Lucene search
+L

2880 matches found

Packet Storm
Packet Storm
added 2007/07/23 12:0 a.m.37 views

alstrasoft-multi.txt

AlstraSoft Multiple products multiple Vulnerabilities Vendor urL:http://www.alstrasoft.com/products.htm Advisore url:http://lostmon.blogspot.com/2007/07/ alstrasoft-multiple-products-multiple.html Vendor notify:yes webform Exploit included: yes Multiple products of Alstrasoft Are prone vulnerable...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/07/23 12:0 a.m.15 views

Alstrasoft Sms Text Messaging Enterprise 2.0 - adminedituser.php?userid Cross-Site Scripting

Alstrasoft Sms Text Messaging Enterprise 2.0 - adminedituser.php?userid Cross-Site Scripting source: https://www.securityfocus.com/bid/25022/info SMS Text Messaging Enterprise is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplie...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2007/07/23 12:0 a.m.16 views

Alstrasoft Sms Text Messaging Enterprise 2.0 - adminmembersearch.php Multiple Cross-Site Scripting Vulnerabilities

Alstrasoft Sms Text Messaging Enterprise 2.0 - adminmembersearch.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25022/info SMS Text Messaging Enterprise is prone to multiple cross-site scripting vulnerabilities because the application fails to properly...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/23 12:0 a.m.22 views

Alstrasoft Sms Text Messaging Enterprise 2.0 - '/admin/membersearch.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25022/info SMS Text Messaging Enterprise is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/23 12:0 a.m.38 views

Alstrasoft Sms Text Messaging Enterprise 2.0 - '/admin/edituser.php?userid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25022/info SMS Text Messaging Enterprise is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/04/10 12:0 a.m.64 views

Microsoft Security Bulletin MS07-019 Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)

Microsoft Security Bulletin MS07-019 Vulnerability in Universal Plug and Play Could Allow Remote Code Execution 931261 Published: April 10, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity...

6.8CVSS0.2AI score0.08838EPSS
Exploits0
Cvelist
Cvelist
added 2007/01/05 2:0 a.m.24 views

CVE-2006-6876

Buffer overflow in the fetchsms function in the SMS handling module libsmsgetsms.c in OpenSER 1.2.0 and earlier allows remote attackers to cause a denial of service crash via a crafted SMS message, triggering memory corruption when the "beginning" buffer is copied to the third pdu argument...

7.2AI score0.01574EPSS
Exploits0References5
CVE
CVE
added 2007/01/05 2:0 a.m.40 views

CVE-2006-6876

OpenSER 1.2.0 and earlier contains a buffer overflow in fetchsms (libsms_getsms.c) that can be triggered by a crafted SMS message. The vulnerability causes memory corruption when the beginning buffer is copied to the third (pdu) argument, enabling a remote denial of service (crash). Affected vers...

7.5CVSS7.5AI score0.01574EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2006/12/31 5:0 a.m.17 views

CVE-2006-6876

Buffer overflow in the fetchsms function in the SMS handling module libsmsgetsms.c in OpenSER 1.2.0 and earlier allows remote attackers to cause a denial of service crash via a crafted SMS message, triggering memory corruption when the "beginning" buffer is copied to the third pdu argument...

7.5CVSS7.2AI score0.01574EPSS
Exploits0References5
securityvulns
securityvulns
added 2006/12/30 12:0 a.m.51 views

Multiple OpenSER vulnerabilities

Memory corruption on SMS parsing, buffer overflow on OSP parsing, on QuickCAM objects parsing...

4.5AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2006/12/29 12:0 a.m.30 views

SMS handling OpenSER remote code executing

Synopsis: SMS handling OpenSER remote code executing Product: OpenSER Version: =1.1.0 Issue: ====== A critical security vulnerability has been found in OpenSER SMS handling module. The vulnerable function should read the SMS from the SIM-memory. Details: ======== int fetchsmsstruct modem mdm, int...

2.7AI score
Exploits0
NVD
NVD
added 2006/12/21 1:28 a.m.16 views

CVE-2006-6674

Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and passwords in plaintext in the HKLM\Software\Ozeki\SMSServer\CurrentVersion\Plugins\httpsmsgate registry key, which allows local users to obtain sensitive information...

2.1CVSS6.2AI score0.003EPSS
Exploits0References4
CVE
CVE
added 2006/12/21 1:0 a.m.48 views

CVE-2006-6674

The CVE concerns Ozeki HTTP-SMS Gateway 1.0 (and possibly earlier) where credentials are stored in plaintext in the registry key HKLM\Software\Ozeki\SMSServer\CurrentVersion\Plugins\httpsmsgate. This plaintext storage enables local users to obtain usernames and passwords, yielding partial confide...

2.1CVSS6.5AI score0.003EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.14 views

Solaris 5.8 (sparc) : 112481-15

SMS 1.2: fomd, hwad, esmd, pcd patch. Date this patch was last updated by Sun : Dec/01/03 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.58 views

Solaris 5.9 (sparc) : 112481-15

SMS 1.2: fomd, hwad, esmd, pcd patch. Date this patch was last updated by Sun : Dec/01/03 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Exploits0References1
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.32 views

Debian DSA-1049-1 : ethereal - several vulnerabilities

Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-1932 The OID printing routine is susceptible to an off-by-one error. - CVE-2006-1933 The UMA and BER...

10CVSS7.8AI score0.05028EPSS
Exploits0References19
NVD
NVD
added 2006/07/03 7:5 p.m.12 views

CVE-2006-3349

Multiple SQL injection vulnerabilities in SmS Script allow remote attackers to execute arbitrary SQL commands via the CatID parameter in 1 cat.php and 2 add.php...

7.5CVSS8.5AI score0.01093EPSS
Exploits0References2
CVE
CVE
added 2006/07/03 7:0 p.m.42 views

CVE-2006-3349

CVE-2006-3349: The connected sources confirm multiple SQL injection vulnerabilities in SmS Script, exploitable remotely via the CatID parameter in cat.php and add.php. The NVD entry documents the impact as arbitrary SQL execution with partial confidentiality/integrity/availability effects (CVSS v...

7.5CVSS8.9AI score0.01093EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2006/07/03 7:0 p.m.22 views

CVE-2006-3349

Multiple SQL injection vulnerabilities in SmS Script allow remote attackers to execute arbitrary SQL commands via the CatID parameter in 1 cat.php and 2 add.php...

8.5AI score0.01093EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2006/07/02 12:0 a.m.27 views

SmSSQL.txt

================================ By: Breeeeh [email protected] example:- /sms/cat.php?CatID=SQL Injection /add.php?CatID=SQL Injection ================================...

Exploits0
Rows per page
Query Builder