Section: .. / Last 50 Files /
| /// File Name: | USN-703-1.txt | Description:
| Ubuntu Security Notice USN-703-1 - Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 6861 | | Related CVE(s): | CVE-2006-7236, CVE-2008-2383 | | Last Modified: | Jan 5 21:02:54 2009 | | MD5 Checksum: | 9352865d1436dc3218db4a78e9ce1d04 |
|
| /// File Name: | USN-702-1.txt | Description:
| Ubuntu Security Notice USN-702-1 - Gunter Hockel discovered that Samba with registry shares enabled did not properly validate share names. An authenticated user could gain access to the root filesystem by using an older version of smbclient and specifying an empty string as a share name. This is only an issue if registry shares are enabled on the server by setting "registry shares = yes", "include = registry", or "config backend = registry", which is not the default. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 10900 | | Related CVE(s): | CVE-2009-0022 | | Last Modified: | Jan 5 21:00:41 2009 | | MD5 Checksum: | 16c06750eef20e3808874ed0c796b230 |
|
| /// File Name: | phpauctionsystem-insecure.txt | Description:
| PHP Auction System suffers from an insecure cookie handling vulnerability. | | Author: | ZoRLu | | File Size: | 1265 | | Last Modified: | Jan 5 20:59:51 2009 | | MD5 Checksum: | 40f2f0c3660aee65abfa178d0a395854 |
|
| /// File Name: | phpauctionsystem-sqlxss.txt | Description:
| PHP Auction System suffers from cross site scripting and remote SQL injection vulnerabilities. | | Author: | X0r | | File Size: | 1924 | | Last Modified: | Jan 5 20:58:16 2009 | | MD5 Checksum: | dff3935d238a050c0de9d81375c92e77 |
|
| /// File Name: | joomlaphoca-sql.txt | Description:
| Joomla Phoca Documentation remote SQL injection exploit that makes use of index.php. | | Author: | EcHoLL | | Homepage: | http://www.warezturk.org/ | | File Size: | 1560 | | Last Modified: | Jan 5 20:55:31 2009 | | MD5 Checksum: | a42915d816e3b2ea44e5e52cf5d103fc |
|
| /// File Name: | lfi-rfi2.txt | Description:
| Local / Remote file inclusion scanner that attempts to make use of a c99 shell on a vulnerable host. | | Author: | baltazar | | Homepage: | http://www.darkc0de.com/ | | File Size: | 6218 | | Last Modified: | Jan 5 20:52:19 2009 | | MD5 Checksum: | a1530ae1679861ae4a4d3387842eac0e |
|
| /// File Name: | walusoft-traversal.txt | Description:
| Walusoft TFTPServer2000 version 3.6.1 suffers from a directory traversal vulnerability. | | Author: | princeofnigeria | | File Size: | 2845 | | Last Modified: | Jan 5 20:46:20 2009 | | MD5 Checksum: | 64146b5fc1a21ec677636cddac2a0ac7 |
|
| /// File Name: | dmp161lst4-overflow.txt | Description:
| Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe. | | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 1537 | | Last Modified: | Jan 5 20:42:34 2009 | | MD5 Checksum: | 950e82dd52b76be3b441537b1c8946d6 |
|
| /// File Name: | seacureit-cfp2009.txt | Description:
| SEaCURE.IT is the first international technical conference ever held in Italy on security related topics, aimed at bringing together the leading experts from all over the world, to create a unique setting for networking and discussion among the speakers and the attendees. The 2009 edition will be held from May 19th to the 22nd in Villasimius, Sardinia. | | Homepage: | http://www.seacure.it/ | | File Size: | 5347 | | Last Modified: | Jan 5 20:30:16 2009 | | MD5 Checksum: | 28e55afb975a46ebd64652a868002743 |
|
| /// File Name: | plxautoreminder-sql.txt | Description:
| plxAutoReminder version 3.7 suffers from a remote SQL injection vulnerability. | | Author: | ZoRLu | | File Size: | 1188 | | Last Modified: | Jan 5 20:28:23 2009 | | MD5 Checksum: | 0da4a3c15c3933f0b1db0d73d765c906 |
|
| /// File Name: | safari-heap.txt | Description:
| Safari array integer overflow proof of concept exploit. | | Author: | SkyLined | | File Size: | 26629 | | Last Modified: | Jan 5 20:27:13 2009 | | MD5 Checksum: | dd9f8f395b56e7be0ccfd2abb77be20d |
|
| /// File Name: | dmp161lst3-overflow.txt | Description:
| Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe. | | Author: | H-T Team | | Homepage: | http://no-hack.fr/ | | File Size: | 1557 | | Last Modified: | Jan 5 20:26:06 2009 | | MD5 Checksum: | 895b67587da6e19c6b19ca60e24184aa |
|
| /// File Name: | tor.uclibc.i686.20090105.iso | Description:
| Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. | | Author: | Anthony G. Basile | | Homepage: | http://opensource.dyc.edu/tor-ramdisk | | Changes: | Tor updated to 0.2.0.32. Kernel updated to Linux-2.6.25.17 plus Gentoo\'s hardened-patches-2.6.25-12.extras. | | File Size: | 4145152 | | Last Modified: | Jan 5 20:23:11 2009 | | MD5 Checksum: | 62155716de0033efdbbbfcd30e7a289e |
|
| /// File Name: | solucion-sql.txt | Description:
| SolucionWeb suffers from a remote SQL injection vulnerability in main.php. | | Author: | Ehsan_Hp200 | | File Size: | 1406 | | Last Modified: | Jan 5 20:08:35 2009 | | MD5 Checksum: | 76a412aa82f1d4dfa57dac80a5a5d664 |
|
| /// File Name: | pollpro-xsrf.txt | Description:
| PollPro version 3.0 appears to suffer from a cross site request forgery vulnerability. | | Author: | The_0nur-n0x | | File Size: | 1851 | | Last Modified: | Jan 5 20:04:43 2009 | | MD5 Checksum: | c2ab74358b5bd4e0c25d3f8c9080eed2 |
|
| /// File Name: | webspell-edit.txt | Description:
| webSPELL versions 4.01.02 and below suffer from a remote edit topics vulnerability. | | Author: | StAkeR | | File Size: | 953 | | Last Modified: | Jan 5 20:03:51 2009 | | MD5 Checksum: | aea9f27babb831af8e900adb5c17f3f4 |
|
| /// File Name: | pnphpbb212i-lfi.txt | Description:
| PNphpBB2 versions 1.2i and below suffer from multiple local file inclusion vulnerabilities. | | Author: | StAkeR | | File Size: | 1157 | | Last Modified: | Jan 5 20:00:00 2009 | | MD5 Checksum: | 0021ce7144c2aef7db09e77c28f743ea |
|
| /// File Name: | msfxdc-contest.txt | Description:
| MSFXDC (MetaSploit Framework eXploits Development Contest) is a challenge where the main goal is to code the largest number of new Metasploit Framework exploits modules. MSFXDC is organized by JA-PSI. | | Homepage: | http://www.ja-psi.com/ | | File Size: | 1776 | | Last Modified: | Jan 5 19:55:31 2009 | | MD5 Checksum: | 32fe7daf5d86671fd2920b2e4eec0af3 |
|
| /// File Name: | wsnguest123-sql.txt | Description:
| WSN Guest version 1.23 suffers from a remote SQL injection vulnerability in search.php. | | Author: | DaiMon | | Homepage: | http://www.cwdaimon.com/ | | File Size: | 1327 | | Last Modified: | Jan 5 19:52:57 2009 | | MD5 Checksum: | 618ac54e798ece3629eafa095ec9a018 |
|
| /// File Name: | phpmesfilms-sql.txt | Description:
| PhpMesFilms version 1.0 suffers from a remote SQL injection vulnerability in index.php. | | Author: | SuB-ZeRo | | Homepage: | http://www.dz-security.com/ | | File Size: | 1176 | | Last Modified: | Jan 5 19:51:46 2009 | | MD5 Checksum: | 9f2ba3d7b84754a10983c7c779233e38 |
|
| /// File Name: | vuplayer-overflow.txt | Description:
| VUPlayer version 2.49 .wax file local buffer overflow exploit that spawns calc.exe. | | Author: | H-T Team | | Homepage: | http://no-hack.fr/ | | File Size: | 1752 | | Last Modified: | Jan 5 19:49:41 2009 | | MD5 Checksum: | e3276064b96817aef53fca9c4948490b |
|
