Section: .. / Last 100 Files /
| /// File Name: | chaton-lfi.txt | Description:
| Chaton versions 1.5.2 and below suffer from a local file inclusion vulnerability. | | Author: | cr4wl3r | | File Size: | 2157 | | Last Modified: | Mar 8 21:12:31 2010 | | MD5 Checksum: | 302240f053a31a27d3f7bfa05133064f |
|
| /// File Name: | quickzip.py.txt | Description:
| QuickZip version 4.60 local buffer overflow proof of concept exploit that creates a malicious .zip file. This version does not have the egghunter. | | Author: | corelanc0d3r,mr_me | | File Size: | 3329 | | Last Modified: | Mar 8 21:10:35 2010 | | MD5 Checksum: | 855aae375aa00be2327a35c12ecd0a76 |
|
| /// File Name: | dsa-2008-1.txt | Description:
| Debian Linux Security Advisory 2008-1 - Several remote vulnerabilities have been discovered in the TYPO3 web content management framework: Cross-site scripting vulnerabilities have been discovered in both the frontend and the backend. Also, user data could be leaked. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 3554 | | Last Modified: | Mar 8 21:08:11 2010 | | MD5 Checksum: | c46bf7d8dec6a12a4086dae8214e55c0 |
|
| /// File Name: | quickzip0day.py.txt | Description:
| QuickZip version 4.60 local universal buffer overflow proof of concept exploit that creates a malicious .zip file. | | Author: | corelanc0d3r,mr_me | | File Size: | 4688 | | Last Modified: | Mar 8 21:06:12 2010 | | MD5 Checksum: | ab2f63007fd139e47124a3c8f10df8a5 |
|
| /// File Name: | dzauktionshaus-sql.txt | Description:
| DZ Auktionshaus V4.rgo suffers from a remote SQL injection vulnerability in news.php. | | Author: | Easy Laster | | File Size: | 1573 | | Last Modified: | Mar 8 21:02:28 2010 | | MD5 Checksum: | 789d93a66f94303162e11c587225bc02 |
|
| /// File Name: | codegate2010.txt | Description:
| The CodeGate 2010 Capture The Flag contest has been announced. It will take place from March 13th through the 14th. | | Homepage: | http://www.codegate.org/ | | File Size: | 1090 | | Last Modified: | Mar 8 20:59:09 2010 | | MD5 Checksum: | 1ba0dc6f2e6c77ddbd2268d15409c507 |
|
| /// File Name: | dev4u-sql.txt | Description:
| Dev4U CMS Personenseiten suffers from a remote SQL injection vulnerability. | | Author: | Easy Laster | | File Size: | 1684 | | Last Modified: | Mar 8 20:57:21 2010 | | MD5 Checksum: | 22fa1caa94c75599f1dc0f84e5712c1e |
|
| /// File Name: | opencart-sql.txt | Description:
| OpenCart version 1.3.2 suffers from a remote SQL injection vulnerability. | | Author: | Andres Gomez | | File Size: | 1609 | | Last Modified: | Mar 8 20:49:49 2010 | | MD5 Checksum: | bf6a6db84d6a93e312dfa8c340f9c457 |
|
| /// File Name: | khc_0.2.tar.gz | Description:
| Known Host Cracker (khc) is a small tool designed to recover hashed known_host files back to their plain-text equivalents. | | Author: | Benkei,Rembrandt | | File Size: | 8842 | | Last Modified: | Mar 8 16:57:49 2010 | | MD5 Checksum: | 00cea61517d93313c4a73cca64c0238e |
|
| /// File Name: | geoipgen-0.4.tar.gz | Description:
| GeoIPgen is a country-to-IPs generator. It's a geographic IP generator for IPv4 networks that uses the MaxMind GeoLite Country database. Geoipgen is the first published use of a geographic ip database in reverse to translate from country-to-IPs instead of the usual use of IP-to-country. Features: Random or sorted order, unique or repeating IPs, skips broadcast addresses, one, many or all countries. | | Author: | Andrew Horton (urbanadventurer) | | Homepage: | http://www.morningstarsecurity.com/research/geoipgen | | Changes: | Faster and smaller memory usage. It now uses the fast-random algorithm by default instead of the bit-field method, Re-wrote README file, Simplified usage instructions. | | File Size: | 12332 | | Last Modified: | Mar 8 16:28:38 2010 | | MD5 Checksum: | edae9618c3413be8e380f1e10b5b91dd |
|
| /// File Name: | nessus-xmlrpc-0.3.tar.gz | Description:
| nessus-xmlrpc is a Ruby library for the Nessus XML-RPC interface. It comes with an example command line program that shows how easy it is to interact with the Nessus scanner. | | Author: | Vlatko Kosturjak | | Homepage: | http://rubyforge.org/projects/nessus-xmlrpc/ | | Changes: | Mostly speed improvements (will use keepalive and nokogiri if available). Support for some new functions. Better documentation. | | File Size: | 6371 | | Last Modified: | Mar 8 17:17:39 2010 | | MD5 Checksum: | 23bdc28e21bcf552777d338a9f54b94e |
|
| /// File Name: | lenovo-escalate.txt | Description:
| Lenovo laptops running the Hotkey Driver and Access Connections software versions 5.33 and below suffer from a privilege escalation vulnerability. Full exploitation details provided. | | Author: | Chilik Tamir | | File Size: | 3130 | | Last Modified: | Mar 8 17:14:44 2010 | | MD5 Checksum: | 197dc1c38c9c66cd38cc4d3ffe457f76 |
|
| /// File Name: | openssh-5.4p1.tar.gz | Description:
| This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups. | | Author: | Damien Miller | | Homepage: | http://www.openssh.com/ | | Changes: | This is a major feature and bugfix release. Major changes include disabling SSH protocol 1 by default, removal of legacy OpenSC/libsectok smartcard support, addition of PKCS#11 support, introduction of a new certificate authentication method for users and hosts, revised session multiplexing code, many improvements to sftp from the Google Summer of Code 2009, and lots of bugfixes. | | File Size: | 1094604 | | Last Modified: | Mar 8 17:09:53 2010 | | MD5 Checksum: | da10af8a789fa2e83e3635f3a1b76f5e |
|
| /// File Name: | USN-907-1.txt | Description:
| Ubuntu Security Notice 907-1 - It was discovered that gnome-screensaver did not correctly lock all screens when monitors get hotplugged. An attacker with physical access could use this flaw to gain access to a locked session. It was discovered that gnome-screensaver did not correctly handle keyboard grab when monitors get hotplugged. An attacker with physical access could use this flaw to gain access to a locked session. This issue only affected Ubuntu 9.10. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 6239 | | Related CVE(s): | CVE-2010-0285, CVE-2010-0422 | | Last Modified: | Mar 8 17:08:49 2010 | | MD5 Checksum: | 0779341d5cb6e3ff11a2489dcba18547 |
|
| /// File Name: | tribisur-lfi.txt | Description:
| Tribisur versions 2.0 and below suffer from a local file inclusion vulnerability. | | Author: | cr4wl3r | | File Size: | 1965 | | Last Modified: | Mar 8 17:07:44 2010 | | MD5 Checksum: | b57f7e0fba10b70409a963b0229fc35a |
|
| /// File Name: | spamassassin-remoteroot.txt | Description:
| The Spamassassin Milter plugin suffers from a remote root command execution vulnerability. Full exploit details provided. | | Author: | Kingcope | | File Size: | 3309 | | Last Modified: | Mar 8 17:05:26 2010 | | MD5 Checksum: | 65f987b29f0f557007bd95469466936d |
|
| /// File Name: | bigforum-sql.txt | Description:
| BigForum version 4.5 remote SQL injection exploit that dumps user table information. | | Author: | Ctacok | | File Size: | 1541 | | Last Modified: | Mar 8 17:02:26 2010 | | MD5 Checksum: | 441885aaaffc20d9973a7ed18a3ca858 |
|
| /// File Name: | bildflirt-sql.txt | Description:
| Bild Flirt System version 2.0 suffers from a remote SQL injection vulnerability. | | Author: | Easy Laster | | File Size: | 1572 | | Last Modified: | Mar 8 16:55:19 2010 | | MD5 Checksum: | a642e3a8283ac1b6e538470c86012e5f |
|
| /// File Name: | dvbbs830-xss.txt | Description:
| DvBBS versions 7.1.x through 8.2.x suffer from a cross site scripting vulnerability. This is a variation of the flaw that affected versions prior to 7.1.0. | | Author: | Liscker | | Related Exploit: | dvbbsXSS.txt | | File Size: | 1086 | | Last Modified: | Mar 8 16:26:37 2010 | | MD5 Checksum: | 3cd304f7bfac9d084dea5dd5ad646661 |
|
| /// File Name: | croogocms-xss.txt | Description:
| Croogo CMS versions 1.2 and below suffer from cross site scripting vulnerabilities. | | Author: | Paulino Calderon | | File Size: | 1910 | | Last Modified: | Mar 8 16:24:38 2010 | | MD5 Checksum: | 66e088097bda0faa94a082415c6c2e38 |
|
| /// File Name: | MDVSA-2010-057.txt | Description:
| Mandriva Linux Security Advisory 2010-057 - The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 29843 | | Related CVE(s): | CVE-2010-0434 | | Last Modified: | Mar 8 16:23:47 2010 | | MD5 Checksum: | c235dd13d9ace6a2ca8327b6437ee2a6 |
|
| /// File Name: | jitedstage0-shellcode.txt | Description:
| JITed Stage-0 Shellcode. This JIT shellcode finds VirtualProtect, restores the address of the shellcode, makes mem exec and jumps to it. | | Author: | Alexey Sintsov | | File Size: | 3481 | | Last Modified: | Mar 8 16:20:58 2010 | | MD5 Checksum: | 0d7fb99e6c6d84c075b2d24543bc6ae4 |
|
| /// File Name: | QuikSoft-reverse.zip | Description:
| Oracle Document Capture (EasyMail Objects EMSMTP.DLL version 6.0.1) Active-X control buffer overflow JIT-Spray exploit. | | Author: | Alexey Sintsov | | Homepage: | http://www.dsec.ru/ | | File Size: | 8208 | | Last Modified: | Mar 8 16:16:00 2010 | | MD5 Checksum: | 2deece0e4a04e5d2d2964754202e5dfa |
|
| /// File Name: | bbsmax-xss.txt | Description:
| BBSMAX versions 3.0, 4.1, and 4.2 suffer from a cross site scripting vulnerability. | | Author: | Liscker | | File Size: | 807 | | Last Modified: | Mar 8 15:53:30 2010 | | MD5 Checksum: | 77cf5fd95efa29c6997e74768c398f23 |
|
| /// File Name: | topdownloadmp3-dos.txt | Description:
| TopDownloads MP3 Player version 1.0 crash exploit that creates a malicious .m3u file. | | Author: | l3D | | File Size: | 295 | | Last Modified: | Mar 8 15:48:44 2010 | | MD5 Checksum: | 147839fea06f877a9bc57766373c2860 |
