1791 matches found
Fedora Core 3 : mozilla-1.7.10-1.3.2 (2005-874)
An updated mozilla package that fixes a security bug is now available for Fedora Core 3. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor...
RHEL 2.1 / 3 / 4 : mozilla (RHSA-2005:769)
An updated mozilla package that fixes a security bug is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A bug was found...
RHEL 4 : firefox (RHSA-2005:768)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2005:768 advisory. Mozilla Firefox is an open source Web browser. A bug was found in the way Firefox processes certain international domain names. An attacker could crea...
Fedora Core 3 : htdig-3.2.0b6-3.FC3.1 (2005-367)
Tue Apr 19 2005 Phil Knirsch 3:3.2.0b6-3.FC3.1 - Fixed security bug with unescaped output in htsearch and qtest 144127 - Removed .la and .a libs from package 145649 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
[Full-disclosure] Buffer-overflow in Chris Moneymaker's World Poker Championship 1.0
Luigi Auriemma Application: Chris Moneymaker's World Poker Championship http://moneymakergaming.com Versions: 1.0 Platforms: Windows Bug: buffer-overflow Exploitation: remote, versus server Date: 17 Aug 2005 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1...
Hosting Controller <= 0.6.1 HotFix 2.1 Change Credit Limit Exploit
Exploit for unknown platform in category remote exploits ================================================================== Hosting Controller Soroush Dalili from GSG Username: Description: FullName: AccountDisabled 1,blank: UserChangePassword: PassCheck=TRUE,0: New Password:...
Hosting Controller 0.6.1 HotFix 2.1 - Change Credit Limit
Hosting Controller 0.6.1 HotFix 2.1 - Change Credit Limit Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "AccountActions.asp" that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and...
Hosting Controller <= 0.6.1 HotFix 2.1 Change Credit Limit Exploit
No description provided by source. Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "AccountActions.asp" that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and older Developer url:...
Hosting Controller 0.6.1 HotFix 2.1 - Change Credit Limit
Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "AccountActions.asp" that an authenticated user can change his/her credit and buy some services! Version: 6.1 HotFix 2.1 and older Developer url: hostingcontroller.com Comment: Hostin...
DSA-735-2 sudo - pathname validation race
Bulletin has no description...
Nokia Symbian 60 "BLUETOOTH NICKNAME" Remote Restart
When i was playing with my bluetooth device, i found that if you add in your nickname " 09 0a " in hex, it will cause that every one who search for available bluetooth devices and find your nickname his nokia phone will restart. you should add a nicname like that, something09 0a in hexjust add...
Hosting Controller <= 0.6.1 Unauthenticated User Registeration (3rd)
Exploit for unknown platform in category web applications ==================================================================== Hosting Controller Username : emailaddress : firstname : 0day.today 2018-03-09...
Hosting Controller <= 0.6.1 Unauthenticated User Registeration (3rd)
No description provided by source. !-- Hi, I'm Soroush Dalili from GSG GrayHatz Security Group. Title: Hosting controller program have a security bug in "UserProfile.asp" that an authenticated user can change other's profiles. Why is it dangerous: a user can change other's email address and then...
remote root security bug in ethereal 0.9.13 >= and <= 0.10.10
Suresec security advisory 2 9th May 2005 CVE ID: CAN-2005-1461 Remote root vulnerability in Ethereal. About ethereal: Ethereal is a widely used network packet capturing utility which has support for over 700 network protocols. Vulnerability summary: Ethereal has a dissector for the distcc network...
directory traversal in SimpleCam 1.2
Donato Ferrante Application: SimpleCam http://www.deadpirate.com/ Version: 1.2 Bug: directory traversal Date: 04-May-2005 Author: Donato Ferrante e-mail: [email protected] web: www.autistici.org/fdonato xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx 1. Description 2...
remote command execution in ad.cgi script
Tunis 24/04/2005 BUG found by fireboy [email protected] THERE ARE SOME BUGS IN ad.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1file showing...
remote command execution in include.cgi script
Tunis 24/04/2005 BUG found by fireboy [email protected] THERE ARE SOME BUGS IN include.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1file showing...
Moderate: Red Hat Security Advisory: cvs security update
An updated cvs package that fixes security bugs is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. CVS Concurrent Version System is a version control system. A buffer overflow bug was found in the way the CVS client processes...
The Includer CGI 1.0 - Remote Command Execution (2)
The Includer CGI 1.0 - Remote Command Execution 2 !/usr/bin/perl Target - The Includer CGI \n\n"; print " - Host name of taget.\n"; print " - If not in dir type / symbol.\n"; print " - command for execution.\n\n"; print " Examples:\n\n"; print " incl10.pl 127.0.0.1 /cgi-bin/ "ls -la"\n"; print "...
phpBB2012.txt
Just a simple Perl Script for this exploit. I hope it is usefull for some of you ------------------------------------------------------------------------------------------------ !/usr/bin/perl phpBB 2.0.12 Session Handling Administrator Authentication Bypass EXPLOIT written by phuket The discover...