.:[ packet storm ]:.
                             
it's okay to have the details
it's okay to have the details

 Section:  .. / Last 100 Files /

 ///  File Name:USN-703-1.txt
Description:
Ubuntu Security Notice USN-703-1 - Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges.
Homepage:http://security.ubuntu.com/
File Size:6861
Related CVE(s):CVE-2006-7236, CVE-2008-2383
Last Modified:Jan 5 21:02:54 2009
MD5 Checksum:9352865d1436dc3218db4a78e9ce1d04

 ///  File Name:USN-702-1.txt
Description:
Ubuntu Security Notice USN-702-1 - Gunter Hockel discovered that Samba with registry shares enabled did not properly validate share names. An authenticated user could gain access to the root filesystem by using an older version of smbclient and specifying an empty string as a share name. This is only an issue if registry shares are enabled on the server by setting "registry shares = yes", "include = registry", or "config backend = registry", which is not the default.
Homepage:http://security.ubuntu.com/
File Size:10900
Related CVE(s):CVE-2009-0022
Last Modified:Jan 5 21:00:41 2009
MD5 Checksum:16c06750eef20e3808874ed0c796b230

 ///  File Name:phpauctionsystem-insecure.txt
Description:
PHP Auction System suffers from an insecure cookie handling vulnerability.
Author:ZoRLu
File Size:1265
Last Modified:Jan 5 20:59:51 2009
MD5 Checksum:40f2f0c3660aee65abfa178d0a395854

 ///  File Name:phpauctionsystem-sqlxss.txt
Description:
PHP Auction System suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:X0r
File Size:1924
Last Modified:Jan 5 20:58:16 2009
MD5 Checksum:dff3935d238a050c0de9d81375c92e77

 ///  File Name:joomlaphoca-sql.txt
Description:
Joomla Phoca Documentation remote SQL injection exploit that makes use of index.php.
Author:EcHoLL
Homepage:http://www.warezturk.org/
File Size:1560
Last Modified:Jan 5 20:55:31 2009
MD5 Checksum:a42915d816e3b2ea44e5e52cf5d103fc

 ///  File Name:lfi-rfi2.txt
Description:
Local / Remote file inclusion scanner that attempts to make use of a c99 shell on a vulnerable host.
Author:baltazar
Homepage:http://www.darkc0de.com/
File Size:6218
Last Modified:Jan 5 20:52:19 2009
MD5 Checksum:a1530ae1679861ae4a4d3387842eac0e

 ///  File Name:theratcms-sql.txt
Description:
The Rat CMS Alpha 2 remote blind SQL injection exploit that leverages viewarticle.php.
Author:darkjoker
Homepage:http://darkjokerside.altervista.org/
Related Exploit:theratcms-sqlxss.txt
File Size:1533
Last Modified:Jan 5 20:43:42 2009
MD5 Checksum:8b4f50f57fc9bd70a0764d5fed2e673c

 ///  File Name:walusoft-traversal.txt
Description:
Walusoft TFTPServer2000 version 3.6.1 suffers from a directory traversal vulnerability.
Author:princeofnigeria
File Size:2845
Last Modified:Jan 5 20:46:20 2009
MD5 Checksum:64146b5fc1a21ec677636cddac2a0ac7

 ///  File Name:dmp161lst4-overflow.txt
Description:
Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe.
Author:Stack
Homepage:http://v4-team.com/
File Size:1537
Last Modified:Jan 5 20:42:34 2009
MD5 Checksum:950e82dd52b76be3b441537b1c8946d6

 ///  File Name:seacureit-cfp2009.txt
Description:
SEaCURE.IT is the first international technical conference ever held in Italy on security related topics, aimed at bringing together the leading experts from all over the world, to create a unique setting for networking and discussion among the speakers and the attendees. The 2009 edition will be held from May 19th to the 22nd in Villasimius, Sardinia.
Homepage:http://www.seacure.it/
File Size:5347
Last Modified:Jan 5 20:30:16 2009
MD5 Checksum:28e55afb975a46ebd64652a868002743

 ///  File Name:plxautoreminder-sql.txt
Description:
plxAutoReminder version 3.7 suffers from a remote SQL injection vulnerability.
Author:ZoRLu
File Size:1188
Last Modified:Jan 5 20:28:23 2009
MD5 Checksum:0da4a3c15c3933f0b1db0d73d765c906

 ///  File Name:safari-heap.txt
Description:
Safari array integer overflow proof of concept exploit.
Author:SkyLined
File Size:26629
Last Modified:Jan 5 20:27:13 2009
MD5 Checksum:dd9f8f395b56e7be0ccfd2abb77be20d

 ///  File Name:dmp161lst3-overflow.txt
Description:
Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe.
Author:H-T Team
Homepage:http://no-hack.fr/
File Size:1557
Last Modified:Jan 5 20:26:06 2009
MD5 Checksum:895b67587da6e19c6b19ca60e24184aa

 ///  File Name:tor.uclibc.i686.20090105.iso
Description:
Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP.
Author:Anthony G. Basile
Homepage:http://opensource.dyc.edu/tor-ramdisk
Changes:Tor updated to 0.2.0.32. Kernel updated to Linux-2.6.25.17 plus Gentoo\'s hardened-patches-2.6.25-12.extras.
File Size:4145152
Last Modified:Jan 5 20:23:11 2009
MD5 Checksum:62155716de0033efdbbbfcd30e7a289e

 ///  File Name:solucion-sql.txt
Description:
SolucionWeb suffers from a remote SQL injection vulnerability in main.php.
Author:Ehsan_Hp200
File Size:1406
Last Modified:Jan 5 20:08:35 2009
MD5 Checksum:76a412aa82f1d4dfa57dac80a5a5d664

 ///  File Name:joomlanewsdesc-sql.txt
Description:
Joomla NA News Description component remote SQL injection exploit.
Author:EcHoLL
Homepage:http://www.warezturk.org/
File Size:1679
Last Modified:Jan 5 20:07:15 2009
MD5 Checksum:dbc07a77c38c8ac03698a09fc8e6ffc4

 ///  File Name:pollpro-xsrf.txt
Description:
PollPro version 3.0 appears to suffer from a cross site request forgery vulnerability.
Author:The_0nur-n0x
File Size:1851
Last Modified:Jan 5 20:04:43 2009
MD5 Checksum:c2ab74358b5bd4e0c25d3f8c9080eed2

 ///  File Name:webspell-edit.txt
Description:
webSPELL versions 4.01.02 and below suffer from a remote edit topics vulnerability.
Author:StAkeR
File Size:953
Last Modified:Jan 5 20:03:51 2009
MD5 Checksum:aea9f27babb831af8e900adb5c17f3f4

 ///  File Name:pnphpbb212i-lfi.txt
Description:
PNphpBB2 versions 1.2i and below suffer from multiple local file inclusion vulnerabilities.
Author:StAkeR
File Size:1157
Last Modified:Jan 5 20:00:00 2009
MD5 Checksum:0021ce7144c2aef7db09e77c28f743ea

 ///  File Name:msfxdc-contest.txt
Description:
MSFXDC (MetaSploit Framework eXploits Development Contest) is a challenge where the main goal is to code the largest number of new Metasploit Framework exploits modules. MSFXDC is organized by JA-PSI.
Homepage:http://www.ja-psi.com/
File Size:1776
Last Modified:Jan 5 19:55:31 2009
MD5 Checksum:32fe7daf5d86671fd2920b2e4eec0af3

 ///  File Name:wsnguest123-sql.txt
Description:
WSN Guest version 1.23 suffers from a remote SQL injection vulnerability in search.php.
Author:DaiMon
Homepage:http://www.cwdaimon.com/
File Size:1327
Last Modified:Jan 5 19:52:57 2009
MD5 Checksum:618ac54e798ece3629eafa095ec9a018

 ///  File Name:phpmesfilms-sql.txt
Description:
PhpMesFilms version 1.0 suffers from a remote SQL injection vulnerability in index.php.
Author:SuB-ZeRo
Homepage:http://www.dz-security.com/
File Size:1176
Last Modified:Jan 5 19:51:46 2009
MD5 Checksum:9f2ba3d7b84754a10983c7c779233e38

 ///  File Name:vuplayer-overflow.txt
Description:
VUPlayer version 2.49 .wax file local buffer overflow exploit that spawns calc.exe.
Author:H-T Team
Homepage:http://no-hack.fr/
File Size:1752
Last Modified:Jan 5 19:49:41 2009
MD5 Checksum:e3276064b96817aef53fca9c4948490b

 ///  File Name:dmp161lst2-overflow.txt
Description:
Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe.
Author:suN8Hclf
Homepage:http://www.dark-coders.pl/
File Size:1571
Last Modified:Jan 5 19:48:13 2009
MD5 Checksum:d658c66d0826a718399e917d4d3c9603

 ///  File Name:dmp161lst1-overflow.txt
Description:
Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe.
Author:sCORPINo
Homepage:http://www.snoop-security.com/
File Size:2152
Last Modified:Jan 5 11:05:33 2009
MD5 Checksum:eb86011c4aa4e7d92c538d034a1faf12

 ///  File Name:ayemsisemlak-disclose.txt
Description:
Ayemsis Emlak Pro suffers from a remote database disclosure vulnerability.
Author:ByALBAYX
Homepage:http://www.c4team.org/
File Size:1614
Last Modified:Jan 5 10:59:39 2009
MD5 Checksum:f4e9f6c995ace6cd5ed8c280596ad870

 ///  File Name:ayemsisemlak-sql.txt
Description:
Ayemsis Emlak Pro suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:ByALBAYX
Homepage:http://www.c4team.org/
File Size:378
Last Modified:Jan 5 10:57:41 2009
MD5 Checksum:57085fb9abf4f9c03e9e985ac9bfe337

 ///  File Name:cybershadecms-rfi.txt
Description:
Cybershade CMS version 0.2b remote file inclusion exploit that uses index.php.
Author:JosS
Homepage:http://www.spanish-hackers.com/
File Size:2421
Last Modified:Jan 5 10:56:33 2009
MD5 Checksum:0d89b7c56448d695c0868124e9bdd777

 ///  File Name:joomlasimplereview-sql.txt
Description:
The Joomla Simple Review component version 1.x suffers from a remote SQL injection vulnerability.
Author:EcHoLL
Homepage:http://www.warezturk.org/
File Size:880
Last Modified:Jan 5 10:55:12 2009
MD5 Checksum:edf3ffde2162a729d7b842f7147eb467

 ///  File Name:RFIDIOt-0.1v.tgz
Description:
RFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r). This is the Windows version.
Author:Adam Laurie
Homepage:http://rfidiot.org/
Changes:Fixed ATS position and length in RFIDIOT.py. Multiple additions and a couple of other tweaks.
File Size:392620
Last Modified:Jan 5 10:52:50 2009
MD5 Checksum:066edfb1a202fe2abd20e9c53e7f9c25

 ///  File Name:valsmith_colin_blog_spam.pdf
Description:
Whitepaper called Inside the Malicious World of Blog Comment Spam.
Author:Colin Ames,Val Smith
Homepage:http://www.offensivecomputing.net/
File Size:670987
Last Modified:Jan 4 15:55:14 2009
MD5 Checksum:fc161f5a3419d8c452af4f66a9287410

 ///  File Name:dquist_valsmith_further_down_the_vm_spiral.pdf
Description:
Presentation called Further Down the VM Spiral.
Author:Danny Quist,Val Smith
Homepage:http://www.offensivecomputing.net/
File Size:42917
Last Modified:Jan 4 15:55:22 2009
MD5 Checksum:35bb70e808912b43b632474926f4e244

 ///  File Name:valsmith_dquist_hacking_malware.pdf
Description:
Presentation called Hacking Malware - Offense is the new Defense.
Author:Danny Quist,Val Smith
File Size:4844265
Last Modified:Jan 4 15:55:09 2009
MD5 Checksum:67b6f26f02ad8b78621a356a312cb4e5

 ///  File Name:indianinstitute-sql.txt
Description:
The Indian Institute of Technology in Kharagpur suffers from a remote SQL injection vulnerability.
Author:Rohit Bansal
File Size:1375
Last Modified:Jan 4 15:48:21 2009
MD5 Checksum:1e40523527d08b2c7f671843e4b8f5d2

 ///  File Name:litolite-sqlxss.txt
Description:
Lito Lite CMS blind SQL injection and cross site scripting exploit.
Author:darkjoker
Homepage:http://darkjokerside.altervista.org/
File Size:2119
Last Modified:Jan 4 15:25:02 2009
MD5 Checksum:13d364bc60d0eb32a0aa45450c336f1d

 ///  File Name:destiny161lst-overflow.txt
Description:
Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit.
Author:Encrypt3d.M!nd
File Size:460
Last Modified:Jan 4 15:23:14 2009
MD5 Checksum:860a37459e6487b825536aba40de8534

 ///  File Name:webspell4-sql.txt
Description:
Webspell version 4 suffers from a SQL injection vulnerability that allows for authentication bypass.
Author:h0yt3r
File Size:2253
Last Modified:Jan 4 15:20:12 2009
MD5 Checksum:4b21224db9230cc002e5326a09c3a6dd

 ///  File Name:destiny161-overflow.txt
Description:
Destiny Media Player version 1.61 .m3u file local stack overflow exploit.
Author:His0k4
File Size:1680
Last Modified:Jan 4 15:18:56 2009
MD5 Checksum:94a408c32ef4ff231eed29acb2a8d390