|
| /// File Name: | flare-dos.txt | Description:
| Flare versions 0.6 and below local heap overflow denial of service exploit. | | Author: | l3D | | File Size: | 593 | | Last Modified: | Mar 8 15:47:03 2010 | | MD5 Checksum: | 4c586f04d5fef027a275ae2524205921 |
|
| /// File Name: | gc40249-dos.tgz | Description:
| Google Chrome version 4.0.249 XML denial of service proof of concept exploit. | | Author: | Blade | | File Size: | 592 | | Last Modified: | Mar 8 15:45:15 2010 | | MD5 Checksum: | 5e8593679f05d8c119ca154a5749bb37 |
|
| /// File Name: | pwn-isapi.cpp.txt | Description:
| Apache version 2.2.14 mod_isapi remote SYSTEM exploit. Due to the nature of the vulnerability, and exploitation method, DEP should be limited to essential Windows programs and services. At worst, if DEP is enabled for the Apache process, you could cause a constant DoS by looping this (since apache will automatically restart). | | Author: | Brett Gervasoni | | Homepage: | http://www.senseofsecurity.com/ | | Related File: | SOS-10-002.txt | | File Size: | 11545 | | Related CVE(s): | CVE-2010-0425 | | Last Modified: | Mar 6 11:10:33 2010 | | MD5 Checksum: | 6584fadc047ded0e288a8ea4445362d5 |
|
| /// File Name: | SOS-10-002.txt | Description:
| By sending a specially crafted request followed by a reset packet it is possible to trigger a vulnerability in Apache 2.2.14 mod_isapi that will unload the target ISAPI module from memory. However function pointers still remain in memory and are called when published ISAPI functions are referenced. This results in a dangling pointer vulnerability. Successful exploitation results in the execution of arbitrary code with SYSTEM privileges. | | Author: | Brett Gervasoni | | Homepage: | http://www.senseofsecurity.com/ | | Related Exploit: | pwn-isapi.cpp.txt | | File Size: | 2870 | | Related CVE(s): | CVE-2010-0425 | | Last Modified: | Mar 6 11:09:03 2010 | | MD5 Checksum: | b7b7f8d25e9287a5b3e772f09fb7d8eb |
|
| /// File Name: | crucontent-disclose.txt | Description:
| Cru Content CMS suffers from a remote file disclosure vulnerability. | | Author: | fx0 | | File Size: | 872 | | Last Modified: | Mar 6 10:48:41 2010 | | MD5 Checksum: | ff586688f5e158016008cd29d1155989 |
|
| /// File Name: | ncpfs-race.txt | Description:
| The ncpmount, ncpumount, and ncplogin utilities, installed as part of the ncpfs package, contain race conditions, information disclosures, and denial of service vulnerabilities. | | Author: | Dan Rosenberg | | File Size: | 2394 | | Related CVE(s): | CVE-2010-0788, CVE-2010-0790, CVE-2010-0791 | | Last Modified: | Mar 6 10:45:27 2010 | | MD5 Checksum: | c4f3190c00d9db2fd6a2e8908227013d |
|
| /// File Name: | junipersa-xss.txt | Description:
| Juniper Secure Access suffers from a cross site scripting vulnerability. SA Appliances running Juniper IVE OS 6.0 or higher are affected. | | Author: | Logica | | File Size: | 4333 | | Last Modified: | Mar 6 10:42:52 2010 | | MD5 Checksum: | 9b36886cd72016decdf7d91f17eadadc |
|
| /// File Name: | MDVSA-2010-055.txt | Description:
| Mandriva Linux Security Advisory 2010-055 - Denial of service, buffer overflows, integer overflows and other issues have been addressed in Poppler. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8885 | | Related CVE(s): | CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181, CVE-2009-1182, CVE-2009-1183, CVE-2009, CVE-2009-1188, CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3606, CVE-2009-3607, CVE-2009-3608, CVE-2009-3609, CVE-2009-3938 | | Last Modified: | Mar 6 10:35:47 2010 | | MD5 Checksum: | 2455a21c0c713d92832579ab90a1b22b |
|
| /// File Name: | AdvancedWinServiceManager.zip | Description:
| AdvancedWinServiceManager is a smart tool to remove hidden rootkit services. It makes it easy to eliminate such malicious services by separating out third party services from Windows services. By default it shows only third party services along with more details such as Company Name, Description, Install Date, File Path etc at one place which helps in quickly differentiating between legitimate and malicious services. It comes with rich features such as detecting hidden rootkit services, exporting the service list to html based log file, displaying only third party services etc. | | Homepage: | http://www.spywareanalytics.com/ | | File Size: | 226161 | | Last Modified: | Mar 6 10:33:26 2010 | | MD5 Checksum: | edff068f86952106dba21a8ffe5e9a9d |
|
| /// File Name: | 03.04.10-1.txt | Description:
| iDefense Security Advisory 03.04.10 - Remote exploitation of an integer overflow vulnerability in Autonomy's KeyView Filter SDK allows attackers to execute arbitrary code with the privileges of the targeted application. This vulnerability occurs when processing specially crafted documents. When processing such a document, the software reads an integer value from the file and uses this integer, without validation, in an arithmetic operation to calculate the amount of memory to allocate. If a sufficiently large number is supplied, the calculation overflows, resulting in a buffer of insufficient size being allocated. The software then proceeds to copy data into this under-sized buffer. This results in an exploitable heap buffer overflow condition. | | Author: | Joshua J. Drake ,iDefense Labs | | Homepage: | http://www.idefense.com/ | | File Size: | 4991 | | Related CVE(s): | CVE-2009-3032 | | Last Modified: | Mar 5 16:18:30 2010 | | MD5 Checksum: | 02061082038dac3eab8518904cc3a6a6 |
|
| /// File Name: | sagem-bypass.txt | Description:
| Sagem Routers remote authentication bypass exploit. | | Author: | AlpHaNiX | | File Size: | 2999 | | Last Modified: | Mar 5 16:16:04 2010 | | MD5 Checksum: | bac2c30e66184f69815b795874698102 |
|
| /// File Name: | natychmiast-sqlxss.txt | Description:
| Natychmiast CMS suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Ariko-Security | | File Size: | 1280 | | Last Modified: | Mar 5 16:13:42 2010 | | MD5 Checksum: | 7af740763827517f4b3c5272607bf54f |
|
| /// File Name: | bsplayerml-overflow.txt | Description:
| BS.Player version 2.51 build 1022 (Media Library) suffers from a remote buffer overflow vulnerability. | | Author: | LiquidWorm | | File Size: | 2569 | | Last Modified: | Mar 5 16:11:55 2010 | | MD5 Checksum: | db8e6e9a787fd586eb5a106e6dbfb0f8 |
|
| /// File Name: | vlcmediaplayer-overflow.txt | Description:
| VLC Media Player version 1.0.5 Goldeneye suffers from a remote buffer overflow vulnerability. | | Author: | LiquidWorm | | File Size: | 2006 | | Last Modified: | Mar 5 16:08:09 2010 | | MD5 Checksum: | a86824aea954354508bf9ecfd6099526 |
|
| /// File Name: | jriver-overflow.txt | Description:
| J. River Media Jukebox 12 suffers from a MP3 file handling remote heap overflow vulnerability. | | Author: | LiquidWorm | | File Size: | 2533 | | Last Modified: | Mar 5 16:05:58 2010 | | MD5 Checksum: | 4ef3d7f8666627eda39eb3258ecd945a |
|
| /// File Name: | phpauctions-xss.txt | Description:
| PHP Auctions suffers from a cross site scripting vulnerability. | | Author: | SENOT | | File Size: | 1793 | | Last Modified: | Mar 5 16:02:59 2010 | | MD5 Checksum: | 2e0bbefac939f67a58b7fa0b012edf58 |
|
| /// File Name: | aac_parser_int_div_by_0_orb.zip | Description:
| Orb versions 2.0.01.0049 through 2.54.0018 DirectShow filter integer division by zero denial of service exploit. | | Author: | Matthew Bergin | | File Size: | 144109 | | Last Modified: | Mar 5 15:42:49 2010 | | MD5 Checksum: | e3c4263004650f6cda83215ac3044a7b |
|
| /// File Name: | phpnukecms-sql.txt | Description:
| The survey and poll modules of PHP-Nuke CMS suffer from a remote SQL injection vulnerability. | | Author: | SENOT | | File Size: | 2004 | | Last Modified: | Mar 5 15:41:45 2010 | | MD5 Checksum: | cddd6be8402c979ac8f9e581d1e98fbb |
|
| /// File Name: | NSOPOC-2010-006.zip | Description:
| Proof of concept exploit that demonstrates a buffer overflow in the Authentium Command On Demand Online scanner service. | | Author: | Nikolas Sotiriu | | Related File: | NSOADV-2010-006.txt | | File Size: | 2617 | | Last Modified: | Mar 5 14:59:11 2010 | | MD5 Checksum: | 92398056d32ddcda9d3b045edb319371 |
|
| /// File Name: | NSOADV-2010-006.txt | Description:
| Remote exploitation of a buffer overflow vulnerability in Authentium Command On Demand Online scanner service could allow an attacker to execute arbitrary code within the security context of the targeted user. | | Author: | Nikolas Sotiriu | | Related Exploit: | NSOPOC-2010-006.zip | | File Size: | 5578 | | Last Modified: | Mar 5 14:58:44 2010 | | MD5 Checksum: | 3ce799d522b4cfb1294d7eca4e2dfb2a |
|
| /// File Name: | onecmsv25-sql.txt | Description:
| ONECMS version 2.5 remote SQL injection exploit. | | Author: | Ctacok,melkiy | | File Size: | 1570 | | Last Modified: | Mar 5 14:57:43 2010 | | MD5 Checksum: | 41458d1fc8b5e4498f4a4964d693cb3f |
|
| /// File Name: | kolang-bypass.txt | Description:
| Kolang is a php script that can be leveraged in local and remote file inclusion attacks and performs safe mode bypass for PHP versions 4.3.10 through 5.3.10. | | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 19611 | | Last Modified: | Mar 5 14:53:49 2010 | | MD5 Checksum: | 4449148c994431c93d38cfade8f237bd |
|
| /// File Name: | preelearningportal-sql.txt | Description:
| Pre E-Learning Portal suffers from a remote SQL injection vulnerability. | | Author: | NoGe | | File Size: | 1419 | | Last Modified: | Mar 5 14:47:19 2010 | | MD5 Checksum: | d69dc3935f111b0791171b0ce18e55b5 |
|
