Red Hat Linux Kernel qla2xxx驱动完全可写文件漏洞

BUGTRAQ ID: 37876 CVE ID: CVE-2009-3556 Linux Kernel是开放源码操作系统Linux所使用的内核。 对于使用qla2xxx驱动且支持NPIV硬件的Red Hat版本的Linux Kernel系统，驱动向SCSI主机属性中添加了两个新的sysfs伪文件： w--w--w- root root /sys/class/scsihost/host1/vportcreate w--w--w- root root /sys/class/scsihost/host1/vportdelete w--w--w- root root...

Jokes Complete Website Cross Site Scripting

======================================================================================== | Title : Jokes Complete Website Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com | Web Site :...

Linux Kernel 2.6.28 - fasync_helper() Local Privilege Escalation

Linux Kernel 2.6.28 - fasynchelper Local Privilege Escalation / source: https://www.securityfocus.com/bid/37806/info Linux kernel is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful...

Linux Kernel < 2.6.28 - 'fasync_helper()' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/37806/info Linux kernel is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected...

New Zero-Day Flaw Discovered in IE7

There is a newly discovered vulnerability in both Internet Explorer 6 and Internet Explorer 7 that could enable an attacker to take complete control of a vulnerable machine. The vulnerability is the result of a dangling pointer in IE and there is a working exploit for the flaw circulating online...

Microsoft License Logging Server RPC Call Heap Overflow (MS09-064; CVE-2009-2523)

The License Logging service is a tool that was originally designed to help customers manage licenses for the Microsoft server products that are licensed in the Server Client Access License CAL model. License Logging service is one of the services used by Windows Small Business Server 2003 or...

Linux Kernel 2.6.x - Ext4 move extents ioctl Privilege Escalation

Linux Kernel 2.6.x - Ext4 move extents ioctl Privilege Escalation source: https://www.securityfocus.com/bid/37277/info Linux kernel is prone to a local privilege-escalation vulnerability because the software fails to verify access permissions. Exploits may allow attackers to execute arbitrary cod...

Flawed USB Sticks Can Be Used to Download Whatever Desired

UK security researchers MWR InfoSecurity have found a flaw in the driver software of USB sticks that could allow the technology to “interrogate” and download the complete content of any system. The company believes the use of such devices is only months away, and has shared its research with the...

openSUSE 10 Security Update : bytefx-data-mysql (bytefx-data-mysql-6365)

The XML signature checker did not impose limits on the minimum length of HMAC signatures in XML documents. Attackers could therefore specify a length of e.g. 1 to make the signature appear valid and therefore effectively bypass verification of XML documents. %NASLMINLEVEL 70300 C Tenable Network...

Microsoft Excel SST Record Integer Overflow (MS09-021; CVE-2009-0561; CVE-2009-3037)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The flaw is due to a memory corruption error in Microsoft Excel when loading specially crafted Excel files that include a malformed record object. The...

Unrestricted file upload

Unrestricted file upload vulnerability in PHPStore Complete Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in classifieds1/yellowimages/...

CVE-2008-6928

Unrestricted file upload vulnerability in PHPStore Complete Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in classifieds1/yellowimages/...

CVE-2008-6928

CVE-2008-6928 affects PHPStore Complete Classifieds. The vulnerability is an unrestricted file upload that allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to classifieds1/yellow_images/....

Microsoft Office OWC10.Spreadsheet ActiveX BorderAround() Heap Corruption Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific vulnerability exists in the OWC10.Spreadsheet.10 ActiveX control...

MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-->

------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-- ------------------------------------------------------------- CMS INFORMATION: --WEB: http://shutter.tenfourzero.net/ --DOWNLOAD: http://shutter.tenfourzero.net/ --DEMO:...

SMA-DB 0.3.13 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. SMA-DB 0.3.13 Multiple Remote File Inclusion Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://bluevirus.ch/media/downloads/SMA-DBv0.3.13.zip - about SMA-DB:...

SMA-DB 0.3.13 Remote File Inclusion

SMA-DB 0.3.13 Multiple Remote File Inclusion Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://bluevirus.ch/media/downloads/SMA-DBv0.3.13.zip - about SMA-DB: Written in PHP4: SMA-DB is a Databa...

SMA-DB 0.3.13 - Multiple Remote File Inclusions

SMA-DB 0.3.13 Multiple Remote File Inclusion Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://bluevirus.ch/media/downloads/SMA-DBv0.3.13.zip - about SMA-DB: Written in PHP4: SMA-DB is a Databa...

SMA-DB 0.3.13 - Multiple Remote File Inclusions

SMA-DB 0.3.13 - Multiple Remote File Inclusions SMA-DB 0.3.13 Multiple Remote File Inclusion Vulnerabilities bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://bluevirus.ch/media/downloads/SMA-DBv0.3.13.zip -...

JobHut 1.2 Password Change

-------------------------------------------------- JobHut = 1.2 manageUsers Remote password change Vulnerability ---------------------------------------------------- founder : ThE g0bL!N Script Download: http://jobhut.spranger.us/ version:= 1.2 thx: to K-159 for 1 exploit...