Full PHP Emlak Script suffers from a remote SQL injection vulnerability in landsee.php.
f4968c6b56d104c765733c5faf2219cf134b9b74903857fe4c2b0f03acd80198An input validation error within the web interface of Dreambox model DM500C allows for a denial of service condition.
b07f925091a95eb3ffd99e8e205d865b485e692d12f1fceebd5a4600fea29e9eLogMeIn remote access utility Active-X memory consumption denial of service exploit.
b9e39f98515adef80631fb01feadece13b9cbbe60fe4aa1703cfff921eabe808Najdi.si Toolbar Active-X remote buffer overflow proof of concept exploit.
3899e619ee304913fc06cfbe1291b6a323d591ea4a1aa9a662fccef3f676a068Invision Power Board versions 2.3.5 and below remote exploit that brute forces, attempts IDS evasion, and more.
7779c993b7397aaec65eef50dc7ff88cbb5936a2ae85c14d56352edc8fc4a524Sun Solaris 8/9/10 and OpenSolaris versions below snv_96 snoop utility remote exploit.
35e45fd192fe8d93b73a8b63f302b1e8583257b9ea95ef03be4093ea08ebd7e9Secunia Security Advisory - shinnai has reported some vulnerabilities in Ultra Office Control, which can be exploited by malicious people to compromise a user's system.
255b574a168a3e6406787895902cd1755882c6ad556f4434770644caf0ff0148Secunia Security Advisory - Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
ce9a3c800358679991197d67825bf3fea0ef0f7fcae2270b87e52f735798c644A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of messaging applications that make use of the libpurple library. User interaction is not required to exploit this vulnerability. The specific flaw exists in the implementation of the MSN protocol, specifically the handling of SLP messages. The function msn_slplink_process_msg() fails to properly validate an offset value specified in the SLP packet. By providing a specific value, an attacker can overflow a heap buffer resulting in arbitrary code execution.
e15e4d5ffbe515920af88f4eecd3c1a6f1e9059e4b62cd784e5ab4422f7cbdf1Mandriva Linux Security Advisory - Two denial of service vulnerabilities were discovered in the ipsec-tools racoon daemon, which could allow a remote attacker to cause it to consume all available memory. The updated packages have been patched to prevent these issues.
b4f033c3e31a18567428fc5e4fb2e5075e6cda5c26ecbc7bc4b1a23e35c731a6Kisgearth is a small perl script that gives you the ability to convert your Kismet xml logfiles to GoogleEarth kml files. You can apply a lot of filters and use sorting/ordering functions in order to get the best results.
31ac8f67bde714ccc5fca9ee9a6fbdf207a2c2f93db48bc89e7067ac53d1f364Firefox version 3.0.1 (final release) suffers from an unspecified remote code execution vulnerability.
6b29cd17dad920f95700394f167e1dd62ff0044187a945c553e4d426532288a9OpenSSH version 4.4p1 backdoor that logs all incoming and outgoing logins and password via the client and the daemon, adds a magic password for sshd, store passwords to an encrypted logfile, and disables logging if the magic password is used. Based on the Aion 3.8p1 patch.
a37080bf2f46a81e30b27a17681b99e82a47b947525a968a013ef8be8b1e3560dotProject version 2.1.2 suffers from cross site scripting and SQL injection vulnerabilities.
c2506e01037c9e81b5e703b788820b64c68d357035112d587f80012a70e76508Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
a41a081e1d1074f88648a1ab30268e78a9587597eb81d590110b220f81570effHP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Apache. These vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or Denial of Service (DoS).
62638e73004cc9a719789f3b5f3bd25a1ac9061f94ca30f50e9fc24c6a49b2d5Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more.
cc994308e211e00f3605f8cf45a45ced5a82c28524f0a4062e2064e0e92d0177Mercadolibre.com suffers from cross site scripting and remote javascript insertion vulnerabilities.
e5d66c658f2078cfc30d24d389e3fc9a796a985b1977213ed9c47555dcdda4f0strongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
e90ab31519bdc93ded04df1b116b84ca7a4840cf492fe8ffcc5d254470693c68Friendly Technologies Active-X related remote command execution exploit that leverages fwRemoteCfg.dll.
cf791a62866e8c13b0bb4170fecbd62a11c9aa209334d2a4bd08c4ac0092e078Friendly Technologies Active-X remote buffer overflow exploit that leverages fwRemoteCfg.dll.
36eddcbf66c4d13623f2f168843ec44c7ed28ea5b3f30556054af77b456fb53dAcoustica Mixcraft versions 4.2 Build 98 and below mx4 file local buffer overflow exploit.
43b6c437b76203c406a76bf1208c80f1560e902d45286eea3f3997178aafd87f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed