Blue Eye CMS <= 1.0.0 - Remote Cookie SQL Injection Vulnerability

No description provided by source. BlueEye CMS = 1.0.0 Remote Cookie SQL Injection Vulnerability found by ka0x ka0x01alt+64gmail.com Download: http://kent.dl.sourceforge.net/sourceforge/blueeyecms/blueeyecms-100preRC.rar need magicquotesgpc = Off - Vuln code: 10: if !empty$COOKIEBlueEyeCMSlogin /...

YaSoft Switch Off 2.3 swnet.dll Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9340/info A vulnerability has been identified in the YaSoft Switch Off software package when handling message requests. The buffer overrun condition exists in the 'swnet.dll' module of the software due to insufficient...

Novell GroupWise <= 8.0 Malformed RCPT command Off-by-one Exploit

No description provided by source. !usr/bin/perl -w QUICK AND DIRTY EXPLOIT Off-by-one error in the SMTP daemon in GroupWise Internet Agent GWIA in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a...

Flatnuke <= 2.7.1 (level) Remote Privilege Escalation Exploit

No description provided by source. !/usr/bin/env perl Flatnuke = 2.7.1 level Privilege Escalation 0-day Exploit Description ----------- Flatnuke contains one flaw that may allow a user to become administrator. The issue is due to 'sections/noneLogin/section.php' script not properly sanitizing use...

File Store PRO 3.2 - Multiple Blind SQL Injection Vulnerabilities

No description provided by source. | File Store PRO 3.2 Blind SQL Injection | || Download from: http://upoint.info/cgi/demo/fs/filestore.zip - Need admin rights: /confirm.php: code ifisset$GETfolder && $GETfolder!= $folder=$GETfolder; else exitBad Request; ifisset$GETid && $GETid!= $id=$GETid; el...

OpenDock Easy Gallery <= 1.4 (doc_directory) File Include Vulnerabilities

No description provided by source. ECHOADV52$2006 ----------------------------------------------------------------------------------------------- ECHOADV52$2006OpenDock Easy Gallery =1.4 docdirectory Multiple Remote File Inclusion Vulnerability...

Wyse Machine Remote Power off (DOS) without any privilege

No description provided by source. require 'msf/core' class Metasploit3 Msf::Auxiliary Rank = ExcellentRanking include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Dos def initializeinfo = superupdateinfoinfo, 'Name' = 'Wyse Machine Remote Power off DOS', 'Description' = %q This module...

novaboard 1.0.0 - Multiple Vulnerabilities

No description provided by source. =============================================================================================== Found : brainpillow Dork : Powered by NovaBoard v1.0.0 Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail : [email protected]...

openSUSE Security Update : opie (openSUSE-SU-2011:0848-1)

This update fixes off-by-one errors in opiesu CVE-2011-2489 and missing setuid return value checks in opielogin CVE-2011-2490. This update also removes the setuid bit from opiesu program. If you rely on the setuid bit on opiesu, add the following line to /etc/permissions.local : /usr/bin/opiesu...

openSUSE Security Update : chromium (openSUSE-SU-2012:0492-1)

Security update for Chromium and V8 to 18.0.1025.142. Following bugs are listed in the Chrome changelog : - $500 109574 Medium CVE-2011-3058: Bad interaction possibly leading to XSS in EUC-JP. Credit to Masato Kinugawa. - $500 112317 Medium CVE-2011-3059: Out-of-bounds read in SVG text handling...

openSUSE Security Update : opie (openSUSE-SU-2011:0848-1)

This update fixes off-by-one errors in opiesu CVE-2011-2489 and missing setuid return value checks in opielogin CVE-2011-2490. This update also removes the setuid bit from opiesu program. If you rely on the setuid bit on opiesu, add the following line to /etc/permissions.local : /usr/bin/opiesu...

openSUSE Security Update : file (openSUSE-SU-2014:0435-1)

The file magic scanning tool/library was updated to fix a off-by-one error in the last security fixes. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-255. The text description o...

openSUSE Security Update : libmodplug (openSUSE-SU-2011:0943-1)

This update of libmodplug0 fixes the following issues : 1 An integer overflow error exists within the 'CSoundFile::ReadWav' function src/loadwav.cpp when processing certain WAV files. This can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted W...

openSUSE Security Update : clamav (openSUSE-SU-2011:0940-1)

New clamav packages fix an off-by-one vulnerability which could lead to a DoS condition. CVE-2011-2721 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

openSUSE Security Update : xen (openSUSE-SU-2014:0483-1)

Xen was updated to fix various bugs and security issues : Update to Xen version 4.2.4 c/s 26280. - bnc861256 - CVE-2014-1950: xen: XSA-88: use-after-free in xccpupoolgetinfo under memory pressure. fix included with update - bnc863297: xend/pvscsi: recognize also SCSI CDROM devices - bnc858496 -...

openSUSE Security Update : clamav (openSUSE-SU-2011:0940-1)

New clamav packages fix an off-by-one vulnerability which could lead to a DoS condition. CVE-2011-2721 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART

Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...

QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART

Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...

QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART

Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...

QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART

Off-by-one error in the cmdsmart function in the smart self test in hw/ide/core.c in QEMU before 2.0 allows local users to have unspecified impact via a SMART EXECUTE OFFLINE command that triggers a buffer underflow and memory corruption...