7331 matches found
Directory traversal
maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...
CVE-2014-1520
maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...
CVE-2014-1520
maintenserviceinstaller.exe in the Maintenance Service Installer in Mozilla Firefox before 29.0 and Firefox ESR 24.x before 24.5 on Windows allows local users to gain privileges by placing a Trojan horse DLL file into a temporary directory at an unspecified point in the update process...
CVE-2014-1520
CVE-2014-1520 affects Mozilla Firefox on Windows prior to version 29.0 and Firefox ESR prior to 24.5. The issue is a local privilege escalation by placing a Trojan horse DLL into a temporary directory during the update process of the Mozilla installer, enabling the attacker to gain elevated privi...
BlackArch Linux v2014.04.21 - Lightweight expansion to Arch Linux for pentesters and security researchers
BlackArch Linux is an Arch-based GNU/Linux distribution for pentesters and security researchers. The BlackArch package repository is compatible with existing Arch installs. Changelog v2014.04.21 added new system packages: mplayer, abs, ack, bc, bridge-utils, darkhttpd, flashplugin, inotify-tools,...
Design/Logic Flaw
Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...
CVE-2014-0359
Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a guiinputtest.pl params parameter to servlet/Installer...
Hidden File Finder v3.0 - Free Tool to Find and Unhide/Remove all the Hidden Files
Hidden File Finder is the free software to quickly scan and discover all the Hidden files on your Windows system. It performs swift multi threaded scan of all the folders parallely and quickly uncovers all the hidden files. It automatically detects the Hidden Executable Files EXE, DLL, COM etc an...
CVE-2011-5273
CVE-2011-5273 : Domain Technologie Control (DTC) before 0.34.1 has a directory traversal flaw in the shared/package-installer component. An authenticated remote user can craft a problematic pkg parameter in a do_install action to dtc/ to trigger arbitrary PHP code execution. Root cause is imprope...
[Thunderbird Password Decryptor] Thunderbird Password Recovery Software
Thunderbird Password Decryptor is the FREE software to instantly recover the stored Mail account password by Thunderbird. Thunderbird is a free, open-source, cross-platform application for managing email and news feeds. Like other Email applications, it also stores the mail account passwords on t...
Apache Tomcat Manager - Application Upload (Authenticated) Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 /Apache.Coyote|Tomcat/ CSRFVAR = 'CSRFNONCE=' include Msf::Exploit::Remote::HttpClient include Msf::Exploit::EXE def initializeinfo =...
[Password Sniffer Spy v2.0] Tool to Sniff and Capture HTTP/FTP/POP3/SMTP/IMAP Passwords
Password Sniffer Spy is the all-in-one Password Sniffing Tool to capture Email, Web and FTP login passwords passing through the network. It automatically detects the login packets on network for various protocols and instantly decodes the passwords. Here is the list of supported protocols, HTTP...
[Social Password Decryptor v4.0] All-in-one Social Network Password Recovery Software
Social Password Decryptor is the FREE software to instantly recover Passwords for popular Social Networks such as Facebook, Twitter, Google Plus etc. It can automatically discover and recover all the social passwords stored by web browsers & messengers including Firefox, Chrome, IE, GTalk and mor...
Mac OS X Persistent Payload Installer
This module provides a persistent boot payload by creating a launch item, which can be a LaunchAgent or a LaunchDaemon. LaunchAgents run with user level permissions and are triggered upon login by a plist entry in /Library/LaunchAgents. LaunchDaemons run with elevated privilleges, and are launche...
APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 OS X Mountain Lion v10.8.5 and Security Update 2013-004 is now available and addresses the following: Apache Available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lio...
Apple Fixes 30 Bugs With Mountain Lion Update
Apple pushed a handful of patches late last week and updated its OS X Mountain Lion to 10.8.5, improving “stability, compatibility and security” issues and fixing 30 different vulnerabilities in the operating system. The update fixes multiple vulnerabilities in Apache that could have led to a...
CVE-2013-1027
Installer in Apple Mac OS X before 10.8.5 provides an option to continue a package's installation after encountering a revoked certificate, which might allow user-assisted remote attackers to execute arbitrary code via a crafted package...
Code injection
Installer in Apple Mac OS X before 10.8.5 provides an option to continue a package's installation after encountering a revoked certificate, which might allow user-assisted remote attackers to execute arbitrary code via a crafted package...
CVE-2013-1027
CVE-2013-1027 affects Apple Mac OS X Installer prior to 10.8.5. The installer allowed a user to continue after a revoked certificate, which could enable a user‑assisted remote attacker to execute arbitrary code via a crafted package. The issue was addressed by Apple in Mountain Lion 10.8.5 / Secu...
Mac OS X 10.8.x < 10.8.5 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.8.x that is prior to 10.8.5. The newer version contains multiple security-related fixes for the following components : - Apache - Bind - Certificate Trust Policy - CoreGraphics - ImageIO - Installer - IPSec - Kernel - Mobile Device Management -...