Section: .. / Last 100 Files /
| /// File Name: | twiki-disclose.txt | Description:
| TWiki version 4.2.0 suffers from a remote file disclosure vulnerability. | | Author: | Th1nk3r | | File Size: | 2726 | | Last Modified: | Aug 19 14:50:17 2008 | | MD5 Checksum: | 2815940c07c450c4954785902cf1a012 |
|
| /// File Name: | sunshop414-sql.txt | Description:
| SunShop versions 4.1.4 and below suffer from a remote SQL injection vulnerability. | | Author: | James Bercegay | | Homepage: | http://www.gulftech.org | | File Size: | 3412 | | Last Modified: | Aug 19 14:49:07 2008 | | MD5 Checksum: | d7f5536589db1381f92aeb91ac136e5b |
|
| /// File Name: | affildir-sql.txt | Description:
| Affiliate Directory suffers from a remote SQL injection vulnerability in directory.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1276 | | Last Modified: | Aug 18 20:06:54 2008 | | MD5 Checksum: | fbe236e037033d7d9afe2464a1864f82 |
|
| /// File Name: | adboard-sql.txt | Description:
| Ad Board suffers from a remote SQL injection vulnerability in trr.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1303 | | Last Modified: | Aug 18 20:06:19 2008 | | MD5 Checksum: | cdcae6f9a06ca06997b2c00ef8a8ec4a |
|
| /// File Name: | SSRT080039-2.txt | Description:
| HP Security Bulletin - A potential security vulnerability has been identified with HP System Management Homepage (SMH) for Linux and Windows. This vulnerability could by exploited remotely to allow cross site scripting (XSS). | | Homepage: | http://www.hp.com/ | | File Size: | 6382 | | Related CVE(s): | CVE-2008-1663 | | Last Modified: | Aug 18 20:05:07 2008 | | MD5 Checksum: | 532beb0aee3e979142e353425bdaf021 |
|
| /// File Name: | DSECRG-08-036.txt | Description:
| Freeway eCommerce version 1.4.1.171 suffers from remote file inclusion, multiple local file inclusion, and cross site scripting vulnerabilities. | | Author: | Digital Security Research Group | | Homepage: | http://www.dsec.ru/ | | File Size: | 7237 | | Last Modified: | Aug 18 20:04:41 2008 | | MD5 Checksum: | 5b7d4cd901bfd8340ac4a81e7fbf189d |
|
| /// File Name: | wirelesslan.pdf | Description:
| Wireless LAN Attacks - What you need to know or a simple guide to WEP/WPA-PSK cracking. Written in German. | | Author: | Johannes Greil | | Homepage: | http://www.sec-consult.com/ | | File Size: | 120833 | | Last Modified: | Aug 18 20:03:44 2008 | | MD5 Checksum: | 7419b692e5dd4208687c98de6b8d59fe |
|
| /// File Name: | sybase-bypass.pdf | Description:
| Whitepaper discussing Sybase SQL injection and bypassing mod_security. Written in German. | | Author: | T. Kerbl | | Homepage: | http://www.sec-consult.com/ | | File Size: | 131934 | | Last Modified: | Aug 18 20:02:00 2008 | | MD5 Checksum: | 2b5e62af1a1d46a6e397815bc096a922 |
|
| /// File Name: | seh-paper.txt | Description:
| Playing around with SEH (the Structured Exception Handler). | | Author: | suN8Hclf | | Homepage: | http://www.dark-coders.pl/ | | File Size: | 41425 | | Last Modified: | Aug 18 20:00:12 2008 | | MD5 Checksum: | 679821c48bb8441a75d5ed76b003bd45 |
|
| /// File Name: | linux-set.txt | Description:
| 79 byte linux/x86 (Fedora 8) shellcode that performs setuid(0) + setgid(0) + execve("echo 0 > / proc/sys/kernel/randomize_va_space"). | | Author: | LiquidWorm | | Homepage: | http://www.zeroscience.org/ | | File Size: | 1477 | | Last Modified: | Aug 18 19:17:59 2008 | | MD5 Checksum: | c49be7c5c211fc98e2f50d0ca004b778 |
|
| /// File Name: | dsa-1629-1.txt | Description:
| Debian Security Advisory 1629-1 - Sebastian Krahmer discovered that Postfix, a mail transfer agent, incorrectly checks the ownership of a mailbox. In some configurations, this allows for appending data to arbitrary files as root. | | Homepage: | http://www.debian.org/security | | File Size: | 13634 | | Related CVE(s): | CVE-2008-2936 | | Last Modified: | Aug 18 19:15:23 2008 | | MD5 Checksum: | 5a5029498e47c3b0c8f6caa98004975c |
|
| /// File Name: | ovidentia-xss.txt | Description:
| Ovidentia version 6.6.5 appears to suffer from a cross site scripting vulnerability. | | Author: | ThE dE@Th | | File Size: | 958 | | Last Modified: | Aug 18 19:15:11 2008 | | MD5 Checksum: | 004238d872d27a2758b783e5b3579a32 |
|
| /// File Name: | linux-block.txt | Description:
| 32 byte linux/x86 rm -rf / shellcode that attempts to block the process from being stopped. | | Author: | onionring | | File Size: | 2568 | | Last Modified: | Aug 18 19:13:27 2008 | | MD5 Checksum: | a3e9e217ba78bca84f50656751c095b0 |
|
| /// File Name: | vmwarework-dos.txt | Description:
| VMware Workstation suffers from a local denial of service vulnerability in hcmon.sys version 6.0.0.45731. | | Author: | g_ | | File Size: | 4621 | | Last Modified: | Aug 18 19:09:55 2008 | | MD5 Checksum: | 320aa34b4d322e6e71996ccea6becb7d |
|
| /// File Name: | vidiscript-upload.txt | Description:
| VidiScript suffers from a remote arbitrary file upload vulnerability. | | Author: | Cyb3r-1sT | | File Size: | 2312 | | Last Modified: | Aug 18 19:08:56 2008 | | MD5 Checksum: | 963235821788b2c131a410d417b24ca2 |
|
| /// File Name: | cyberbb-sql.txt | Description:
| cyberBB version 0.6 suffers from multiple remote SQL injection vulnerabilities. | | Author: | cOndemned | | Homepage: | http://condemned.r00t.la/ | | File Size: | 1112 | | Last Modified: | Aug 18 18:58:24 2008 | | MD5 Checksum: | 7d982491948f590e89897598501cfeae |
|
| /// File Name: | mp3nema-v0_01.tar.gz | Description:
| MP3nema is a tool aimed at analyzing and capturing data that is hidden between frames in an MP3 file or stream, otherwise noted as "out of band" data. This utility also supports adding data between frames and capturing streaming audio. | | Author: | enferex | | Homepage: | http://www.757labs.com/projects/mp3nema/ | | File Size: | 58659 | | Last Modified: | Aug 18 18:57:03 2008 | | MD5 Checksum: | 7752520d8f9720647f17243fdb06d0e9 |
|
| /// File Name: | samhain-2.4.5a.tar.gz | Description:
| Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris. | | Author: | Rainer Wichmann | | Homepage: | http://samhain.sourceforge.net | | Changes: | Various updates. | | File Size: | 1790423 | | Last Modified: | Aug 18 18:54:44 2008 | | MD5 Checksum: | b78bd04ff0661e94a1387fe0e84586b9 |
|
| /// File Name: | newshowler-sql.txt | Description:
| NewsHOWLER version 1.03 BETA suffers a cookie handling vulnerability that allows for SQL injection attacks. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 2163 | | Last Modified: | Aug 18 18:48:04 2008 | | MD5 Checksum: | 5e69c2ae4414fa01095bffd798556c37 |
|
| /// File Name: | freeway-lfixss.txt | Description:
| Freeway version 1.4.2.197 suffers from local file inclusion and cross site scripting vulnerabilities. | | Author: | CraCkEr | | File Size: | 4879 | | Last Modified: | Aug 18 18:47:11 2008 | | MD5 Checksum: | 47ecab4b558c7567187ed4b4ac02b871 |
|
| /// File Name: | xnova-rfi.txt | Description:
| XNova version 0.8 sp1 suffers from a remote file inclusion vulnerability. | | Author: | NuclearHaxor | | File Size: | 857 | | Last Modified: | Aug 18 18:46:15 2008 | | MD5 Checksum: | 9404ef8f69346fd66d5fcdaab4c7efb2 |
|
| /// File Name: | wsftp-format.txt | Description:
| WS_FTP Home / WS_FTP Professional FTP client remote format string proof of concept exploit. | | Author: | securfrog | | File Size: | 1540 | | Last Modified: | Aug 18 18:45:13 2008 | | MD5 Checksum: | 5bcf296469e39253ece504fe5d26c51f |
|
| /// File Name: | linksyswrt54g-execve.txt | Description:
| linux/mips execve 60 bytes shellcode for the Linksys WRT54G/GL. | | Author: | vaicebine | | File Size: | 1271 | | Last Modified: | Aug 18 18:44:01 2008 | | MD5 Checksum: | 099d8a768846f1c3b73e6f73108529aa |
|
| /// File Name: | linksyswrt54g-bind.txt | Description:
| linux/mips port bind 276 bytes shellcode for the Linksys WRT54G/GL. | | Author: | vaicebine | | File Size: | 4724 | | Last Modified: | Aug 18 18:43:01 2008 | | MD5 Checksum: | 3490448079386c49a0b0a6ec1a73406d |
|
| /// File Name: | backsendexit.txt | Description:
| linux/x86 connect back.send.exit /etc/shadow 155 bytes shellcode. | | Author: | 0in | | Homepage: | http://dark-coders.4rh.eu/ | | File Size: | 4489 | | Last Modified: | Aug 18 18:41:21 2008 | | MD5 Checksum: | 02bf52c688e02cb7d22644203f01b0ee |
|
| /// File Name: | nokia-spoof.txt | Description:
| The Nokia 6131 NFC mobile phone suffers from URI/URL spoofing vulnerabilities. | | Author: | Collin Mulliner | | File Size: | 4820 | | Last Modified: | Aug 18 18:33:14 2008 | | MD5 Checksum: | 6fe5764e9fc32ab6c654198f30665234 |
|
| /// File Name: | phplivehelper-sqlexec.txt | Description:
| PHP Live Helper versions 2.0.1 and below suffer from SQL injection and code execution vulnerabilities. | | Author: | James Bercegay | | Homepage: | http://www.gulftech.org | | File Size: | 4473 | | Last Modified: | Aug 18 18:31:00 2008 | | MD5 Checksum: | c466c5e1dbec1078f714b0ae1d32d5c0 |
|
| /// File Name: | vlcfileparse-overflow.txt | Description:
| VLC version 0.8.6i tta file parsing heap overflow proof of concept exploit. | | Author: | g_ | | File Size: | 2604 | | Last Modified: | Aug 18 18:29:11 2008 | | MD5 Checksum: | 397b74a460271a5b3f5d6b8f039354af |
|
| /// File Name: | eset-escalate.txt | Description:
| ESET Smart Security version 3.0.667.0 privilege escalation proof of concept exploit. | | Author: | g_ | | File Size: | 6905 | | Last Modified: | Aug 18 18:26:19 2008 | | MD5 Checksum: | 1900f0c79a340ced59e42df8a0424710 |
|
| /// File Name: | phparcadescript4-sql.txt | Description:
| phpArcadeScript version 4 suffers from a remote SQL injection vulnerability in index.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1283 | | Last Modified: | Aug 18 18:25:00 2008 | | MD5 Checksum: | 93b692a6ae6e5b8523ca4ea20c720add |
|
| /// File Name: | flashget1901012-overflow.txt | Description:
| FlashGet version 1.9.0.1012 FTP PWD Response remote proof of concept buffer overflow exploit. | | Author: | k'sOSe | | Homepage: | http://www.pornosecurity.org/ | | File Size: | 1983 | | Last Modified: | Aug 18 18:22:59 2008 | | MD5 Checksum: | c2367229a025a96afbfd521cfc3f9cbb |
|
| /// File Name: | porkbind-1.3.tar.gz | Description:
| Porkbind is a robust and recursive DNS server vulnerability scanner which retrieves version.bind information for the nameservers and produces a report. | | Author: | Derek Callaway | | Homepage: | http://innu.org/~super | | Changes: | Wrote in-a-bind shell script that scans random domain names from DMOZ. Implemented recursive query testing. Various other fixes and additions. | | File Size: | 43416 | | Last Modified: | Aug 18 18:18:31 2008 | | MD5 Checksum: | 0f9eba661fd9187b6c488c8f6e587bc8 |
|
| /// File Name: | PLSA-2008-25.txt | Description:
| Pardus Linux Security Advisory - Sebastian Krahmer has reported some security issues in Postfix, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges. | | Author: | Pardus Linux | | File Size: | 2262 | | Related CVE(s): | CVE-2008-2936, CVE-2008-2937 | | Last Modified: | Aug 15 20:40:40 2008 | | MD5 Checksum: | e57d0cc8a2f7fccc61fb079bf6de7bda |
|
| /// File Name: | MDVSA-2008-172.txt | Description:
| Mandriva Linux Security Advisory - A flaw in Amarok prior to 1.4.10 would allow local users to overwrite arbitrary files via a symlink attack on a temporary file that Amarok created with a predictable name. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5625 | | Related CVE(s): | CVE-2008-3699 | | Last Modified: | Aug 15 20:39:23 2008 | | MD5 Checksum: | 35b9f3396f2f1dad47d3cfe0d6aee45f |
|
| /// File Name: | MDVSA-2008-171.txt | Description:
| Mandriva Linux Security Advisory - Sebastian Krahmer of the SUSE Security Team discovered a flaw in the way Postfix dereferenced symbolic links. If a local user had write access to a mail spool directory without a root mailbox file, it could be possible for them to append arbitrary data to files that root had write permissions to. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8984 | | Related CVE(s): | CVE-2008-2936 | | Last Modified: | Aug 15 20:39:05 2008 | | MD5 Checksum: | 48044f8eb8d0f450a53f132789027535 |
|
| /// File Name: | quickpoll-sql.txt | Description:
| Quick Poll suffers from a remote SQL injection vulnerability in code.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1349 | | Last Modified: | Aug 15 20:38:59 2008 | | MD5 Checksum: | df4662ed9d85bf9cec55716b209dc742 |
|
| /// File Name: | phpizabi-traverse.txt | Description:
| PHPizabi version 0.848b suffers from directory traversal and cross site scripting vulnerabilities. | | Author: | Lostmon | | Homepage: | http://lostmon.blogspot.com/ | | File Size: | 2974 | | Last Modified: | Aug 15 20:37:20 2008 | | MD5 Checksum: | 58a256c358625b1b59e1d05cd186254d |
|
| /// File Name: | vsclam-0.9.0.tar.gz | Description:
| ClamSAP consists of two C shared libraries that link between ClamAV and the Virus Scan Interface (VSI) of SAP (official name: NW-VSI). A SAP application can use the ClamAV engine to scan for malicious uploads in HTTP uploads, for example. | | Author: | Markus Strehle | | Homepage: | http://clamsap.sourceforge.net/ | | File Size: | 323835 | | Last Modified: | Aug 15 20:35:38 2008 | | MD5 Checksum: | 6b545d3904627a37f4f3af11e12b9fc9 |
|
| /// File Name: | flashget190-overflow.txt | Description:
| FlashGet version 1.9.0.1012 FTP PWD Response SEH stack overflow exploit. | | Author: | SkOd | | File Size: | 3444 | | Last Modified: | Aug 15 20:31:20 2008 | | MD5 Checksum: | 42ab1603f2c6f695f6c482069e9c70fa |
|
| /// File Name: | dotcms-lfi.txt | Description:
| dotCMS version 1.6 suffers from local file inclusion vulnerabilities. | | Author: | Don | | Homepage: | http://balcan-crew.org/ | | File Size: | 741 | | Last Modified: | Aug 15 20:29:50 2008 | | MD5 Checksum: | 3538f937032b299d320be6e2e08d9f7f |
|
| /// File Name: | deeemmcms-multi.txt | Description:
| DeeEmm CMS version 0.7.4 suffers from remote file inclusion and SQL injection vulnerabilities. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 2671 | | Last Modified: | Aug 15 20:28:39 2008 | | MD5 Checksum: | a960afe5f691a74a216d34293f055eb2 |
|
| /// File Name: | zeelyrics-sql.txt | Description:
| ZEELYRICS version 2.0 suffers from a remote SQL injection vulnerability in bannerclick.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1234 | | Last Modified: | Aug 15 20:27:37 2008 | | MD5 Checksum: | 4d1588251bb3ea3c64b1ef6f50a6e69e |
|
| /// File Name: | zeejobsite-sql.txt | Description:
| ZEEJOBSITE version 2.0 suffers from a remote SQL injection vulnerability in bannerclick.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1283 | | Last Modified: | Aug 15 20:27:10 2008 | | MD5 Checksum: | a03917fd408573261924aa92281dfae3 |
|
| /// File Name: | shaadiclone-sql.txt | Description:
| ShaadiClone version 2.0 suffers from a remote SQL injection vulnerability in bannerclick.php. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1776 | | Last Modified: | Aug 15 20:26:34 2008 | | MD5 Checksum: | ef8b15ad9a40bf711f4c8bdefb892ba3 |
|
| /// File Name: | ptcinvest-sql.txt | Description:
| PTCinvestment version 1.2 suffers from a remote SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1341 | | Last Modified: | Aug 15 20:25:55 2008 | | MD5 Checksum: | fb3532c789b0429f01f301918432f174 |
|
| /// File Name: | acgsurf-sql.txt | Description:
| ACG-Surf version 1.0 suffers from a remote SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1326 | | Last Modified: | Aug 15 20:25:19 2008 | | MD5 Checksum: | 4d8ff5134a12d66d3095dc5d5f8b4386 |
|
| /// File Name: | acgptp-sql.txt | Description:
| ACG-PTP version 1.0.6 suffers from a remote SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1327 | | Last Modified: | Aug 15 20:24:46 2008 | | MD5 Checksum: | 97bd63a9494843d84efbcb9da191a204 |
|
| /// File Name: | acgscriptshop-sql.txt | Description:
| ACG-ScriptShop suffers from a remote SQL injection vulnerability. | | Author: | Hussin X | | Homepage: | http://www.tryag.cc/ | | File Size: | 1554 | | Last Modified: | Aug 15 20:24:03 2008 | | MD5 Checksum: | 8d133fc8a89a07575940e5ac62f48b86 |
|
| /// File Name: | flexcms-xss.txt | Description:
| FlexCMS versions 2.5 and below suffer from a cross site scripting vulnerability. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1337 | | Last Modified: | Aug 15 20:19:17 2008 | | MD5 Checksum: | 9a0be86265c50de43a3ed51f0243fa4b |
|
| /// File Name: | mailscan-multi.txt | Description:
| MailScan for Mail Servers version 5.6.a suffers from directory traversal, authentication bypass, cross site scripting, and log file access vulnerabilities. | | Author: | Oliver Karow | | Homepage: | http://www.oliverkarow.de | | File Size: | 4121 | | Last Modified: | Aug 15 20:18:19 2008 | | MD5 Checksum: | 127cfd5afcc6fa75030d4453bef425dd |
|
| /// File Name: | munkybliki-lfi.txt | Description:
| munky-bliki suffers from a local file inclusion vulnerability. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 2844 | | Last Modified: | Aug 15 20:16:08 2008 | | MD5 Checksum: | b1153cfa4b80b628caf2677a20cde224 |
|
| /// File Name: | mambo462-morexss.txt | Description:
| Mambo versions 4.6.2 and below appear susceptible to more cross site scripting vulnerabilities. | | Author: | IRCRASH | | Homepage: | http://ircrash.com/ | | File Size: | 1918 | | Last Modified: | Aug 15 20:15:38 2008 | | MD5 Checksum: | 83a65efbd41054cb7d65f188bff5444a |
|
| /// File Name: | PLSA-2008-24.txt | Description:
| Pardus Linux Security Advisory - A security issue has been reported in Amarok, which can be exploited by malicious, local users to perform certain actions with escalated privileges. | | Author: | Pardus Linux | | File Size: | 1930 | | Related CVE(s): | CVE-2008-3699 | | Last Modified: | Aug 15 18:41:56 2008 | | MD5 Checksum: | fc8bca31f37dffda0b3a0d3f2f9656f1 |
|
| /// File Name: | cisco-sa-20080814-webex.txt | Description:
| Cisco Security Advisory - An ActiveX control (atucfobj.dll) that is used by the Cisco WebEx Meeting Manager contains a buffer overflow vulnerability that may result in a denial of service or remote code execution. The WebEx Meeting Manager is a client-side program that is provided by the Cisco WebEx meeting service. The Cisco WebEx meeting service automatically downloads, installs, and configures Meeting Manager the first time a user begins or joins a meeting. When users connect to the WebEx meeting service, the WebEx Meeting Manager is automatically upgraded to the latest version. There is a manual workaround available for users who are not able to connect to the WebEx meeting service. | | Homepage: | http://www.cisco.com/ | | File Size: | 14028 | | Related CVE(s): | CVE-2008-2737 | | Last Modified: | Aug 15 18:40:39 2008 | | MD5 Checksum: | b37ad9f1f0ade1da7287081770808eb6 |
|
| /// File Name: | zorum-blindsql.txt | Description:
| Zorum version 3.5 blind SQL injection exploit. | | Author: | CraCkEr | | File Size: | 2766 | | Last Modified: | Aug 15 18:39:32 2008 | | MD5 Checksum: | 9b6f27436dacda767d3a8a93fb4463b2 |
|
| /// File Name: | cfs-cfp.txt | Description:
| Forensic Trade Shows, LLC is proud to announce two events for 2009. The Computer Forensics Show will meet the needs of industry professionals by providing detailed information regarding the changes and advancements in the IT security marketplace. Each event will highlight exhibits from some of the leading companies in the industry, complemented by a comprehensive conference program to provide attendees with important information about the latest technological advancement, ideas and practical information available today. | | Homepage: | http://www.computerforensicshow.com/ | | File Size: | 5754 | | Last Modified: | Aug 15 18:33:33 2008 | | MD5 Checksum: | c382918bdfce3e8a601308621c840909 |
|
| /// File Name: | glsa-200808-12.txt | Description:
| Gentoo Linux Security Advisory GLSA 200808-12 - Sebastian Krahmer of SuSE has found that Postfix allows to deliver mail to root-owned symlinks in an insecure manner under certain conditions. Normally, Postfix does not deliver mail to symlinks, except to root-owned symlinks, for compatibility with the systems using symlinks in /dev like Solaris. Furthermore, some systems like Linux allow to hardlink a symlink, while the POSIX.1-2001 standard requires that the symlink is followed. Depending on the write permissions and the delivery agent being used, this can lead to an arbitrary local file overwriting vulnerability (CVE-2008-2936). Furthermore, the Postfix delivery agent does not properly verify the ownership of a mailbox before delivering mail (CVE-2008-2937). Versions less than 2.5.3-r1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 5453 | | Related CVE(s): | CVE-2008-2936, CVE-2008-2937 | | Last Modified: | Aug 14 20:12:35 2008 | | MD5 Checksum: | 3d10d7b22f9734485a3dd000961d1cf5 |
|
| /// File Name: | InternetProtocol.pdf | Description:
| This document aims to raise awareness about the many security threats based on the IP protocol, those that we are currently facing, and those we may still have to deal with in the future. It provides advice for the secure implementation of the IP, and also insights about the security aspects of the IP that may be of help to the Internet operations community. | | Author: | Fernando Gont | | Homepage: | http://www.cpni.gov.uk/ | | File Size: | 675316 | | Last Modified: | Aug 14 20:12:10 2008 | | MD5 Checksum: | 8621c729eab84344f70a70121b88b710 |
|
| /// File Name: | SYM08-015.txt | Description:
| Symantec Security Advisory - It is possible to circumvent the security patch that resolved a previously identified authentication bypass, remote code execution vulnerability in the Veritas Storage Foundation for Windows version 5.0 Volume Manager Scheduler Service. Successful exploitation could result in potential compromise of the targeted system. | | Homepage: | http://www.symantec.com/ | | File Size: | 5627 | | Last Modified: | Aug 14 20:07:58 2008 | | MD5 Checksum: | ec41ee8b4de02919527d674e1245726a |
|
| /// File Name: | ZDI-08-053.txt | Description:
| A vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists in the functionality exposed by the Storage Foundation for Windows Scheduler Service, VxSchedService.exe, which listens by default on TCP port 4888. The management console allows NULL NTLMSSP authentication thereby enabling a remote attacker to add, modify, or delete snapshots schedules and consequently run arbitrary code under the context of the SYSTEM user. | | Author: | Tenable Network Security | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3128 | | Last Modified: | Aug 14 20:05:49 2008 | | MD5 Checksum: | 95e5d86646e2ad48b9ff8481f0549ee9 |
|
| /// File Name: | ZDI-08-052.txt | Description:
| A vulnerability allows remote attackers to deny services on vulnerable installations of OpenLDAP. Authentication is not required to exploit this vulnerability. The specific flaw exists in the decoding of ASN.1 BER network datagrams. When the size of a BerElement is specified incorrectly, the application will trigger an assert(), leading to abnormal program termination. | | Author: | Oscar Mira-Sanchez | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3289 | | Related CVE(s): | CVE-2008-2952 | | Last Modified: | Aug 14 20:04:56 2008 | | MD5 Checksum: | c4b36d8934d8c8254cbb4f7fa85d22ad |
|
| /// File Name: | SUSE-SA-2008-041.txt | Description:
| SUSE Security Announcement - The SuSE Security-Team has found two critical issues in the code for openwsman. Two remote buffer overflows while decoding the HTTP basic authentication header exist and a possible SSL session replay attack affecting the client exists. | | Homepage: | http://www.suse.com | | File Size: | 12823 | | Related CVE(s): | CVE-2008-2234, CVE-2008-2233 | | Last Modified: | Aug 14 20:01:50 2008 | | MD5 Checksum: | a5c9b5a5bfbfb5a476e0fa336417c841 |
|
| /// File Name: | assh-1.0.tgz | Description:
| Assh is an anonymous ssh client for GNU/Linux and Mac OS X. It use proxies to get connected on remote ssh servers. | | Author: | ZZZ Team | | Homepage: | http://assh.sourceforge.net/ | | File Size: | 8947 | | Last Modified: | Aug 14 19:58:34 2008 | | MD5 Checksum: | f08e267f9c196979ef788b44dd813cf3 |
|
| /// File Name: | SUSE-SA-2008-040.txt | Description:
| SUSE Security Announcement - During a source code audit the SuSE Security-Team discovered a local privilege escalation bug as well as a mailbox ownership problem in postfix. The first bug allowed local users to execute arbitrary commands as root while the second one allowed local users to read other users mail. | | Homepage: | http://www.suse.com | | File Size: | 14399 | | Related CVE(s): | CVE-2008-2936, CVE-2008-2937 | | Last Modified: | Aug 14 19:55:59 2008 | | MD5 Checksum: | eaa21077f3779185d042f06a508f9688 |
|
| /// File Name: | postfix-ruhroh.txt | Description:
| Postfix on modern Solaris and Linux filesystems can be leveraged for privilege escalation via hardlinks. | | Author: | Wietse Venema | | File Size: | 10869 | | Last Modified: | Aug 14 19:55:00 2008 | | MD5 Checksum: | 02e30f6b6b0cba8ce26d00032feeeb2b |
|
| /// File Name: | MDVSA-2008-170.txt | Description:
| Mandriva Linux Security Advisory - Thomas Pollet discovered an integer overflow vulnerability in the PNG image handling filter in CUPS. This could allow a malicious user to execute arbitrary code with the privileges of the user running CUPS, or cause a denial of service by sending a specially crafted PNG image to the print server. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8933 | | Related CVE(s): | CVE-2008-1722 | | Last Modified: | Aug 14 01:58:26 2008 | | MD5 Checksum: | 660f4d454552514f438069932300c0cf |
|
| /// File Name: | MDVSA-2008-169.txt | Description:
| Mandriva Linux Security Advisory - Marc Schoenefeld of the Red Hat Security Response Team discovered a vulnerability in the hplip alert-mailing functionality that could allow a local attacker to elevate their privileges by using specially-crafted packets to trigger alert mails that are sent by the root account. Another vulnerability was discovered by Marc Schoenefeld in the hpssd message parser that could allow a local attacker to stop the hpssd process by sending specially-crafted packets, causing a denial of service. The updated packages have been patched to correct these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 9181 | | Related CVE(s): | CVE-2008-2940, CVE-2008-2941 | | Last Modified: | Aug 14 01:56:53 2008 | | MD5 Checksum: | 148dd1fdcbb7b4f86162eb048226603f |
|
| /// File Name: | MDVSA-2008-168.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability was found in the OCSP search functionality in stunnel that could allow a remote attacker to use a revoked certificate that would be successfully authenticated by stunnel. This flaw only concerns users who have enabled OCSP validation in stunnel. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4735 | | Related CVE(s): | CVE-2008-2420 | | Last Modified: | Aug 14 01:56:21 2008 | | MD5 Checksum: | c99af4bde004b58dcbe22defa64c8221 |
|
| /// File Name: | msm-remote.txt | Description:
| A remote illegal access vulnerability exists in Microsoft Windows Live Messenger. A vicious attacker can control the Live Messenger via constructing a malicious web page. | | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 2079 | | Related CVE(s): | CVE-2008-0082 | | Last Modified: | Aug 14 01:56:09 2008 | | MD5 Checksum: | 893382da2903619e476e93b9b7952707 |
|
| /// File Name: | cyboards-rfilfixss.txt | Description:
| CyBoards PHP Lite version 1.21 suffers from cross site scripting, local file inclusion, and remote file inclusion vulnerabilities. | | Author: | CraCkEr | | File Size: | 8047 | | Last Modified: | Aug 14 01:53:54 2008 | | MD5 Checksum: | 1522780f977357ce1b9dea3a99b31fa0 |
