sudo: Privilege Escalation

Background sudo allows a system administrator to give users the ability to run commands as other users. Description Multiple vulnerabilities have been reported in sudo: Evan Broder and Anders Kaseorg of Ksplice, Inc. reported that the sudo 'secure path' feature does not properly handle multiple...

[SECURITY] Fedora 14 Update: lvm2-2.02.73-1.fc14

LVM2 includes all of the support for handling read/write operations on physical volumes hard disks, RAID-Systems, magneto optical, etc., multiple devices MD, see mdadd8 or even loop devices, see losetup8, creating volume groups kind of virtual disks from one or more physical volumes and creating...

Cisco IOS Software Object-group Access Control List Bypass Vulnerability - Cisco Systems

A vulnerability exists in Cisco IOS software where an unauthenticated attacker could bypass access control policies when the Object Groups for Access Control Lists ACLs feature is used. Cisco has released free software updates that address this vulnerability. There are no workarounds for this...

ValidForm Builder script - Remote Command Execution

Exploit Title: ValidForm Builder script Remote Command Execution Vulnerability Date: 2010/07/23 Author: HackeR aRaR Email: [email protected] My Sites : www.vbspiders.com Script home: http://www.phpgalleryscript.org download Script: http://validformbuilder.googlecode.com/files/validformbuilderv.1.0.z...

OG Menu 6.x-2.0 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 OG Menu 6.x-2.0 XSS Vulnerability CVE-2010-1747 This disclosure has also been posted at http://madirish.net/?article=467 Description of Vulnerability: - ----------------------------- Drupal http://drupal.org is a robust content management system CMS...

Joomla Canteen Local File Inclusion

Name : Joomla comcanteen LFI Vulnerability Date : july 9,2010 vendor URL :http://miniwork.eu/ Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger greetz to :www.topsecure.net ,All ICW members and my friends : luv y0 guyz...

Joomla Components com_canteen LFI Vulnerability

Exploit for php platform in category web applications =============================================== Joomla Components comcanteen LFI Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

Joomla Front-End Article Manager System Upload Vulnerability

Exploit for php platform in category web applications ============================================================ Joomla Front-End Article Manager System Upload Vulnerability ============================================================...

Joomla! Component Front-End Article Manager System - Arbitrary File Upload

1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : Joomla Front-End Article Manager System Upload Vulnerability Date : july 4,2010 Critical Level : HIGH vendor URL :http://b-elektro.no/ Author : Sid3^effects aKa...

Joomla JomSocial 1.6.288 Cross Site Scripting

Exploit Title: Joomla Component JomSocial 1.6.288 Multiple XSS Vulnerabilities Date: 26 March 2010 Author: jdc Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out...

Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities

Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out of the bag... His exploit...

Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities

Software Link: http://jomsocial.com Version: 1.6.288 Since Sid3^effects published a single one of these 21 June 2010 - http://www.exploit-db.com/exploits/13955/ - I figured the cat's out of the bag... His exploit works even on 1.8RC1, however it gets sanitized once it hits the server there's an...

iRealty PHP Real Estate Script SQL Injection

Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title: iRealty PHP Real Estate Script PHP Script SQLi Vulnerable Published: 2010-06-08 Vendor url:http://www.worksforweb.com Greetz to:Sid3^effects, MaYur, M4n0j and to all ICW members DESCRIPTION: iRealty Real Estate Script is a...

Consumer Groups Say Proposed Privacy Bill is Flawed

A long-awaited draft of a Congressional bill would extend privacy protections both on the Internet and off line, but privacy advocates said the bill did not go far enough in protecting consumers. Read the full article New York Times...

kernel: ext4: avoid divide by zero when trying to mount a corrupted file system

The ext4fillflexinfo function in fs/ext4/super.c in the Linux kernel before 2.6.32-git6 allows user-assisted remote attackers to cause a denial of service divide-by-zero error and panic via a malformed ext4 filesystem containing a super block with a large FLEXBG group size aka sloggroupsperflex...

XSS Vulnerabilities in JIRA

panel:borderColor=ff0000|borderStyle=solid|bgColor=ffccccWarning: This issue is superceded by JRA-21004. Please install the patches on that issue, rather than this one. For more details, see JIRA Security Advisory -...

XSS Vulnerabilities in JIRA

panel:borderColor=ff0000|borderStyle=solid|bgColor=ffccccWarning: This issue is superceded by JRA-21004. Please install the patches on that issue, rather than this one. For more details, see JIRA Security Advisory -...

Ubuntu 9.10 : puppet vulnerabilities (USN-917-1)

It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...

USN-917-1: Puppet vulnerabilities

It was discovered that Puppet did not drop supplementary groups when being run as a different user. A local user may be able to use this flaw to bypass security restrictions and gain access to restricted files. CVE-2009-3564 It was discovered that Puppet did not correctly handle temporary files. ...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.6.4 allow remote authenticated users, with Instructor privileges, to inject arbitrary web script or HTML via the 1 Question and 2 Choice fields in tools/polls/add.php, the 3 Type and 4 Title fields in tools/groups/createmanual.php, and...