Section: .. / Last 50 Files /
| /// File Name: | HPSBUX02503-SSRT100019.txt | Description:
| HP Security Bulletin - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, privilege escalation, and Denial of Service (DoS). | | Homepage: | http://www.hp.com/ | | File Size: | 8588 | | Related CVE(s): | CVE-2009-3867, CVE-2009-3868, CVE-2009-3869, CVE-2009-3871, CVE-2009-3872, CVE-2009-3873, CVE-2009-3874, CVE-2009-3875, CVE-2009-3876, CVE-2009-3877 | | Last Modified: | Feb 8 20:49:09 2010 | | MD5 Checksum: | efbb5c0e74247cce39311d4f8a8bc37d |
|
| /// File Name: | MDVSA-2010-034.txt | Description:
| Mandriva Linux Security Advisory 2010-034 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. Additionally, the Linux kernel was updated to the stable release 2.6.27.45. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 58471 | | Related CVE(s): | CVE-2009-3080, CVE-2009-4005 | | Last Modified: | Feb 8 20:47:50 2010 | | MD5 Checksum: | d91f94ab0453995f4d0b6461eaf27f69 |
|
| /// File Name: | nightdahack2010-cfp.txt | Description:
| Night Da Hack 2010 Call For Proposals - This conference will take place from 4 PM through 7 AM, June 19th through the 20th, 2010 in Paris, France. | | Homepage: | http://www.nightdahack.com/ | | File Size: | 3162 | | Last Modified: | Feb 8 20:46:07 2010 | | MD5 Checksum: | 2e6928f9a434dcf3abdfda8f78a78e7f |
|
| /// File Name: | CORELAN-10-010.txt | Description:
| GeFest Web HomeServer version 1.0 suffers from a directory traversal vulnerability. | | Author: | MarkoT | | Homepage: | http://www.corelan.be/ | | File Size: | 2801 | | Last Modified: | Feb 8 20:43:57 2010 | | MD5 Checksum: | 0e7f9fafc9f7fcb06b0568d00318a9a8 |
|
| /// File Name: | wsnguestdb-disclose.txt | Description:
| WSN Guest Database appears to suffer from a database disclosure vulnerability. | | Author: | HackXBack | | File Size: | 584 | | Last Modified: | Feb 8 20:43:06 2010 | | MD5 Checksum: | 495339c224d0283cb54de303975d36cf |
|
| /// File Name: | bluedove-sql.txt | Description:
| Blue Dove suffers from a remote SQL injection vulnerability. | | Author: | HackXBack | | File Size: | 1232 | | Last Modified: | Feb 8 20:41:51 2010 | | MD5 Checksum: | 56b8210fea175b0548221b4e893a6f15 |
|
| /// File Name: | synspam_0.4.0-1.tar.gz | Description:
| Synspam uses Netfilter NFQUEUE to catch the source IP address of any machine connecting to your mail server, running multiple tests against it possible, a scoring system is used. If the source IP address is believed to be a spammer IP address, the connection can be dropped. There is a dry run mode if you just want to test it, which is the default. | | Author: | Julien Reveret | | Homepage: | http://www.synspam.org/ | | Changes: | This release adds a new feature, matching PTR records with source IP to check spammy DNS settings. | | File Size: | 25194 | | Last Modified: | Feb 8 20:33:58 2010 | | MD5 Checksum: | 3d05359f05f5588d3305214462f72444 |
|
| /// File Name: | as3flexdb-sqldisclose.txt | Description:
| AS3FlexDB suffer from remote database login information disclosure and remote SQL execution vulnerabilities. | | Author: | DungPQ | | File Size: | 2623 | | Last Modified: | Feb 8 20:32:53 2010 | | MD5 Checksum: | 4bd18fda47c39420b7a2025aa50c2299 |
|
| /// File Name: | HPSBMA02487-SSRT100024.txt | Description:
| HP Security Bulletin - A potential vulnerability has been identified with HP Operations Agent running on Solaris 10. The vulnerability could be exploited remotely to gain unauthorized access. | | Homepage: | http://www.hp.com/ | | File Size: | 5716 | | Related CVE(s): | CVE-2010-0444 | | Last Modified: | Feb 8 20:30:41 2010 | | MD5 Checksum: | 5fbe3dd1d5fcb27b35d643ae9c445f35 |
|
| /// File Name: | jdownloader-exec.txt | Description:
| JDownloader versions below 2010-01-25 with Click n Load 2 support suffer from a code execution vulnerability. Proof of concept included. | | Author: | apoc | | Homepage: | http://apoc.sixserv.org/ | | File Size: | 3673 | | Last Modified: | Feb 8 20:28:00 2010 | | MD5 Checksum: | f02e18d147b9e1dfcc34e8cf5cfa5186 |
|
