DSA-1089-1 freeradius - several vulnerabilities

Bulletin has no description...

Squirrelmail local file inclusion

Squirrelmail local file inclusion bug in functions/plugin.php . Tested on the latest 1.4.x version. No authentication needed. if isset$plugins && isarray$plugins foreach $plugins as $name useplugin$name; ... function useplugin $name if fileexistsSMPATH . "plugins/$name/setup.php" includeonceSMPAT...

phpListPro 2.0.1 - 'Language' Remote Code Execution

!/usr/bin/perl Title: phpListPro = 2.0.1 Remote Command Execution Exploit URL: http://www.smartisoft.com/ Info: - arbitrary local inclusion - need magicquotesgpc=off use IO::Socket; use LWP::Simple; ripped from rgod @apache= "/var/log/httpd/accesslog%00", "/var/log/httpd/errorlog%00",...

FreeBSD : apache -- Certificate Revocation List (CRL) off-by-one vulnerability (e936d612-253f-11da-bc01-000e0c2e438a)

Marc Stern reports an off-by-one vulnerability in within modssl. The vulnerability lies in modssl's Certificate Revocation List CRL. If Apache is configured to use a CRL this could allow an attacker to crash a child process causing a Denial of Service. %NASLMINLEVEL 70300 C Tenable Network...

ChipmunkBoard Multiple Attack vectors

ChipmunkBoard Multiple Attack vectors Discovered by: Nomenumbra Date: 6/4/2006 impact:high privilege escalation,possible defacement It is possible to insert the following javascript in the BBcode or supply it as your avatar url: javascript:alert27xss27; Also ChipmunkBoard is prone to SQL-injectio...

security flaw

Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors...

CVE-2006-1932

Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors...

CVE-2006-1932

Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors...

CVE-2006-1932

CVE-2006-1932 (and related CVEs 1933–1940) affect Ethereal up to version 0.10.14, via multiple dissectors and the OID printing routine, causing off-by-one errors, infinite loops, buffer overruns, crashes or aborts. Public advisories (Debian DSA-1049-1, RHSA-2006:0420, Gentoo GLSA 200604-17, OpenV...

CVE-2006-1932

Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors...

PCPIN Chat <= 5.0.4 (login/language) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ================================================================== PCPIN Chat works with magicquotesgpc = Off\r\n"; echo "dork: "powered by PCPIN.com"\r\n\r\n"; if $argc "" OR...

phpWebSite <= 0.10.2 (hub_dir) Remote Commands Execution Exploit

Exploit for unknown platform in category web applications ================================================================ phpWebSite arbitrary local inclusion, works with magicquotesgpc = Off\r\n"; echo "by rgod, mail: email protected\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; if...

ChangeLog-2.6.16.3

commit e2c78fb27dd13ab8c778a9689affe95c92030a32 Author: Greg Kroah-Hartman [email protected] Date: Mon Apr 10 22:27:44 2006 -0700 Linux 2.6.16.3 commit 5494bd6a500cc7c5a502279eabfbdacccd4b89d1 Author: David Howells [email protected] Date: Mon Apr 10 17:01:40 2006 +0000 PATCH Keys: Fix oops when...

dnGuestbook 2.0 - SQL Injection

/ | | | | | SECURITY ADVISORY | | | | | /¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯\ advisory: dnGuestbook "dnGuestbook by design-nation.de Version" - 331 msn - "dnGuestbook by design-nation.de Version" - 249 conditions: php.ini - magicquotesgpc = Off greets: all security guys and coders ove...

phpmychat_015dev_xpl

!/usr/bin/php -q -d shortopentag=on works with magicquotesgpc=Off\r\n\r\n"; echo "dork: intext:"2000-2001 The phpHeaven Team" -sourceforge\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host path cmd OPTIONS\r\n"; echo "host: target server ip/hostname\r\n"; echo "path: path to PHPMyChat\r\n";...

phpMyChat 0.15.0dev - SYS enter Remote Code Execution

phpMyChat 0.15.0dev - SYS enter Remote Code Execution !/usr/bin/php -q -d shortopentag=on works with magicquotesgpc=Off\r\n\r\n"; echo "dork: intext:"2000-2001 The phpHeaven Team" -sourceforge\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host path cmd OPTIONS\r\n"; echo "host: target server...

security flaw

Off-by-one error in the sqlerror function in sqlunixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service crash and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single...

ofsatr 2.6 search for vulnerabilities simple analysis-vulnerability warning-the black bar safety net

Information source: cool-off heaven Article author: lanker See online have a similar tool, but the analysis of the articles but did not find, listen to small black say hackers Handbook, unfortunately even without the magazine, so you capture and then look at the code, generally analysis a bit. Th...

CVE-2006-1150

Buffer overflow in Tenes Empanadas Graciela TEG 0.11.1, automatically appends an underscore to the end of duplicate nicknames, which allows remote attackers to cause a denial of service application crash by creating multiple users with long, identical nicknames, which triggers an off-by-one error...

CVE-2006-1150

Buffer overflow in Tenes Empanadas Graciela TEG 0.11.1, automatically appends an underscore to the end of duplicate nicknames, which allows remote attackers to cause a denial of service application crash by creating multiple users with long, identical nicknames, which triggers an off-by-one error...