NSHC Papyrus 2.0 - Heap Overflow

!/usr/bin/python Title: NSHC Papyrus Heap Overflow Vulnerability Date: 13\08\2011 Author: wh1ant Software Link: http://file.atfile.com/ftp/data/03/PapyrusSetup.exe Version: 2.0 Tested On: windows XP SP3 South Korea / windows XP SP3 English VMware Workstation CVE: N/A Notice: Encrypt/Decrypt...

[SECURITY] Fedora 12 Update: gnupg2-2.0.13-2.fc12

GnuPG is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440 and the S/MIME standard as described...

CVE-2009-1474

The ATEN KH1516i IP KVM switch with firmware 1.0.063 and the KN9116 IP KVM switch with firmware 1.1.104 do not 1 encrypt mouse events, which makes it easier for man-in-the-middle attackers to perform mouse operations on machines connected to the switch by injecting network traffic; and do not 2 s...

PT-2009-3967 · A A S · Application Access Server

Name of the Vulnerable Software and Affected Versions: Application Access Server A-A-S version 2.0.48 Description: The issue allows local users to obtain sensitive information, including passwords and the port keyword, by reading the aas.ini file, as this information is stored in cleartext...

FreeBSD Ports: gnupg

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

projectalumni-sqlxss.txt

project-alumni sql injection & xss author : tomplixsee [email protected] -------------------------------------------------------------------------- affected software version : project alumni 1.0.9, 1.0.8, or lower?? download : https://sourceforge.net/projects/project-alumni/ vulnerability...

IRC Services-- Denial of Service Vulnerability

Secunia reports: A vulnerability has been reported in IRC Services, which can be exploited by malicious people to cause a Denial of Service. The vulnerability is caused due to the improper handling of overly long passwords within the "defaultencrypt" function in encrypt.c and can be exploited to...

Vz (Adp) Forum 2.0.3 Remote Password Disclosure Vulnerablity

Exploit for unknown platform in category web applications ============================================================ Vz Adp Forum 2.0.3 Remote Password Disclosure Vulnerablity ============================================================ SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity...

Vz (Adp) Forum 2.0.3 Remote Password Disclosure Vulnerablity

No description provided by source. SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC:...

P-News 1.161.17 - user.dat Remote Password Disclosure

P-News 1.161.17 - user.dat Remote Password Disclosure P-News user.datRemote Password Disclosure Vulnerablity S.name:P-News Affected versions:1.17 and 1.16 Vendor:www.ppopn.net Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/db/user.dat As We see Admin name and...

Sv(ADP) Forum 2.0.3 Remote Password Disclosure Vulnerablity

SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/users/admin.txt As We see Admin name and hash...

P-News 1.16/1.17 - 'user.dat' Remote Password Disclosure

P-News user.datRemote Password Disclosure Vulnerablity S.name:P-News Affected versions:1.17 and 1.16 Vendor:www.ppopn.net Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/db/user.dat As We see Admin name and hash !!!!!!!!!!!!!!!!!!!!!!!!!! You can crack the...

Vz (Adp) Forum 2.0.3 - Remote Password Disclosure

SvADP Forum 2.0.3 Remote Password Disclosure Vulnerablity S.name:ADP Forum Affected version:2.0.3 Download&Demo:http://www.linux.it/fedro/index.php?pag=scripts&lang=en Risk:Very Highly Critical Author:Dr Max Virus Location:Egypt POC: http:/target/path/users/admin.txt As We see Admin name and hash...

Use OllyDBG direct access to the folder encryption software password-vulnerability warning-the black bar safety net

Recently, a friends using“mobile encrypt”a Internet free Free after Forgot Password, I use ollydbg perfect solution to folder encryption after the forgotten password problem, online although a part of the solution, but the feel is very troublesome, not directly decrypt but by extracting the way t...

Ultimate PHP Board <= 1.96 GOLD Multiple Vulnerabilities Exploit

No description provided by source. ?php / Advisory: http://www.kliconsulting.com/users/mbrooks/UPBadvisory.rtf Vendors site: http://forum.myupb.com/ Download: http://fileserv.myupb.com/download.php?url=upb196GOLD.zip http://prdownloads.sourceforge.net/textmb/upb1.8.2.zip?download Download Mirror:...

Input validation

Unspecified vulnerability in VCEngine.php in v-creator before 1.3-pre3, when the VCCRYPTOMETHOD option is OPENSSL, allows remote attackers to execute arbitrary commands, possibly due to problems in the 1 encrypt and 2 decrypt functions...

CVE-2006-1599

Vulnerability CVE-2006-1599 affects v-creator before 1.3-pre3, in VCEngine.php when VC_CRYPTO_METHOD is OPENSSL. Root cause appears to be issues in the encrypt and decrypt functions, enabling remote command execution. The available sources indicate the vulnerability resides in the crypto handling...

CVE-2005-2915

ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak encryption XOR encoding with a fixed byte mask for configuration information, which could allow attackers to decrypt the information and possibly re-encrypt it in...

FreeBSD : xpdf -- makeFileKey2() buffer overflow vulnerability (f755545e-6fcd-11d9-abec-00061bd2d56f)

An iDEFENSE Security Advisory reports : Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file. The vulnerability specifically exists due to insufficien...

CVE-2005-0064

Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and earlier allows remote attackers to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value...