Section: .. / 0604-advisories /
| /// File Name: |
Skulltag0.96f.txt |
Description:
|
Skulltag 0.96f and prior suffers from a format string vulnerability exploitable when a client passes a wrong version string.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | File Size: | 2824 | | Last Modified: | Apr 28 12:02:04 2006 |
| MD5 Checksum: | 1c9f84c809f781303b527fb98c6b0594 |
|
| /// File Name: |
OpenTTD.txt |
Description:
|
OpenTTD versions less than or equal to 0.4.7 suffers from several flaws.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | File Size: | 3804 | | Last Modified: | Apr 28 12:00:49 2006 |
| MD5 Checksum: | 5cb5deecbf4035b741a19278e11ee3bb |
|
| /// File Name: |
TotalCalendar2.30.txt |
Description:
|
TotalCalendar 2.30 suffers from a remote file inclusion vulnerability if register_globals = On.
| | Author: | Aesthetico | | File Size: | 1415 | | Last Modified: | Apr 28 11:58:58 2006 |
| MD5 Checksum: | 0bff4bde203cd08c9c490db57f1111a1 |
|
| /// File Name: |
FileLodgeBolt.txt |
Description:
|
FileLodge Bolt suffers from XSS in showonlineusers.php.
| | Author: | n0m3rcy | | File Size: | 286 | | Last Modified: | Apr 28 11:57:51 2006 |
| MD5 Checksum: | 2e44d7a6689f5dd7614afa41d98446bb |
|
| /// File Name: |
Fenice-1.10.txt |
Description:
|
Fenice - Open Media Streaming Server suffers from a buffer-overflow in parse_url and a crash in RTSP_msg_len.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | fenice.c | | File Size: | 4548 | | Last Modified: | Apr 28 11:56:54 2006 |
| MD5 Checksum: | ba7bf5b380e9545147ab8dbd3e595c00 |
|
| /// File Name: |
vwar-path.txt |
Description:
|
The recent exploit provided by aliHackers for VWar (VWar ver 1.21 Remote Code Execution Exploit ) has also another affect on the higher unptached versions of vWAR such as v1.5 and also on versions less than 1.2 . Apart from the successful code execution exploit even if the exploit fails still running the following code on the web browser shows the full path of the installed modules even if the remote php shell is not achieved.
| | Author: | arko.dhar | | File Size: | 1873 | | Last Modified: | Apr 28 11:54:56 2006 |
| MD5 Checksum: | 6ded1abc3a3268278edb75af6f7b6309 |
|
| /// File Name: |
SA2006-02.txt |
Description:
|
NSFOCUS Security Advisory (SA2006-02): IBM AIX mklvcopy Local Privilege Escalation Vulnerability
| | Homepage: | http://www.nsfocus.com/ | | File Size: | 2798 | | Last Modified: | Apr 28 11:53:34 2006 |
| MD5 Checksum: | 4ec8530414c8201395fb3d13e429921e |
|
| /// File Name: |
SA2006-03.txt |
Description:
|
NSFOCUS Security Advisory (SA2006-03): IBM AIX rm_mlcache_file Local Race Condition Vulnerability
| | Homepage: | http://www.nsfocus.com/ | | File Size: | 2921 | | Last Modified: | Apr 28 11:52:36 2006 |
| MD5 Checksum: | d4bc9bf428491d0be70cae68efbdb80d |
|
| /// File Name: |
quick-n-easy.txt |
Description:
|
Quick 'n Easy FTP Server pro/lite suffers from a stack overflow when logging unicode.
| | Homepage: | http://www.c0d3r.org | | File Size: | 2627 | | Last Modified: | Apr 28 11:51:48 2006 |
| MD5 Checksum: | 9aef3a810e3355285f2ae55f0069327b |
|
| /// File Name: |
win-mailto.txt |
Description:
|
Multiple browsers Windows mailto protocol Office 2003 file attachment exploit: Application protocols handling in Microsoft Windows is badly designed, i.e. when someone types mailto:someone@somewhere.com into a browser the protocol is first looked up under HKEY_CLASSES_ROOT\%protocol%\shell\open\command, if it is a protocol that is allowed under the current user context then the value is simply replaced by the contents in the address bar at %1.
| | Author: | inge.henriksen | | Homepage: | http://ingehenriksen.blogspot.com/ | | File Size: | 2011 | | Last Modified: | Apr 28 11:50:03 2006 |
| MD5 Checksum: | de672dec01e75ba5cc8f13a7fc625088 |
|
| /// File Name: |
safari-2.0.3.txt |
Description:
|
Apple Mac OS X Safari 2.0.3 Vulnerability: A vulnerability exists in Safari 2.0.3 (417.9.2) and perhaps in prior versions which causes the operating system to slow down SRCOD (Spinning Rainbow Cursor Of Death), and therefore, it's not possible to launch any applications like Terminal to kill the process. After several minutes Safari crashes.
| | Author: | yannick.vonarx | | Homepage: | http://www.yanux.ch | | File Size: | 2268 | | Last Modified: | Apr 28 11:48:55 2006 |
| MD5 Checksum: | abe9daf95bd52e1d61fd1b6fb303ecd3 |
|
| /// File Name: |
os2a_1005.txt |
Description:
|
A buffer overflow vulnerability exists in the implementation of split() function in NASL. This causes nasl to consume a large amount of CPU and memory resources and stop responding. Execution of arbitrary commands on the vulnerable host may be possible. This affects Nessus 3.0.2, 2.2.7 and prior releases.
| | Author: | OS2A BTO | | File Size: | 4358 | | Last Modified: | Apr 28 11:46:52 2006 |
| MD5 Checksum: | c884a7852bf2709e0b0eb7a53754fb4b |
|
| /// File Name: |
DCForumLite.txt |
Description:
|
DCForumLite v3.0 suffers from XSS and SQL injection.
| | Author: | Breeeeh | | File Size: | 443 | | Last Modified: | Apr 28 11:42:29 2006 |
| MD5 Checksum: | 6cf1dcd7755d6f7feb0a3bce5bb17cce |
|
| /// File Name: |
Invision2.1.5.txt |
Description:
|
Invision Power Board 2.1.5 and possibly earlier versions suffer from a flaw that could allow for remote code execution.
| | Homepage: | http://HackThisSite.org | | Related Exploit: | invvy-v2.pl | | File Size: | 3249 | | Last Modified: | Apr 28 11:41:22 2006 |
| MD5 Checksum: | f9aa8d5398944f2861877e156ae63da9 |
|
| /// File Name: |
NextAge.txt |
Description:
|
NextAge Shopping Cart suffers from XSS.
| | Homepage: | http://www.aria-security.net | | File Size: | 1700 | | Last Modified: | Apr 28 11:39:24 2006 |
| MD5 Checksum: | 945bab3920671719ad9fd2d9cb13a8d1 |
|
| /// File Name: |
photokorn1.53.txt |
Description:
|
photokorn 1.53 and 1.542 suffer from SQL injection.
| | Author: | Dr-Jr7 | | File Size: | 378 | | Last Modified: | Apr 28 11:38:41 2006 |
| MD5 Checksum: | f43e5b2ec12da3ff6fa1e0822f1930ea |
|
| /// File Name: |
InstantPhotoGallery.txt |
Description:
|
Instant Photo Gallery suffers from XSS.
| | Author: | Qex | | File Size: | 191 | | Last Modified: | Apr 28 11:25:12 2006 |
| MD5 Checksum: | ca6b186cd24160c69a1675b0cd5c29c1 |
|
| /// File Name: |
sa19612.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Servant Salamander, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19612/ | | File Size: | 2044 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | 3e4a55ebb17353559cda68c8398a4c4d |
|
| /// File Name: |
sa19755.txt |
Description:
|
Secunia Security Advisory - r0t has reported some vulnerabilities in Kamgaing Email System, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/19755/ | | File Size: | 2037 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | fcbf3bc369de29d11896d59c6df8db04 |
|
| /// File Name: |
sa19810.txt |
Description:
|
Secunia Security Advisory - Lipako GmbH has reported a vulnerability in PHP-Gästebuch, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/19810/ | | File Size: | 1923 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | 3fd50b6b1f222f8bd521368e1a7996e9 |
|
| /// File Name: |
sa19814.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for MySQL. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19814/ | | File Size: | 9452 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | 1feca3472201e587a07729e13d28ef0e |
|
| /// File Name: |
sa19816.txt |
Description:
|
Secunia Security Advisory - Sowhat has discovered a vulnerability in WinISO, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19816/ | | File Size: | 1875 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | b32d2e7e9b6798fab70dadb7ca229821 |
|
| /// File Name: |
sa19838.txt |
Description:
|
Secunia Security Advisory - Tavis Ormandy has reported some vulnerabilities in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19838/ | | File Size: | 2458 | | Last Modified: | Apr 28 10:03:58 2006 |
| MD5 Checksum: | 1d306291abeb85b6454239b18bf32d6d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