| /// File Name: | dmp161lst2-overflow.txt | Description:
| Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe. | | Author: | suN8Hclf | | Homepage: | http://www.dark-coders.pl/ | | File Size: | 1571 | | Last Modified: | Jan 5 19:48:13 2009 | | MD5 Checksum: | d658c66d0826a718399e917d4d3c9603 |
|
| /// File Name: | dmp161lst1-overflow.txt | Description:
| Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit that spawns calc.exe. | | Author: | sCORPINo | | Homepage: | http://www.snoop-security.com/ | | File Size: | 2152 | | Last Modified: | Jan 5 11:05:33 2009 | | MD5 Checksum: | eb86011c4aa4e7d92c538d034a1faf12 |
|
| /// File Name: | ayemsisemlak-sql.txt | Description:
| Ayemsis Emlak Pro suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | ByALBAYX | | Homepage: | http://www.c4team.org/ | | File Size: | 378 | | Last Modified: | Jan 5 10:57:41 2009 | | MD5 Checksum: | 57085fb9abf4f9c03e9e985ac9bfe337 |
|
| /// File Name: | joomlasimplereview-sql.txt | Description:
| The Joomla Simple Review component version 1.x suffers from a remote SQL injection vulnerability. | | Author: | EcHoLL | | Homepage: | http://www.warezturk.org/ | | File Size: | 880 | | Last Modified: | Jan 5 10:55:12 2009 | | MD5 Checksum: | edf3ffde2162a729d7b842f7147eb467 |
|
| /// File Name: | RFIDIOt-0.1v.tgz | Description:
| RFIDIOt is a python library for exploring RFID devices. It currently drives a couple of RFID readers made by ACG, called the HF Dual ISO and the LFX. Includes sample programs to read/write tags and the beginnings of library routines to handle the data structures of specific tags like MIFARE(r). This is the Windows version. | | Author: | Adam Laurie | | Homepage: | http://rfidiot.org/ | | Changes: | Fixed ATS position and length in RFIDIOT.py. Multiple additions and a couple of other tweaks. | | File Size: | 392620 | | Last Modified: | Jan 5 10:52:50 2009 | | MD5 Checksum: | 066edfb1a202fe2abd20e9c53e7f9c25 |
|
| /// File Name: | indianinstitute-sql.txt | Description:
| The Indian Institute of Technology in Kharagpur suffers from a remote SQL injection vulnerability. | | Author: | Rohit Bansal | | File Size: | 1375 | | Last Modified: | Jan 4 15:48:21 2009 | | MD5 Checksum: | 1e40523527d08b2c7f671843e4b8f5d2 |
|
| /// File Name: | destiny161lst-overflow.txt | Description:
| Destiny Media Player version 1.61 .lst file local buffer overflow proof of concept exploit. | | Author: | Encrypt3d.M!nd | | File Size: | 460 | | Last Modified: | Jan 4 15:23:14 2009 | | MD5 Checksum: | 860a37459e6487b825536aba40de8534 |
|
| /// File Name: | webspell4-sql.txt | Description:
| Webspell version 4 suffers from a SQL injection vulnerability that allows for authentication bypass. | | Author: | h0yt3r | | File Size: | 2253 | | Last Modified: | Jan 4 15:20:12 2009 | | MD5 Checksum: | 4b21224db9230cc002e5326a09c3a6dd |
|
| /// File Name: | destiny161-overflow.txt | Description:
| Destiny Media Player version 1.61 .m3u file local stack overflow exploit. | | Author: | His0k4 | | File Size: | 1680 | | Last Modified: | Jan 4 15:18:56 2009 | | MD5 Checksum: | 94a408c32ef4ff231eed29acb2a8d390 |
|
| /// File Name: | dsa-1695-1.txt | Description:
| Debian Security Advisory 1695-1 - The regular expression engine of Ruby, a scripting language, contains a memory leak which can be triggered remotely under certain circumstances, leading to a denial of service condition (CVE-2008-3443). | | Homepage: | http://www.debian.org/security | | File Size: | 36870 | | Related CVE(s): | CVE-2008-3443 | | Last Modified: | Jan 2 19:45:45 2009 | | MD5 Checksum: | a8ee321a95a6272a724768a1fe3bed2e |
|
| /// File Name: | dsa-1694-1.txt | Description:
| Debian Security Advisory 1694-1 - Paul Szabo discovered that xterm, a terminal emulator for the X Window System, places arbitrary characters into the input buffer when displaying certain crafted escape sequences (CVE-2008-2383). | | Homepage: | http://www.debian.org/security | | File Size: | 5253 | | Related CVE(s): | CVE-2008-2383 | | Last Modified: | Jan 2 19:45:14 2009 | | MD5 Checksum: | aa67e5228c1b8bb3bcc0a928a6a27de9 |
|
| /// File Name: | destiny-dos.txt | Description:
| Destiny Media Player version 1.61.0 .m3u file local stack overflow proof of concept exploit. | | Author: | aBo MoHaMeD | | Homepage: | http://www.v4-team.net/ | | File Size: | 1895 | | Last Modified: | Jan 2 19:42:14 2009 | | MD5 Checksum: | 1d7be42d4ea9160a98423ca35f4a47e5 |
|
| /// File Name: | phpskelsite-rfilfixss.txt | Description:
| phpSkelSite version 1.4 suffers from remote file inclusion, local file inclusion, and cross site scripting vulnerabilities. | | Author: | ahmadbady | | File Size: | 906 | | Last Modified: | Jan 2 19:40:47 2009 | | MD5 Checksum: | 03c68859bd89afcea5fbed52f0ee9782 |
|
| /// File Name: | phpratemyphoto-upload.txt | Description:
| Built2Go PHP Rate My Photo version 1.46.4 is susceptible to a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1508 | | Last Modified: | Jan 2 19:39:45 2009 | | MD5 Checksum: | d5bd44ec4e4d65a071a7728f7a9e8d95 |
|
| /// File Name: | phplinkportal-upload.txt | Description:
| Built2Go PHP Link Portal version 1.95.1 is susceptible to a remote file upload vulnerability. | | Author: | ZoRLu | | File Size: | 1447 | | Last Modified: | Jan 2 19:38:13 2009 | | MD5 Checksum: | 426a5cbbd51cdfdc8dcc53daced487c3 |
|
| /// File Name: | vmware251-dos.txt | Description:
| VMware versions 2.5.1 and below remote denial of service exploit. | | Author: | laurent gaffi | | File Size: | 2019 | | Last Modified: | Jan 2 19:37:14 2009 | | MD5 Checksum: | 918090c873fe391fb0c2e18d414fdba6 |
|
| /// File Name: | w3blaborcms-sql.txt | Description:
| w3blabor CMS versions 3.3.0 and below suffer from a remote SQL injection vulnerability that allows for administrative bypass. | | Author: | DNX | | File Size: | 2393 | | Last Modified: | Jan 2 13:25:08 2009 | | MD5 Checksum: | 3083663fe7d6da880a3614e7869efa40 |
|
| /// File Name: | ratproxy-1.53.tar.gz | Description:
| ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments. | | Author: | Michal Zalewski | | Homepage: | http://code.google.com/p/ratproxy | | File Size: | 168525 | | Last Modified: | Jan 2 13:23:31 2009 | | MD5 Checksum: | 515ded853cd489cd894162fcf8e069d9 |
|
| /// File Name: | powerclan-sql.txt | Description:
| PowerClan version 1.14a suffers from a remote SQL injection vulnerability that allows for authentication bypass. | | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 766 | | Last Modified: | Jan 2 13:22:13 2009 | | MD5 Checksum: | 2dce363b18838af49b0abda3f42fde75 |
|
| /// File Name: | powernews-sql.txt | Description:
| PowerNews version 2.5.4 suffers from a remote SQL injection vulnerability in news.php. | | Author: | hadihadi | | Homepage: | http://www.virangar.org/ | | File Size: | 824 | | Last Modified: | Jan 2 13:20:40 2009 | | MD5 Checksum: | 16de97949b15925e5dc28fff6e0e4a11 |
|
| /// File Name: | eggblog-xsrf.txt | Description:
| EggBlog version 3.1.10 suffers from a cross site request forgery vulnerability that allows for the changing of the administrative password. | | Author: | X0r | | File Size: | 954 | | Last Modified: | Jan 2 13:11:39 2009 | | MD5 Checksum: | b3cc6fa253b6e20680523f865d3a3b96 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
