489 matches found
VirtueMart 1.1.2 SQL Injection
require 'msf/core' class Metasploit3 'VirtueMart %q This module exploits VirtueMart 'Janek Vind "waraxe" ', 'License' = MSFLICENSE, 'Version' = '1.0', 'References' = 'BID', '33480', 'URL', 'http://www.waraxe.us/advisory-71.html', 'URL', 'http://secunia.com/advisories/33671/' , 'DisclosureDate' =...
VirtueMart 1.1.2 - SQL Injection (Metasploit)
require 'msf/core' class Metasploit3 'VirtueMart %q This module exploits VirtueMart 'Janek Vind "waraxe" ', 'License' = MSFLICENSE, 'Version' = '1.0', 'References' = 'BID', '33480', 'URL', 'http://www.waraxe.us/advisory-71.html', 'URL', 'http://secunia.com/advisories/33671/' , 'DisclosureDate' =...
S21SEC-038-en.txt
S21Sec Advisory - Title: Alcatel Omnivista 4760 Cross-Site Scripting ID: S21SEC-038-en Severity: Medium - History: 10.Jun.2007 Vulnerability discovered 20.Jun.2007 Vendor contacted 19.Oct.2007 Advisory released Authors: Juan de la Fuente Costa [email protected] Pablo Seijo Cajaraville...
security flaw
The 1 Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier; and the 2 Passcard Manager in Netscape 8.1.2 and possibly other versions, do not properly verify that an ACTION URL in a FORM element containing a password INPUT element matches the web site for which the user stored a...
Apple Mac OSX 10.4.8 - UserNotificationCenter Local Privilege Escalation
Apple Mac OSX 10.4.8 - UserNotificationCenter Local Privilege Escalation !/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi INPUTMANAGERURL =...
CVE-2004-1025
CVE-2004-1025 concerns multiple heap-based buffer overflows in imlib 1.9.14 and earlier, a library used by gkrellm and several window managers. The vulnerability allows remote attackers to crash the application and, per the description, to execute arbitrary code via crafted image files, effective...
CVE-2004-1026
Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...
[SECURITY] New versions of tcsh fixes buffer overflows
We have found that the tcsh shell had a problem with very long pathnames. When a very long path was encountered tcsh failed to check the result of getcwd in all places, which could be exploited. We recommend you upgrade your tcsh package immediately. wget url will fetch the file for you dpkg -i...
[SECURITY] New versions of netstd fixes root exploit in rpc.mountd
Description ----------- The Program rpc.mountd is a mount daemon that handles NFS mounts. The version as shipped with current distributions of Linux contains a buffer overflow. Impact ------ The overflow can be used as part of an attack to gain root access on the machine acting NFS server. We...