CVE-2012-0216

The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when modphp or modrivet is used, provides example scripts under the doc/ URI, which might allow local users to conduct cross-site scripting XSS...

CVE-2012-0216

The CVE-2012-0216 entry concerns the Debian Apache2 package: when using mod_php or mod_rivet, the default config exposes example scripts under doc/ that can enable local XSS, privilege escalation, or information disclosure via localhost HTTP requests. Affected releases include Debian Squeeze (&lt...

CVE-2012-0216

The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when modphp or modrivet is used, provides example scripts under the doc/ URI, which might allow local users to conduct cross-site scripting XSS...

libpng chunk decompression integer overflow vulnerability

Overview The libpng library contains an integer overflow vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The Portable Network Graphics PNG image format is used as an alternative to other image formats such as the Graphi...

CVE-2011-4339

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

Code injection

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

CVE-2011-4339

ipmievd aka the IPMI event daemon in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux RHEL 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this fil...

CVE-2011-4339

OpenIPMI’s ipmievd daemon (as used by ipmitool 1.8.11 on RHEL6, Debian, Fedora 16 and other products) creates a world-writable ipmievd.pid (0666), enabling a local user to kill arbitrary processes. CVE-2011-4339 is cited across multiple advisories (e.g., MiracleLinux AXSA entries, Oracle Linux RH...

CVE-2011-4613

The X.Org X wrapper xserver-wrapper.c in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY...

[SECURITY] [DSA 2360-1] Two month advance notification for upcoming end-of-life for Debian oldstable

------------------------------------------------------------------------- Debian Security Advisory DSA-2360-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 6, 2011 http://www.debian.org/security/faq -...

DSA-2360-1 lenny end-of-life

This is an advance notice that security support for Debian GNU/Linux 5.0 code name "lenny" will be terminated in two months. The Debian project released Debian GNU/Linux 6.0 alias "squeeze" on the 6th of February 2011. Users and distributors have been given a one-year timeframe to upgrade their o...

JAM SQL Injection

Exploit Title: JAM SQL Injection Vulnerability Google Dork: intext:"This site is preserved by JAM" Date: 2011-15-09 Author: nGa Sa Lu N-S-L Service Link: http://www.jamarketing.co.nz Tested on: Debian GNU/Linux 5.0 Google Dork : intext:"This site is preserved by JAM"...

dotProject 2.1.5 SQL Injection

Exploit Title: dotProject 2.1.5 SQL Injection Vulnerability Google Dork: intitle:"dotproject" Date: 2011-12-09 Author: sherl0ck @AlligatorTeam Software Link: http://www.dotproject.net/ Version: 2.1.5 tested Tested on: Debian GNU/Linux 5.0 --------------- PoC --------------- URL:...

dotProject 2.1.5 - SQL Injection

dotProject 2.1.5 - SQL Injection Exploit Title: dotProject 2.1.5 SQL Injection Vulnerability Google Dork: intitle:"dotproject" Date: 2011-12-09 Author: sherl0ck @AlligatorTeam Software Link: http://www.dotproject.net/ Version: 2.1.5 tested Tested on: Debian GNU/Linux 5.0 --------------- PoC...

dotProject 2.1.5 - SQL Injection

Exploit Title: dotProject 2.1.5 SQL Injection Vulnerability Google Dork: intitle:"dotproject" Date: 2011-12-09 Author: sherl0ck @AlligatorTeam Software Link: http://www.dotproject.net/ Version: 2.1.5 tested Tested on: Debian GNU/Linux 5.0 --------------- PoC --------------- URL:...

dotProject 2.1.5 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: dotProject 2.1.5 SQL Injection Vulnerability Google Dork: intitle:"dotproject" Date: 2011-12-09 Author: sherl0ck @AlligatorTeam Software Link: http://www.dotproject.net/ Version: 2.1.5 tested Tested on: Debian GNU/Linux 5.0...

ISC BIND 9 named denial of service vulnerability

Overview ISC BIND 9 contains a remote packet denial of service vulnerability when running as an authoritative or recursive server. Description According to ISC:A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packe...

HB Ecommerce SQL Injection

------------- HB ECOMMERCE SQL Injection Vulnerability --------------- ------------------------------------------------------------------------ ------------------------------------------------------------------------ + Exploit Title: HB ECOMMERCE SQL Injection Vulnerability + Google Dork:...

OpenSSL leaks ECDSA private key through a remote timing attack

Overview The OpenSSL ladder implementation for scalar multiplication of points on elliptic curves over binary fields is susceptible to a timing attack vulnerability. This vulnerability can be used to steal the private key of a TLS server that authenticates with ECDSA signatures and binary curves...

CVE-2011-1548

The default configuration of logrotate on Debian GNU/Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as demonstrated...