iWeb Server Directory Traversal Vulnerability (Dec 2009) - Active Check

iWeb Server is prone to a directory traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...

Home FTP Server 'MKD' Command Directory Traversal Vulnerability

Home FTP Server is prone to a directory traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Torrent Swarm Poisoning

=== Credits === Written by Burningmace. Thanks to Blindkilla for helping me out. === Introduction === The BitTorrent protocol identifies peers using a tracker. Each peer announces itself to the tracker via HTTP. Certain parameters in the announce request itself can be altered in order to fake the...

Adobe Acrobat Reader Arbitrary Dereference Proof Of Concept

Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product Homepage: www.adobe.com CVE: 2009-2990 OSs: WinXPSPx/Linux...

Oracle Database Server SQL Query Directory Traversal (CVE-2005-0701)

The Oracle UTLFILE package is a set of PL/SQL procedures that allow a database user to manipulate files on the server. Supported operations include: read, write, rename, and remove. The files that are available to users are restricted to directories that have been specified in the utlfiledir...

Mozilla NSS - NULL Character CA SSL Certificate Validation Security Bypass

Mozilla NSS - NULL Character CA SSL Certificate Validation Security Bypass source: https://www.securityfocus.com/bid/35888/info Mozilla Network Security Services NSS is prone to a security-bypass vulnerability because it fails to properly validate the domain name in a signed CA certificate,...

Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow

Adobe Reader Acrobat - .U3D File Invalid Array Index Overflow Felipe Andres Manzano [email protected] http://twitter/feliam doc=''' Title: U3D CLODProgressiveMeshContinuation Split Position Index arbitrary dereference. Product: Adobe Acrobat Reader Version: =8.1.6, =9.1.3 Product...

Omni-NFS Multiple Stack Buffer Overflow Vulnerabilities

Omni-NFS is prone to multiple stack-based buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplied network data before copying it into an insufficiently sized memory buffer. The issues affect both server and client. Exploiting these issues allows...

PHP168 Template Editor - 'Filename' Directory Traversal

source: https://www.securityfocus.com/bid/42174/info PHP168 Template Editor is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to read and overwrite arbitrary files in the context of the...

Check Point response to Phrack article "Exploiting TCP Persist Timer Infiniteness" (CVE-2009-1926, VU#723308)

...

Tukanas Classifieds 1.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/43337/info Tukanas Classifieds is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Smart ASP Survey - 'catid' SQL Injection

source: https://www.securityfocus.com/bid/43370/info Smart ASP Survey is prone to a SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting the vulnerability could allow an attacker to steal cookie-based authentication credentials, compromise the...

Squid Multiple Remote Denial of Service Vulnerabilities

Squid is prone to multiple remote denial-of-service vulnerabilities. Successfully exploiting these issues allow remote attackers to crash the affected application, denying further service to legitimate users. This issue affects Squid 3.0.STABLE16, 3.1.0.11 and prior versions. OpenVAS Vulnerabilit...

Snitz Forums 2000 'register.asp' SQL Injection Vulnerability

Snitz Forums 2000 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Mozilla Firefox 3.5 - Font tags Remote HeapSpray (2)

Mozilla Firefox 3.5 - Font tags Remote HeapSpray 2 FireFox 3.5 Heap Spray Discovered by: Simon Berry-Bryne Coded in Perl by netsoul, ALTO PARANA - Paraguay Contact: netsoul2 at gmail dot com !/usr/bin/perl -w use strict; use POE::Component::Server::HTTP; POE::Component::Server::HTTP-newPort = my...

Almnzm 2.0 - Blind SQL Injection

Almnzm 2.0 - Blind SQL Injection ?php iniset"maxexecutiontime",0; printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Almnzm 2.0 Blind SQL Inj. /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q Cookie 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q http://www.almnzm.com |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ|...

Almnzm 2.0 - Blind SQL Injection

?php iniset"maxexecutiontime",0; printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Almnzm 2.0 Blind SQL Inj. /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q Cookie 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q http://www.almnzm.com |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE...

Internet Explorer 7/8 Cross Site Scripting

Multiple Exploiting IE8/IE7 XSS Vulnerability Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2009/06/22 References: http://www.80vul.com/ie8/Multiple%20Exploiting%20IE8IE7%20XSS%20Vulnerability.txt Overview: Tagsnot include in ie7/8 are don't allowe to run "javascript:jscodz",but we...

FireStats 'firestats-wordpress.php' Remote File Include Vulnerability

FireStats is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible. FireStats 1.6.1 is vulnerable; prior versio...

KLA10114 DoS vulnerability in Citrix Secure Gateway

An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...