|
| /// File Name: | navboard-lfixss.txt | Description:
| NavBoard version 16 suffers from multiple local file inclusion and cross site scripting vulnerabilities. | | Author: | CraCkEr | | File Size: | 4908 | | Last Modified: | Aug 13 20:55:26 2008 | | MD5 Checksum: | ec707df2c5699e3ad49377ef5b42dd14 |
|
| /// File Name: | yapbb-rfi.txt | Description:
| YapBB version 1.2 Beta2 suffers from a remote file inclusion vulnerability. | | Author: | CraCkEr | | File Size: | 4824 | | Last Modified: | Aug 13 20:29:59 2008 | | MD5 Checksum: | 6c65a2625bdc50dc040ee5af4efcbe2b |
|
| /// File Name: | CORE-2008-0103.txt | Description:
| Core Security Technologies Advisory - A zone elevation vulnerability has been discovered in Internet Explorer versions 5 through 7 under Windows 2000, 2003, and XP. It also affects Windows Vista on IE 7 when protected mode is turned off. | | Author: | Jorge Luis Alvarez Medina | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 27082 | | Related CVE(s): | CVE-2008-1448 | | Last Modified: | Aug 13 19:27:23 2008 | | MD5 Checksum: | 7bcec620f32e9905726c1a58cd81f323 |
|
| /// File Name: | IOS_Bindshell_v.1.0.txt | Description:
| Cisco IOS Bind shellcode that creates a new tty, allocates a password, and then sets the privilege level 15. | | Author: | Varun Uppal | | Homepage: | http://www.irmplc.com/ | | File Size: | 1871 | | Last Modified: | Aug 13 19:22:47 2008 | | MD5 Checksum: | b9ce656698ebbdfbd6035588ce0b899d |
|
| /// File Name: | IOS_Connectback_v.1.0.txt | Description:
| Cisco IOS connectback shellcode that creates a new tty and sets the privilege level 15 and then connects back on port 21. | | Author: | Gyan Chawdhary | | Homepage: | http://www.irmplc.com/ | | File Size: | 3048 | | Last Modified: | Aug 13 19:19:35 2008 | | MD5 Checksum: | fcc193d93dd1f6b99acd1094b69427f8 |
|
| /// File Name: | IOS_tiny_v.1.0.txt | Description:
| Cisco IOS tiny shellcode that creates a new tty and sets the privilege level 15. | | Author: | Gyan Chawdhary | | Homepage: | http://www.irmplc.com/ | | File Size: | 1299 | | Last Modified: | Aug 13 19:18:24 2008 | | MD5 Checksum: | 8b78fb32f92dc6c91c3b135d68f79e06 |
|
| /// File Name: | dnsbind-10hrs.tgz | Description:
| BIND version 9.5.0-P2 randomized ports remote DNS cache poisoning exploit. Takes about 10 hours to perform the attack. | | Author: | Zbr | | Homepage: | http://tservice.net.ru/~s0mbre/ | | File Size: | 13052 | | Last Modified: | Aug 13 19:15:39 2008 | | MD5 Checksum: | 1a06b6b8d31398af1eda2c970af433a1 |
|
| /// File Name: | intelled.c | Description:
| IntelliTamper versions 2.07 and 2.08 Beta 4 "A HREF" remote buffer overflow exploit. | | Author: | kralor | | File Size: | 7074 | | Last Modified: | Aug 13 18:54:32 2008 | | MD5 Checksum: | b6f0c489f9fdbcb6018435e23c4cf1bd |
|
| /// File Name: | pbcs-sql.txt | Description:
| PBCS from PBCS Technology suffers from a SQL injection vulnerability in articlenav.php. | | Author: | baltazar, sinner_01 | | Homepage: | http://www.darkc0de.com/ | | File Size: | 1877 | | Last Modified: | Aug 13 18:52:47 2008 | | MD5 Checksum: | 21f6ed8ba864fbfc0b02a5b7e156d8c2 |
|
| /// File Name: | flashget-overflow.txt | Description:
| FlashGet version 1.9 FTP PWD Response remote proof of concept buffer overflow exploit. | | Author: | h07 | | File Size: | 2173 | | Last Modified: | Aug 13 18:50:36 2008 | | MD5 Checksum: | 592283f9f5900cddbd94ab6985fa61cc |
|
| /// File Name: | ruby19-leak.txt | Description:
| Ruby versions 1.9 and below remote socket memory leak exploit. | | Author: | laurent gaffie | | File Size: | 2426 | | Last Modified: | Aug 13 18:49:33 2008 | | MD5 Checksum: | b3f4e987bcafa53e40373634b6bf2c32 |
|
| /// File Name: | charlie.pdf | Description:
| Whitepaper discussing vulnerabilities discovered in the CharlieTicket/CharlieCard systems used on the train system in Boston and elsewhere around the country. | | Author: | Zack Anderson, Russell Ryan, Alessandro Chiesa | | File Size: | 48341 | | Last Modified: | Aug 13 05:25:11 2008 | | MD5 Checksum: | 420c10241d73d78716a5b8304615f970 |
|
| /// File Name: | 08.12.08-7.txt | Description:
| iDefense Security Advisory 08.12.08 - Remote exploitation of a heap-based buffer overflow vulnerability in multiple versions of Microsoft Corp.'s Windows operating system allows an attacker to execute arbitrary code with the privileges of the current user. This vulnerability specifically exists in the InternalOpenColorProfile function in mscms.dll. When a malformed parameter is supplied, a heap-based buffer overflow can occur, resulting in an exploitable condition. iDefense has confirmed the existence of this vulnerability in the following Microsoft products: Windows 2000 Service Pack 4, Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, and Windows Server 2003 Service Pack 2. | | Author: | Jun Mao | | Homepage: | http://www.idefense.com/ | | File Size: | 4803 | | Related CVE(s): | CVE-2008-2245 | | Last Modified: | Aug 13 02:21:21 2008 | | MD5 Checksum: | e4b2909ae010ac48512a585ecf2f6bb0 |
|
| /// File Name: | 08.12.08-6.txt | Description:
| iDefense Security Advisory 08.12.08 - Remote exploitation of an invalid array indexing vulnerability in Microsoft Corp.'s Excel could allows attackers to execute arbitrary code with the privileges of the current user. This issue exists in the handling of "FORMAT" records within an Excel spreadsheet (XLS). By crafting a spreadsheet with an out-of-bounds array index, attackers are able to cause Excel to write a byte to arbitrary locations in stack memory. iDefense has confirmed the existence of this vulnerability with Office 2000 SP-3 fully patched as of March 2008. Other versions may also be affected. | | Homepage: | http://www.idefense.com/ | | File Size: | 3825 | | Related CVE(s): | CVE-2008-3005 | | Last Modified: | Aug 13 02:19:10 2008 | | MD5 Checksum: | 8722104d70c635fcf1baff7c2c01cc3d |
|
| /// File Name: | 08.12.08-5.txt | Description:
| iDefense Security Advisory 08.12.08 - Remote exploitation of an invalid array indexing vulnerability in Microsoft Corp.'s Excel could allow an attacker to execute arbitrary code with the privileges of the current user. This issue exists in the handling of "AxesSet" records within a chart embedded in a spreadsheet. This record is typically used for setting the location and size of a set of axes on a chart. This particular record type is not included in Microsoft's official documentation for the Excel file format. However, the freely available source code for OpenOffice implements this record type. When processing this record, Excel does not validate a value that is used as an index into the array of chart axes. By crafting an Excel spreadsheet (XLS) that contains an out-of-bounds array value, an attacker can cause memory corruption. This leads to a potentially exploitable condition. iDefense has confirmed the existence of this vulnerability with Office 2000 SP-3 fully patched as of March 2008. Other versions may also be affected. | | Homepage: | http://www.idefense.com/ | | File Size: | 4263 | | Related CVE(s): | CVE-2008-3004 | | Last Modified: | Aug 13 02:18:19 2008 | | MD5 Checksum: | fd66d4fe0e4b8bda0129a57258ab261d |
|
| /// File Name: | 08.12.08-4.txt | Description:
| iDefense Security Advisory 08.12.08 - Remote exploitation of an integer overflow vulnerability in Microsoft Corp.'s PowerPoint Viewer 2003 could allow an attacker to execute arbitrary code in the context of the user running the application. This vulnerability specifically exists when handling CString objects embedded in a PowerPoint presentation file. An issue in this object results in a very small amount of buffer being allocated while a very large amount of data is copied into it. This leads to an exploitable heap-based buffer overflow. iDefense has confirmed that pptview.exe file version 11.0.5703.0 and file version 11.0.6566.0, as included in Microsoft Office 2003 SP2, are vulnerable. Other versions are also likely to be affected. | | Author: | Ruben Santamarta | | Homepage: | http://www.idefense.com/ | | File Size: | 3716 | | Related CVE(s): | CVE-2008-0120 | | Last Modified: | Aug 13 02:16:33 2008 | | MD5 Checksum: | 396ecf4f3a5c65f6dd3bccd2fad6f1ef |
|
| /// File Name: | 08.12.08-3.txt | Description:
| iDefense Security Advisory 08.12.08 - Remote exploitation of an out of boundary array index vulnerability in Microsoft Corp.'s PowerPoint Viewer 2003 could allow an attacker to execute arbitrary code in the context of the user running the application. This vulnerability specifically exists in PowerPoint Viewer 2003 when handling certain records in a PowerPoint presentation file. In some circumstances, an array index can be directly controlled by data from within the PowerPoint presentation file. Thus, a function pointer can be directly controlled by the attacker and leveraged for arbitrary code execution. iDefense has confirmed that pptview.exe file version 11.0.5703.0 is vulnerable. Previous versions are also likely to be affected. | | Author: | Ruben Santamarta | | Homepage: | http://www.idefense.com/ | | File Size: | 3904 | | Related CVE(s): | CVE-2008-0121 | | Last Modified: | Aug 13 02:15:45 2008 | | MD5 Checksum: | 2678fdce1c494b2f84914fc23378da20 |
|
|