2854 matches found
Nokia S60 SMS/MMS (Curse of Silence) Denial of Service Vulnerability
Exploit for hardware platform in category dos / poc ==================================================================== Nokia S60 SMS/MMS Curse of Silence Denial of Service Vulnerability ==================================================================== Vulnerability Advisory...
Nokia S60 SMS/MMS (Curse of Silence) - Denial of Service
Vulnerability Advisory ====================== Remote SMS/MMS Denial of Service - "Curse Of Silence" for Nokia S60 phones URL === https://berlin.ccc.de/tobias/cos/s60-curse-of-silence-advisory.txt Video ===== https://berlin.ccc.de/tobias/cos/s60-curse-of-silence-demo.avi Affected Products...
Nokia S60 SMSMMS (Curse of Silence) - Denial of Service
Nokia S60 SMSMMS Curse of Silence - Denial of Service Vulnerability Advisory ====================== Remote SMS/MMS Denial of Service - "Curse Of Silence" for Nokia S60 phones URL === https://berlin.ccc.de/tobias/cos/s60-curse-of-silence-advisory.txt Video =====...
Nokia S60 SMS/MMS (Curse of Silence) Denial of Service Vulnerability
No description provided by source. Vulnerability Advisory ====================== Remote SMS/MMS Denial of Service - "Curse Of Silence" for Nokia S60 phones URL === https://berlin.ccc.de/tobias/cos/s60-curse-of-silence-advisory.txt Video =====...
Unfixed XSS vulnerability at www.firewallfactory.com.au
Security researcher D3x, has submitted on 12/04/2008 a cross-site-scripting XSS vulnerability affecting www.firewallfactory.com.au, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/04/2008. It is...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Glassfish webadmin interface in Sun Java System Application Server 9.101 allow remote attackers to inject arbitrary web script or HTML via the 1 propertyForm:propertyContentPage:propertySheet:propertSectionTextField:jndiProp:JndiNew, 2...
Linksys WRT54G (firmware 1.00.9) Security Bypass Vulnerabilities
Exploit for hardware platform in category remote exploits ================================================================ Linksys WRT54G firmware 1.00.9 Security Bypass Vulnerabilities ================================================================ regurgitated by: meathive url: kinqpinz.info ;...
linksys-bypass.txt
regurgitated by: meathive url: kinqpinz.info ; Tue, 05 Feb 2008 07:51:41 -0700 CVE-2008-1247 WRT54G firmware version: v1.00.9 Default LAN IP: 192.168.1.1 Default auth: user:blank - pass:admin Authorization: Basic OmFkbWlu php print base64decode"OmFkbWlu"; :admin https://kinqpinz.info/lib/wrt54g/...
Linksys WRT54G Firmware 1.00.9 - Security Bypass (1)
Linksys WRT54G Firmware 1.00.9 - Security Bypass 1 regurgitated by: meathive url: kinqpinz.info ; Tue, 05 Feb 2008 07:51:41 -0700 CVE-2008-1247 WRT54G firmware version: v1.00.9 Default LAN IP: 192.168.1.1 Default auth: user:blank - pass:admin Authorization: Basic OmFkbWlu php print...
Linksys WRT54G Firmware 1.00.9 - Security Bypass (1)
regurgitated by: meathive url: kinqpinz.info ; Tue, 05 Feb 2008 07:51:41 -0700 CVE-2008-1247 WRT54G firmware version: v1.00.9 Default LAN IP: 192.168.1.1 Default auth: user:blank - pass:admin Authorization: Basic OmFkbWlu php print base64decode"OmFkbWlu"; :admin https://kinqpinz.info/lib/wrt54g/...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2003-1346
CVE-2003-1346 affects D-Link DWL-900AP+ wireless access points (firmware versions 2.2, 2.3 and possibly 2.5). The issue allows remote attackers to restore factory default settings by upgrading the firmware via AirPlus Access Point Manager. The impact is description-based: factory defaults can be ...
Mandrake Linux Security Advisory : php (MDKSA-2007:102)
A heap buffer overflow flaw was found in the xmlrpc extension for PHP. A script that implements an XML-RPC server using this extension could allow a remote attacker to execute arbitrary code as the apache user. This flaw does not, however, affect PHP applications using the pure-PHP XMLRPC class...
kronolith -- arbitrary local file inclusion vulnerability
iDefense Labs reports: Remote exploitation of a design error in Horde's Kronolith could allow an authenticated web mail user to execute arbitrary PHP code under the security context of the running web server. The vulnerability specifically exists due to a design error in the way it includes certa...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...
CVE-2006-2815
Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...
CVE-2006-2815
Multiple cross-site scripting XSS vulnerabilities in Two Shoes M-Factory TSMF SimpleBoard 1.1.0 Stable aka comsimpleboard, as used in Mambo and Joomla!, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in "post ne topic" in the Frontend, 2 the Title aka...