840 matches found
Should Microsoft be in the security business?
Gartner security analyst Neil MacDonald thinks there are five levels to the discussion gartner.com about whether Microsoft should be in the security business. They include secure coding obviously, secure functionality in the platform at no cost of course, add-on security products at a fee maybe a...
Fedora Update for php FEDORA-2007-455
Check for the Version of php OpenVAS Vulnerability Test Fedora Update for php FEDORA-2007-455 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of th...
PHP168 whole Station system of 0DAY-vulnerability warning-the black bar safety net
The first description under this hole is in the other places to see, just he did not say very clearly, a lot of the vegetable dishes are Do not understand, I take it I first posted it in! This hole is actually the use of the program coding vulnerabilities, download the configuration and the login...
Debian DSA-1653-1 : linux-2.6 - denial of service/privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6716 Joe Jin reported a local denial of service vulnerability that allows...
Titan FTP Server 6.26 build 630 - Remote Denial of Service
Titan FTP Server 6.26 build 630 - Remote Denial of Service Titan FTP server v6.26 build 630 remote DoS exploit Titan FTP URL - http://www.titanftp.com/ DoS'ed on "SITE WHO" command xdmnt -- coding: windows-1252 -- import socket import sys def helpinfo: print "Usage: titand0s \n" print "Note:...
Debian DSA-1636-1 : linux-2.6.24 - denial of service/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or leak sensitive data. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3272 Tobias Klein reported a locally exploitable data leak in the...
Discuz space. php injection vulnerability analysis-vulnerability warning-the black bar safety net
$member = $db-fetchfirst"SELECT m., mf., u. grouptitle, u. type, u. creditshigher, u. creditslower, u. readaccess, u. color AS groupcolor, u. stars AS groupstars, u. allownickname, u. allowuseblog, r. ranktitle, r. color AS rankcolor, r. stars AS rankstars $oltimeadd1 FROM $tablepremembers m LEFT...
blazedvd_bof.pl.txt
!/usr/bin/perl Title: BlazeDVD 5.0 PLF Playlist File Remote Buffer Overflow Exploit PoC Summary: BlazeDVD is leading powerful and easy-to-use DVD player software. It can provide superior video and audioDolby quality, together with other enhanced features:e.g. recording DVD,playback image and...
Discuz! Forum the wap function module coding injection vulnerability-vulnerability warning-the black bar safety net
Author: The Frozen prodigal son Due to the hair in a blog on the vulnerability information to a bit beef up. Official has out patch. Since PHP for multibyte character sets support the existence of problem in various coding conversion process, it is possible to initiate a program overflow and...
Local information disclosure in WeFi Client v3.3.3.0
================================================== INFO ================================================== The wireless client, WeFi v3.3.3.0 is susceptible to a local information disclosure due to irresponsible coding. Earlier versions may also be affected...
Local vulnerability in WeFi Client v3.2.1.4.1(Update)
================================================== INFO ================================================== The wireless client, WeFi v3.2.1.4.1 is susceptible to local vulnerabilities due to improper coding. Earlier versions may also be affected. ==================================================...
Web Slider <= 0.6 Insecure Cookie/Authentication Handling Vuln
Exploit for unknown platform in category web applications ============================================================== Web Slider = 0.6 Insecure Cookie/Authentication Handling Vuln ==============================================================...
Web Slider 0.6 - Insecure Cookie/Authentication Handling
--==+================================================================================+==-- --==+ Web Slider = 0.6 Insecure Cookie/Authentication Handling +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz Discovered On: 15 MAY...
[SECURITY] Fedora 8 Update: mousepad-0.2.13-1.fc8
Mousepad is a text editor for Xfce based on Leafpad. The initial reason for Mousepad was to provide printing support, which would have been difficult for Leafpad for various reasons. Although some features are under development, currently Mousepad has follow ing features: Complete support for UTF...
mxbb233-rfi.txt
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + mxBB Module mxglance 2.3.3 Remote File Include Vulnerability + + + + Discovered by bd0rk || SOH-Crew + + + + www.soh-crew.it.tt + + + + The german Coding and IT-Security Ressource + + +...
2532|Gigs 1.2.1 (activateuser.php) Local File Inclusion Vulnerability
Exploit for unknown platform in category web applications ===================================================================== 2532|Gigs 1.2.1 activateuser.php Local File Inclusion Vulnerability =====================================================================...
[Full-disclosure] Adverse Vectors of Coding in Wordpress : Post Modifications
Hi all This analysis directly or indirectly revolves around the coding of wordpress.In this the stress is being laid on the modification of .php pages present in the wordpress.This issues comes relevant when the user changes some of the content of base pages to render it according to its own need...
ASP.NET path validation vulnerability-vulnerability warning-the black bar safety net
P. S This vulnerability is a little outlandish. the Huh. But domestic seems no one has been filed. This are 0 to 5 years of vulnerability. Last year I take to the data. However. There is no day to several stations. As if all the patched. Pity. in. Found late. Look at the ms to the announcement...
OTSCMS <= 2.1.5 (SQL/XSS) Multiple Remote Vulnerabilities
Coding 4 Fun Name = OTSCMS 2.1.5 by Wrzasq http://otscms.com ; Class = Sql Injection / XSS ; Download = http://sourceforge.net/project/showfiles.php?groupid=145557 ; Found by = GregStar gregstaratc4f.pl http://c4f.pl ;...
otscms 2.1.5 - SQL Injection Cross-Site Scripting
otscms 2.1.5 - SQL Injection Cross-Site Scripting Coding 4 Fun Name = OTSCMS 2.1.5 by Wrzasq http://otscms.com ; Class = Sql Injection / XSS ; Download = http://sourceforge.net/project/showfiles.php?groupid=145557 ; Found by = GregStar gregstaratc4f.pl http://c4f.pl ;...