exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 53 RSS Feed

Files Date: 2009-07-30

AJ Matrix DNA SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ Matrix DNA suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 78ed70075e1bc2740cffc58cbff06e3d7b6b62c0aa175d22b6bf98e7956ee737
AJ HYPE PRIME SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ HYPE PRIME suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 2827340276d03715b01cbc9c4e6fac463ff131287eae68a7d84a7257fca1e520
5th EC2ND Conference - Call For Papers
Posted Jul 30, 2009
Site 2009.ec2nd.org

Call For Papers for EC2ND - The 5th European Conference on Computer Network Defence will take place in November 2009 at the Politecnico di Milano technical university in Milano, Italy.

tags | paper, conference
SHA-256 | f41e3cbd685ab81a5a39fba0fac7863f5d4efdd4c9497b654fd700c0c6e284a9
Epiri Professional Web Browser 3.0 Remote Crash Exploit
Posted Jul 30, 2009
Authored by LiquidWorm | Site zeroscience.mk

Epiri Professional Web Browser version 3.0 remote denial of service proof of concept exploit.

tags | exploit, remote, web, denial of service, proof of concept
SHA-256 | 4b3dabacd8b74fd241c6d71016dd1b82a14b1452ba85b72da8917eb2ae4ea531
Debian Linux Security Advisory 1834-2
Posted Jul 30, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1834-2 - The previous update caused a regression for apache2 in Debian 4.0 "etch". Using mod_deflate together with mod_php could cause segfaults when a client aborts a connection. This update corrects this flaw. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. This issue did not affect Debian 4.0 "etch". A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. A similar flaw related to HEAD requests for compressed content was also fixed.

tags | advisory, remote, denial of service
systems | linux, debian
advisories | CVE-2009-1890, CVE-2009-1891
SHA-256 | 2bb04b990a52bd709d6c38bea3fd00f71adef9c7a03e217b9679cec6bd703f6d
Banner Exchange Script 1.0 SQL Injection
Posted Jul 30, 2009
Authored by 599eme Man

Banner Exchange Script version 1.0 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 21c148f762ad649f0f3712bd49d4e955fc9a5234c16b1716fae9d732763437a8
AJ HYPE ACME SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ HYPE ACME suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 2aac3715b1dcc0f1a537565260018f1fd657ed1e0b0abbb09d5bea2d8f552b2b
Softbiz Dating Script SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

Softbiz Dating Script is susceptible to a remote SQL injection vulnerability in cat_products.php.

tags | exploit, remote, php, sql injection
SHA-256 | 91bfac2eb0da6593fa7b3fc52f51cd194f9cec1c3e3105614100e12a557a914b
Ez Album Persistent Cross Site Scripting
Posted Jul 30, 2009
Authored by MizoZ

Ez Album suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 4fabfff117afcd1456d06c41e1137f5999cf411e5d39dc1f1269190b455edecf
WebVision 2.1 Cross Site Scripting
Posted Jul 30, 2009
Authored by MizoZ

WebVision version 2.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 5136a1314126363124d3c6886bc95fac333418375cf83bb690b9139f8ad85177
Check Rootkit 0.49
Posted Jul 30, 2009
Authored by Nelson Murilo | Site chkrootkit.org

Chkrootkit checks locally for signs of a rootkit. Chkrootkit includes ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions, strings.c for quick and dirty strings replacement, check_wtmpx.c to check for wtmpx deletions and the files chkproc.c and chkdirs.c to check for LKM trojans. Tested on Linux 2.0.x, 2.2.x and 2.4.x, FreeBSD 2.2.x, 3.x, 4.x, and 5.x, BSDI, OpenBSD 2.6, 2.7, 2.8, 2.9, 3.0 and 3.1, NetBSD 1.5.2 and Solaris 2.5.1, 2.6 and 8.0, and HP-UX 11.

Changes: New and enhanced tests, minor bug fixes.
tags | tool, trojan, integrity, rootkit
systems | linux, netbsd, unix, solaris, freebsd, openbsd, hpux
SHA-256 | ccb87be09e8923d51f450a167f484414f70c36c942f8ef5b9e5e4a69b7baa17f
PTC Script 1.2 Cross Site Scripting
Posted Jul 30, 2009
Authored by 599eme Man

PTC Script version 1.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 6fa4cd18ce4be7d29304eb85359634936a36e7ffb11153ab30e4cb9bf13be16a
Jokes Portal Script Seo 1.0 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Jokes Portal Script Seo version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | fbbad7523878ef80e1df9f8917f9828e2ba2e3e12a1c373b98991148ad79ea78
Flash Games Script 1.0 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Flash Games Scripts version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8147ac9347f4ddbd930462ec61eb0e3c38184949699c7763e1b533e6d498b9f0
Article Directory Script Seo 2.5 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Article Directory Script Seo version 2.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | d5ea1c0cba8d312858cb441518ae333fe0841abb7f4c479b7e1b1e8df2f5dd42
HP Security Bulletin HPSBUX02421 SSRT090047
Posted Jul 30, 2009
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - Potential security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service (DoS) or to execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | hpux
advisories | CVE-2009-0846, CVE-2009-0847
SHA-256 | d984b720f3465fb1ba1d035590eb1f5358e3f95c97706772318b2e7bebdc4d2c
ISC BIND 9 Remote Dynamic Update Message Denial Of Service
Posted Jul 30, 2009
Authored by Kingcope

ISC BIND 9 remote dynamic update message denial of service proof of concept exploit.

tags | exploit, remote, denial of service, proof of concept
advisories | CVE-2009-0696
SHA-256 | 799163d3096ac6417859d8336c72804bd82e0fdfa3175c781142368b9092f046
EPSON Status Monitor 3 Privilege Escalation
Posted Jul 30, 2009
Authored by Nine:Situations:Group | Site retrogod.altervista.org

EPSON Status Monitor 3 suffers from a local privilege escalation vulnerability.

tags | exploit, local
SHA-256 | bdd59a07432408d0d4b87e1fa1270c97e9c24ead8095fa5897699959c52a76b1
Haraldscan Bluetooth Discovery Scanner
Posted Jul 30, 2009
Authored by Terence Stenvold | Site code.google.com

Harald Scan is a Bluetooth discovery scanner. It determines Major and Minor device classes according to the Bluetooth SIG specification and attempts to resolve a device's MAC address to the largest known vendor/MAC address list. Written in Python.

Changes: MACLIST now uses IEEE OUI naming for vendors. It also contains 223 entries. The interface now shows how many devices were discovered. The -s and "Unknown" MAC service scans are only done once instead of continually.
tags | tool, python, wireless
SHA-256 | 0c7e222b070b432f4b5895dfde33b81c79d05a64572b038602aa78210012b137
Cisco Security Advisory 20090729-bgp
Posted Jul 30, 2009
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Recent versions of Cisco IOS Software support RFC4893 ("BGP Support for Four-octet AS Number Space") and contain two remote denial of service (DoS) vulnerabilities when handling specific Border Gateway Protocol (BGP) updates. These vulnerabilities affect only devices running Cisco IOS Software with support for four-octet AS number space (here after referred to as 4-byte AS number) and BGP routing configured. The first vulnerability could cause an affected device to reload when processing a BGP update that contains autonomous system (AS) path segments made up of more than one thousand autonomous systems. The second vulnerability could cause an affected device to reload when the affected device processes a malformed BGP update that has been crafted to trigger the issue.

tags | advisory, remote, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2009-1168, CVE-2009-2049
SHA-256 | 2c460f0ad63f0f3a8e738688ac261e9554aca26b3fa84095b3b63941224e5828
NTSOFT BBS E-Market Professional XSS
Posted Jul 30, 2009
Authored by Ivan Sanchez | Site nullcode.com.ar

NTSOFT BBS E-Market Professional suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 3003fe2a354ba57934d0f3474ce9a2611490bf3048c2ef8db911956cb5c9fe69
Mandriva Linux Security Advisory 2009-181
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-181 - The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message, as exploited in the wild in July 2009. This update provides fixes for this vulnerability.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2009-0696
SHA-256 | 827d6e18872f55d13f65677eede4df6fe9b092aacbeeaf3a59f177de8bea2b66
Mandriva Linux Security Advisory 2009-180
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-180 - Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a.xbm file. This update provides fixes for this vulnerability.

tags | advisory, denial of service, overflow
systems | linux, mandriva
advisories | CVE-2009-2286
SHA-256 | 74712dd47e7696f97bd871d718e4af6159e0a39ef1e72cd819a4035b7d6cd17e
Mandriva Linux Security Advisory 2009-179
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-179 - Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information. This update provides fixes for this vulnerability.

tags | advisory, remote, denial of service, vulnerability
systems | linux, mandriva
advisories | CVE-2009-2446
SHA-256 | b6f23056ca397f0cabf1b9e791a0d3dc4c26f03d88d9917816139a0e3686da9b
Mandriva Linux Security Advisory 2009-178
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-178 - Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses. Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses. This update provides fixes for these vulnerabilities.

tags | advisory, denial of service, vulnerability
systems | linux, mandriva
SHA-256 | 45c9befe62afdc03cc523a9068155394f42676b1fb8969b2f7ad321f2b0f409a
Page 1 of 3
Back123Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    0 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close