Stable Channel Update for Chrome OS

The Stable channel has been updated to 21.0.1180.92 Platform version: 2465.211.0 for Chrome OS Chromebooks Acer AC700, Samsung Series 5, Samsung Series 5 550 and Cr-48, and Samsung Chromebox Series 3. Machines will be receiving updates over the next several days. This build contains security and...

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 154983154987 Critical CVE-2012-5112: SVG use-after-free and IPC arbitrary file write. Credit to Pinkie Pie...

Stable Channel Update

The Stable channel has been updated to 22.0.1229.94 for Windows, Mac, and Linux. This release contains fixes for the security issue listed below. Security fixes and rewards: Congratulations to Pinkie Pie, returning to the fray with another beautiful piece of work! We're delighted at the success o...

Mandrake Linux Security Advisory : mc (MDKSA-2000:078)

A problem was found in the cons.saver program by Maurycy Prodeus. The cons.saver program is a screensaver for the console that is included in the mc package. cons.saver does not check if it is started with a valid stdout, which combined with a bug in its check to see if its argument is a tty it...

Generic HTTP Directory Traversal Utility

This module allows you to test if a web server or web application is vulnerable to directory traversal with three different actions. The 'CHECK' action default is used to automatically or manually find if directory traversal exists in the web server, and then return the path that triggers the...

MobileCarty 1.0 Shell Upload / File Write

Exploit Title: MobileCartly 1.0 Multiple Vulnerabilities Date: 11/08/2012 Author: L0n3ly-H34rT Homepage: http://se3c.tk/ Contact: [email protected] Software Link : http://mobilecartly.com/mobilecartly.zip Tested on: Linux/Windows Remote File Upload : just upload shell.php here :...

MobileCartly 1.0 - Arbitrary File Write

MobileCartly 1.0 - Arbitrary File Write ----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- MobileCartly 1.0 Arbitrary File Write Vulnerability Bug...

MobileCartly 1.0 - Arbitrary File Write

----------------------------------------------------------- / | | | | | | | | | | | | | | | | | / |/ |/ \ | | || | || | | | | / | ||\,|,||| ----------------------------------------------------------- MobileCartly 1.0 Arbitrary File Write Vulnerability Bug discovered by Yakir Wizman AKA...

NetDecision 4.2 TFTP Writable Directory Traversal Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "NetDecision 4.2...

Oracle Business Transaction Management Server 12.1.0.2.7 - FlashTunnelService WriteToFile Message Remote Code Execution

Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService WriteToFile Message Remote Code Execution Exploit tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files...

Oracle BTM Server 12.1.0.2.7 Remote Code Execution

Oracle Business Transaction Management Server 12.1.0.2.7 FlashTunnelService WriteToFile Message Remote Code Execution Exploit tested against: Microsoft Windows Server 2003 r2 sp2 Oracle WebLogic Server 12c 12.1.1 Oracle Business Transaction Management Server 12.1.0.2.7 Production version files...

Scientific Linux Security Update : tar on SL5.x, SL4.x i386/x86_64

A path traversal flaw was discovered in the way GNU tar extracted archives. A malicious user could create a tar archive that could write to arbitrary files to which the user running GNU tar had write access. CVE-2007-4131 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text i...

HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP OpenView Performance Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the PMParamHandler component of Performance Manager, which is served v...

Galette <=0.63.3 picture.class.php文件任意文件写入漏洞

No description provided by source...

Directory traversal

Directory traversal vulnerability in mod/tools/em/class.emunzip.php in the unzip library in TYPO3 4.2.x before 4.2.16, 4.3.x before 4.3.9, and 4.4.x before 4.4.5 allows remote attackers to write arbitrary files via unspecified vectors...

FreeBSD : puppet -- Multiple Vulnerabilities (607d2108-a0e4-423a-bf78-846f2a8f01b0)

Multiple vulnerabilities exist in puppet that can result in arbitrary code execution, arbitrary file read access, denial of service, and arbitrary file write access. Please review the details in each of the CVEs for additional information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

[Onapsis Security Advisory 2012-01] Oracle JD Edwards JDENET Arbitrary File Write

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Onapsis Security Advisory: Oracle JD Edwards JDENET Arbitrary File Write This advisory can be downloaded in PDF format from http://www.onapsis.com/. By downloading this advisory from the Onapsis Resource Center, you will gain access to beforehand...

EPractize Labs Backdoor

Vulnerability: back door in stupid spamming software About EPractize Labs: EPractize Labs is fully Customer Focused, Innovative and Global service provider for Skill Development and Skill Evaluation products suitable for pre employment assessment testing, employee evaluation for appraisal,...

ecshop 2.6 x background write shell 0day-vulnerability warning-the black bar safety net

The relevant variable is not filtered, resulting in the submission of data to write into shell holes. Vulnerability file: admineditlanguages.php The relevant variable is not filtered! elseif $REQUEST'act' == 'edit' / Language items of the path / $langfile = isset$POST'filepath' ?...

CVE-2011-3204

hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on 1 /tmp/hammer.log aka the HHLOG file or 2 the REPORTLOG file...