Proof of concept exploit for Doomsday versions 1.9.0-beta5.1 and below which suffer from buffer overflow and format string vulnerabilities.
540586ef80480715169575fdef1387b665923b0654d8df90e0786eee899364c3Doomsday versions 1.9.0-beta5.1 and below suffer from buffer overflow and format string vulnerabilities.
b38dd3ee54d69e26999d0080a3cde63195198e6bb749b37c5f24934d46ca4ceeUbuntu Security Notice 507-1 - It was discovered that the TCP wrapper library was incorrectly allowing connections to services that did not specify server-side connection details. Remote attackers could connect to services that had been configured to block such connections. This only affected Ubuntu Feisty.
f47ff085f7f8a24472ef816f88dbf652088e6fc70ed636813529bd766d10bcc0Team Intell Security Advisory TISA2007-13-Public - Multiple eScan products suffer from insecure file permissions.
1aba748a2a274c3e0c4be06e1f617c314ecc60d72089ebd9d9188f02c5162309Team Intell Security Advisory TISA2007-09-Public - Microsoft Windows suffers from multiple improper file path handling issues.
e45443a257b76bae17116bc5cf8436d630550b5bbc6c59ae95bb739477b550b9Secunia Security Advisory - Doz has reported some vulnerabilities in InterWorx-CP, which can be exploited by malicious people to conduct cross-site scripting attacks.
5b51f4a89384a736ac1fbd27d82f54e9792c87336d1aac6918a12c5b0af55505Debian Security Advisory 1362-1 - Several vulnerabilities were discovered in lighttpd, a fast webserver with minimal memory footprint.
3afee7853cbd74d79092ddcbe6a395c4881632cdcc68950d95cbf4e31b99d477Debian Security Advisory 1361-1 - It was discovered that postfix-policyd, an anti-spam plugin for postfix, didn't correctly bounds-test incoming SMTP commands potentially allowing the remote exploitation of arbitrary code.
e1b10980d832630e938673e8cae995c5fff5a4dff0ad9ffb77a766f686bbf6c8sqlninja is a small tool to exploit SQL injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable database server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a database Server when a SQL injection vulnerability has been discovered. It is written in perl and runs on Unix-like boxes.
578cde4354497e37327dc9367a4441735803548cf1e9a405959cf506846daf48Cisco Security Advisory - Cisco CallManager and Unified Communications Manager are vulnerable to cross-site Scripting (XSS) and SQL Injection attacks in the lang variable of the admin and user logon pages. A successful attack may allow an attacker to run JavaScript on computer systems connecting to CallManager or Unified Communications Manager servers, and has the potential to disclose information within the database.
7cbc998159f7abe2a3434e929f99c40b8a777b1227353a4ebd1d5510d3978413EnterpriseDB Advanced Server version 8.2 suffers from an uninitialized pointer vulnerability that may allow for remote code execution.
b2765a949f88838b2b0e83991de18eb81e1d045502375c29a4da8077445d7b69Blizzard StarCraft Brood War version 1.15.1 suffers from a remote denial of service vulnerability.
32a78f48606c7a8339245472c40865d4197517ce3a37de6dcb1e758a0288ee14Seccheck is a feature rich, modular, host-level security checker for Solaris 10. Easily expandable with customized modules, Seccheck produces highly detailed reports based around known and published security best-practices and guidelines. It also produces recommendations on how to fix flagged security issues.
3ba8480f0e303606f0eb9bb2acac9e49b1d0524f0b84c71ac2443f9f320690a0Yahoo! Messenger version 8.1.0.413 webcam remote crash denial of service exploit.
32de211035f6458d2a00dfe2984d39fc12c90a66af5afd9370e90ac28abc405bMSN Messenger 7.x VIDEO remote heap overflow exploit.
e7591e5b020fdc229d344b0d91c9c90fd1e912c85e046c6c5783f789597a5c17Pakupaku CMS versions 0.4 and below remote file upload exploit.
5544b6c235e5c5c0070b899c451009e9baff0098dfbf36c2b71fdfe9c327a72fphpBG version 0.9.1 suffers from remote file inclusion vulnerabilities.
f392e5ff932142d4de2b29586ca05360726f600729e2edc902390b19b7779a4fPHPNS version 1.1 suffers from a remote SQL injection vulnerability in shownews.php.
dbc3353c955a4b6a49f2bca34cbff7a623b6a6cc22e708e67e9043c04f29d907ABC estore version 3.0 remote blind SQL injection exploit.
d8ed12a63916f6aa1eb19d14645b32b8a44dfaa53f28735d0f12e8378777158cxGB version 2.0 suffers from a remote permission bypass vulnerability.
38193aa67d5dfae2b76f29234d2c0a35c1a9e89948528f496b63608eecde2f05Microsoft Windows denial of service exploit that makes use of GDI32.DLL. This vulnerability is related to MS07-046.
48362ccb419829e0f7d27c62f96776b605c96eb510c7efa90cd54f8be993982dSecunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Novell Client, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
87e19951c365d04ebb13c86a2ecb7d6d8a929e2fd33a941e11f9dafed122ca84Secunia Security Advisory - Some vulnerabilities and security issues have been reported in BEA Weblogic, which can be exploited by malicious people to gain access to sensitive information or to cause a DoS (Denial of Service).
0d2524839d30e938ac4f8c5ccad0488a7edb550ed41616d45c7a9dfc7b0a1589Secunia Security Advisory - Ubuntu has issued an update for vim. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
15ac221175ec71e9505fc2f697aa9d693c9e1f004abc95f62946c79b13cf3801Secunia Security Advisory - Katatafish has reported a vulnerability in SomeryC, which can be exploited by malicious people to compromise a vulnerable system.
77fa6959885112898ccdffa5c86e959fdc5124b8bf4498f6bb3e67e9b86739c6
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed