES5/2008.0/2009.0/2009.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible interruption array leak in strrchr(). Fixed a possible interruption array leak in strchr(), strstr(), substr(), chunk_split(), strtok(), addcslashes(), str_repeat(), trim(). Fixed a possible memory corruption in substr_replace(). Fixed SplObjectStorage unserialization problems. Fixed a possible stack exhaustion inside fnmatch(). Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed handling of session variable serialization on certain prefix characters. Fixed a possible arbitrary memory access inside sqlite extension. Reported by Mateusz Kocielski. Additionally some of the third party extensions has been upgraded and/or rebuilt for the new php version. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 117022 | | Related CVE(s): | CVE-2010-2484, CVE-2010-2225, CVE-2010-0397, CVE-2010-2531 | | Last Modified: | Jul 27 19:22:48 2010 | | MD5 Checksum: | 2b75ea5f7908e8b6b979d2ee7f9b6e02 |
|
| /// File Name: | major_rls79.txt | Description:
| PHPKIT WCMS version 1.6.5 suffers from multiple cross site scripting vulnerabilities. | | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 1624 | | Last Modified: | Jul 27 19:48:15 2010 | | MD5 Checksum: | 0703add159aebb090826a24794228dde |
|
| /// File Name: | easyftp_mkd_fixret.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing 'MKD' commands, which leads to a stack based buffer overflow. NOTE: EasyFTP allows anonymous access by default. However, in order to access the 'MKD' command, you must have access to an account that can create directories. After version 1.7.0.12, this package was renamed "UplusFtp". This exploit utilizes a small piece of code that I\\'ve referred to as 'fixRet'. This code allows us to inject of payload of ~500 bytes into a 264 byte buffer by 'fixing' the return address post-exploitation. See references for more information. | | Author: | jduck,x90c | | Homepage: | http://www.metasploit.com | | File Size: | 4353 | | Related OSVDB(s): | 62134 | | Last Modified: | Jul 27 19:13:55 2010 | | MD5 Checksum: | a31ab6edcdb29318cc3ec1bcff1a522d |
|
| /// File Name: | easyftp_list_fixret.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11. credit goes to Karn Ganeshan. NOTE: Although, this is likely to exploit the same vulnerability as the 'easyftp_cwd_fixret' exploit, it uses a slightly different vector. | | Author: | Karn Ganeshan,MFR,jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3401 | | Related OSVDB(s): | 62134 | | Last Modified: | Jul 27 19:11:36 2010 | | MD5 Checksum: | dd1158c4d3c385cf313352a66803a9f8 |
|
| /// File Name: | hyleos_chemviewx_activex.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow within version 1.9.5.1 of Hyleos ChemView (HyleosChemView.ocx). By calling the 'SaveAsMolFile' or 'ReadMolFile' methods with an overly long first argument, an attacker can overrun a buffer and execute arbitrary code. | | Author: | Dz_attacker,Paul Craig,jduck | | Homepage: | http://www.metasploit.com | | File Size: | 4474 | | Related OSVDB(s): | 62276 | | Related CVE(s): | CVE-2010-0679 | | Last Modified: | Jul 27 19:09:47 2010 | | MD5 Checksum: | ba64d10e2eab24164863d5807b3b8829 |
|
| /// File Name: | easyftp_list.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing the 'path' parameter supplied to an HTTP GET request, which leads to a stack based buffer overflow. EasyFTP allows anonymous access by default; valid credentials are typically unnecessary to exploit this vulnerability. After version 1.7.0.12, this package was renamed "UplusFtp". Due to limited space, as well as difficulties using an egghunter, the use of staged, ORD, and/or shell payloads is recommended. | | Author: | ThE g0bL!N,jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3667 | | Related OSVDB(s): | 66614 | | Last Modified: | Jul 27 19:11:13 2010 | | MD5 Checksum: | e8e1ba35a15a4cce0d46cd0b3dd34996 |
|
| /// File Name: | USN-964-1.txt | Description:
| Ubuntu Security Notice 964-1 - Matt Weatherford discovered that Likewise Open did not correctly check password expiration for the local-provider account. A local attacker could exploit this to log into a system they would otherwise not have access to. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 3854 | | Related CVE(s): | CVE-2010-0833 | | Last Modified: | Jul 26 18:53:46 2010 | | MD5 Checksum: | 3111259b30c67166c3ac294216b6aa2f |
|
| /// File Name: | USN-930-6.txt | Description:
| Ubuntu Security Notice 930-6 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 36442 | | Related CVE(s): | CVE-2010-2755 | | Last Modified: | Jul 26 18:52:50 2010 | | MD5 Checksum: | 324692d14b04636308087c2f0b7a0216 |
|
| /// File Name: | USN-957-2.txt | Description:
| Ubuntu Security Notice 957-2 - USN-957-1 fixed vulnerabilities in Firefox and Xulrunner. Daniel Holbert discovered that the fix for CVE-2010-1214 introduced a regression which did not properly initialize a plugin pointer. If a user were tricked into viewing a malicious site, a remote attacker could use this to crash the browser or run arbitrary code as the user invoking the program. This update fixes the problem. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 33406 | | Related CVE(s): | CVE-2010-2755 | | Last Modified: | Jul 26 18:50:45 2010 | | MD5 Checksum: | 3ac0be5b6b188eb8f7028ff06ce196a5 |
|
| /// File Name: | LWSA-2010-011.txt | Description:
| Likewise Security Advisory - A logic flaw has been found in the pam_lsass library from Likewise Open that, when run under the context of a root service (e.g. sshd, gdm, etc.), will allow any user to logon as a lsassd local-provider account (e.g. MACHINE\\Administrator) if the account's password is marked as expired. | | Homepage: | http://www.likewise.com/ | | File Size: | 2860 | | Related CVE(s): | CVE-2010-0833 | | Last Modified: | Jul 26 18:48:56 2010 | | MD5 Checksum: | e3445faede7a32cf2db6c82cd7257311 |
|
| /// File Name: | nessus-xssdisclose.txt | Description:
| The Nessus nessusd_www_server.nbin file suffers from cross site scripting and version disclosure vulnerabilities. | | Author: | Renaud Deraison | | Homepage: | http://www.nessus.org | | File Size: | 4602 | | Last Modified: | Jul 26 18:46:42 2010 | | MD5 Checksum: | df40b917caf2683326df86131ff08b44 |
|
| /// File Name: | macosxwebdav-dos.txt | Description:
| The Mac OS X WebDAV kernel extension is vulnerable to a denial of service issue that allows a local unprivileged user to trigger a kernel panic due to a memory overallocation. | | Author: | Dan Rosenberg | | File Size: | 3441 | | Related CVE(s): | CVE-2010-1794 | | Last Modified: | Jul 26 18:43:41 2010 | | MD5 Checksum: | 435b710d622d103c5cd3285c6c725f47 |
|
| /// File Name: | foofus-20100726.txt | Description:
| The Symantec Antivirus Corporate Edition AMS Intel Alert Handler service (hndlrsvc.exe) provides alert setup and response capabilities to AMS2. A design error in Symantec's implementation of this function allows an attacker who can establish a TCP connection to port 38292, on a vulnerable host to execute commands at system level on that host. Versions 10.1.8.8000 and below are affected. | | Author: | Spider | | Homepage: | http://www.foofus.net/ | | File Size: | 2890 | | Last Modified: | Jul 26 18:40:02 2010 | | MD5 Checksum: | e3cc0c7592f38c3b6586dee82cf27d3e |
|
| /// File Name: | fuzzdiff.py.txt | Description:
| FuzzDiff is a simple tool created to assist in helping make crash analysis during file format fuzzing a bit easier. When provided with a fuzzed file, a corresponding original un-fuzzed file, and the path to the targeted program, FuzzDiff will selectively "un-fuzz" portions of the fuzzed file while re-launching the application to monitor for crashes. This will yield a file that still crashes the target application, but contains a minimum set of changes from the original, un-fuzzed file. This can be useful in pinning down the exact cause of a crash. | | Author: | Dan Rosenberg | | Homepage: | http://vsecurity.com/ | | File Size: | 3326 | | Last Modified: | Jul 26 18:36:37 2010 | | MD5 Checksum: | ec3d8e64642e2cc6539902f9ff72fd1f |
|
| /// File Name: | transparent-medical-devices.pdf | Description:
| Whitepaper called Killed by Code: Software Transparency in Implantable Medical Devices. | | Author: | Laura Moy, Lysandra Ohrstrom, Robert McVay,Karen Sandler | | File Size: | 171874 | | Last Modified: | Jul 26 18:30:54 2010 | | MD5 Checksum: | 5fcfc55317dc9197494fe74df312b5b1 |
|
| /// File Name: | qqplayersmi-overflow.txt | Description:
| QQplayer versions 2.3.696.400p1 and below .smi file processing local buffer overflow exploit. | | Author: | Lufeng Li | | File Size: | 3191 | | Last Modified: | Jul 26 18:29:06 2010 | | MD5 Checksum: | 406fce05161dd97728004e5127e74900 |
|
| /// File Name: | oscommercemax-backup.txt | Description:
| Oscommerce Max version 2.0.25 suffers from a backup creation and download vulnerability. | | Author: | indoushka | | File Size: | 3111 | | Last Modified: | Jul 26 18:26:27 2010 | | MD5 Checksum: | cc921370448d96ff05e985cba88687e9 |
|
| /// File Name: | my-sql.pdf | Description:
| This whitepaper is a MySQL SQL injection tutorial. | | Author: | Prashant Uniyal | | File Size: | 331831 | | Last Modified: | Jul 26 18:24:10 2010 | | MD5 Checksum: | e29082314c34ad39aacd6ba49afe9045 |
|
| /// File Name: | xaoscms-sql.txt | Description:
| XAOS CMS suffers from a remote SQL injection vulnerability. | | Author: | H-SK33PY | | File Size: | 1138 | | Last Modified: | Jul 26 18:21:20 2010 | | MD5 Checksum: | 3f1232364f7761927a2bc521a89941c4 |
|
| /// File Name: | ballettinforum-sql.txt | Description:
| Ballettin Forum suffers from multiple remote SQL injection vulnerabilities. | | Author: | evolution | | File Size: | 861 | | Last Modified: | Jul 26 17:48:17 2010 | | MD5 Checksum: | f0d470d0b7080cb35de5500baf7793bb |
|
| /// File Name: | dff-0.7.0-src.tar.gz | Description:
| DFF (Digital Forensics Framework) is a simple but powerful tool with a flexible module system which will help you in your digital forensics works, including file recovery due to error or crash, evidence research and analysis, etc. DFF provides a robust architecture and some handy modules. | | Author: | Christophe M.,Solal J. | | Homepage: | http://www.digital-forensic.org/ | | Changes: | This release is dedicated to the DFRWS 2010 challenge. The API was rewritten to provide mapped file system objects, allowing data identification from a very low level. Attributes on nodes were improved, so any module can dynamically add its own attributes. Support was added for BSD systems. Many bugs were fixed. Graphical embellishments were made. | | File Size: | 1845336 | | Last Modified: | Jul 26 17:45:55 2010 | | MD5 Checksum: | 6b32705c46baca28919e4eb4a86d5edb |
|
| /// File Name: | freewaycms-sql.txt | Description:
| Freeway CMS version 1.4.3.210 suffers from a remote SQL injection vulnerability. | | Author: | RoAd_KiLlEr | | File Size: | 3310 | | Last Modified: | Jul 26 17:43:21 2010 | | MD5 Checksum: | 1216100b38edc567233f55871056cc3c |
|
| /// File Name: | cmsignition-sql.txt | Description:
| CMS Ignition suffers from a remote SQL injection vulnerability. | | Author: | Neavorc | | File Size: | 4567 | | Last Modified: | Jul 26 17:41:52 2010 | | MD5 Checksum: | 446d8862e5f82196fb635141c713b34a |
|
| /// File Name: | 3dlammtxklrr-sqlxss.txt | Description:
| 3dl.am Script Mtxkl Raidrush suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | indoushka | | File Size: | 3016 | | Last Modified: | Jul 26 17:37:37 2010 | | MD5 Checksum: | 96c08fb2939955b12c9e268f6891e5b1 |
|
| /// File Name: | H2HC-CFP-2010.txt | Description:
| The Hackers 2 Hackers Conference (H2HC) 7th edition call for papers has been announced. It is being held in Sao Paulo, Brazil from November 27th through the 28th, 2010. | | Homepage: | http://www.h2hc.com.br/ | | File Size: | 5155 | | Last Modified: | Jul 26 17:30:58 2010 | | MD5 Checksum: | 12de3bc173f5529e277ebfeb9786eb76 |
|
| /// File Name: | joomlayoutube-sql.txt | Description:
| The Joomla Youtube component version 1.5 suffers from a remote SQL injection vulnerability. | | Author: | Forza-Dz | | File Size: | 1275 | | Last Modified: | Jul 26 17:26:29 2010 | | MD5 Checksum: | c8dd9f2b8c10c316d484ab3670899934 |
|
| /// File Name: | snews-sql.txt | Description:
| sNews suffers from a remote SQL injection vulnerability. | | Author: | MajoR | | File Size: | 797 | | Last Modified: | Jul 26 17:01:37 2010 | | MD5 Checksum: | ed4caa097d0a5510528623309e911953 |
|
| /// File Name: | whiteboard-sql.txt | Description:
| WhiteBoard version 0.1.30 suffers from remote blind SQL injection vulnerabilities. | | Author: | Salvatore Fresta | | File Size: | 1739 | | Last Modified: | Jul 26 17:00:08 2010 | | MD5 Checksum: | 2a19ae36375d32a5ab9fdedfbfb652cc |
|
| /// File Name: | mccontentmanager-sqlxss.txt | Description:
| MC Content Manager suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | MustLive | | File Size: | 1131 | | Last Modified: | Jul 26 16:59:19 2010 | | MD5 Checksum: | 58d6abfd9ce2049944a7bf5349cdf4ca |
|
| /// File Name: | USN-958-1.txt | Description:
| Ubuntu Security Notice 958-1 - Several flaws were discovered in the browser engine of Thunderbird. An integer overflow was discovered in how Thunderbird processed CSS values. An integer overflow was discovered in how Thunderbird interpreted the XUL element. Aki Helin discovered that libpng did not properly handle certain malformed PNG images. Yosuke Hasegawa discovered that the same-origin check in Thunderbird could be bypassed by utilizing the importScripts Web Worker method. Chris Evans discovered that Thunderbird did not properly process improper CSS selectors. Soroush Dalili discovered that Thunderbird did not properly handle script error output. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 7015 | | Related CVE(s): | CVE-2010-0654, CVE-2010-1205, CVE-2010-1211, CVE-2010-1212, CVE-2010-1213, CVE-2010-2752, CVE-2010-2753, CVE-2010-2754 | | Last Modified: | Jul 26 16:52:04 2010 | | MD5 Checksum: | 0de1e7fa26e9a0047dec66a87aa31f88 |
|
| /// File Name: | 3dlam-traversal.txt | Description:
| 3dl.am script Mtxkl Raidrush suffers from a directory traversal vulnerability. | | Author: | indoushka | | File Size: | 2984 | | Last Modified: | Jul 26 16:50:40 2010 | | MD5 Checksum: | 2fe28b4ff6da2e85a187e09eb8d51d5a |
|
| /// File Name: | CVP-HackersPerspective.pdf | Description:
| Whitepaper called Cisco VoIP Phone - A Hackers Perspective. | | Author: | chap0 | | File Size: | 1530163 | | Last Modified: | Jul 26 16:48:13 2010 | | MD5 Checksum: | 9762e45d583ee557b5973b01f6d64df3 |
|
| /// File Name: | joomlajoomdle-sql.txt | Description:
| The Joomla Joomdle component versions 0.24 and below suffer from a remote SQL injection vulnerability. | | Author: | kaMtiEz | | Homepage: | http://www.indonesiancoder.com/ | | File Size: | 2037 | | Last Modified: | Jul 26 16:47:16 2010 | | MD5 Checksum: | f1b69cf11c3f2b3292fcc7416a5144e4 |
|
| /// File Name: | buffer_overflow_edisi_ketiga.txt | Description:
| Whitepaper called Linux Buffer Overflow Tutorial III. Written in Indonesian. | | Author: | gunslinger | | File Size: | 18306 | | Last Modified: | Jul 26 16:46:04 2010 | | MD5 Checksum: | f22cc94bee01a03ff514f29dd444ff19 |
|
| /// File Name: | joomlaitarmory-sql.txt | Description:
| The Joomla ITArmory component versions 0.1.4 and below suffer from a remote SQL injection vulnerability. | | Author: | Craw | | File Size: | 929 | | Last Modified: | Jul 26 16:43:40 2010 | | MD5 Checksum: | 7f12d608a61cc05aac5bba01d42cadf9 |
|
| /// File Name: | joomlaoziogallery-sql.txt | Description:
| Joomla Ozio Gallery suffers from a remote SQL injection vulnerability. | | Author: | ViRuS Qalaa | | File Size: | 676 | | Last Modified: | Jul 26 16:41:10 2010 | | MD5 Checksum: | dae7e34691b3c239f93bb3b27a5ab4f0 |
|
| /// File Name: | akyblog-sql.txt | Description:
| AKY Blog suffers from a remote SQL injection vulnerability. | | Author: | Madconfig | | File Size: | 938 | | Last Modified: | Jul 26 16:39:45 2010 | | MD5 Checksum: | c4fa0c90b7565ad574ca93b30f6dc851 |
|
| /// File Name: | openrealty-xss.txt | Description:
| Open Realty versions 2.x and 3.x suffer from a cross site scripting vulnerability. | | Author: | K053 | | File Size: | 2475 | | Last Modified: | Jul 26 16:38:45 2010 | | MD5 Checksum: | d0e65b7d700ff1100064e99760a8d61c |
|
| /// File Name: | snews17cat-sql.txt | Description:
| sNews version 1.7 suffers from a remote SQL injection vulnerability. | | Author: | CoBRa_21 | | File Size: | 764 | | Last Modified: | Jul 26 16:38:02 2010 | | MD5 Checksum: | 4d01ea8eb8192c4ef166acc87ac0c2ab |
|
| /// File Name: | dmfilemanager-shell.txt | Description:
| DM Filemanager version 3.9.11 suffers from a remote shell upload vulnerability. | | Author: | eidelweiss | | File Size: | 5107 | | Last Modified: | Jul 26 16:35:43 2010 | | MD5 Checksum: | 362db9a6cfc30255e8bd01ff42f7adc5 |
|
| /// File Name: | vbul386-disclose.txt | Description:
| vBulletin version 3.8.6 suffers from an information disclosure vulnerability in faq.php. | | Author: | H-SK33PY | | File Size: | 3989 | | Last Modified: | Jul 26 16:34:29 2010 | | MD5 Checksum: | 54d72c3bad39416a76438dc174286c2b |
|
| /// File Name: | validformbuilder-exec.txt | Description:
| ValidForm Builder Script suffers from a remote command execution vulnerability. | | Author: | HackeR aRaR | | File Size: | 1015 | | Last Modified: | Jul 26 16:32:14 2010 | | MD5 Checksum: | 08b37b33f1c0f8b2514a16309b3c0103 |
|
| /// File Name: | mpcheap-overflow.txt | Description:
| Media Player Classic - Home Cinema suffers from a heap overflow that allows for denial of service. | | Author: | Praveen Darshanam | | File Size: | 2666 | | Last Modified: | Jul 26 16:29:30 2010 | | MD5 Checksum: | 05d24a76429aadcf3f3a1f5edc915cc0 |
|
| /// File Name: | ms10_045_outlook_ref_only.rb.txt | Description:
| It has been discovered that certain e-mail message cause Outlook to create Windows shortcut-like attachments or messages within Outlook. Through specially crafted TNEF streams with certain MAPI attachment properties, it is possible to set a path name to files to be executed. When a user double clicks on such an attachment or message, Outlook will proceed to execute the file that is set by the path name value. These files can be local files, but also file stored remotely for example on a file share. Exploitation is limited by the fact that its is not possible for attackers to supply command line options. | | Author: | Yorick Koster | | Homepage: | http://www.metasploit.com | | File Size: | 16222 | | Related OSVDB(s): | 66296 | | Related CVE(s): | CVE-2010-0266 | | Last Modified: | Jul 26 16:20:32 2010 | | MD5 Checksum: | dcbc54915c27887c2bb2f3952c91bd21 |
|
| /// File Name: | ms10_045_outlook_ref_resolve.rb.txt | Description:
| It has been discovered that certain e-mail message cause Outlook to create Windows shortcut-like attachments or messages within Outlook. Through specially crafted TNEF streams with certain MAPI attachment properties, it is possible to set a path name to files to be executed. When a user double clicks on such an attachment or message, Outlook will proceed to execute the file that is set by the path name value. These files can be local files, but also file stored remotely for example on a file share. Exploitation is limited by the fact that its is not possible for attackers to supply command line options. | | Author: | Yorick Koster | | Homepage: | http://www.metasploit.com | | File Size: | 15127 | | Related OSVDB(s): | 66296 | | Related CVE(s): | CVE-2010-0266 | | Last Modified: | Jul 26 16:19:43 2010 | | MD5 Checksum: | e7e89d2eccf76253811695d7fc565779 |
|
| /// File Name: | windows-smb-ms07_029_msdns_zonename.rb.txt | Description:
| This Metasploit module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This Metasploit module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This Metasploit module exploits the RPC service using the \\\\DNSSERVER pipe available via SMB. This pipe requires a valid user account to access, so the SMBUSER and SMBPASS options must be specified. | | Author: | H D Moore | | Homepage: | http://www.metasploit.com | | File Size: | 8074 | | Related OSVDB(s): | 34100 | | Related CVE(s): | CVE-2007-1748 | | Last Modified: | Jul 26 16:19:15 2010 | | MD5 Checksum: | 13ee9c64d141d0397e165c1fa9112fa0 |
|
| /// File Name: | windows-dcerpc-ms07_029_msdns_zonename.rb.txt | Description:
| This Metasploit module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This Metasploit module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. | | Author: | H D Moore | | Homepage: | http://www.metasploit.com | | File Size: | 8587 | | Related OSVDB(s): | 34100 | | Related CVE(s): | CVE-2007-1748 | | Last Modified: | Jul 26 16:18:51 2010 | | MD5 Checksum: | 63098092df859e7e334084e3ddb459c8 |
|
| /// File Name: | ms03_051_fp30reg_chunked.rb.txt | Description:
| This is an exploit for the chunked encoding buffer overflow described in MS03-051 and originally reported by Brett Moore. This particular modules works against versions of Windows 2000 between SP0 and SP3. Service Pack 4 fixes the issue. | | Author: | H D Moore | | Homepage: | http://www.metasploit.com | | File Size: | 3323 | | Related OSVDB(s): | 2952 | | Related CVE(s): | CVE-2003-0822 | | Last Modified: | Jul 26 16:18:25 2010 | | MD5 Checksum: | 03c71acda7b11ea0fb8eab5d2a1f6dd4 |
|
| /// File Name: | ms03_022_nsiislog_post.rb.txt | Description:
| This exploits a buffer overflow found in the nsiislog.dll ISAPI filter that comes with Windows Media Server. This Metasploit module will also work against the 'patched' MS03-019 version. This vulnerability was addressed by MS03-022. | | Author: | H D Moore | | Homepage: | http://www.metasploit.com | | File Size: | 2939 | | Related OSVDB(s): | 4535 | | Related CVE(s): | CVE-2003-0349 | | Last Modified: | Jul 26 16:17:58 2010 | | MD5 Checksum: | 16671c67b9f9d8da1b80c3f4aa20ff1e |
|
| /// File Name: | lucidlynx-overflow.txt | Description:
| Ubuntu 10.04 LTS - Lucid Lynx FTP Client version 0.17-19build1 suffers from a buffer overflow vulnerability related to the ACCT command. | | Author: | d0lc3 | | File Size: | 6496 | | Last Modified: | Jul 23 20:30:31 2010 | | MD5 Checksum: | 24510248419f3e20285e695271783c3f |
|
| /// File Name: | photopostphp465-sql.txt | Description:
| PhotoPost PHP version 4.6.5 suffers from a remote SQL injection vulnerability. | | Author: | CoBRa_21 | | File Size: | 700 | | Last Modified: | Jul 23 20:28:24 2010 | | MD5 Checksum: | 2444acc53dcd42683fb414223d7790a9 |
|
| /// File Name: | ffsm-clickjack.txt | Description:
| Firefox version 3.6.7 / SeaMonkey version 2.0.6 clickjacking proof of concept exploits. | | Author: | Pouya Daneshmand | | File Size: | 1533 | | Last Modified: | Jul 23 20:24:18 2010 | | MD5 Checksum: | 7ba30b781e859a4d0fdfeb52ca953e5c |
|
| /// File Name: | joomlagolfcourseguide-sql.txt | Description:
| Joomla GolfCourseGuide component versions 0.9.6.0 Beta and 1 Beta suffer from a remote SQL injection vulnerability. | | Author: | Valentin Hobel | | File Size: | 1295 | | Last Modified: | Jul 23 16:04:29 2010 | | MD5 Checksum: | 3d6ec581d8070b9739c7f267a8d19b7b |
|
| /// File Name: | MDVSA-2010-138.txt | Description:
| Mandriva Linux Security Advisory 2010-138 - Ovidiu Mara reported a vulnerability in ping.c (iputils) that could cause ping to hang when responding to a malicious echo reply. The updated packages have been patched to correct these issues. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5056 | | Related CVE(s): | CVE-2010-2529 | | Last Modified: | Jul 23 16:03:25 2010 | | MD5 Checksum: | f3a0872b53366adca0c324b1c26cef97 |
|
| /// File Name: | watobo_0.9.2rev149.zip | Description:
| WATOBO, the Web Application Toolbox, is a tool that enables security professionals to perform highly efficient (semi-automated) web application security audits. It acts like a local proxy and analyzes the traffic on the fly for helpful information and vulnerabilities. It also has automated scanning capabilities, e.g. SQL injection, cross site scripting and more. | | Author: | Andreas Schmidt | | Homepage: | http://watobo.sourceforge.net/ | | Changes: | New history navigation, new fuzzer engine, improved differ usability, and WATOBO now runs on Windows, Linux and MAC. | | File Size: | 284486 | | Last Modified: | Jul 23 16:00:29 2010 | | MD5 Checksum: | f34e3a20366000b0e58427945094a5f9 |
|
| /// File Name: | USN-930-5.txt | Description:
| Ubuntu Security Notice 930-5 - USN-930-4 fixed vulnerabilities in Firefox and Xulrunner on Ubuntu 9.04 and 9.10. This update provides updated packages for use with Firefox 3.6 and Xulrunner 1.9.2. It was discovered that Firefox could be made to access freed memory. A flaw was discovered in the way plugin instances interacted. An integer overflow was discovered in Firefox. Martin Barbella discovered an integer overflow in an XSLT node sorting routine. Michal Zalewski discovered that the focus behavior of Firefox could be subverted. Ilja van Sprundel discovered that the 'Content-Disposition: attachment' HTTP header was ignored when 'Content-Type: multipart' was also present. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 60875 | | Related CVE(s): | CVE-2008-5913, CVE-2010-0654, CVE-2010-1121, CVE-2010-1125, CVE-2010-1196, CVE-2010-1197, CVE-2010-1198, CVE-2010-1199, CVE-2010-1200, CVE-2010-1201, CVE-2010-1202, CVE-2010-1203, CVE-2010-1205, CVE-2010-1206, CVE-2010-1207, CVE-2010-1208, CVE-2010-1209, CVE-2010-1210, CVE-2010-1211, CVE-2010-1212, CVE-2010-1213, CVE-2010-1214, CVE-2010-1215, CVE-2010-2751, CVE-2010-2752, CVE-2010-2753, CVE-2010-2754, CVE-2010-1212 | | Last Modified: | Jul 23 15:57:40 2010 | | MD5 Checksum: | b18fb0e1a60d1c8024c63d29cf99455e |
|
| /// File Name: | USN-930-4.txt | Description:
