DSquare Exploit Pack: D2SEC_MOODLE_REXEC

Name| d2secmoodlerexec ---|--- CVE| CVE-2008-1502 Exploit Pack| D2ExploitPack Description| d2secmoodlerexec Notes|...

DSquare Exploit Pack: D2SEC_CALISTCTRL

Name| d2seccalistctrl ---|--- CVE| CVE-2008-1472 Exploit Pack| D2ExploitPack Description| CA BrightStor ListCtrl ActiveX Stack Overflow Notes|...

Immunity Canvas: FUZZYLIME_INCLUDE

Name| fuzzylimeinclude ---|--- CVE| CVE-2008-1405 Exploit Pack| CANVAS Description| fuzzylime cms = 3.01 Remote File include Notes| CVE Name: CVE-2008-1405 VENDOR: FuzzyLime Repeatability: Infinite References: http://www.securityfocus.com/bid/28838 CVE Url: https://vulners.com/cve/CVE-2008-1405...

DSquare Exploit Pack: D2SEC_CISCOIPM

Name| d2secciscoipm ---|--- CVE| CVE-2008-1157 Exploit Pack| D2ExploitPack Description| Cisco CiscoWorks Internetwork Performance Monitor Remote Command Execution Vulnerability Notes|...

DSquare Exploit Pack: D2SEC_CISCOUCP

Name| d2secciscoucp ---|--- CVE| CVE-2008-0533 Exploit Pack| D2ExploitPack Description| Cisco User-Changeable Password UCP Stack Overflow Notes|...

Microsoft Security Bulletin MS08-014 - Critical Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029)

Microsoft Security Bulletin MS08-014 - Critical Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution 949029 Published: March 11, 2008 Version: 1.0 General Information Executive Summary This security update resolves several privately reported and publicly reported vulnerabilities i...

Input validation

Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted data validation records, aka "Excel Data Validation Record Vulnerability."...

Security Update for the 2007 Microsoft Office System (KB947801)

A security vulnerability exists in the Compatibility Pack for the 2007 Office System that could allow arbitrary code to run when you open a maliciously modified file. This update resolves that vulnerability...

DSquare Exploit Pack: D2SEC_JAVAWS

Name| d2secjavaws ---|--- CVE| CVE-2008-1190 Exploit Pack| D2ExploitPack Description| Sun Java Web Start Untrusted Application Vulnerability Notes|...

Vulnerability in Invision Power Board

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости причём persistent XSS в Invision Power Board. Из-за отсутствия защиты от исполнения JavaScript кода из flash, при включенной поддержке флеша в сообщениях, атакующий может внедрить ссылку на специальный флеш-файл в...

Immunity Canvas: PODCASTGEN_INCLUDE

Name| podcastgeninclude ---|--- CVE| CVE-2008-1124 Exploit Pack| CANVAS Description| Podcast Generator = 1.0 BETA 2 remote file include Notes| CVE Name: CVE-2008-1124 VENDOR: podcastgen Repeatability: Infinite References: http://www.securityfocus.com/bid/28038 CVE Url:...

DDIVRT-2008-10 PacketTrap TFTP Directory Traversal Vulnerability

Title ----- DDIVRT-2008-10 PacketTrap PT360 Tool Suite TFTP Arbitrary File Access Severity -------- High Discovered By ------------- Digital Defense, Inc. Vulnerability Research Team Credit: princeofnigeria and r@b13$ Date Discovered --------------- 1/29/2008 Vulnerability Description...

Immunity Canvas: PHPQLADMIN_INCLUDE

Name| phpqladmininclude ---|--- CVE| CVE-2008-1067 Exploit Pack| CANVAS Description| phpQLAdmin 2.2.7 Remote File Include Notes| CVE Name: CVE-2008-1067 VENDOR: phpQLAdmin.com Repeatability: Infinite References: http://packetstormsecurity.org/filedesc/phpqladmin-rfi.txt.html CVE Url:...

Immunity Canvas: WPSNIPLETS_RFI

Name| wpsnipletsrfi ---|--- CVE| CVE-2008-1059 Exploit Pack| CANVAS Description| WordPress Plugin Sniplets 1.1.2 Remote File Include Notes| CVE Name: CVE-2008-1059 VENDOR: WordPress Repeatability: Infinite CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-1059 References: None CVSS: 7.5...

Immunity Canvas: WPSNIPLETS_EXEC

Name| wpsnipletsexec ---|--- CVE| CVE-2008-1060 Exploit Pack| CANVAS Description| Wordpress Plugin Sniplets 1.1.2 Remote Code Execution exploict Notes| CVE Name: CVE-2008-1060 VENDOR: WordPress Repeatability: Infinite References: http://seclists.org/bugtraq/2008/Feb/0402.html CVE Url:...

Immunity Canvas: QUINSONNAS_INCLUDE

Name| quinsonnasinclude ---|--- CVE| CVE-2008-1046 Exploit Pack| CANVAS Description| Quinsonnas Mail Checker 1.55 Remote File Inclusion Notes| CVE Name: CVE-2008-1046 VENDOR: Quinsonnas Repeatability: Infinite References: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1046 CVE Url:...

DSquare Exploit Pack: D2SEC_IPRINT

Name| d2seciprint ---|--- CVE| CVE-2008-0935 Exploit Pack| D2ExploitPack Description| Novell iPrint Client ienipp.ocx ActiveX Stack Overflow Notes|...

CVE-2008-0870

BEA WebLogic Portal 10.0 and 9.2 through Maintenance Pack 2, under certain circumstances, can redirect a user from the https:// URI for the Portal Administration Console to an http URI, which allows remote attackers to sniff the session...

Immunity Canvas: LOOKSTRIKE_INCLUDE

Name| lookstrikeinclude ---|--- CVE| CVE-2008-0803 Exploit Pack| CANVAS Description| LookStrike Lan Manager v0.9 Remote File Include Notes| CVE Name: CVE-2008-0803 VENDOR: LookStrike Repeatability: Infinite References: http://securityreason.com/exploitalert/3398 CVE Url:...

Immunity Canvas: NWSPOOL_C

Name| nwspoolc ---|--- CVE| CVE-2008-0639 Exploit Pack| CANVAS Description| Novell Netware Client for Windows Notes| CVE Name: CVE-2008-0639 VENDOR: Novell Notes: Use the setthreadtoken module to revert back to LocalSystem once the exploitation is successful Platforms Tested: References:...