Section: .. / Last 20 Files /
| /// File Name: | flashquiz-sql.txt | Description:
| Flash Quiz Beta 2 suffers from multiple remote SQL injection vulnerabilities. | | Author: | YEnH4ckEr | | File Size: | 4799 | | Last Modified: | May 21 20:16:06 2009 | | MD5 Checksum: | 79e83f1d8fff471add51b29468c06e30 |
|
| /// File Name: | zaocms-disclose.txt | Description:
| ZaoCMS suffers from a remote file disclosure vulnerability in download.php. | | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 984 | | Last Modified: | May 21 20:13:03 2009 | | MD5 Checksum: | 502b4c44e359088633e8cc81b5a93d98 |
|
| /// File Name: | zaocms-insecure.txt | Description:
| ZaoCMS suffers from an insecure cookie handling vulnerability. | | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 764 | | Last Modified: | May 21 20:12:09 2009 | | MD5 Checksum: | c7f9db9207db7329f8eb5fcc88d0019b |
|
| /// File Name: | articledir-blindsql.txt | Description:
| Article Directory suffers from a remote blind SQL injection vulnerability in page.php. | | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 806 | | Last Modified: | May 21 20:10:23 2009 | | MD5 Checksum: | a25fed9e80f418229a3e08397968dcb3 |
|
| /// File Name: | MDVSA-2009-121.txt | Description:
| Mandriva Linux Security Advisory 2009-121 - Multiple security vulnerabilities has been identified and fixed in Little CMS. A memory leak flaw allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted image file. Multiple integer overflows allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. Multiple stack-based buffer overflows allow remote attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel. A flaw in the transformations of monochrome profiles allows remote attackers to cause denial of service triggered by a NULL pointer dereference via a crafted image file. This update provides fixes for these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6914 | | Related CVE(s): | CVE-2009-0581, CVE-2009-0723, CVE-2009-0733, CVE-2009-0793 | | Last Modified: | May 21 19:47:59 2009 | | MD5 Checksum: | 9aaa6e5338f13acaf3205e37a5a22ca6 |
|
| /// File Name: | MDVSA-2009-120.txt | Description:
| Mandriva Linux Security Advisory 2009-120 - Multiple security vulnerabilities has been identified and fixed in OpenSSL. The dtls1_buffer_record function in ssl/d1_pkt.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allows remote attackers to cause a denial of service (memory consumption) via a large series of future epoch DTLS records that are buffered in a queue, aka DTLS record buffer limitation bug. Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consumption) via DTLS records that (1) are duplicates or (2) have sequence numbers much greater than current sequence numbers, aka DTLS fragment handling memory leak. The updated packages have been patched to prevent this. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5616 | | Related CVE(s): | CVE-2009-1377, CVE-2009-1378 | | Last Modified: | May 21 19:46:48 2009 | | MD5 Checksum: | 40411a2c25d7fd9f6200712d9f70d18c |
|
| /// File Name: | articledirectory-sql.txt | Description:
| Article Directory suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Hakxer | | File Size: | 2061 | | Last Modified: | May 21 19:42:52 2009 | | MD5 Checksum: | c12c1f4808e1303485e28367920a5e8b |
|
| /// File Name: | jobscript-upload.txt | Description:
| Job Script version 2.0 suffers from an arbitrary shell upload vulnerability. | | Author: | Hakxer | | File Size: | 1217 | | Last Modified: | May 21 19:41:58 2009 | | MD5 Checksum: | 5245a601d40ab4035909b482f64b600e |
|
| /// File Name: | aspinlinecc-sqlxss.txt | Description:
| ASP Inline Corporate Calendar suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | Bl@ckbe@rd | | File Size: | 1332 | | Last Modified: | May 21 19:36:08 2009 | | MD5 Checksum: | d4427407dd890bd7747e1e11f99a2229 |
|
| /// File Name: | vicidial-sql.txt | Description:
| Vicidial Call Center Suite suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | Striker7 | | File Size: | 1024 | | Last Modified: | May 21 19:34:16 2009 | | MD5 Checksum: | 6f9d072d28046233760d43790aa5835c |
|
| /// File Name: | DDIVRT-2009-25.txt | Description:
| The web interface on tcp port 8090 of IPsession suffers from a SQL injection vulnerability. | | Author: | David Marshall,r@b13$ | | Homepage: | http://www.digitaldefense.net/ | | File Size: | 869 | | Last Modified: | May 21 19:32:14 2009 | | MD5 Checksum: | a9e4c0a0fb5a55991acaf2f0e3c218fe |
|
| /// File Name: | chinagames-exec.txt | Description:
| ChinaGames Active-X related remote code execution exploit. | | Author: | etirah | | File Size: | 1697 | | Last Modified: | May 21 19:30:52 2009 | | MD5 Checksum: | b4e4a1135cd48de152edfc62d0d34df2 |
|
| /// File Name: | baofeng-exec.txt | Description:
| BaoFeng Active-X related remote code execution exploit. | | Author: | etirah | | File Size: | 1752 | | Last Modified: | May 21 19:29:06 2009 | | MD5 Checksum: | 747e205acea99eae101b09eac2147010 |
|
| /// File Name: | msiiswebdav-bypass.txt | Description:
| Remote authentication bypass exploit for the WebDAV vulnerability in Microsoft IIS 6.0. | | Author: | Andrew Orr,Ron Bowes | | Homepage: | http://www.skullsecurity.org/ | | File Size: | 4218 | | Last Modified: | May 21 15:01:22 2009 | | MD5 Checksum: | 88f5c6917ad436df1a16908de6c90d8f |
|
| /// File Name: | 05.19.09-1.txt | Description:
| iDefense Security Advisory 05.19.09 - Local exploitation of a file overwrite vulnerability in IBM Corp.'s Advanced Interactive eXecutive (AIX) could allow an attacker to overwrite arbitrary files and execute arbitrary code. The AIX libc implementation of malloc includes a debugging mechanism that is initiated by setting the MALLOCTYPE and MALLOCDEBUG environment variables. This debugging feature writes to a user-specified log file under certain conditions. There is a gap in time between the checks to see if the file is a symbolic link and the process of opening the file. If an attacker can change the file to be a symbolic link to another file within this time frame, it is possible to cause a set-uid binary to write to files owned by privileged users. iDefense confirmed the existence of this vulnerability in IBM Corp.'s AIX version 5.3. Other versions may also be affected. | | Homepage: | http://www.idefense.com/ | | File Size: | 3014 | | Last Modified: | May 21 02:26:05 2009 | | MD5 Checksum: | f5df636d3549f48d5c7b51f6d5d3826e |
|
| /// File Name: | CORE-2009-0109.txt | Description:
| Core Security Technologies Advisory - Several cross site scripting vulnerabilities were found in the following files/urls of the Sun Java System Communications Express system. | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 13660 | | Related CVE(s): | CVE-2009-1729 | | Last Modified: | May 21 02:23:41 2009 | | MD5 Checksum: | 66cba81d15ed53317ac0960af46eaf8b |
|
| /// File Name: | cisco-sa-20090520-cw.txt | Description:
| Cisco Security Advisory - CiscoWorks Common Services contains a vulnerability that could allow an unauthenticated remote attacker to access application and host operating system files. | | Homepage: | http://www.cisco.com/ | | File Size: | 12910 | | Related CVE(s): | CVE-2009-1161 | | Last Modified: | May 21 02:09:39 2009 | | MD5 Checksum: | 36b09d3bf0be6807065752275ed88f69 |
|
| /// File Name: | dsa-1804-1.txt | Description:
| Debian Security Advisory 1804-1 - Several remote vulnerabilities have been discovered in racoon, the Internet Key Exchange daemon of ipsec-tools. The The Common Vulnerabilities and Exposures project identified the | | Homepage: | http://www.debian.org/security | | File Size: | 11559 | | Related CVE(s): | CVE-2009-1574, CVE-2009-1632 | | Last Modified: | May 21 02:08:56 2009 | | MD5 Checksum: | 9d111a30fa624f6f607795fce1599ab2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
