Core Security Technologies Advisory - Multiple integer overflow vulnerabilities have been discovered in UltraVNC and TightVNC, two (open source) remote control applications derived from the popular VNC software. The vulnerabilities cause a miscalculation of a buffer size on the heap, allowing an attacker to corrupt a VNC client heap and can probably allow code execution (exploitation is very likely). Affected packages include UltraVNC versions 1.0.2, 1.0.5, and TightVNC version 1.3.9.
27ab44936ddd8eacf7dda098842026d7f58dc3335367e99f73723c3a8cc516ddEuphonic Audio Player version 1.0 local buffer overflow exploit that creates a malicious .pls file.
da56d96008c755e43aa711c77120a49effcc286093eab1d7c2de4fbfd44a36bfWEBalbum version 2.4b remote blind SQL injection exploit that leverages photo.php.
d7ca1aa02c5273038ee9b6ec42eeecb08d78c6771b8f839cc998f1d883d9e289Team SHATTER Security Advisory - Oracle Database Server version 9iR2 suffers from a buffer overflow vulnerability in SYS.OLAPIMPL_T.ODCITABLESTART.
a39843ad1978417ac2d1d54f77d7f550dd386455ba1250f2d7c1ff55526f2b6fTeam SHATTER Security Advisory - The Oracle Enterprise Manager TARGET parameter suffers from a remote SQL injection vulnerability. Oracle Enterprise Manager 10g Grid Control 10.2.0.4 and previous patchsets are vulnerable.
acd32ba3a38a84b9fa838e17fd50d867609b311ce99bfa68d4c094796de222a7MyDesign Sayac version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
73b1aacbc867b53e8cc4b71b02b1ac0e0550aa66d9a14aefa4464eb203a102d0Simple Machines Forums suffers from a cookie stealing vulnerability.
45d1e2fac01c0acc368d3ef2dd2a067a08acdf318adb7dd89188262cbd8afb18Online Game Script cross site request forgery exploit.
4ff0591169ce61b96b2a1e3790fcf168f8f48bab91d8b58b7a62921166236dabJaws version 0.8.8 suffers from a local file inclusion vulnerability.
d57aee98010c3af35c615027fc193282257a906aff816b1b2cfa53e2f2fa806aAJA Modules Rapidshare version 1.0.0 suffers from a remote shell upload vulnerability.
dc7805c549a659de27d5e17449057fadcb8c4dd6ae18868de9b1b453118cd429Phormer PhotoGallery version 3.3.1 suffers from an insecure cookie handling vulnerability.
724b69ccd70353a15db42838c86a1d9079030ed993a40f926c283456ae143897Technote 7.2 suffers from the same remote file inclusion vulnerability as Technote 7.0. Obviously, the authors did not feel this was an important fix for the following release.
40e818cbaba512214e4d4af00accf91a1cb42379a7f1d13442171d00dd83760eBlazeVideo HDTV Player versions 3.5 and below remote heap overflow exploit that generates a malicious .plf playlist file.
4b4c1558e7f56d01f5235ad5b66a61db0081bd3af414422f76a4c97100c66ee6This file documents recent incidents that have been reported to the Web Hacking Incidents Database (WHID).
ff786846a4d8dd673858a1ce9d94bf2333c7eea65387c85272d128241904ae96DreamPics Photo/Video Gallery remote blind SQL injection exploit.
dcd35707c99ed13667bc2b8b0d7b08aa1be8cceeaff98981f98cb2f6efa71db6Free Download Manager versions 3.0 Build 844 and below buffer overflow exploit that creates a malicious .torrent file.
d12f4e089445b1376e418c8bb42e9ae29a3e9f38e422a24c6d2d91e761df72a54Site CMS versions 2.6 and below suffer from multiple remote SQL injection vulnerabilities.
5317adad68f2d338b11b78fefffa8de75b0297f4a64f2c516ec4c0de39dbbf9dGroone's Guestbook version 2.0 suffers from a remote file inclusion vulnerability.
c68c5ee7af85f17e26685180f3bd7c7f1a95c6f7dbe63633c395ca1a679dcd8bGroone GLinks version 2.1 suffers from a remote file inclusion vulnerability.
2ae8d59b547f45d8a319290094a0dda4c3cf1b3f16af3311e91ca4f91a5c5beaHex Workshop version 6 invalid memory reference crash proof of concept exploit that makes a malicious .cmap file.
212e459b6da6a635f8b5e94175e3a442aa2bd9e90775f4d992e14e9c63dbe9f0TxtBlog version 1.0 Alpha remote command execution exploit.
77e92d48c77613b107ba5d46abc7a9bd0872d369378d3087044beccf42731f66HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running IPv6. This vulnerability could be exploited remotely resulting in a Denial of Service (DoS) and unauthorized access.
c027f5f7923cfc1e981596de9960ed7850def908f33cb8be259a2eca6f7da276Nokia Multimedia Player version 1.1 heap overflow proof of concept exploit that creates a malicious .m3u file.
8a08979b49561cbf9812489de3f19650fe0061fbf344556ab2403791bdab1f43Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, generated insufficiently random numbers, resulting in all random tokens being the same, all CSRF protection being defeated, and the new attachment_base functionality being compromised.
242b54b1cddc091b8ac840990a5715422764ecd5ea5df5950cbb65e6eccd8af5WholeHogSoftware Password Protect suffers from an insecure cookie handling vulnerability.
879dcb888bd7acc1a852549d9d2bc10d3e78da75248890919d6c01b2efb8061c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed