7009 matches found
CA BrightStor ARCserve Backup DBASVR for Windows Multiple Remote Buffer Overflows
This host is running BrightStor ARCServe DBA server for Windows. The remote version of this software is affected by multiple buffer overflow vulnerabilities. An attacker, by sending a specially crafted packet, may be able to execute code on the remote host. C Tenable Network Security, Inc. BAB...
php_news-2.0.txt
phpnews = 2.0 Remote File Include Vulnerabilities Script.............. :phpnews Discovered By.... : Root3rH3ll Location .......... : Iran Class.............. : Remote Original Advisory : http://Www.PersainFox.com We ArE : Root3rH3LL & Arash.Rj Spical TNX Irania Hackers : Aria-Security , Crouz ,...
phpBB XS 0.58 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/20277/info phpBB XS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to compromise the application and the underlying system; other attac...
SAP Internet Transaction Server XSS vulnerability
Vulnerability class : Cross-Site Scripting Discovery date : 13 September 2006 Remote : Yes Credit : ILION Research Labs Vulnerable : SAP ITS Vulnerable version: Versions 6.1 and 6.2 have been found to be vulnerable. Other versions might be too. A XSS Cross-Site-Scripting vulnerability has been...
WebspotBlogging => 3.0 Remote File Include Vulnerabilities
WebspotBlogging = 3.0 Remote File Include Vulnerabilities Script.............. :WebspotBlogging Discovered By.... : Root3rH3ll Location .......... : Iran Class.............. : Remote Original Advisory : http://Www.PersainFox.com We ArE : Root3rH3LL & Arash.Rj ExPloit :...
wwwthreads <= 5.4.2 croos site script vulnerbilities
PerSiaNFoX DigitaL SecuritY TeaM wwwthreads = 5.4.2 Cross Site Script Vulnerabilities Script...
HP-UX PHSS_32380 : HP OpenView Operations, Remote Unauthorized Access and Denial of Service (DoS) (HPSBMA02149 SSRT050968 rev.1)
s700800 11.X OV ITO7.1X Comm Agt Linux A.07.16 : A potential security vulnerability has been identified in HP OpenView Operations. This potential vulnerability could be exploited remotely to allow unauthorized access or to create a Denial of Service DoS. %NASLMINLEVEL 70300 C Tenable Network...
AIX 5.2 : IY68464
The remote host is missing AIX Critical Security Patch number IY68464 SECURITY: Local root exploits in perl 5.8.x. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc...
AIX 5.3 : IY68463
The remote host is missing AIX Critical Security Patch number IY68463 SECURITY: Local root exploits in perl 5.8.x. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc...
CubeCart < 3.0.13 Multiple Remote Vulnerabilities (LFI, SQLi, XSS)
The version of CubeCart installed on the remote host fails to properly sanitize user-supplied input to the 'gateway' parameter before using it in the 'includes/content/gateway.inc.php' script to include PHP code. An unauthenticated, remote attacker may be able to exploit this issue to view...
Fuji Xerox Printing Systems (FXPS) Print Engine Crafted Request HTTP Authentication Bypass
The remote host appears to be a Fuji Xerox Printing Systems FXPS printer. According to its firmware version, the web server component of the FXPS device reportedly fails to authenticate HTTP requests, which could allow a remote attacker to gain administrative control of the affected printer and...
[SA21555] Linux Kernel SG Driver Denial of Service Vulnerability
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
securityXSS.txt
Hello, several security vendors still don't know how to filter html in their custom search engines. http://cybertrust.com/cgi-bin/htsearch?words=%3C%2Ftitle%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E http://www.pandasoftware.com/com/virusinfo/encyclopedia/results.aspx?termino=&tipoBusqueda=vi...
[SA21430] hitweb "REP_INC" File Inclusion Vulnerability
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
MS06-049: Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
The remote host contains a version of the Windows kernel that could allow a local user to elevate his privileges or to crash it therefore causing a denial of service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22191; scriptversion"1.30"; scriptcvsdate"Date:...
win64 (URLDownloadToFileA) download and execute 218+ bytes
No description provided by source. ; ; dexec64.asm - 218+ bytes unoptimised ; ; Win64 asm code, download & execute file using URLDownloadToFileA moniker & WinExec ; ; tested on AMD64 running Windows x64 SP1 ; ; there probably are errors in the code, but this is more of an experimental source if...
phpCC 4.2 beta (base_dir) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ============================================================= phpCC 4.2 beta basedir Remote File Inclusion Vulnerability ============================================================= SolpotCrew Community phpCC - Beta 4.2 basedir Remote Fil...
win64 (URLDownloadToFileA) download and execute 218+ bytes
Exploit for win64 platform in category shellcode ========================================================== win64 URLDownloadToFileA download and execute 218+ bytes ========================================================== ; ; dexec64.asm - 218+ bytes unoptimised ; ; Win64 asm code, download &...
GLSA-200607-09 : Wireshark: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200607-09 Wireshark: Multiple vulnerabilities Wireshark dissectors have been found vulnerable to a large number of exploits, including off-by-one errors, buffer overflows, format string overflows and an infinite loop. Impact :...
USN-297-3: Thunderbird vulnerabilities
USN-297-1 fixed several vulnerabilities in Thunderbird for the Ubuntu 6.06 LTS release. This update provides the corresponding fixes for Ubuntu 5.04 and Ubuntu 5.10. For reference, these are the details of the original USN: Jonas Sicking discovered that under some circumstances persisted XUL...