51 matches found
PEStudio 3.69 - Denial of Service
Exploit for windows platform in category remote exploits Title: PEStudio Version 3.69 Denial of Service Date: 5th June 2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Software Homepage: http://www.winitor.com/ Version: PEStudio Version 3.69 Tested on:...
Varnish 2.1.5 DoS in STV_alloc() while parsing Content-Length header
STValloc | st != NULL Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 2.1.5 Full panic message: Panic message: Assert error in STValloc, stevedore.c line 192:012 Conditionst != NULL not true. Summary: Varnish 2.1.5 crash and restart via...
Stable Channel Update
The Chrome Stable channel has been updated to 13.0.782.215 for all platforms. This release contains the following security fixes. Security fixes and rewards: Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are ...
smbind <= v.0.4.7 Sql Injection Vulnerability
Exploit for php platform in category web applications ============================================= smbind query"SELECT ID FROM users WHERE username = '" . $SESSION'username' ."' AND password = '" . md5$SESSION'password' . " ' "; Easy admin login Enter in username field: admin'; Enter in password...
smbind 0.4.7 - SQL Injection
smbind 0.4.7 - SQL Injection smbind query"SELECT ID FROM users WHERE username = '" . $SESSION'username' ."' AND password = '" . md5$SESSION'password' . " ' "; Easy admin login Enter in username field: admin'; Enter in password field: anything Sql query will result like this: SELECT ID FROM users...
Microsoft Windows XP/2003 Macrovision SecDrv.sys privilege escalation (0day)
Hi, Symantec researcher Elia Florip has warned, at the company's weblog 1,of a 0day attack in Windows XP and 2003 that allows unprivileged users to gain SYSTEM privileges via a buggy driver installed by default. In his/her post, Elia brings us an important clue:"At the moment, it's still not clea...
openSUSE 10 Security Update : wget (wget-1689)
This update fixes a security in wget, where evil servers could send terminal escape codes to the user calling wget. This would only affect interactive sessions. CVE-2004-1488 Additionaly a previous '.file' fix was found to be buggy and replaced. This bug could lead to '.directories' not being...
Unfixed XSS vulnerability at lemi.regweb.fi
Security researcher Uber0n, has submitted on 29/09/2007 a cross-site-scripting XSS vulnerability affecting lemi.regweb.fi, which at the time of submission ranked 63656 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/10/2007. It is currently...
apache2058-rewrite.txt
/ apache mod rewrite exploit win32 By: fabio/b0x oc-192, old CoTS member Vuln details: http://www.securityfocus.com/archive/1/archive/1/443870/100/0/threaded Code: bind shell on port 4445, tested on apache 2.0.58 with modrewrite windows 2003 original exploit http://milw0rm.com/exploits/3680 only...
[myimei]MyBB1.0.3~managegroup.php~Multiple SqlInjection & XSS
ORIGINAL ADVISORY/ http://myimei.com/security/2006-02-10/mybb103managegroupphpmultiple-sqlinjection-xss.html Vendor Credit:http://community.mybboard.net/showthread.php?tid=6777 ——————-Summary—————- Software: MyBB Sowtware’s Web Site: http://www.mybboard.com Versions: 1.0.3 Class: Remote Status:...
Low: Red Hat Security Advisory: slocate security update
An updated slocate package that fixes a denial of service issue is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Slocate is a security-enhanced version of locate. Like locate, slocate searches through a nightly-updated central...