| /// File Name: | execve-md.c | Description:
| 64 bytes small Linux/x86 disable modsecurity shellcode. | | Author: | sekfault | | File Size: | 1347 | | Last Modified: | Mar 5 14:43:45 2010 | | MD5 Checksum: | 3f86c54e6e7020228a2c9105236f14ac |
|
| /// File Name: | joomlablog-lfi.txt | Description:
| The Joomla Blog component suffers from a local file inclusion vulnerability. | | Author: | DevilZ TM | | File Size: | 1353 | | Last Modified: | Mar 5 14:41:25 2010 | | MD5 Checksum: | cdfbab66139a980757ff3c8c2285c729 |
|
| /// File Name: | bbsxp2008-xss.txt | Description:
| BBSXP 2008 suffers from a cross site scripting vulnerability. | | Author: | Liscker | | Related Exploit: | bbsxp-xss.txt | | File Size: | 864 | | Last Modified: | Mar 5 14:39:40 2010 | | MD5 Checksum: | 2e2fc5a0942f7afe4f6295fb77e5cdce |
|
| /// File Name: | joomla-rfis.txt | Description:
| This paper documents approximately 50 remote file inclusion vulnerabilities in Joomla and related components. | | Author: | Mr.aFiR | | Homepage: | http://www.aFiR.me/ | | File Size: | 13760 | | Last Modified: | Mar 5 14:37:39 2010 | | MD5 Checksum: | a71eb0e56b52798dc503b01f5d324e27 |
|
| /// File Name: | fcrontab-race.txt | Description:
| fcrontab, part of the fcron scheduler, is vulnerable to several race conditions that allow a local attacker to use symbolic links to read unauthorized files. Versions before 3.0.5 are affected. | | Author: | Dan Rosenberg | | File Size: | 1154 | | Related CVE(s): | CVE-2010-0792 | | Last Modified: | Mar 5 14:35:20 2010 | | MD5 Checksum: | ee1afe06e1fc4171975ed438e0aabf5e |
|
| /// File Name: | opennhrp-0.11.3.tar.bz2 | Description:
| OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible. | | Author: | Timo Teras | | Homepage: | http://sourceforge.net/projects/opennhrp/ | | Changes: | A check that prevented the forwarding of multicast packets in some cases was removed. Netlink buffer sizes were increased. | | File Size: | 127328 | | Last Modified: | Mar 4 23:10:39 2010 | | MD5 Checksum: | 6f6f8571ccc0a9f97e52c6240fe9002a |
|
| /// File Name: | CA20100304-01.txt | Description:
| CA's support is alerting customers to a security risk with CA SiteMinder. Multiple cross site scripting (XSS) vulnerabilities exist that can allow a remote attacker to potentially gain sensitive information. CA has provided guidance to remediate the vulnerability. | | Author: | Ken Williams | | Homepage: | http://www3.ca.com/ | | File Size: | 3176 | | Related CVE(s): | CVE-2009-3731 | | Last Modified: | Mar 4 23:06:25 2010 | | MD5 Checksum: | c5e4abac93849cb90447a5c73fd5b883 |
|
| /// File Name: | MDVSA-2010-054.txt | Description:
| Mandriva Linux Security Advisory 2010-054 - Pam_krb5 2.2.14 through 2.3.4 generates different password prompts depending on whether the user account exists, which allows remote attackers to enumerate valid usernames. This update provides the version 2.3.5 of pam_krb5, which is not vulnerable to this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3214 | | Related CVE(s): | CVE-2009-1384 | | Last Modified: | Mar 4 23:03:37 2010 | | MD5 Checksum: | ef415f90257e771135bf236a39a74697 |
|
| /// File Name: | sagem-reset.txt | Description:
| Sagem routers remote reset exploit. It affects F@ST router models 1200/1240/1400/1400W/1500/1500-WG/2404. | | Author: | AlpHaNiX | | Related Exploit: | sagemrestore-dos.txt | | File Size: | 1938 | | Last Modified: | Mar 4 22:59:07 2010 | | MD5 Checksum: | 8451ab0ec46347610bb4b5d5dcc75313 |
|
| /// File Name: | chilkat_crypt_writefile.rb.txt | Description:
| This Metasploit module allows attackers to execute code via the 'WriteFile' unsafe method of Chilkat Software Inc's Crypt ActiveX control. This exploit is based on shinnai's exploit that uses an hcp:// protocol URI to execute our payload immediately. However, this method requires that the victim user be browsing with Administrator. Additionally, this method will not work on newer versions of Windows. NOTE: This vulnerability is still unpatched. The latest version of Chilkat Crypt at the time of this writing includes ChilkatCrypt2.DLL version 4.4.4.0. | | Author: | jduck ,shinnai | | Homepage: | http://www.metasploit.com | | File Size: | 3732 | | Related OSVDB(s): | 49510 | | Related CVE(s): | CVE-2008-5002 | | Last Modified: | Mar 4 22:53:51 2010 | | MD5 Checksum: | f3b162c328a7f7e6484b72aabd8fb52e |
|
| /// File Name: | ultraoffice_httpupload.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow in Ultra Shareware's Office Control. When processing the 'HttpUpload' method, the arguments are concatenated together to form a command line to run a bundled version of cURL. If the command fails to run, a stack-based buffer overflow occurs when building the error message. This is due to the use of sprintf() without proper bounds checking. NOTE: Due to input restrictions, this exploit uses a heap-spray to get the payload into memory unmodified. | | Author: | jduck ,shinnai | | Homepage: | http://www.metasploit.com | | File Size: | 3850 | | Related OSVDB(s): | 47866 | | Related CVE(s): | CVE-2008-3878 | | Last Modified: | Mar 4 22:53:30 2010 | | MD5 Checksum: | aefc32154c02bb9668cd3b779b48f669 |
|
| /// File Name: | VMSA-2010-0004.txt | Description:
| VMware Security Advisory - Updates have been issues for ESX Service Console newt, nfs-utils, and glib2 packages. vMA updates for newt, nfs-util, glib2, kpartx, libvolume-id, device-mapper-multipath, fipscheck, dbus, dbus-libs, ed, openssl, bind, expat, openssh, ntp and kernel packages have also been issued. | | Homepage: | http://www.vmware.com/ | | File Size: | 20620 | | Related CVE(s): | CVE-2009-2905, CVE-2008-4552, CVE-2008-4316, CVE-2009-1377, CVE-2009-1378, CVE-2009-1379, CVE-2009-1386, CVE-2009-1387, CVE-2009-0590, CVE-2009-4022, CVE-2009-3560, CVE-2009-3720, CVE-2009-2904, CVE-2009-3563, CVE-2009-2695, CVE-2009-2849, CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286, CVE-2009-3547, CVE-2009-3613, CVE-2009-3612, CVE-2009-3620, CVE-2009-3621, CVE-2009-3726, CVE-2008-3916, CVE-2009-1189, CVE-2009-0115 | | Last Modified: | Mar 4 22:32:24 2010 | | MD5 Checksum: | e7771d8406b79f65ee870397e15c5e8a |
|
| /// File Name: | dsa-2007-1.txt | Description:
| Debian Linux Security Advisory 2007-1 - Ronald Volgers discovered that the lppasswd component of the cups suite, the Common UNIX Printing System, is vulnerable to format string attacks due to insecure use of the LOCALEDIR environment variable. An attacker can abuse this behaviour to execute arbitrary code via crafted localization files and triggering calls to _cupsLangprintf(). This works as the lppasswd binary happens to be installed with setuid 0 permissions. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 18385 | | Related CVE(s): | CVE-2010-0393 | | Last Modified: | Mar 4 22:31:50 2010 | | MD5 Checksum: | e2eadef2b930afc5b158fdb9f0cd4593 |
|
| /// File Name: | webex_ucf_newobject.rb.txt | Description:
| This Metasploit module exploits a stack-based buffer overflow in WebEx's WebexUCFObject ActiveX Control. If an long string is passed to the 'NewObject' method, a stack- based buffer overflow will occur when copying attacker-supplied data using the sprintf function. It is noteworthy that this vulnerability was discovered and reported by multiple independent researchers. | | Author: | Elazar Broad,Guido Landi,Tobias Klein | | Homepage: | http://www.metasploit.com | | File Size: | 4340 | | Related OSVDB(s): | 47344 | | Related CVE(s): | CVE-2008-3558 | | Last Modified: | Mar 4 18:34:42 2010 | | MD5 Checksum: | f2d99a88beab4e4dd35711d91502b078 |
|
| /// File Name: | ZSL-2010-4929.txt | Description:
| Deimos Kasa versions 2.58 and below suffer from a local integer overflow vulnerability. | | Author: | LiquidWorm | | File Size: | 1225 | | Last Modified: | Mar 3 17:10:26 2010 | | MD5 Checksum: | aff495543ea775a39ac10c39b4da1e1d |
|
| /// File Name: | opera1050-overflow.txt | Description:
| Opera versions 10.10 through 10.50 integer overflow exploit. | | Author: | Marcin Ressel | | File Size: | 13725 | | Last Modified: | Mar 3 17:08:55 2010 | | MD5 Checksum: | 0beaf9a3abdde6e339eb1a7a4868c95f |
|
| /// File Name: | cisco-sa-20100303-dmp.txt | Description:
| Cisco Security Advisory - A vulnerability exists in the Cisco Digital Media Player that could allow an unauthenticated attacker to inject video or data content into a remote display. | | Author: | Cisco Systems | | Homepage: | http://www.cisco.com/ | | File Size: | 10311 | | Related CVE(s): | CVE-2010-0573 | | Last Modified: | Mar 3 16:59:38 2010 | | MD5 Checksum: | 761596ce9c824b2c8dc4fcdfed2a5380 |
|
| /// File Name: | smartplugs-sql.txt | Description:
| Smart Plugs version 1.3 suffers from a remote SQL injection vulnerability. | | Author: | Easy Laster | | File Size: | 1769 | | Last Modified: | Mar 3 16:54:22 2010 | | MD5 Checksum: | aa93b3b2a6da1f0f2d4fc910c61c7152 |
|
| /// File Name: | minbank-exec.txt | Description:
| Micronation Banking System suffers from a remote command execution vulnerability. | | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 2537 | | Last Modified: | Mar 3 16:52:08 2010 | | MD5 Checksum: | 7df6bbb5c35bd629f745191aeb47d54f |
|
| /// File Name: | tor-0.2.1.24.tar.gz | Description:
| Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). | | Author: | Roger Dingledine | | Homepage: | http://tor.eff.org | | Changes: | This release fixes a huge client-side performance bug, makes Tor work again on the latest Mac OS X, and updates the location of a directory authority. | | File Size: | 2396864 | | Last Modified: | Mar 3 16:44:36 2010 | | MD5 Checksum: | cb5629b2709ada82d34c22fef3ed77a9 |
|
| /// File Name: | cisco-sa-20100303-cucm.txt | Description:
| Cisco Security Advisory - Cisco Unified Communications Manager (formerly Cisco CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption of voice services. The Session Initiation Protocol (SIP), Skinny Client Control Protocol (SCCP) and Computer Telephony Integration (CTI) Manager services are affected by these vulnerabilities. | | Author: | Cisco Systems | | Homepage: | http://www.cisco.com/ | | File Size: | 18602 | | Related CVE(s): | CVE-2010-0587, CVE-2010-0588, CVE-2010-0590, CVE-2010-0591, CVE-2010-0592 | | Last Modified: | Mar 3 16:18:25 2010 | | MD5 Checksum: | 8f79a3ba09942f130027f105ff436d73 |
|
| /// File Name: | USN-906-1.txt | Description:
| Ubuntu Security Notice 906-1 - It was discovered that the CUPS scheduler did not properly handle certain network operations. A remote attacker could exploit this flaw and cause the CUPS server to crash, resulting in a denial of service. Ronald Volgers discovered that the CUPS lppasswd tool could be made to load localized message strings from arbitrary files by setting an environment variable. A local attacker could exploit this with a format-string vulnerability leading to a root privilege escalation. The default compiler options for Ubuntu 8.10, 9.04 and 9.10 should reduce this vulnerability to a denial of service. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 43536 | | Related CVE(s): | CVE-2009-3553, CVE-2010-0302, CVE-2010-0393 | | Last Modified: | Mar 3 16:12:43 2010 | | MD5 Checksum: | 2a2daef48fbe21b5cab2ae0d59be49a5 |
|
| /// File Name: | dosyayuklescripti-shell.txt | Description:
| Dosya Yukle Scripti version 1.0 suffers from a remote shell upload vulnerability. | | Author: | indoushka | | File Size: | 1796 | | Last Modified: | Mar 3 16:11:52 2010 | | MD5 Checksum: | d8f7df0c33ccc934c4f44d4f52c3fa51 |
|
| /// File Name: | glsa-201003-01.txt | Description:
| Gentoo Linux Security Advisory 201003-1 - Two vulnerabilities in sudo might allow local users to escalate privileges and execute arbitrary code with root privileges. Versions less than 1.7.2_p4 are affected. | | Author: | Gentoo | | Homepage: | http://security.gentoo.org | | File Size: | 3007 | | Last Modified: | Mar 3 16:10:59 2010 | | MD5 Checksum: | 9e00ee59e6a6c0091ba4c3af4f8739d5 |
|
| /// File Name: | ms09_043_owc_htmlurl.rb.txt | Description:
| This Metasploit module exploits a buffer overflow in Microsoft's Office Web Components. When passing an overly long string as the "HTMLURL" parameter an attacker can execute arbitrary code. | | Author: | jduck | | Homepage: | http://www.metasploit.com | | File Size: | 3959 | | Related OSVDB(s): | 56916 | | Related CVE(s): | CVE-2009-1534 | | Last Modified: | Mar 3 16:09:22 2010 | | MD5 Checksum: | 5e0896753d9f76d6397285f011c79a38 |
|
| /// File Name: | F_IE_PrisonBreak.pdf | Description:
| This is a whitepaper called Flash + IE = Prison Break, Stealing Local Files through the Flash Plugin in IE. | | Author: | Lavakumar Kuppan | | Homepage: | http://www.andlabs.org/ | | File Size: | 410577 | | Last Modified: | Mar 3 16:07:30 2010 | | MD5 Checksum: | 871dd59502343142535fe62ca47a3a1d |
|
| /// File Name: | gnattgp-rfi.txt | Description:
| Gnat-TGP versions 1.2.20 and below suffer from a remote file inclusion vulnerability. | | Author: | cr4wl3r | | File Size: | 931 | | Last Modified: | Mar 3 16:05:06 2010 | | MD5 Checksum: | 803cbedfa03e6d967042e7b7b11ca90f |
|
| /// File Name: | sect2010-cfp.txt | Description:
| The SEC-T 2010 Call For Papers has been announced. It will be held from September 9th through the 10th in Stockholm, Sweden. | | Homepage: | http://www.sec-t.org/ | | File Size: | 1380 | | Last Modified: | Mar 3 16:00:16 2010 | | MD5 Checksum: | 266f8f731c4113dc4a0a3c85c276a356 |
|
| /// File Name: | sudoedit-escalate.txt | Description:
| Todd Miller sudo 'sudoedit' local root exploit that affects 1.6.x versions before 1.6.9p21 and 1.7.x versions before 1.7.2p4. | | Author: | Kingcope | | File Size: | 461 | | Last Modified: | Mar 3 15:58:30 2010 | | MD5 Checksum: | 60d786b17fad28be13d0a0d2dab5ae2c |
|
| /// File Name: | nufw-2.4.0.tar.gz | Description:
| NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server. | | Author: | regit | | Homepage: | http://www.nufw.org/ | | Changes: | This first release of the new stable branch of NuFW is a bugfix release over the latest release candidate. The main change is a protocol modification which will permit you to have a new client connect on an older server in the future. | | File Size: | 938173 | | Last Modified: | Mar 2 22:01:39 2010 | | MD5 Checksum: | 9aa282129a70a3ff0535185a55f250f1 |
|
| /// File Name: | ZDI-10-024.txt | Description:
| Zero Day Initiative Advisory 10-024 - This vulnerability allows remote attackers to deny services on vulnerable installations of Novell eDirectory Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NDS daemon's SOAP service. When a malformed request is made to the novell.embox.connmgr.serverinfo SOAP action, the daemon makes an illegal reference thereby resulting in a denial of service. | | Author: | TippingPoint | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2532 | | Last Modified: | Mar 2 21:54:10 2010 | | MD5 Checksum: | e25b3e2ca0cc4c489707de4ee829e336 |
|
| /// File Name: | dsa-2006-1.txt | Description:
| Debian Linux Security Advisory 2006-1 - Several vulnerabilities have been discovered in sudo, a program designed to allow a sysadmin to give limited root privileges to users database server. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 7081 | | Related CVE(s): | CVE-2010-0426, CVE-2010-0427 | | Last Modified: | Mar 2 21:52:46 2010 | | MD5 Checksum: | 5776920f8194143cf7a9406ee7a62548 |
|
| /// File Name: | CORE-2009-0913.txt | Description:
| Core Security Technologies Advisory - Luxology Modo 401 suffers from an integer overflow vulnerability when parsing .LXO files. | | Author: | Core Security Technologies,Diego Juarez,Nadia Rodriguez | | File Size: | 8134 | | Related CVE(s): | CVE-2010-0766 | | Last Modified: | Mar 2 21:49:34 2010 | | MD5 Checksum: | fe56e4d97ac389401aab5bb4139703b6 |
|
| /// File Name: | WebRaider-0.2.3.8.zip | Description:
| WebRaider is a proof of concept quality tool to get a reverse shell out of SQL injection (MS-SQL) by using One Click Ownage. | | Author: | Ferruh Mavituna | | File Size: | 14014017 | | Last Modified: | Mar 2 21:29:05 2010 | | MD5 Checksum: | ffd9c7091633668de0d1a022a97bd39c |
|
| /// File Name: | MDVSA-2010-053.txt | Description:
| Mandriva Linux Security Advisory 2010-053 - mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent after request headers indicate a request body is incoming; this is not a case of HTTP_INTERNAL_SERVER_ERROR. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 29547 | | Related CVE(s): | CVE-2010-0408 | | Last Modified: | Mar 2 21:27:09 2010 | | MD5 Checksum: | ae046a50754226da45275ca539cae606 |
|
| /// File Name: | prosshd-overflow.txt | Description:
| ProSSHD version 1.2 buffer overflow exploit with reverse shell shellcode. | | Author: | S2 Crew | | File Size: | 4061 | | Last Modified: | Mar 2 21:24:36 2010 | | MD5 Checksum: | d17a8f0f099e506780744501cff9e544 |
|
| /// File Name: | uploadifysc-shell.txt | Description:
| Uploadify Sample Collection suffers from a shell upload vulnerability. | | Author: | indoushka | | File Size: | 1727 | | Last Modified: | Mar 2 21:21:29 2010 | | MD5 Checksum: | 6a45a18e0abf7713afbcd8a33b9a71da |
|
| /// File Name: | phpatm-shell.txt | Description:
| PHP Advanced Transfer Manager version 1.10 suffers from a shell upload vulnerability. | | Author: | indoushka | | File Size: | 1873 | | Last Modified: | Mar 2 21:19:38 2010 | | MD5 Checksum: | 91c0c0e9374c7b15dd96c7d35e0fa391 |
|
| /// File Name: | 03.02.10-1.txt | Description:
| iDefense Security Advisory 03.02.10 - Remote exploitation of a stack-based buffer overflow vulnerability in IBM Corp.'s Lotus Domino Web Access ActiveX control could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerable function takes an attacker-controlled URL, and copies it into a fixed-size stack buffer. No validation checks are performed on the length of the URL. By passing in a long URL string, it is possible to trigger a stack-based buffer overflow, resulting in the execution of arbitrary code. | | Author: | Elazar Broad,iDefense Labs | | Homepage: | http://www.idefense.com/ | | File Size: | 3783 | | Last Modified: | Mar 2 21:16:51 2010 | | MD5 Checksum: | 0f49ae12b79795b324cf97c77a4b8051 |
|
| /// File Name: | sparta-xss.txt | Description:
| The Sparta Systems TrackWise TeamAccess module suffers from a cross site scripting vulnerability. | | Author: | Yaniv Miron | | File Size: | 1740 | | Last Modified: | Mar 2 21:15:25 2010 | | MD5 Checksum: | 8ca2d27ef0659a7c440bb17b0fd75f8f |
|
| /// File Name: | mlf-sql.txt | Description:
| My Little Forum suffers from a remote SQL injection vulnerability. | | Author: | Easy Laster | | File Size: | 1579 | | Last Modified: | Mar 2 21:07:43 2010 | | MD5 Checksum: | 8b28e95a0ca35965054aa80102bc7e31 |
|
| /// File Name: | domino-xss.pdf | Description:
| CYBSEC Security Advisory - The help section in IBM Lotus Domino version 7.0.2 suffers from a reflected cross site scripting vulnerability. | | Author: | Nahuel Grisolia | | Homepage: | http://www.cybsec.com/ | | File Size: | 51276 | | Last Modified: | Mar 2 21:04:30 2010 | | MD5 Checksum: | 67a6916141a7de726a93552f0b09f92e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