 ///  File Name:dsa-1695-1.txt
Description:
Debian Security Advisory 1695-1 - The regular expression engine of Ruby, a scripting language, contains a memory leak which can be triggered remotely under certain circumstances, leading to a denial of service condition (CVE-2008-3443).
Homepage:http://www.debian.org/security
File Size:36870
Related CVE(s):CVE-2008-3443
Last Modified:Jan 2 19:45:45 2009
MD5 Checksum:a8ee321a95a6272a724768a1fe3bed2e

 ///  File Name:dsa-1694-1.txt
Description:
Debian Security Advisory 1694-1 - Paul Szabo discovered that xterm, a terminal emulator for the X Window System, places arbitrary characters into the input buffer when displaying certain crafted escape sequences (CVE-2008-2383).
Homepage:http://www.debian.org/security
File Size:5253
Related CVE(s):CVE-2008-2383
Last Modified:Jan 2 19:45:14 2009
MD5 Checksum:aa67e5228c1b8bb3bcc0a928a6a27de9

 ///  File Name:destiny-dos.txt
Description:
Destiny Media Player version 1.61.0 .m3u file local stack overflow proof of concept exploit.
Author:aBo MoHaMeD
Homepage:http://www.v4-team.net/
File Size:1895
Last Modified:Jan 2 19:42:14 2009
MD5 Checksum:1d7be42d4ea9160a98423ca35f4a47e5

 ///  File Name:phpskelsite-rfilfixss.txt
Description:
phpSkelSite version 1.4 suffers from remote file inclusion, local file inclusion, and cross site scripting vulnerabilities.
Author:ahmadbady
File Size:906
Last Modified:Jan 2 19:40:47 2009
MD5 Checksum:03c68859bd89afcea5fbed52f0ee9782

 ///  File Name:phpratemyphoto-upload.txt
Description:
Built2Go PHP Rate My Photo version 1.46.4 is susceptible to a remote file upload vulnerability.
Author:ZoRLu
File Size:1508
Last Modified:Jan 2 19:39:45 2009
MD5 Checksum:d5bd44ec4e4d65a071a7728f7a9e8d95

 ///  File Name:phplinkportal-upload.txt
Description:
Built2Go PHP Link Portal version 1.95.1 is susceptible to a remote file upload vulnerability.
Author:ZoRLu
File Size:1447
Last Modified:Jan 2 19:38:13 2009
MD5 Checksum:426a5cbbd51cdfdc8dcc53daced487c3

 ///  File Name:vmware251-dos.txt
Description:
VMware versions 2.5.1 and below remote denial of service exploit.
Author:laurent gaffi
File Size:2019
Last Modified:Jan 2 19:37:14 2009
MD5 Checksum:918090c873fe391fb0c2e18d414fdba6

 ///  File Name:w3blaborcms-sql.txt
Description:
w3blabor CMS versions 3.3.0 and below suffer from a remote SQL injection vulnerability that allows for administrative bypass.
Author:DNX
File Size:2393
Last Modified:Jan 2 13:25:08 2009
MD5 Checksum:3083663fe7d6da880a3614e7869efa40

 ///  File Name:ratproxy-1.53.tar.gz
Description:
ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments.
Author:Michal Zalewski
Homepage:http://code.google.com/p/ratproxy
File Size:168525
Last Modified:Jan 2 13:23:31 2009
MD5 Checksum:515ded853cd489cd894162fcf8e069d9

 ///  File Name:powerclan-sql.txt
Description:
PowerClan version 1.14a suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:hadihadi
Homepage:http://www.virangar.org/
File Size:766
Last Modified:Jan 2 13:22:13 2009
MD5 Checksum:2dce363b18838af49b0abda3f42fde75

 ///  File Name:powernews-sql.txt
Description:
PowerNews version 2.5.4 suffers from a remote SQL injection vulnerability in news.php.
Author:hadihadi
Homepage:http://www.virangar.org/
File Size:824
Last Modified:Jan 2 13:20:40 2009
MD5 Checksum:16de97949b15925e5dc28fff6e0e4a11

 ///  File Name:eggblog-xsrf.txt
Description:
EggBlog version 3.1.10 suffers from a cross site request forgery vulnerability that allows for the changing of the administrative password.
Author:X0r
File Size:954
Last Modified:Jan 2 13:11:39 2009
MD5 Checksum:b3cc6fa253b6e20680523f865d3a3b96

 ///  File Name:konqueror-xsscrash.txt
Description:
Konqueror versions 4.1 and below suffer from cross site scripting and remote crash vulnerabilities.
Author:StAkeR
File Size:1739
Last Modified:Jan 2 13:10:13 2009
MD5 Checksum:bdea7d515c7338c2444a651423afc619