| /// File Name: | DSECRG-09-065.txt | Description:
| TVUPlayer version 2.4.9beta build 1797 suffers from an Active-X insecure method vulnerability. | | Author: | Evdokimov Dmitriy | | Homepage: | http://www.dsec.ru/ | | File Size: | 2131 | | Last Modified: | Feb 8 20:25:23 2010 | | MD5 Checksum: | bac4aa9259d5374d946f83db9c3ff040 |
|
| /// File Name: | sapone_fc.tar.bz2 | Description:
| Remote exploit for SAP MaxDB versions 7.6.03 build 007 and below which suffer from a pre-authentication remote code execution vulnerability. This version has been updated by FortConsult A/S to use the same byte code as the Nessus plugin. | | Author: | Luigi Auriemma,Peter Osterberg | | Homepage: | http://aluigi.org/ | | Related Exploit: | sapone.zip | | Related File: | sapone.txt | | File Size: | 10569 | | Last Modified: | Feb 8 20:19:54 2010 | | MD5 Checksum: | 32c6cabe1db27fbf0308144890b2d306 |
|
| /// File Name: | sipwitch-0.7.0.tar.gz | Description:
| GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. | | Author: | David Sugar | | Homepage: | http://www.gnutelephony.org/ | | Changes: | Basic RTP media proxy, preliminary NAT support, and integrated SDP rewrite functionality have been introduced. This will enable stand-alone sipwitch hosts to call each other even when locations are both behind NATs or different subnets. Furthermore, since sipwitch handles NAT functionality in one place and transparently, desktop VoIP clients need not be configured for or aware of NAT functionality. Other changes include consolidation of realm and functional SIP domain. | | File Size: | 488878 | | Last Modified: | Feb 8 20:17:53 2010 | | MD5 Checksum: | 11aaa6bf55aff514be0b124619941b46 |
|
| /// File Name: | uigabp-sqlxss.txt | Description:
| Uiga Business Portal suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Sioma Labs | | Homepage: | http://siomalabs.com/ | | File Size: | 1989 | | Last Modified: | Feb 8 20:02:45 2010 | | MD5 Checksum: | 6b84b3615b36518a491863abe6e2f3a1 |
|
| /// File Name: | cve-2010-0453.c | Description:
| This is a denial of service (kernel panic) proof of concept exploit for the UCODE_GET_VERSION ioctl NULL pointer dereference vulnerability on Solaris / OpenSolaris. | | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | Related File: | TKADV2010-001.txt | | File Size: | 1671 | | Related CVE(s): | CVE-2010-0453 | | Last Modified: | Feb 8 19:59:42 2010 | | MD5 Checksum: | 2a0447bcfa866c531eb52571f1f41998 |
|
| /// File Name: | exponentcms-sql.txt | Description:
| Exponent CMS version 0.96.3 suffers from a remote SQL injection vulnerability. This really old version has been known vulnerable to various issues since 2005. | | Author: | T u R c O,TuRcO | | Related Exploit: | exponentCMS.txt | | File Size: | 923 | | Last Modified: | Feb 8 19:57:09 2010 | | MD5 Checksum: | a0cd6f652071516b48622066562eef4d |
|
| /// File Name: | belkatalog-sql.txt | Description:
| Belkatalog CMS suffers from a remote SQL injection vulnerability. | | Author: | Teo Manojlovic | | File Size: | 465 | | Last Modified: | Feb 8 19:51:58 2010 | | MD5 Checksum: | 5887874473c95e0719f82071a28cf6ef |
|
| /// File Name: | zentracking-sql.txt | Description:
| Zen Tracking versions 2.2 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | cr4wl3r | | File Size: | 954 | | Last Modified: | Feb 8 19:48:37 2010 | | MD5 Checksum: | 2a32fa6d979a15dfb5330ad321d9c3ba |
|
| /// File Name: | baalsystems-sql.txt | Description:
| Baal Systems version 3.8 suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | cr4wl3r | | File Size: | 1392 | | Last Modified: | Feb 8 19:31:46 2010 | | MD5 Checksum: | f947c05455d86a4f86719b7aae918251 |
|
| /// File Name: | damailinglist-sqldisclose.txt | Description:
| DA Mailing List version 2 suffers from remote SQL injection and database disclosure vulnerabilities. | | Author: | Phenom | | File Size: | 2943 | | Last Modified: | Feb 8 19:29:55 2010 | | MD5 Checksum: | 788ce3a808958d671ddad91b8303fb9d |
|
| /// File Name: | videodb-xss.txt | Description:
| VideoDB version 3.0.3 suffers from a cross site scripting vulnerability. | | Author: | vr | | File Size: | 271 | | Last Modified: | Feb 8 18:50:37 2010 | | MD5 Checksum: | 5cca8727e1698956e82321f47f812571 |
|
| /// File Name: | safari404mc-dos.txt | Description:
| Safari version 4.0.4 remote denial of service with possible memory corruption exploit. | | Author: | 599eme Man | | File Size: | 381 | | Last Modified: | Feb 8 18:47:36 2010 | | MD5 Checksum: | ab82de50d3845098c93f269eea804f72 |
|
| /// File Name: | seamonkey201-dos.txt | Description:
| SeaMonkey version 2.0.1 remote denial of service with possible memory corruption exploit. | | Author: | 599eme Man | | File Size: | 384 | | Last Modified: | Feb 8 18:46:14 2010 | | MD5 Checksum: | d52e12e25a3c2982fdb9f788c92e83a0 |
|
| /// File Name: | firefox356-dos.txt | Description:
| Firefox version 3.5.6 remote denial of service with possible memory corruption exploit. | | Author: | 599eme Man | | File Size: | 382 | | Last Modified: | Feb 8 18:45:15 2010 | | MD5 Checksum: | b1ac77c1347e7424960fc290202dfbd4 |
|
| /// File Name: | encapscms-rfi.txt | Description:
| EncapsCMS versions 0.3.6 and below suffer from a remote file inclusion vulnerability. | | Author: | cr4wl3r | | File Size: | 484 | | Last Modified: | Feb 8 18:43:44 2010 | | MD5 Checksum: | 1669175dfe3361f28fcd36ee27a8117d |
|
| /// File Name: | rostermain-sql.txt | Description:
| Rostermain versions 1.1 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | cr4wl3r | | File Size: | 492 | | Last Modified: | Feb 8 18:42:59 2010 | | MD5 Checksum: | 66c4c6e49d707d3ec3081bda67c6721e |
|
| /// File Name: | killmonster-sql.txt | Description:
| Killmonster versions 2.1 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | cr4wl3r | | File Size: | 813 | | Last Modified: | Feb 8 18:41:59 2010 | | MD5 Checksum: | 5c49aad45bbb226003b00238e13c2c2c |
|
| /// File Name: | tinymce-sqlxss.txt | Description:
| TinyMCE suffers from cross site scripting and SQL injection vulnerabilities. | | Author: | mc2_s3lector | | File Size: | 3808 | | Last Modified: | Feb 8 18:40:13 2010 | | MD5 Checksum: | b070a6c1bde1b062131fc4fd656a5231 |
|
| /// File Name: | joomlaproductbook-sql.txt | Description:
| The Joomla Productbook component suffers from a remote SQL injection vulnerability. | | Author: | Snakespc | | File Size: | 809 | | Last Modified: | Feb 8 18:13:42 2010 | | MD5 Checksum: | db3126785efd50adb62d489742089dbf |
|
| /// File Name: | jaxcms-lfi.txt | Description:
| JaxCMS version 1.0 suffers from a local file inclusion vulnerability. | | Author: | MizoZ | | File Size: | 395 | | Last Modified: | Feb 8 17:50:39 2010 | | MD5 Checksum: | c6fd81a40467587f9b04c1a7b9b0f957 |
|
| /// File Name: | major_rls65.txt | Description:
| A remotely exploitable vulnerability has been found in the JavaScript Engine of the MobileSafari Browser(based on Webkit Engine) used on the Motorola Milestone(droid) smartphone. Proof of concept code included. | | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 3058 | | Last Modified: | Feb 8 17:48:39 2010 | | MD5 Checksum: | db4037dc53ce2046e2b0b7e88971bc02 |
|
| /// File Name: | ldfdf-sql.txt | Description:
| LDF suffers from a remote SQL injection vulnerability. | | Author: | Arash Setayeshi | | File Size: | 274 | | Last Modified: | Feb 8 17:42:59 2010 | | MD5 Checksum: | 49b1f9702aa8977f8615c67dabebe107 |
|
| /// File Name: | httpdx152-dos.txt | Description:
| httpdx version 1.5.2 suffers from a remote pre-authentication denial of service vulnerability. | | Author: | loneferret | | File Size: | 1021 | | Last Modified: | Feb 8 17:41:02 2010 | | MD5 Checksum: | f3f1efcd3bc3fe5bf4ab32eb1de1645e |
|
| /// File Name: | croogo-xsrf.txt | Description:
| Croogo version 1.2.1 suffers from a cross site request forgery vulnerability. | | Author: | Milos Zivanovic | | File Size: | 2460 | | Last Modified: | Feb 8 17:39:40 2010 | | MD5 Checksum: | f52707b51eba2f300845199d785ba7b4 |
|
| /// File Name: | joomlaphotoblog-bsql.txt | Description:
| The Joomla Photoblog component suffers from a remote blind SQL injection vulnerability. | | Author: | altbta | | File Size: | 1286 | | Last Modified: | Feb 8 17:38:01 2010 | | MD5 Checksum: | b9370f253cda53108b4e7a22e95fb285 |
|
| /// File Name: | xlite-wav.py.txt | Description:
| X-Lite SIP version 3 memory corruption heap overflow exploit that creates a malicious .wav file. | | Author: | TecR0c | | File Size: | 1005 | | Last Modified: | Feb 8 17:33:49 2010 | | MD5 Checksum: | 192049c6b120ca1fdc5385359ad2c434 |
|
| /// File Name: | opera3.pl.txt | Description:
| Opera version 10.10 remote denial of service exploit. | | Author: | Dj7xpl,cr4wl3r | | File Size: | 1934 | | Last Modified: | Feb 8 17:32:47 2010 | | MD5 Checksum: | 12967b6a65dd615075519869ea5b637b |
|
| /// File Name: | obb-sql.txt | Description:
| Open Bulletin Board suffers from a remote blind SQL injection vulnerability. | | Author: | AtT4CKxT3rR0r1ST | | File Size: | 1431 | | Last Modified: | Feb 8 17:29:57 2010 | | MD5 Checksum: | 3188bf3bd97fe1af12f8451e533dbcf4 |
|
| /// File Name: | joomlagirls-sql.txt | Description:
| The Joomla Girls component suffers from a remote SQL injection vulnerability. | | Author: | Fl0riX | | File Size: | 799 | | Last Modified: | Feb 8 17:17:34 2010 | | MD5 Checksum: | d8b4034f335f460ae66c03493eb25c54 |
|
| /// File Name: | joomlacommodel-sql.txt | Description:
| The Joomla Model component suffers from a remote SQL injection vulnerability. | | Author: | Fl0riX | | Related Exploit: | joomlamodel-sql.txt | | File Size: | 1191 | | Last Modified: | Feb 8 17:12:56 2010 | | MD5 Checksum: | 3ab784b44d144f6984ef998c42689daf |
|
| /// File Name: | dradis-v2.5.0.tar.gz | Description:
| dradis is a tool for sharing information during security testing. While plenty of tools exist to help in the different stages of the test, not so many exist to share interesting information captured. When a team of testers is working on the same set of targets, having a common repository of information is essential to avoid duplication of efforts. | | Author: | etd | | Homepage: | http://dradis.nomejortu.com/ | | Changes: | The Note editor (Textile) was improved. An HTML export plugin was added for producing reports in HTML format. A Nikto Upload plugin was added. A Burp Upload plugin was added. The "First Time User Wizard" introduction was improved. You can keep track of all the activity with the built-in RSS feed. A new Rake task was added: dradis:backup. Rake dradis:reset now creates a backup of the project by default. Rake dradis:reset now clears the old log files. The structure of the Nmap Upload plugin data was improved. The ExtJS 3.0 and Rails 2.3.5 libraries were upgraded. Bugs were fixed. | | File Size: | 4739901 | | Last Modified: | Feb 5 20:56:28 2010 | | MD5 Checksum: | 1c9020a0991471afad3490ae728587f9 |
|
| /// File Name: | netsniff-ng-0.5.4.1.tar.gz | Description:
| netsniff-ng is a high performance linux network sniffer for packet inspection. Basically, it is similar to tcpdump, but it doesn't need syscalls for fetching packets. Instead, it uses an memory mapped area within kernelspace for accessing packets without the need of copying them to userspace ('zero-copy' mechanism). Therefore, netsniff-ng is libpcap independent. netsniff-ng can be used for protocol analysis and reverse engineering, network debugging, measurement of performance throughput or network statistics creation of incoming packets on central network nodes like routers or firewalls. | | Author: | Daniel Borkmann | | Homepage: | http://code.google.com/p/netsniff-ng/ | | File Size: | 142687 | | Last Modified: | Feb 5 20:49:02 2010 | | MD5 Checksum: | 5b8f6a3266fad685f75ec694365b6af1 |
|
| /// File Name: | CORE-2010-0121.txt | Description:
| Core Security Technologies Advisory - This advisory describes multiple vulnerabilities based on quirks in how Windows handles file names. Nginx, Cherokee, Mongoose, and LightTPD webservers suffer from related vulnerabilities. Details are provided. | | Author: | Core Security Technologies,Dan Crowley | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 16509 | | Last Modified: | Feb 5 20:42:15 2010 | | MD5 Checksum: | 8e5f421a8e3147938908dd4d9a608315 |
|
| /// File Name: | flexmysql-sql.txt | Description:
| Flex MySQL Connector suffers from a remote SQL injection vulnerability. | | Author: | DungPQ | | File Size: | 2314 | | Last Modified: | Feb 5 20:39:49 2010 | | MD5 Checksum: | c0bb97b1a43f90c2381075947dbc7e70 |
|
| /// File Name: | CORE-2010-0104.txt | Description:
| Core Security Technologies Advisory - A security vulnerability was discovered in LANDesk Management Suite: a cross-site request forgery which allows an external remote attacker to make a command injection that can be used to execute arbitrary code using the webserver user. As a result, an attacker can remove the firewall and load a kernel module, allowing root access to the appliance. It also can be used as a non-persistent XSS. | | Author: | Adrian Manrique,Aureliano Calvo,Core Security Technologies | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 10300 | | Related CVE(s): | CVE-2010-0368, CVE-2010-0369 | | Last Modified: | Feb 5 19:16:11 2010 | | MD5 Checksum: | 92cacafd80234bf0eb614d89411c5edb |
|
| /// File Name: | wippien-negotiation.txt | Description:
| Wippien suffers from a flawed key negotiation vulnerability. | | Author: | Michael Rossberg | | File Size: | 4805 | | Last Modified: | Feb 5 19:12:20 2010 | | MD5 Checksum: | 2b21bdc53a46a600681b998e4b1150ae |
|
| /// File Name: | mysql_yassl_getname.rb.txt | Description:
| This Metasploit module exploits a stack buffer overflow in the yaSSL (1.9.8 and earlier) implementation bundled with MySQL. By sending a specially crafted client certificate, an attacker can execute arbitrary code. This vulnerability is present within the CertDecoder::GetName function inside ./taocrypt/src/asn.cpp. However, the stack buffer that is written to exists within a parent function stack frame. NOTE: This vulnerability requires a non-default configuration. First, the attacker must be able to pass the host-based authentication. Next, the server must be configured to listen on an accessible network interface. Lastly, the server must have been manually configured to use SSL. The binary from version 5.5.0-m2 was built with /GS and /SafeSEH. During testing on Windows XP SP3, these protections successfully prevented exploitation. Testing was also done with mysql on Ubuntu 9.04. Although the vulnerable code is present, both version 5.5.0-m2 built from source and version 5.0.75 from a binary package were not exploitable due to the use of the compiler's FORTIFY feature. Although suse11 was mentioned in the original blog post, the binary package they provide does not contain yaSSL or support SSL. | | Author: | jduck | | Homepage: | http://www.metasploit.com | | File Size: | 5840 | | Related OSVDB(s): | 61956 | | Last Modified: | Feb 5 19:07:12 2010 | | MD5 Checksum: | d029c6a4e1e757e8e1f838fe13930102 |
|
| /// File Name: | novelliprint_datetime.rb.txt | Description:
| This Metasploit module exploits a stack overflow in Novell iPrint Client 5.30. When passing a specially crafted date/time string via certain parameters to ienipp.ocx an attacker can execute arbitrary code. NOTE: The "operation" variable must be set to a valid command in order to reach this vulnerability. | | Author: | jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3605 | | Related OSVDB(s): | 60804 | | Related CVE(s): | CVE-2009-1569 | | Last Modified: | Feb 5 19:05:53 2010 | | MD5 Checksum: | 1baa5f1892dc7e563aacd2917138431b |
|
| /// File Name: | novelliprint_target-frame.rb.txt | Description:
| This Metasploit module exploits a stack overflow in Novell iPrint Client 5.30. When passing an overly long string via the "target-frame" parameter to ienipp.ocx an attacker can execute arbitrary code. NOTE: The "operation" variable must be set to a valid command in order to reach this vulnerability. | | Author: | jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3666 | | Related OSVDB(s): | 60803 | | Related CVE(s): | CVE-2009-1568 | | Last Modified: | Feb 5 19:05:37 2010 | | MD5 Checksum: | ed7494832b423837a82986e57fc24d46 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
