TransSoft Broker FTP Server 3.0/4.0/4.7/5.x CWD Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2851/info Broker is a Windows FTP server from TransSoft. Versions of Broker are vulnerable to a denial of service. A CD or CWD command, argumented by an invalid '. .' dot-space-dot sequence can, if repeatedly issued, crea...

vuBB <= 0.2 (Cookie) Final Remote SQL Injection Exploit (mq=off)

No description provided by source. !/usr/bin/perl print q ---------------------------------------------------------------------- vuBB =0.2 Final Remote SQL Injection cookies Exploit exploit discovered and coded by KingOfSKa https://contropotere.netsons.org...

WikiWebHelp 0.28 - SQL Injection Vulnerability

No description provided by source. Version: v0.28 Possible all versions Vendor: Richard Bondi - http://wikiwebhelp.org Download: http://wikiwebhelp.org/release/wwh-0.2.8.zip Description: The goal of this project is to create a help application that is editable by the community. Standard wiki...

Batalla Naval 1.0 4 Remote Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/7699/info Batalla Naval is prone to a remotely exploitable buffer overflow when handling requests of excessive length. This could allow for execution of malicious instructions in the context of the game server. / by jsk f...

Half-Life StatsMe 2.6.x Plug-in CMD_ARGV Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6575/info The Half-Life StatsMe plug-in is prone to an exploitable buffer overflow condition. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute...

Half-Life StatsMe 2.6.x Plug-in MakeStats Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6578/info The Half-Life StatsMe plug-in is prone to an exploitable format string vulnerability. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute...

HP OpenView OmniBack II A.03.50 - Command Executino

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

Proxy-Pro Professional GateKeeper 4.7 Web Proxy Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9716/info Proxy-Pro Professional GateKeeper is prone to a remotely exploitable buffer overrun that may be triggered by passing HTTP GET requests of excessive length through the web proxy component. This could be exploited...

Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability

No description provided by source. ============================================================== Secur-I Research Group Security Advisory SV-2012-005 ============================================================== Title: Yealink VOIP Phone Persistent Cross Site Scripting Vulnerability Product:...

TFS Gateway 4.0 - Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/613/info TFS Gateway 4.0, when configured in a specific non-default manner, is vulnerable to a remotely exploitable denial of service attack. If 'return entire message to sender' is enabled for failed send attempts, and a...

PHP 3.0/4.0 Error Logging Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1786/info PHP is a scripting language designed for CGI applications that is used on many websites. There exists a remotely exploitable format string vulnerability in all versions of PHP below PHP 4.0.3. The vulnerability...

Lexmark Multiple Laser printer Remote Stack Overflow

No description provided by source. Application: Lexmark Multiple Laser printer Remote Stack Overflow Platforms: Lexmark Multiple Laser printer Exploitation: Remote Exploitable CVE Number: CVE-2010-0619 Discover Date: 2010-01-06 Author: Francis Provencher Protek Research Lab's Website:...

Testlink TestManagement and Execution System 1.8.5 - Multiple Directory Traversal Vulnerabilites

No description provided by source. 1.Title :Multiple directory Traversal Vulnerabilites in Testlink TestManagement and Execution System. Discovered by: Prashant Khandelwal [email protected]:[email protected] Submitted :Jan-15-2010 Bugtraq id :...

IBM AIX 4.3.x/5.1 ERRPT Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5885/info The IBM AIX errpt command is prone to a locally exploitable buffer overflow condition. It is possible to exploit this condition to execute arbitrary attacker-supplied instructions with root privileges...

Softbiz Jobs Multiple SQL Injection Vulnerabilities

No description provided by source. ----------------------------Information------------------------------------------------ +Name : Softbiz Jobs moredetails.php SQL injection +Autor : Easy Laster +Date : 23.02.2010 +Script : Softbiz Jobs +Download : ----- +Demo :http://pricebusterdeals.com/ +Price...

BSD/OS 3.1/4.0.1,FreeBSD 3.0/3.1/3.2,RedHat Linux <= 6.0 amd Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/614/info There is a remotely exploitable buffer overflow condition in the amd daemon under several operating systems. Amd is a daemon that automatically mounts filesystems whenever a file or directory within that filesyst...

Valve Software Half-Life 1.1 Client Connection Routine Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8299/info Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition. The issue presents itself in the client connection routine, used by the client to negotiate a connection to the...

Microsoft Windows XP/2000/2003 Graphical Device Interface Plus Library Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19221/info Reportedly, the Microsoft Windows GDI+ library 'gdiplus.dll' is prone to a denial-of-service vulnerability because the software fails to handle malformed image files properly. An attacker may leverage this issu...

PHP XML-RPC Arbitrary Code Execution

No description provided by source. $Id: phpxmlrpceval.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

Vivotek IP Cameras Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL:...