 ///  File Name:audacity-overflow.txt
Description:
Audacity version 1.6.2 .gro file local buffer overflow proof of concept exploit.
Author:H-T Team
Homepage:http://no-hack.fr/
File Size:1205
Last Modified:Jan 2 13:06:35 2009
MD5 Checksum:a4adbdbd340a778bbc54493abc2c346e

 ///  File Name:elecard-dos.txt
Description:
Elecard MPEG Player version 5.5 .m3u file stack buffer overflow denial of service proof of concept exploit.
Author:aBo MoHaMeD
Homepage:http://www.v4-team.net/
File Size:1265
Last Modified:Jan 2 13:04:14 2009
MD5 Checksum:b52e8aa09f31f813d091beb0234e9d0f

 ///  File Name:phpscribe-disclose.txt
Description:
phpScribe version 0.9 suffers from a remote configuration disclosure vulnerability.
Author:ahmadbady
File Size:926
Last Modified:Jan 2 13:03:12 2009
MD5 Checksum:c8511f5cc65fb517c2a76cbb1075fa79

 ///  File Name:phpfootball-disclose.txt
Description:
Exploit for PHPFootball versions 1.6 and below which suffer from a remote hash disclosure vulnerability in filter.php.
Author:KinG-LioN
Homepage:http://eurohackers.it/
File Size:808
Last Modified:Jan 2 12:59:35 2009
MD5 Checksum:fda466ae8671329d0b7a4097796892b6

 ///  File Name:webboard60-sql.txt
Description:
ASPThai.Net Webboard version 6.0 suffers from a remote SQL injection vulnerability in bview.asp.
Author:DaiMon
Homepage:http://www.cwdaimon.com/
File Size:628
Last Modified:Jan 2 12:54:46 2009
MD5 Checksum:b900348dbe956f6e7a71ff5e390e2fa4

 ///  File Name:uCon2009-CFP.txt
Description:
uCon will be held February 28, 2009, three days after the best street carnival in the world, in Recife, Brazil. It aims to bring together academics, hackers and information security enthusiasts from all over the country to share cutting-edge ideas and thoughts about their latest developments and techniques in the field.
Homepage:http://www.ucon-conference.org/
File Size:4373
Last Modified:Dec 31 11:35:42 2008
MD5 Checksum:db4c539e1de10f9f1dd8ba4cc5bcb01b

 ///  File Name:2008-exploits.tgz
Description:
Complete comprehensive archive of all 3,641 exploits added to Packet Storm in 2008.
Homepage:http://packetstormsecurity.org/
File Size:15388277
Last Modified:Jan 1 14:18:36 2009
MD5 Checksum:2be2c230ac2823ab894d22a2d2028791

 ///  File Name:0812-exploits.tgz
Description:
Packet Storm new exploits for December, 2008.
Homepage:http://packetstormsecurity.org/
File Size:492258
Last Modified:Jan 1 14:15:13 2009
MD5 Checksum:d2730095ef529daf7d8a9d6565e93672

 ///  File Name:ddlspeed-bypass.txt
Description:
DDL-Speed Script suffers from an administrative backup bypass vulnerability.
Author:tmh
File Size:1937
Last Modified:Jan 1 14:13:01 2009
MD5 Checksum:3e26602912a25b9e1fbaaea57e49069a

 ///  File Name:viartshopping-xssdisclose.txt
Description:
ViArt Shopping Cart version 3.5 suffers from cross site scripting / code injection and path / information disclosure vulnerabilities.
Author:Florinu
File Size:4565
Last Modified:Jan 1 14:10:39 2009
MD5 Checksum:5846cee9cc0d166c35404f291012c261

 ///  File Name:2capsulesticker-sql.txt
Description:
2Capsule Sticker suffers from a remote SQL injection vulnerability in sticker.php.
Author:Zenith
Homepage:http://www.thaishadow.com/
File Size:1096
Last Modified:Jan 1 14:07:58 2009
MD5 Checksum:6208c8565514ebdd40a68c675b62e536

 ///  File Name:megacubo-download.txt
Description:
Megacubo version 5.0.7 mega:// remote file download and execute exploit. Written for Internet Explorer 7 and Mozilla Firefox 1.5 on Windows XP SP3.
Author:JJunior
File Size:1159
Last Modified:Jan 1 14:04:31 2009
MD5 Checksum:ef282a0665b126a5d0ed1858fc73f5e2

