9454 matches found
Team SHATTER Security Advisory: Cross-site scripting in Oracle Enterprise Manager (REFRESHCHOICE Parameter)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Cross-site scripting in Oracle Enterprise Manager REFRESHCHOICE Parameter August 4, 2008 Risk Level: High Affected versions: Oracle Enterprise Manager Database Control 10gR1, 10gR2 and 11g 11.1.0.6 Remote exploitable: Ye...
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory SQL Injection in Oracle Database DBMSDEFERSYS.DELETETRAN August 4, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR1, 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes Authentication to...
Team SHATTER Security Advisory: SQL Injection in Oracle Application Server (WWEXP_API_ENGINE)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory SQL Injection in Oracle Application Server WWEXPAPIENGINE Audust 4, 2008 Risk Level: High Affected versions: Oracle Application Server 9.0.4.3, 10.1.2.2 and 10.1.4.1 Remote exploitable: Yes No authentication required...
phpMyRealty 2.0.0 - location SQL Injection
phpMyRealty 2.0.0 - location SQL Injection ???????????????????????????????????????????????????????????????????????????????? ?? C r a C k E r ?? ?? T H E C R A C K O F E T E R N A L M I G H T ?? ??????????????????????????????????????????????????????????????????????????????? ????? From The Ashes an...
phpMyRealty (location) Remote SQL Injection Vulnerability
No description provided by source. ┌┌────────────────────────────────────────────────────────────────────────────┠││ C r a C k E r...
pHNews CMS Alpha 1 - Local File Inclusion
pHNews CMS Alpha 1 - Local File Inclusion ??????????????????????????????????????????????????????????????????????????????? ?? C r a C k E r ?? ?? T H E C R A C K O F E T E R N A L M I G H T ?? ?????????????????????????????????????????????????????????????????????????????? ????? From The Ashes and...
mosxml-lfi.txt
┌┌───────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐...
cmsWorks 2.2 RC4 (mod_root) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications =============================================================== cmsWorks 2.2 RC4 modroot Remote File Inclusion Vulnerability ===============================================================...
Courier Authentication Library -- SQL Injection
Secunia reports: A vulnerability has been reported in the Courier Authentication Library, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via e.g. the username to the library is not properly sanitised before being used in SQL queries. This can be exploite...
McAfeeUnlocker.cpp
/ McAfee VirusScan 8.5.0i local exploitable issue - McAfee Unlocker by Bendi zbendi gmail.com McAfee VirusScan 8.5.0i can be locked with password by admin ... and unlocked withount it ! Encrypted password is in registry but not accessible in writing. Once admin has unlocked McAffe, a global Atom ...
AppServ Open Project < = 2.5.10 Remote XSS Vulnerability
========================================================== AppServ Open Project = 2.5.10 Remote XSS Vulnerability ========================================================== AUTHOR : CWH Underground DATE : 19 May 2008 SITE : www.citec.us APPLICATION : AppServ Open Project VERSION : = 2.5.10 VENDOR...
Fedora 9 : kernel-2.6.25.3-18.fc9 (2008-3949)
Update to Linux kernel verion 2.6.25.1, 2.6.25.2, 2.6.25.3: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.2 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.3 Security fixes: CVE-2008-1669 2.6.25.2 - SMP...
NASA's Common Data Format Buffer Overflow
Advisory ID Internal CORE-2008-0326 Advisory Information: Advisory ID: CORE-2008-0326 Advisory URL:https://www.coresecurity.com/?action=item&id=2260 Date published: 2008-05-05 Date of last update: 2008-05-05 Vendors contacted: GODDARD Space Flight Center Release mode: Coordinated release...
Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SET (DB02)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCUTILITY.LOCKCHANGESET DB02 April 28, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes Authentication to...
Team SHATTER Security Advisory: Oracle Database Buffer Overflow in SYS.KUPF$FILE_INT.GET_FULL_FILENAME (DB11)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database Buffer Overflow in SYS.KUPF$FILEINT.GETFULLFILENAME DB11 April 28, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...
[Full-disclosure] Adobe Unchecked Overflow
Exploitable issue in various Adobe products c0ntex [email protected] Scott Laurie February 2008 Vulnerable applications, tested: Adobe Photoshop Album Starter Adobe After Effects CS3 Adobe Photoshop CS3 Not Vulnerable applications, tested: Adobe Reader Adobe Flash Player This bug is related to th...
GLSA-200804-23 : CUPS: Integer overflow vulnerability
The remote host is affected by the vulnerability described in GLSA-200804-23 CUPS: Integer overflow vulnerability Thomas Pollet reported a possible integer overflow vulnerability in the PNG image handling in the file filter/image-png.c. Impact : A malicious user might be able to execute arbitrary...
Adobe Album Starter 3.2 - Unchecked Local Buffer Overflow
Adobe Album Starter 3.2 - Unchecked Local Buffer Overflow Exploitable issue in various Adobe products c0ntex [email protected] Scott Laurie February 2008 Vulnerable applications, tested: Adobe Photoshop Album Starter Adobe After Effects CS3 Adobe Photoshop CS3 Not Vulnerable applications, tested:...
Team SHATTER Security Advisory: IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure April 17th 2008 Risk Level: High Affected versions: All versions of IBM DB2 Database Server. Remotely exploitable: Yes Authentication to Database Server is...
Team SHATTER Security Advisory: Multiple DoS in JAR files manipulation procedures
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Multiple DoS in JAR files manipulation procedures April 17th 2008 Risk Level: High Affected versions: All versions of IBM DB2 Database Server on Windows platform. Remote exploitable: Yes Authentication to Database Server...