RadASM version 2.2.1.5 .rap file local stack overflow exploit.
09add7869f7fda1c8576924f6f81d2ebb00b71aa9efa05dc66cfac314597f8abMediaCoder version 0.6.2.4275 .m3u file universal buffer overflow SEH exploit.
91384afea3125f73aa27643f850929bb68956192c78ed5d2ed62c5458e50e051MediaCoder version 0.6.2.4275 .m3u file universal stack overflow exploit.
0acabdd12e6e8c20054354b412b07e3de59c1a9c1532e4054da75c01601c515bAddonics NAS adapter post authentication denial of service exploit.
b0c6cced89aa484a6d2f1ac21c2bdc2c20fbb2785596aa7bf5acaa7f417b274bPHP Director versions 0.21 and below SQL injection into outfile eval() injection exploit.
ae4f89565a65a1a19d6c574a5a2cb61604d37f54ae7d294f7e2427c81609e7f9Whitepaper called MySQL: Secure Web Apps - SQL Injection Techniques.
0930f3a77eb458da8c9b9a814769e7cd4e1235ac3871a8c0be819bd5167283ffIssue 1 of Adur[IT] Magazine : IT Security. Written in Arabic.
049f5e91d906c2a8b605c01007f781fb46cca541f88fba4be3b03f6116030b58Whitepaper discussing the cracking of WPA and WPA-PSK with a wordlist. Written in Spanish.
c270bbe7135098af512abffe5708f49a05055f3714422fb5eb2184f8ab403732Proof of concept exploit for a local stack buffer overflow vulnerability in eZip Wizard version 3.0.
32ec0af182840fc0d8d5a75b1286fc8725c68ac4c8128e0c796f2aa1a1ea38fcPHP Fuzzing In Action - 20 Ways To Fuzz PHP Source Code.
c801fa5bcab877511e3678eea2660852faecbdbf87a4d6cdc8d0712f8ed2e458Woltlab Burning Board version 3.0.x suffers from url redirection, tag script injection, and cross site scripting vulnerabilities.
7e50f168f15272ed520d3a6bfdd401cd988209965da957f490b4ec559faaf6f0The PHP-Fusion Book Panel module suffers from a remote SQL injection vulnerability.
2feb70f0504ce2936a7d37d16d9d673f55399acab13d9e7cad36429708474118Foxit Reader versions 3.0 build 1120 and build 1301 suffer from authorization bypass and buffer overflow vulnerabilities.
fbe7a9965a2887b415c01e3fe3490d016b1b5248398aa3b9b36bb9c0f1de6607A directory traversal vulnerability exists in the SMART Web Server.
97b4c28636a988b5b3e31bd1731c3e6407303b06cb0beb95394c72c068bbab87The vBook login application suffers from a cross site scripting vulnerability.
50387c32e88aef30367458ebab6982529bc07bcda2bcc4bbd3cdf6fb68c88bb8Gentoo Linux Security Advisory GLSA 200903-21 - A vulnerability in cURL may allow for arbitrary file access. David Kierznowski reported that the redirect implementation accepts arbitrary Location values when CURLOPT_FOLLOWLOCATION is enabled. Versions less than 7.19.4 are affected.
bf56e5fa8084f4277fc7f4c18fab20b5d542b1c39c0f73442876559855137720Gentoo Linux Security Advisory GLSA 200903-20 - Multiple vulnerabilities in WebSVN allow for file overwrite and information disclosure. James Bercegay of GulfTech Security reported a Cross-site scripting (XSS) vulnerability in the getParameterisedSelfUrl() function in index.php (CVE-2008-5918) and a directory traversal vulnerability in rss.php when magic_quotes_gpc is disabled (CVE-2008-5919). Versions less than 2.1.0 are affected.
c47bce5b9c11d49a0c300bbe9035b3bf7fc6515d15f7465de99987eca26f9e99Gentoo Linux Security Advisory GLSA 200903-19 - An error in Xerces-C++ allows for a Denial of Service via malicious XML schema files. Frank Rast reported that the XML parser in Xerces-C++ does not correctly handle an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during the validation of an XML file. Versions less than 3.0.0-r1 are affected.
1fe98d60d68fec2dc0afd4d73f1af35fb752d7207bfc0c4a1d36dbbf3c2624ccGentoo Linux Security Advisory GLSA 200903-18 - An insecure temporary file usage has been reported in Openswan, allowing for symlink attacks. Dmitry E. Oboukhov reported that the IPSEC livetest tool does not handle the ipseclive.conn and ipsec.olts.remote.log temporary files securely. Versions less than 2.4.13-r2 are affected.
fa432b659b8ee8bf4248d6dd8c9d6c56c0794d09817d68b97ecc82cbb40f7891Gentoo Linux Security Advisory GLSA 200903-17 - The Real VNC client is vulnerable to execution of arbitrary code when connecting to a malicious server. An unspecified vulnerability has been discovered in the CMsgReader::readRect() function in the VNC Viewer component, related to the encoding type of RFB protocol data. Versions less than 4.1.3 are affected.
1df03de82266532243e2060eaa8569a30b6ede503bc94508e3cdf4b80a1ab7c0Gentoo Linux Security Advisory GLSA 200903-16 - An untrusted search path vulnerability in Epiphany might result in the execution of arbitrary code. James Vega reported an untrusted search path vulnerability in the Python interface. Versions less than 2.22.3-r2 are affected.
f8e7162ba670b96296d096765bbcc2aef7e695b25dda8955f0b94fb293566640Gentoo Linux Security Advisory GLSA 200903-15 - Multiple vulnerabilities in gitweb allow for remote execution of arbitrary commands. Versions less than 1.6.0.6 are affected.
ee4a8988fca8e7dd0cf0c04d2502155ab9179a6ee36303d43624079a303589b9Simple Fuzz is a simple fuzzer. It has two network modes of operation, an output mode for developing command line fuzzing scripts, as well as taking fuzzing strings from literals and building strings from sequences. It is built to fill a need - the need for a quickly configurable black box testing utility that does not require intimate knowledge of the inner workings of C or require specialized software rigs. The aim is to just provide a simple interface, clear inputs/outputs, and reusability.
e244dc374f84c63b7a6cfac17c78eed576e3b6cb4d0a536d0a32bb866d67896bosCommerce version 2.2rc1 suffers from cross site scripting and file/directory creation vulnerabilities.
7920e1028d29b538f14b91648b11b2d0f8fc7ccbef4c24bb42acb872e09bc150Geoipgen is an IPv4 network tool for generating geotargeted IP addresses. Features: Random or sorted order, unique or repeating ips, skips broadcast addresses, uses the MaxMind GeoLite Country database.
099eb122084fcd73c6d8edf386ad14a23ea749a990a8e99ad4acdeba5df01cac
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed