.:[ packet storm ]:.
                             
ten years of uncensorable truth
ten years of uncensorable truth

 Section:  .. / 0610-advisories  /

Page 32 of 32
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 >> Files 775 - 789 of 789
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: VirusScan-7.1.0.txt
Description:
 A flaw affects VirusScan Enterprise 7.1.0 where a local user can change administrative settings thereby disabling the "VirusScan On-Access Scan"
Author:Eitan Caspi
File Size:5009
Last Modified:Oct 9 19:14:57 2006
MD5 Checksum:c3bc3cd933ca5d89710c6999efa26056

 ///  File Name: vuln20-09-2006.txt
Description:
 DotNetNuke suffers from a flaw that allows HTML code injection.
Homepage:http://www.secureshapes.com/advisories/vuln20-09-2006.htm
File Size:3039
Last Modified:Oct 2 17:39:08 2006
MD5 Checksum:c95f3e2a32c432f3098eac785fa1c367

 ///  File Name: WebWizForum.txt
Description:
 A SQL injection vulnerability has been found in the search.asp script of WebWizForum.
Author:almaster
File Size:474
Last Modified:Oct 31 17:15:55 2006
MD5 Checksum:e0665e5d660d4a167c911b9b9803ec43

 ///  File Name: Xeobook-0.93.txt
Description:
 Xeobook 0.93 and prior suffer from multiple SQL injection vulnerabilities in sign.php.
Author:tamriel
File Size:2308
Last Modified:Oct 17 14:48:56 2006
MD5 Checksum:608c5e192fef59b1df3d6a146e227712

 ///  File Name: XeoPort-0.81.txt
Description:
 XeoPort 0.81 and prior suffer from an SQL injection vulnerability in index.php
Author:tamriel
File Size:2199
Last Modified:Oct 17 14:49:58 2006
MD5 Checksum:52fd8e6f57df7cc7c90ed4c8d2971a28

 ///  File Name: xss-.net.txt
Description:
 Applications which fail to provide their own filtering on top of the inbuilt .NET request filtering may be vulnerable to XSS attacks. Provided that a web application solely relies on .NET request filtering before echoing input back to the web browser, it is possible to inject scripting code and successfully launch XSS attacks by submitting a specially crafted request.
Author:research
Homepage:http://www.niscc.gov.uk/niscc/docs/br-20061020-00711.html?lang=en
File Size:1175
Last Modified:Oct 31 17:04:16 2006
MD5 Checksum:727743247e8a0816664f4081cab1a83e

 ///  File Name: youtube-xss.txt
Description:
 YouTube.com suffers from a cross site scripting flaw in the hidden form field "field_sendmessage_subject".
Author:Darren Bounds
File Size:1790
Last Modified:Oct 4 16:46:55 2006
MD5 Checksum:aa5f6f440fc22efc83e34c0f130bb0c1

 ///  File Name: ZDI-06-030.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability and both client and servers are affected. The problem specifically exists within the discovery service which communicates initially over UDP port 41524 and then over TCP port 41523. Due to invalid bounds checking during TCP communications, a stack based buffer overflow may occur in ASBRDCST.DLL during a call to vsprintf().
Author:livesploit.com
Homepage:http://www.zerodayinitiative.com/
File Size:3133
Related CVE(s):CVE-2006-5143
Last Modified:Oct 8 23:24:04 2006
MD5 Checksum:d4188ddc160454b7abaecbe3a3324682

 ///  File Name: ZDI-06-031.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability. The problem specifically exists within ASCORE.dll, a DLL used by the Message Engine RPC server. This service exposes a heap overflow vulnerability through RPC opcode 43 (0x2b) and a stack overflow vulnerability through RPC opcode 45 (0x2d) on TCP port 6503 endpoint with ID dc246bf0-7a7a-11ce-9f88-00805fe43838. The flaws are exposed when passing long strings as the second parameter to either opcode.
Author:livesploit.com
Homepage:http://www.zerodayinitiative.com/
File Size:3179
Related CVE(s):CVE-2006-5143
Last Modified:Oct 8 23:59:23 2006
MD5 Checksum:ade772e5243f4e4854d93208076f6c6a

