SeaMonkey < 2.7.1 Memory Corruption

The installed version of SeaMonkey is earlier than 2.7.1. Such versions are potentially affected by a memory corruption vulnerability. A use-after-free error exists in the method 'nsXBLDocumentInfo::ReadPrototypeBindings' and XBL bindings are not properly removed from a hash table in the event of...

Terry McCorkle

Terry McCorkle, a Seattle-based researcher presented the results of an independent study on Supervisory Control and Data Acquisition Systems SCADA and Industrial Control Systems ICS where he and his research partner Billy Rios attempted to find 100 bugs in 100 days. They wound up finding 1000+ bu...

Samba 3.x < 3.5.21 / 3.6.12 and 4.x < 4.0.2 SWAT Multiple Vulnerabilities (deprecated)

Binary data 6686.prm...

Google Service Reward #1 - ClickJacking Vulnerability

Document Title: =============== Google Service Reward 1 - ClickJacking Vulnerability References: =========== Download: http://www.vulnerability-lab.com/resources/videos/416.wmv View: http://www.youtube.com/watch?v=6N0YS9cTRHw Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-I...

Google Service Reward #1 - ClickJacking Vulnerability

Document Title: =============== Google Service Reward 1 - ClickJacking Vulnerability References: =========== Download: http://www.vulnerability-lab.com/resources/videos/416.wmv View: http://www.youtube.com/watch?v=6N0YS9cTRHw Release Date: ============= 2012-02-06 Vulnerability Laboratory ID VL-I...

Opera 11.60 Array Integer Overflow

CAL-2012-0004 opera array integer overflow 1 Affected Products ================= 11.60 and prior 2 Vulnerability Details ===================== Code Audit Labs http://www.vulnhunt.com has discovered a integer overflow vulnerability in array functions like Int32Array,Int16Array... . Opear vendor sa...

sit! support incident tracker 3.64 - Multiple Vulnerabilities

Advisory Details: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in SiT! Support Incident Tracker, which can be exploited to perform SQL injection, cross-site scripting, cross-site request forgery attacks. 1 Input passed via the "start" GET parameter to...

EdrawSoft Office Viewer Component ActiveX 5.6 - &#039;officeviewermme.ocx&#039; Buffer Overflow (PoC)

EdrawSoft Office Viewer Component ActiveX 5.6 officeviewermme.ocx BoF PoC Vendor: EdrawSoft Product web page: http://www.edrawsoft.com Affected version: 5.6.5781 Summary: Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX document container for hosting Offic...

EdrawSoft Office Viewer Component ActiveX 5.6 Buffer Overflow

EdrawSoft Office Viewer Component ActiveX 5.6 officeviewermme.ocx BoF PoC Vendor: EdrawSoft Product web page: http://www.edrawsoft.com Affected version: 5.6.5781 Summary: Edraw Office Viewer Component contains a standard ActiveX control that acts as an ActiveX document container for hosting Offic...

Solaris 10 (sparc) : 148165-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Password Policy. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent...

Solaris 10 (x86) : 148166-02 (deprecated)

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Password Policy. Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent...

Joomla XBall SQL Injection

Exploit Title : Joomla Component comxball SQL Injection Vulnerability Author : CoBRa21 E-Mail : uykucu at windowslive.com My Team : Lojistik ALLSTAR cyber-warrior.org Google Dork : inurl:index.php?option=comxball Status : High-Risk SQL Vulnerability...

[PT-2011-04] Cross-Site Scripting in Kayako Support Suite

----------------------------------------------------------------- PT-2011-04 Positive Technologies Security Advisory Cross-Site Scripting in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stable...

[PT-2011-03] Information disclosure in Kayako Support Suite

----------------------------------------------------------------- PT-2011-03 Positive Technologies Security Advisory Information disclosure in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stabl...

[PT-2011-02] PHP code Injection in Kayako Support Suite

----------------------------------------------------------------- PT-2011-02 Positive Technologies Security Advisory PHP code Injection in Kayako Support Suite ----------------------------------------------------------------- --- Vulnerable software Kayako Support Suite Version: 3.70.02-stable an...

Ladder logic

The devices tested by the Basecamp Project included the D20 PLC by GE, The Modicon Quantum by Schneider Electric, Rockwell and Koyo Electronics. Each device was tested using a number of additional attack vectors. Researchers attempted to upload custom firmware or so-called “ladder logic” for the...

Citrix Provisioning Services Opcode 40020006 Integer Underflow

Added: 01/20/2012 BID: 49803 Background Citrix Provisioning Services dynamically provisions virtual servers to simplify and streamline server management, while reducing software rollout risk. Problem Citrix Provisioning Services 5.6 SP1 and prior are vulnerable to a remotely exploitable integer...

Oracle Fixes 78 Flaws, Including Remotely Exploitable DB Server Bug

Oracle on Tuesday unleashed its quarterly critical patch update, which included just two fixes for vulnerabilities in its Oracle Database Server, one of the lower totals seen from the company in recent years. There are a total of 78 patches for a wide variety of Oracle products available today,...

Cloupia End-to-end FlexPod Management - Directory Traversal

Cloupia End-to-end FlexPod Management - Directory Traversal Vulnerability Advisory Information Advisory ID: KUSTODIAN-2011-011 Date published: Jan 13, 2011 Vulnerability Information Class: Directory Traversal Remotely Exploitable: Yes Locally Exploitable: Yes Software Description Provides...

spamdyke -- Buffer Overflow Vulnerabilities

Secunia reports: Fixed a number of very serious errors in the usage of snprintf/vsnprintf. The return value was being used as the length of the string printed into the buffer, but the return value really indicates the length of the string that could be printed if the buffer were of infinite size...