 ///  File Name:nokia560-dos.txt
Description:
Nokia S60 phones suffer from a SMS/MMS "curse of silence" denial of service vulnerability when having received a message with an email address over 32 characters.
Author:Tobias Engel
Homepage:https://berlin.ccc.de/
File Size:6994
Last Modified:Jan 1 13:56:22 2009
MD5 Checksum:8838f9316f4df43274436902525b8d2b

 ///  File Name:safari_webkit_ml.txt
Description:
Safari (Webkit) version 3.2 remote memory leak exploit.
Author:Jeremy Brown
Homepage:http://jbrownsec.blogspot.com/
File Size:664
Last Modified:Dec 31 19:12:20 2008
MD5 Checksum:4b72d11925021576fc93a26b44dab6fe

 ///  File Name:mzff_libxul_ml.txt
Description:
Mozilla Firefox version 3.0.5 Libxul remote memory leak exploit.
Author:Jeremy Brown
Homepage:http://jbrownsec.blogspot.com/
File Size:588
Last Modified:Dec 31 19:10:44 2008
MD5 Checksum:4ede5a3626433ed9fe692f78815d439f

 ///  File Name:opennhrp-0.9.2.tar.bz2
Description:
OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
Author:Timo Teras
Homepage:http://sourceforge.net/projects/opennhrp/
Changes:pid file locking change in 0.9.1 broke daemonization.
File Size:157598
Last Modified:Dec 31 15:27:15 2008
MD5 Checksum:caf14cc95b78072514bf2ade00c29e1c

 ///  File Name:rkhunter-1.3.4.tar.gz
Description:
Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD.
Author:Michael Boelen
Homepage:http://www.rootkit.nl/
Changes:The changelog for this release is packed listing 4 new additions, 8 changes, and 9 bug fixes.
File Size:275653
Last Modified:Dec 31 15:24:50 2008
MD5 Checksum:31eaacc4d01ad138d1a4283f105088e6

 ///  File Name:phpcareers-upload.txt
Description:
getaphpsite PHP Careers Search suffers from a remote file/shell upload vulnerability.
Author:ZoRLu
File Size:1535
Last Modified:Dec 31 14:29:14 2008
MD5 Checksum:d15cbe1d2ded8ae921028ad91a3f6247

 ///  File Name:topsites-sql.txt
Description:
getaphpsite Top Sites suffers from a remote SQL injection vulnerability in category.php.
Author:ZoRLu
File Size:1116
Last Modified:Dec 31 14:28:22 2008
MD5 Checksum:bc514a5e20bc1b91505898c02d0626fd

 ///  File Name:estore-sql.txt
Description:
getaphpsite e-store suffers from a remote SQL injection vulnerability in SearchResults.php.
Author:ZoRLu
File Size:1067
Last Modified:Dec 31 14:27:29 2008
MD5 Checksum:856a5dc9cba52e892cbb54bd2e1a0a82

 ///  File Name:cheats-sql.txt
Description:
getaphpsite Cheats suffers from remote SQL injection vulnerabilities in categories.php and view_reviews.php.
Author:ZoRLu
File Size:1437
Last Modified:Dec 31 14:25:58 2008
MD5 Checksum:b027614340402cde3800ba0de35da4c5

 ///  File Name:homebusiness-sql.txt
Description:
getaphpsite Home Business Directory suffers from a remote SQL injection vulnerability in directory.php.
Author:ZoRLu
File Size:964
Last Modified:Dec 31 14:24:21 2008
MD5 Checksum:99cc22f5e46128f5455f8b19b2a3ca9d

 ///  File Name:abarcarflorist-sql.txt
Description:
Abarcar Florist Shop System Script suffers from remote and blind SQL injection vulnerabilities in content.php.
Author:ZoRLu
File Size:1584
Last Modified:Dec 31 11:01:02 2008
MD5 Checksum:5ae4201515142013f2ab197bbdcdaec6

 ///  File Name:abarcarmanu-sql.txt
Description:
Abarcar Manufacturer System Script suffers from remote and blind SQL injection vulnerabilities in plistings.php.
Author:ZoRLu
File Size:2260
Last Modified:Dec 31 10:59:11 2008
MD5 Checksum:89c6e4013083c96e4dc394086f9aa666

 ///  File Name:zerowine-0.0.1.tar.gz
Description:
Zero wine is an open source research project to dynamically analyze the behavior of malware. Zero wine just runs the malware using WINE in a safe virtual sandbox (in an isolated environment) collecting information about the APIs called by the program.
Author:Joxean Koret
Homepage:http://zerowine.sourceforge.net/
File Size:673269
Last Modified:Dec 31 10:53:10 2008
MD5 Checksum:a357e9a54e3cb9e81d64acedcf816056

 ///  File Name:md5-considered-harmful.pdf
Description:
MD5 Considered Harmful Today - Creating A Rogue CA Certificate. The authors of this paper have identified a vulnerability in the Internet Public Key Infrastructure (PKI) used to issue digital certificates for secure websites. As a proof of concept they executed a practical attack scenario and successfully created a rogue Certification Authority (CA) certificate trusted by all common web browsers. This certificate allows them to impersonate any website on the Internet, including banking and e-commerce sites secured using the HTTPS protocol.
Author:Arjen Lenstra, Benne de Weger, Dag Arne Osvik, David Molnar, Jacob Appelbaum, Marc Stevens,Alexander Sotirov
Homepage:http://www.win.tue.nl/hashclash/rogue-ca/
File Size:1800222
Last Modified:Dec 31 10:24:58 2008
MD5 Checksum:51b2bd6ef0ba7a507fadfac5fb1be20f

 ///  File Name:inguma-0.1.1.tar.gz
Description:
Inguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.
Author:Joxean Koret
Changes:Many new additions, various support, and a few changes have been made.
File Size:5635817
Last Modified:Dec 31 00:50:35 2008
MD5 Checksum:e49d1c82498dbbe01b810cdab40f25bf

 ///  File Name:pixel8-sql.txt
Description:
Pixel8 Web Photo Album version 3.0 suffers from a remote SQL injection vulnerability in Photo.asp.
Author:AlpHaNiX
File Size:881
Last Modified:Dec 31 00:48:40 2008
MD5 Checksum:216c90ada96a69d20a33e8fcf5b8df97

 ///  File Name:sepcitylawyer-sql.txt
Description:
Sepcity Lawyer Portal suffers from a remote SQL injection vulnerability in deptdisplay.asp.
Author:Osmanizim
Homepage:http://www.osmanizim.com/
File Size:515
Last Modified:Dec 31 00:47:30 2008
MD5 Checksum:dd9e668bfd0a29b2047d0b0b3b50ddf4

 ///  File Name:sepcitymall-sql.txt
Description:
Sepcity Shopping Mall suffers from a remote SQL injection vulnerability in shpdetails.asp.
Author:Osmanizim
Homepage:http://www.osmanizim.com/
File Size:375
Last Modified:Dec 31 00:44:54 2008
MD5 Checksum:09f2817c87de1e766e66478cce6d8e36

 ///  File Name:fspy-0.1.0.tar.gz
Description:
FSpy is an easy to use Linux filesystem activity monitoring tool which is meant to be small, fast, and low overhead on system resources.
Author:Richard Sammet
Homepage:http://mytty.org/fspy/
File Size:16550
Last Modified:Dec 31 00:39:28 2008
MD5 Checksum:9af2d7b8231efdf5330016cdfc759d31

 ///  File Name:memberkit-upload.txt
Description:
Memberkit version 1.0 suffers from a remote file upload vulnerability.
Author:Lo$er
File Size:844
Last Modified:Dec 31 00:35:06 2008
MD5 Checksum:d0ac82b24c559e7dbbbaba392afb891e

 ///  File Name:sipwitch-0.3.8.tar.gz
Description:
GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.
Author:David Sugar
Homepage:http://www.gnutelephony.org/
Changes:Cleaned up module loading and path computations. Fix added for mingw32 cross builds. Various other tweaks and improvements.
File Size:433187
Last Modified:Dec 31 00:25:55 2008
MD5 Checksum:03383c2edcedae279a041a07bb3e8319

 ///  File Name:molegroupvacation-sql.txt
Description:
Mole Group Vacation Estate Listing Script suffers from a blind SQL injection vulnerability.
Author:X0r
File Size:815
Last Modified:Dec 31 00:23:02 2008
MD5 Checksum:fd89e572acab0eefce66d92c31b62530

 ///  File Name:cmscout-lfisql.txt
Description:
CMScout version 2.06 suffers from SQL injection and local file inclusion vulnerabilities.
Author:SirGod
Homepage:http://www.mortal-team.com/
File Size:2217
Last Modified:Dec 31 00:20:52 2008
MD5 Checksum:7e2a3f42dbfd99228f9c84b75549aa62

 ///  File Name:flexphpic-sql.txt
Description:
Flexphpic 0.0.x suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:S.W.A.T.
Homepage:http://www.xmors.com/
File Size:531
Last Modified:Dec 31 00:19:41 2008
MD5 Checksum:98ffc4758edfdb6ff10c526f78110afb

 ///  File Name:flexcustomer-bypass.txt
Description:
Flexcustomer version 0.0.6 suffers from administrative login bypass and possible php data writing vulnerabilities.
Author:Osirys
Homepage:http://osirys.org/
File Size:1853
Last Modified:Dec 31 00:18:34 2008
MD5 Checksum:3fb762b298cd0d2efb62d7437cc7d3ef

 ///  File Name:theportal-upload.txt
Description:
ThePortal version 2.2 arbitrary remote file upload exploit.
Author:siurek22
File Size:1931
Last Modified:Dec 31 00:16:54 2008
MD5 Checksum:ae996bc879c3c4c24691f4a933a86db8

 ///  File Name:complemento-0.5.tar.gz
Description:
Complemento is a collection of tools for penetration testing. LetDown is a TCP flooder written after reading the Fyodor article "TCP Resource Exhaustion and Botched Disclosure". Reverse raider is a domain scanner that uses brute force wordlist scanning for finding a target's subdomains or reverse resolution for a range of IPs. Httsquash is an HTTP server scanner, banner grabber, and data retriever. It can be used for scanning large ranges of IPs for finding devices or HTTP servers.
Author:crossbower
Homepage:http://complemento.sourceforge.net/
File Size:550328
Last Modified:Dec 30 23:03:19 2008
MD5 Checksum:727788cf5135d2afc5d76d148a344440

 ///  File Name:flexphplink-sql.txt
Description:
Flexphplink 0.0.x suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:X0r
File Size:554
Last Modified:Dec 30 22:48:46 2008
MD5 Checksum:03b34876b7c65862998d455ff8ceea64

 ///  File Name:cmsnetcat-sql.txt
Description:
AIST NetCat versions 3.0 and 3.12 blind SQL injection exploit.
Author:s4avrd0w
File Size:4351
Last Modified:Dec 30 22:47:19 2008
MD5 Checksum:7f2550270b6b8e0ecafe755e68a4e3e4

 ///  File Name:telnetrecon-0.1src.zip
Description:
telnetrecon is a tool for doing research in the field of telnet server fingerprinting.
Author:Marc Ruef
Homepage:http://www.computec.ch/projekte/telnetrecon/
File Size:95394
Last Modified:Dec 30 22:44:16 2008
MD5 Checksum:d2363d9c9d9fcc562a1d4c3a9ecd0aed

 ///  File Name:MDVSA-2008-246.txt
Description:
Mandriva Linux Security Advisory 2008-246 - Some vulnerabilities were discovered and corrected in the Linux kernel. These include buffer overflow and denial of service vulnerabilities.
Homepage:http://www.mandriva.com/security/
File Size:44153
Related CVE(s):CVE-2008-5033, CVE-2008-5025
Last Modified:Dec 30 22:41:38 2008
MD5 Checksum:88e7a51465ebb1e8366af1c351f07a6e

 ///  File Name:flexphpsite-sql.txt
Description:
Flexphpsite version 0.0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:X0r
File Size:539
Last Modified:Dec 30 22:38:47 2008
MD5 Checksum:7df68a3fe3c6c76ee0327a325aa84496

 ///  File Name:joomlanacontent-sql.txt
Description:
The Joomla NA Content component version 1.0 suffers from a blind SQL injection vulnerability.
Author:XORON
File Size:453
Last Modified:Dec 30 22:37:16 2008
MD5 Checksum:f76db3eb3bc0f08d05952339461e29d3

 ///  File Name:ednews2-sql.txt
Description:
eDNews version 2 suffers from a remote SQL injection vulnerability in eDNews_view.php.
Author:hadihadi
Homepage:http://www.virangar.org/
File Size:1387
Last Modified:Dec 30 22:35:26 2008
MD5 Checksum:6c77f4c8cb522b12609e932e40827948

 ///  File Name:phpalumni-sql.txt
Description:
PHPAlumni suffers from a remote SQL injection vulnerability in Acomment.php.
Author:Mr.SQL
Homepage:http://www.pal-hacker.com/
File Size:1375
Last Modified:Dec 30 22:33:11 2008
MD5 Checksum:a4eab8b0c3e6a0de3dab297d6ed391c2

 ///  File Name:ultimatephpboard-escalate.txt
Description:
Ultimate PHP Board versions 2.2.1 and below privilege escalation exploit.
Author:StAkeR
File Size:3177
Last Modified:Dec 30 22:31:59 2008
MD5 Checksum:812bae2ff4435328a6791186e327e69c

 ///  File Name:flexphpdirectory-sql.txt
Description:
FlexPHPDirectory version 0.0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Author:X0r
File Size:635
Last Modified:Dec 30 22:30:50 2008
MD5 Checksum:91d5ca08b75c2cccad0a0f9522596ff8