what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 17 of 17 RSS Feed

Files Date: 2011-05-01

Debian Security Advisory 2229-1
Posted May 1, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2229-1 - A vulnerability has been found in SPIP, a website engine for publishing, which allows a malicious registered author to disconnect the website from its database, resulting in denial of service.

tags | advisory, denial of service
systems | linux, debian
SHA-256 | d3a24d613236e39f5e924b3f6b93c43c31b55d9f59763ffd0b14e838bcab0626
Action Message Format (AMF) Shell 0.23
Posted May 1, 2011
Authored by George Hedfors | Site george.hedfors.com

Action Message Format (AMF) Shell is testing tool that demonstrates weaknesses in PHPAMF, especially where the default service 'DiscoveryService' has been left behind.

tags | tool, shell
systems | linux, unix
SHA-256 | 150be94024e1cfc90965e585dc08ff6eebd351f0b15fba769e5a4ba8ba6f0925
Pytbull 0.3
Posted May 1, 2011
Authored by Sebastien Damaye | Site pytbull.sourceforge.net

pytbull is an intrusion detection/prevention system (IDS/IPS) testing framework for Snort and Suricata. It can be used to test the detection and blocking capabilities of an IDS/IPS, to compare IDS/IPS, to compare configuration modifications and to check/validate configurations.The framework is shipped with about 300 tests grouped into 8 testing modules.

tags | tool, sniffer
SHA-256 | 20923dab52e58d5fe397efcf7bc08c14e87a3541bdc2c6687fe4477b9b0b1fd9
Hi5.com XSS / XSRF / URL Redirection / Lack Of Encryption
Posted May 1, 2011
Authored by Eduardo Garcia Melia

Hi5.com suffers from cross site request forgery, cross site scripting, url redirection, and lack of encryption vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | 5341cd0b5d885d93d4a845b388d571fffd33d4f574f0983f3df591be3e2c4bb7
Mandriva Linux Security Advisory 2011-080
Posted May 1, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-080 - Security researcher Soroush Dalili reported that the resource: protocol could be exploited to allow directory traversal on Windows and the potential loading of resources from non-permitted locations. The impact would depend on whether interesting files existed in predictable locations in a useful format. For example, the existence or non-existence of particular images might indicate whether certain software was installed. Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code.

tags | advisory, arbitrary, protocol
systems | linux, windows, mandriva
advisories | CVE-2011-0071, CVE-2011-0081, CVE-2011-0069, CVE-2011-0070, CVE-2011-0080, CVE-2011-0074, CVE-2011-0075, CVE-2011-0077, CVE-2011-0078, CVE-2011-0072
SHA-256 | 139b2895ed6cec38a7cbd37a984d8efc5c45dd3312146e5b19d564d7762e49c2
ArpON Arp Handler Inspection 2.2
Posted May 1, 2011
Authored by Andrea Di Pasquale | Site arpon.sourceforge.net

ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol.

Changes: Added HARPI new algorithm. Various redesign and multiple bug fixes.
tags | spoof, protocol
systems | unix
SHA-256 | 5994c377948a94a2bf500f3562306b9c1ac9f612d5279e8959d8919d7abe78ab
LANSA aXes Web Terminal Cross Site Scripting
Posted May 1, 2011
Authored by Patrick Webster

LANSA aXes Web Terminal (TN5250) suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
SHA-256 | a015d5357f35b389714d88ff7ffc8b31be4d05cf80d5372754c4d9f4734d92af
Travel411 SQL Injection
Posted May 1, 2011
Authored by Caddy-Dz

Travel411 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 6999cf0f1608a5c7ce9d000ebc6e516ff333354c2c33f42bbb0580fbe60051b0
Plinka Design File Disclosure / Local File Inclusion
Posted May 1, 2011
Authored by KnocKout

Plinka Design suffers from a file disclosure / local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 6efb45180dd39cfb8f7374e64d82c4a62318fab4e3e62fb2f1a27073eec89ecc
PresseTool /etc/passwd Disclosure
Posted May 1, 2011
Authored by KnocKout

PresseTool suffers from a remote /etc/passwd file disclosure vulnerability.

tags | exploit, remote, info disclosure
SHA-256 | 542a9ff9cd2f460897a859eb02232dafb6fb4f267d8bcecdf0eedaa8edc3e22a
Phire CMS 1.1 File Disclosure
Posted May 1, 2011
Authored by KedAns-Dz

Phire CMS versions 1.1 and below suffer from remote file disclosure vulnerabilities.

tags | exploit, remote, vulnerability, info disclosure
SHA-256 | 83478b037c17f94c227a1bdaec00baf8e764b217bdac364922bee5da21c7c9dd
Synapse Web Solution SQL Injection
Posted May 1, 2011
Authored by RoAd_KiLlEr

Synapse Web Solution suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
SHA-256 | d6088a2df891f679d8f650ae0274ead6e44f1ed8020237dd23e0ec90e6d35f79
Exponent CMS 2.0 Beta 1.1 Cross Site Request Forgery
Posted May 1, 2011
Authored by outlaw.dll

Exponent CMS version 2.0 Beta 1.1 cross site request forgery add administrator proof of concept exploit.

tags | exploit, proof of concept, csrf
SHA-256 | b4337c4ca61c7af6920aa89aee4deea2b16352b7c2f9c7edd5bfe6bfa4793509
Asterisk 1.8.x SIP User Enumeration
Posted May 1, 2011
Authored by Francesco Tornieri

Asterisk version 1.8.x suffers from a SIP remote user enumeration vulnerability.

tags | exploit, remote
SHA-256 | 5bf98cf221d04c51ddb7d1a9e47f9bbb189d3640a8237aa5efd26b53988ad25c
InterPhoto Gallery 2.5.0 File Disclosure
Posted May 1, 2011
Authored by KedAns-Dz

InterPhoto Gallery version 2.5.0 suffers from the same file disclosure vulnerabilities that prior versions already had disclosed.

tags | exploit, vulnerability, info disclosure
SHA-256 | 79b3305ea68c41ea15a8dcece6b5c2e8be4296599e246272fd6b8a8046c76f53
Parnian Opendata CMS SQL Injection
Posted May 1, 2011
Authored by Alexander

Parnian Opendata CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | ef3f669b59bea30af0f56180faa7b4b1d44a09f83ad9af70a7f2984081d192cd
MyBB 1.6.3 XSS / URL Redirection
Posted May 1, 2011
Authored by MustLive

MyBB version 1.6.3 suffers from url redirection and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
SHA-256 | 631b0453a961b2f0138e0c7d391d1caec90a38318fde9278d7ed81384acf8eab
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close