| Ubuntu Security Notice 930-4 - USN-930-1 fixed vulnerabilities in Firefox and Xulrunner. This update provides the corresponding updates for Ubuntu 9.04 and 9.10, along with additional updates affecting Firefox 3.6.6. If was discovered that Firefox could be made to access freed memory. A flaw was discovered in the way plugin instances interacted. An integer overflow was discovered in Firefox. Martin Barbella discovered an integer overflow in an XSLT node sorting routine. Michal Zalewski discovered that the focus behavior of Firefox could be subverted. Ilja van Sprundel discovered that the 'Content-Disposition: attachment' HTTP header was ignored when 'Content-Type: multipart' was also present. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 23090 | | Related CVE(s): | CVE-2008-5913, CVE-2010-0654, CVE-2010-1121, CVE-2010-1125, CVE-2010-1196, CVE-2010-1197, CVE-2010-1198, CVE-2010-1199, CVE-2010-1200, CVE-2010-1201, CVE-2010-1202, CVE-2010-1203, CVE-2010-1205, CVE-2010-1206, CVE-2010-1207, CVE-2010-1208, CVE-2010-1209, CVE-2010-1210, CVE-2010-1211, CVE-2010-1212, CVE-2010-1213, CVE-2010-1214, CVE-2010-1215, CVE-2010-2751, CVE-2010-2752, CVE-2010-2753, CVE-2010-2754, CVE-2010-1212 | | Last Modified: | Jul 23 15:51:43 2010 | | MD5 Checksum: | 8dac06ec88431ebfc36d057240bcabe5 |
|
| /// File Name: | USN-927-8.txt | Description:
| Ubuntu Security Notice 927-8 - USN-927-1 fixed vulnerabilities in NSS. This update provides the Thunderbird update to use the new NSS. Original advisory details: Marsh Ray and Steve Dispensa discovered a flaw in the TLS and SSLv3 protocols. If an attacker could perform a man in the middle attack at the start of a TLS connection, the attacker could inject arbitrary content at the beginning of the user's session. This update adds support for the new new renegotiation extension and will use it when the server supports it. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 5226 | | Last Modified: | Jul 23 15:51:16 2010 | | MD5 Checksum: | 64b84ca6839b3b57d046d740d8088886 |
|
| /// File Name: | photopostphp-sql.txt | Description:
| PhotoPost PHP versions 4.0 through 4.6 suffer from a remote SQL injection vulnerability. | | Author: | Cyber-sec | | File Size: | 533 | | Last Modified: | Jul 23 15:40:41 2010 | | MD5 Checksum: | a1cdbe934b4c194f8d956b20c508495b |
|
| /// File Name: | PHPJackal.php.gz | Description:
| PHPJackal is a PHP script that can be used to manage files, perform safemode bypass, has crackers built-in, various network scanners and more. | | Author: | Nima Ghotbi | | File Size: | 24874 | | Last Modified: | Jul 22 20:47:47 2010 | | MD5 Checksum: | 034206ec21a87de8470dab73a098ccf7 |
|
| /// File Name: | DSECRG-09-068.txt | Description:
| SAP NetWeaver SLD versions 6.4 through 7.02 suffer from multiple cross site scripting vulnerabilities. | | Author: | Alexey Troshichev,Sh2kerr | | Homepage: | http://www.dsec.ru/ | | File Size: | 2579 | | Last Modified: | Jul 23 15:24:39 2010 | | MD5 Checksum: | 451abfbc0ef4b0e2a82befc9477d71d6 |
|
| /// File Name: | zeematri-shell.txt | Description:
| ZeeMatri version 3x suffers from a shell upload vulnerability. | | Author: | SONiC | | File Size: | 1578 | | Last Modified: | Jul 23 15:22:56 2010 | | MD5 Checksum: | 4a637cc7d960b8f6d2938e0878df9701 |
|
| /// File Name: | DSECRG-09-040.txt | Description:
| SAP Netweaver versions 6.4 through 7.0 suffer from a cross site scripting vulnerability. | | Author: | Sh2kerr | | Homepage: | http://www.dsec.ru/ | | File Size: | 2696 | | Last Modified: | Jul 23 15:20:33 2010 | | MD5 Checksum: | d16c41273ad057de749869ddaaf86c49 |
|
| /// File Name: | ibmaix5l-hash.txt | Description:
| AIX 5l with FTP server remote root hash disclosure exploit. Creates a coredump including the root user hash from /etc/security/passwd. This is the second version that was written to be more portable between hosts. | | Author: | Kingcope | | File Size: | 8059 | | Last Modified: | Jul 23 15:19:37 2010 | | MD5 Checksum: | 9960734c7ca1d426705d71ffbd6d6444 |
|
| /// File Name: | zeenetworking-shell.txt | Description:
| ZeeNetworking 1x suffers from a shell upload vulnerability. | | Author: | SONiC | | File Size: | 1610 | | Last Modified: | Jul 23 15:15:33 2010 | | MD5 Checksum: | 9b98bd7441a1a70a3be86f41f1bef75e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
