3659 matches found
binn-sql.txt
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Binn SBuilder nid Remote Blind Sql Injection Vulnerabily +==-- --==+====================================================================================+==-- + JosS + Spanish Hackers Team + Sys -...
Binn SBuilder - nid Blind SQL Injection
Binn SBuilder - nid Blind SQL Injection --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Binn SBuilder nid Remote Blind Sql Injection Vulnerabily +==-- --==+====================================================================================+==-- ...
Binn SBuilder - 'nid' Blind SQL Injection
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Binn SBuilder nid Remote Blind Sql Injection Vulnerabily +==-- --==+====================================================================================+==-- + JosS + Spanish Hackers Team + Sys -...
blakord-sql.txt
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Blakord Portal = 0 Exploit2: http://localhost/path/any module?id=1 and exists select from TABLE Example: http://localhost/path/any module?id=1 AND SELECT Count FROM users = 0 Example2:...
Blakord Portal Beta 1.3.A (All Modules) - SQL Injection
Blakord Portal Beta 1.3.A All Modules - SQL Injection --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ Blakord Portal = 0 Exploit2: http://localhost/path/any module?id=1 and exists select from TABLE Example: http://localhost/path/any module?id=1 A...
ClamAV 'libclamav/pe.c' MEW压缩PE文件整数溢出漏洞
ClamAV是一款流行的反病毒应用程序。 Clam AntiVirus解析MEW压缩成的PE文件存在整数溢出,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击,可能导致任意代码执行。 在处理此PE文件时,两可不可信的值直接来自文件而没有任何检查,这些值之后用于算术运算来计算要分配的堆缓冲区,此计算可导致整数溢出,可能以应用程序进程权限执行任意指令。 Clam Anti-Virus ClamAV 0.91.2 升级程序: Clam Anti-Virus ClamAV 0.91.2 Clam Anti-Virus ClamAV 0.92...
FLAC libFLAC Multiple Buffer Overflows (CVE-2007-4619)
Free Lossless Audio Codec FLAC is a file format designed for audio data compression. LibFLAC is the FLAC project library embedded in various products. A buffer overflow vulnerability has been reported in the FLAC. A remote attacker can exploit this vulnerability via a specially crafted FLAC file...
JVN#82610488 Lhaplus buffer overflow vulnerability
Lhaplus, file compression/decompression software supporting multiple compression file formats, contains a buffer overflow vulnerability. If a user decompresses a specially crafted file, an attacker could execute arbitrary code with the privilege of the user. This vulnerability is different from...
[SECURITY] Fedora Core 6 Update: libpng-1.2.10-10.fc6
The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm. Libpng...
zlib compression library DoS
DoS on invalid data stream including ones of PNG files...
[SECURITY] Fedora 7 Update: tar-1.15.1-28.fc7
The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...
Bbsxp 2 0 0 7[previous version don't know]an interesting vulnerability-vulnerability warning-the black bar safety net
| cpmpact. asp % option explicit Const JET3X = 4 if ""&Request"sessionid"&""""&session. sessionid&"" then error"validation code error" Dim dbpath,boolIs97 dbpath = Request"dbpath" boolIs97 = Request"boolIs97" If dbpath "" Then dbpath = server. mappathdbpath response. writeCompactDBdbpath,boolIs97...
JVN#70734805 Lhaplus buffer overflow vulnerability
Lhaplus, software for compression and decompression supporting various compressed file formats, contains a buffer overflow vulnerability. If a user opens a specially crafted file, arbitrary code could be executed with the privilege of the user. Impact Arbitrary code could be executed with the...
[SECURITY] Fedora 7 Update: lighttpd-1.4.18-1.fc7
Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...
JVN#62868899 7-ZIP32.DLL buffer overflow vulnerability
7-ZIP32.DLL is an open source library for compression and decompression supporting 7z, zip, and some other format files. 7-ZIP32.DLL is based on "Integrated Archiver API Specification", and called from the compression/decompression software. 7-ZIP32.DLL contains a buffer overflow vulnerability. I...
[SECURITY] Fedora Core 6 Update: tar-1.15.1-26.fc6
The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...
[SECURITY] Fedora 7 Update: tar-1.15.1-27.fc7
The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that archive. Tar can also be used to add supplemental files to an archive and to update or list files in the archive. Tar includes multivolume support, automatic archive...
VulnCheck KEV: CVE-2007-4428
Lhaz 1.33 allows remote attackers to execute arbitrary code via unknown vectors, as actively exploited in August 2007 by the Exploit-LHAZ.a gzip file, a different issue than CVE-2006-4116...
[SECURITY] Fedora 7 Update: lighttpd-1.4.16-1.fc7
Secure, fast, compliant and very flexible web-server which has been optimiz ed for high-performance environments. It has a very low memory footprint compa red to other webservers and takes care of cpu-load. Its advanced feature-set FastCGI, CGI, Auth, Output-Compression, URL-Rewriting and many mo...
Microsoft DirectX RLE压缩Targa图形文件堆溢出漏洞
BUGTRAQ ID: 24963 CVECAN ID: CVE-2006-4183 Microsoft DirectX是一个API集,用于在Windows操作系统上处理有关游戏编程的任务。 DirectX库打开RLE压缩的Targa格式图形文件的方式存在堆溢出漏洞,远程攻击者可能利用此漏洞通过诱使用户处理畸形文件控制用户系统。...