MailEnable Professional Webmail < 1.5.1 Unspecified Vulnerability

The version of MailEnable Professional hosted on the remote host has an unspecified vulnerability in the webmail module. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid15611; scriptversion"1.19"; scriptcvsdate"Date: 2018/08/07 16:46:51"; scriptbugtraqid11578;...

zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits

No description provided by source. Download: http://www.milw0rm.com/sploits/ximagezgv.tar.gz milw0rm.com 2004-10-28...

zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits

Exploit for linux platform in category remote exploits ====================================================== zgv 5.5 Multiple Arbitrary Code Execution PoC Exploits ====================================================== Download: http://www.inj3ct0r.com/sploits/8461.tar.gz 0day.today 2017-12-31...

rssh format string bug

No description provided...

CVE-2004-1353

Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control RBAC, allows local users to execute certain commands with additional privileges...

CVE-2004-1603

cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to 1 read arbitrary files via the backup feature or 2 chown arbitrary files via the .htaccess file when Front Page extensions are enabled or disabled...

[SA12840] DevoyBB Unspecified Cross-Site Scripting and SQL Injection Vulnerabilities

TITLE: DevoyBB Unspecified Cross-Site Scripting and SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA12840 VERIFY ADVISORY: http://secunia.com/advisories/12840/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: DevoyBB 1.x...

Debian DSA-475-1 : linux-kernel-2.4.18-hppa - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the PA-RISC kernel 2.4.18 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...

Debian DSA-439-1 : linux-kernel-2.4.16-arm - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the ARM kernel for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An integer...

Debian DSA-136-1 : openssl - multiple remote exploits

The OpenSSL development team has announced that a security audit by A.L. Digital Ltd and The Bunker, under the DARPA CHATS program, has revealed remotely exploitable buffer overflow conditions in the OpenSSL code. Additionally, the ASN1 parser in OpenSSL has a potential DoS attack independently...

Debian DSA-440-1 : linux-kernel-2.4.17-powerpc-apus - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the PowerPC/Apus kernel for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...

Debian DSA-450-1 : linux-kernel-2.4.19-mips - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the mips kernel 2.4.19 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...

Debian DSA-470-1 : linux-kernel-2.4.17-hppa - several vulnerabilities

Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the hppa kernel 2.4.17 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...

PD9 Software MegaBBS 2.0/2.1 - &#039;view-profile.asp&#039; Multiple SQL Injections

source: https://www.securityfocus.com/bid/11253/info MegaBBS is reported prone to multiple vulnerabilities. These issues exist due to insufficient sanitization of user-supplied data and may allow an attacker to carry out HTTP response splitting and SQL injection attacks. MegaBBS versions 2.0 and...

bsd/x86 execve /bin/sh ENCRYPT* 57 bytes

No description provided by source. / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 57 bytes. -Encriptado execve/bin/sh; Para mas informacion ver http://www.shellcode.com.ar/es/proyectos.html / char shellcode= "\xeb\x1b\x5e\x31\xc0\x6a\x1a\x6a\x17\x59\x49\x5b\x8a\x04\x0e"...

Turbo Seek - Null Byte Error Discloses Files

Turbo Seek - Null Byte Error Discloses Files Some demonstration exploit URLs are provided: /cgi-bin/cgi/tseekdir.cgi?location=/etc/passwd%00 /cgi-bin /tseekdir.cgi?id=799&location=/etc/passwd%00 milw0rm.com 2004-09-13...

linux/x86 execve /bin/sh 29 bytes

linux/x86 execve /bin/sh 29 bytes. Shellcode exploit for linx86 platform / c1999-2003 Shellcode Research http://www.shellcode.com.ar execve/bin/sh for linux x86 29 bytes by Matias Sedalo xorl %ebx, %ebx pushl %ebx leal 0x17%ebx,%eax int $0x80 cdq pushl $0x68732f6e pushl $0x69622f2f movl %esp, %eb...

linux/x86 execve /bin/sh tolower evasion 41 bytes

linux/x86 execve /bin/sh tolower evasion 41 bytes. Shellcode exploit for linx86 platform / Linux/x86 tolower evasion, execve /bin/sh eg use: various qpop exploits / include char c0de = / main: / "\xeb\x1b" / jmp callz / / start: / "\x5e" / popl %esi / "\x89\xf3" / movl %esi, %ebx / "\x89\xf7" /...

libxine -- multiple vulnerabilities in VideoCD handling

A xine security announcement states: Several string overflows on the stack have been fixed in xine-lib, some of them can be used for remote buffer overflow exploits leading to the execution of arbitrary code with the permissions of the user running a xine-lib based media application. Stack-based...

FW: [Unpatched] Shell and Drag&#39;n&#39;Drop vulnerabilities

This is a post forwarded from the Unpatched mailing list http://www.pivx.com/pivxlabsUnpatched.asp , a mailing list that receive advance notification of any security research from PivX Labs. Cheers Thor From: Thor Larholm To: [email protected] Subject: Unpatched Shell and Drag'n'Drop...