This Metasploit module exploits a vulnerability in the picEditor.php script of Coppermine Photo Gallery. When configured to use the ImageMagick library, the 'quality', 'angle', and 'clipval' parameters are not properly escaped before being passed. NOTE: Use of the ImageMagick library is a non-default option. However, a user can specify its use at installation time.
c125091ac8421181cd0302afb6f49897b22d6f924ad3dc28cf4a23ab0afcfdeeZero Day Initiative Advisory 10-019 - This vulnerability allows remote attackers to bypass specific script execution enforcements on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the lack of cross domain policy enforcement. Through usage of the showModalDialog() JavaScript method an attacker can gather sensitive information from another website. This vulnerability can be exploited to obtain website credentials not originating from the attacking site.
2043d54f006c197f4e57bd70aab863782002057ccd1cecc96394b7fc43267b50An Active-X component in CLIproxy.dll from Symantec Antivirus Client Proxy suffers from a buffer overflow vulnerability.
01e4fed6a5192be5896fea6d73e2571c3e0946b13d52fefe04ff31a16cedd628vBseo version 3.1.0 suffers from a local file inclusion vulnerability.
03b163a08af5ba4845ba51e805f3345ae191975a5a507a0487799be3ea22a883The Openwall Linux kernel patch is a collection of security hardening features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
cc066acc2ba98c60487220c98c8c2dd4f652f4416abb44caf310273947bc9d56Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
232ec5afa983cc8b501fa4e8ee80d6d1f37e86470769087221a285c808639184Mandriva Linux Security Advisory 2010-044 - MySQL is vulnerable to a symbolic link attack when the data home directory contains a symlink to a different filesystem which allows remote authenticated users to bypass intended access restrictions. The updated packages have been patched to correct these issues.
8c66370cc98c777cc4b3282fbcffef79051f8feaf11fd6407423132a3b29bb24Mandriva Linux Security Advisory 2010-043 - Integer overflow in libtheora in Xiph.Org Theora before 1.1 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a video with large dimensions. The updated packages have been patched to correct this issue.
875eca5f9cf314f9aca1502f437c9db9c69e8b91cb31c53973dc02a3822a9159Mandriva Linux Security Advisory 2010-042 - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Security researcher Orlando Barrera II reported via TippingPoint's Zero Day Initiative that Mozilla's implementation of Web Workers contained an error in its handling of array data types when processing posted messages. Security researcher Alin Rad Pop of Secunia Research reported that the HTML parser incorrectly freed used memory when insufficient space was available to process remaining input. Security researcher Hidetake Jo of Microsoft Vulnerability Research reported that the properties set on an object passed to showModalDialog were readable by the document contained in the dialog, even when the document was from a different domain. An anonymous security researcher, via TippingPoint's Zero Day Initiative, also independently reported this issue to Mozilla. Mozilla security researcher Georgi Guninski reported that when a SVG document which is served with Content-Type: application/octet-stream is embedded into another document via an <embed> tag with type=image/svg+xml, the Content-Type is ignored and the SVG document is processed normally.
a42fca829597b4d04530aecbd3489fbc953673632a811b940733249bb9828ba8VideoSearchScript Pro version 3.5 suffers from a cross site scripting vulnerability.
2762ff239c36924a13d281ad9aa8ede8773e40645cd1289428906e9908010c25Debian Linux Security Advisory 2002-1 - Several denial of service vulnerabilities have been discovered in polipo, a small, caching web proxy.
fc97662d082e06e84a3b81d96a986005c05a744035bef346c29b07e71bde93eavBulletin version 4.0.2 suffers from a cross site scripting vulnerability.
25e2efeff135c8b89fed46a69e35543acb5d3af91e80a983b640cc8b46239903Coupons suffers from a direct access administrative bypass vulnerability.
417f88d2280d1c0147e0130dd92582aa2f2521bc358f34fa36a9a3bef780b899Symev CMS suffers from a remote SQL injection vulnerability.
f4a51b02ab1a40e140d6e0ed98df1865a9862f416a448534c19e28e9a82b0d7fphpBugTracker version 1.0.1 suffers from a file disclosure vulnerability.
eae26f12ff303094302534796ec86d43b4393a7f9883f6096d2e308d60f6fe7eFlatFile System suffers from a remote password disclosure vulnerability.
bc87352c872b397c0cea7e0fa6e8d42b04a71560c3d84ed2164976568d551dfdTimeClock cross site request forgery add administrator exploit.
932c15b3c8ccd8c98777f4ec4b00c83849bcb01e88189a228e34ba90ff55b39fphpAutoVideo suffers from a cross site request forgery vulnerability.
693d03421eb960be87cb1d96dfbc8fc57143ab006242ea13aa30a08cf3942aadThe Joomla Recipe component suffers from remote SQL injection vulnerabilities.
c79e24d6537850a4053d04e4085939131483dfa2b615ebb22381d96c8b975d34Mandriva Linux Security Advisory 2010-034 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.
256b2abcf44db3d9624b76c91305a9d1025841a931c877f3a67a23cc4cc0c716Litespeed Web Server version 4.0.12 suffers from cross site request forgery and cross site scripting vulnerabilities.
42695247a12bced074b1083518bea75e3a254928c1308f86d09f29d44fee0514WSC CMS suffers from a remote SQL injection vulnerability that allows for authentication bypass.
bcc1de040fbcae7a0ff58e503fe48378a0a6504e451bd7a60e8fe94f9fab1657Debian Linux Security Advisory 2001-1 - Several remote vulnerabilities have been discovered in PHP 5, an hypertext preprocessor.
47ce4bcadf3285a7bf3d80e1343752dc3b64068d96f73b4b6352d6ac447f427dAsterisk Project Security Advisory - A common usage of the ${EXTEN} channel variable in a dialplan with wildcard pattern matches can lead to a possible string injection vulnerability. By having a wildcard match in a dialplan, it is possible to allow unintended calls to be executed.
6df03db49a5dc8aa44b7bba96539f3b628e043d7efe241ee610ebdeb0bc96e1bWhitepaper called File(), Fgets(), Fgetc() Local File Disclosure (LFD).
45b1d43e15a32f95084fef33a05e4cf712a00abf050799ccd86120a37c390d46
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed