38 matches found
PTK 1.0.5 Cross Site Scripting / Unrestricted Access
Exploit Title: Multiple PTK DFlabs failures to restrict access to sensitive data Author: Anonymous Software Link: http://sourceforge.net/projects/ptk-forensics/files/ptk-1.x/ptk-1.0.5/ptk-1.0.5.tar.gz/download Version: 1.0.5 Tested on: Ubuntu --A-- Introduction PTK DFlabs forensics is an...
DFLabs PTK 1.0.5 Cross Site Request Forgery
+---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : DFLabs PTK = 1.0.5 Multiple Vulnerabilities Steal Authentication Credentials Date : 22-02-2012 Author : Ivano Binetti...
DFLabs PTK 1.0.5 - Steal Authentication Credentials
+---------------------------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : DFLabs PTK = 1.0.5 Multiple Vulnerabilities Steal Authentication Credentials Date : 22-02-2012 Author : Ivano Binetti...
CVE-2008-6793
The getfiletype function in lib/filecontent.php in DFLabs PTK 0.1, 0.2, and 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters after an arg1= sequence in a filename within a forensic image...
Design/Logic Flaw
The getfiletype function in lib/filecontent.php in DFLabs PTK 0.1, 0.2, and 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters after an arg1= sequence in a filename within a forensic image...
CVE-2008-6793
The getfiletype function in lib/filecontent.php in DFLabs PTK 0.1, 0.2, and 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters after an arg1= sequence in a filename within a forensic image...
CVE-2009-0917
Cross-site scripting XSS vulnerability in DFLabs PTK 1.0.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML by providing a forensic image containing HTML documents, which are rendered in web browsers during inspection by PTK. NOTE: the vendor states that the product is...
Design/Logic Flaw
Multiple unspecified vulnerabilities in DFLabs PTK 1.0.0 through 1.0.4 allow remote attackers to execute arbitrary commands in processes launched by PTK's Apache HTTP Server via 1 "external tools" or 2 a crafted forensic image...
Cross site scripting
Cross-site scripting XSS vulnerability in DFLabs PTK 1.0.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML by providing a forensic image containing HTML documents, which are rendered in web browsers during inspection by PTK. NOTE: the vendor states that the product is...
CVE-2009-0918
Multiple unspecified vulnerabilities in DFLabs PTK 1.0.0 through 1.0.4 allow remote attackers to execute arbitrary commands in processes launched by PTK's Apache HTTP Server via 1 "external tools" or 2 a crafted forensic image...
CVE-2009-0918
CVE-2009-0918 affects DFLabs PTK 1.0.0–1.0.4. The issue allows remote attackers to execute arbitrary commands in processes launched by PTK’s Apache HTTP Server via two vectors: (1) “external tools” and (2) a crafted forensic image. The underlying cause is unspecified in the provided documents bey...
CVE-2009-0917
Cross-site scripting XSS vulnerability in DFLabs PTK 1.0.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML by providing a forensic image containing HTML documents, which are rendered in web browsers during inspection by PTK. NOTE: the vendor states that the product is...
CVE-2009-0917
CVE-2009-0917 describes a cross-site scripting (XSS) vulnerability in DFLabs PTK versions 1.0.0 through 1.0.4. The issue occurs when a forensic image containing HTML documents is provided, causing HTML/Script content to be rendered in browsers during PTK inspection. This allows remote attackers t...
CVE-2009-0918
Multiple unspecified vulnerabilities in DFLabs PTK 1.0.0 through 1.0.4 allow remote attackers to execute arbitrary commands in processes launched by PTK's Apache HTTP Server via 1 "external tools" or 2 a crafted forensic image...
LC-2008-07.txt
==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com ==================================================== 1 Affected Software DFLabs PT...
DFLabs PTK 1.0 - Local Command Execution
DFLabs PTK 1.0 - Local Command Execution ==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com...
DFLabs PTK <= 1.0 Local Command Execution Vulnerability
Exploit for unknown platform in category web applications ======================================================= DFLabs PTK = 1.0 Local Command Execution Vulnerability ======================================================= ==================================================== Security Research...
DFLabs PTK 1.0 - Local Command Execution
==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com ==================================================== 1 Affected Software DFLabs PT...