 ///  File Name: ZDI-06-032.txt
Description:
 ZDI-06-032: Microsoft Office PowerPoint Malformed Slide Notes Rebuilding Vulnerability: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target user into opening a malicious .PPT file.
Homepage:http://www.zerodayinitiative.com/
File Size:2871
Last Modified:Oct 13 19:18:43 2006
MD5 Checksum:aaa763fda6bcf296b6bf0a930a4f2e5e

 ///  File Name: ZDI-06-033.txt
Description:
 ZDI-06-033: Microsoft Office Excel File Format DATETIME Record Parsing Vulnerability: his vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target user into opening a malicious .XLS file.
Homepage:http://www.zerodayinitiative.com/
File Size:2751
Last Modified:Oct 13 19:18:14 2006
MD5 Checksum:7667e0e5f3bcf7fe6cf759efe8ae0429

 ///  File Name: ZDI-06-034.txt
Description:
 ZDI-06-034: Microsoft Office Word Malformed Chart Code Execution Vulnerability: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target user into opening a malicious .XLS file.
Homepage:http://www.zerodayinitiative.com/
File Size:2731
Last Modified:Oct 13 19:17:39 2006
MD5 Checksum:278c204edcdbb83d8aea8bd9e5495f1b

 ///  File Name: ZDI-06-035.txt
Description:
 ZDI-06-035: Novell eDirectory NDS Server Host Header Buffer Overflow Vulnerability: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability.
Homepage:http://www.zerodayinitiative.com/
File Size:2739
Last Modified:Oct 27 18:52:05 2006
MD5 Checksum:928c64a06a35b3c6ce74278706c98a04

 ///  File Name: Zwahlenshop.txt
Description:
 Zwahlen's Online Shop suffers from a cross site scripting vulnerability in article.htm.
Author:MC Iglo
File Size:229
Last Modified:Oct 27 15:49:09 2006
MD5 Checksum:01ccb3bf68f0baddba063cb77cd14b52
 

 ///  Last 10 Files
  1. :· dsa-1674-1.txt
  2. :· dsa-1673-1.txt
  3. :· activebids-sql.txt
  4. :· activetest21-sql.txt
  5. :· activewebmail4-sql.txt
  6. :· activevotes22-sql.txt
  7. :· oramon-disclose.txt
  8. :· aspthai-disclose.txt
  9. :· openforum-password.txt
  10. :· litolite-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1674-1.txt
  2. :· dsa-1673-1.txt
  3. :· dsa-1672-1.txt
  4. :· USN-679-1.txt
  5. :· USN-680-1.txt
  6. :· impresscms-fixation.txt
  7. :· USN-678-1.txt
  8. :· USN-668-1.txt
  9. :· rsaenvision-disclose.txt
  10. :· SSRT080132.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· activebids-sql.txt
  2. :· activetest21-sql.txt
  3. :· activewebmail4-sql.txt
  4. :· activevotes22-sql.txt
  5. :· oramon-disclose.txt
  6. :· aspthai-disclose.txt
  7. :· openforum-password.txt
  8. :· litolite-sql.txt
  9. :· quicktree-disclose.txt
  10. :· cmsmadesimple-lfi.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· Exomind-v0.2.tar.gz
  2. :· clamav-0.94.2.tar.gz
  3. :· cadfile.zip
  4. :· anehta-v0.6.0fixed2.zip
  5. :· tagfuzz.txt
  6. :· BrowserRider.20081124.tar.bz2
  7. :· mp3nema-v0_2.tar.gz
  8. :· squid-nufw-helper-1.1.3.tar.gz
  9. :· xplico-0.1_deft4.tgz
  10. :· ksplice-0.9.4-src.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· format-string-linux.txt
  2. :· frame-pointer-overwrite-linux.txt
  3. :· iptablesf.txt
  4. :· nufw-2.2.19.tar.gz
  5. :· frhack2009-cfp.txt
  6. :· oracle-forensics-scns.pdf
  7. :· cansecwest-2009.txt
  8. :· A5.1.zip
  9. :· a51-php.txt
  10. :· tcpip_lib51.zip
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice