Team SHATTER Security Advisory: IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory IBM DB2 UDB Arbitrary file overwrite in SYSPROC.NNSTAT procedure April 17th 2008 Risk Level: High Affected versions: All versions of IBM DB2 Database Server. Remotely exploitable: Yes Authentication to Database Server is...

DSECRG-08-015.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-015 Application: Dokeos E-Learning System Versions Affected: 1.8.4 Vendor URL: http://dokeos.com Bugs: Multiple SQL Injections,Multiple Blind SQL Injections,Multiple XSS, etc. Exploits: YES Reported: 25.01.2008 Vendor response: 28.01.2008...

[DSECRG-08-008] Textpattern 4.0.5 Multiple Security Vulnerabilities

Digital Security Research Group DSecRG Advisory DSECRG-08-008 Application: Txp CMS Versions Affected: 4.0.5 Vendor URL: http://www.textpattern.com Bugs: DOS, multiple XSS, etc. Exploits: YES Reported: 11.01.2008 Vendor response: 14.01.2008 Patch Released: 03.02.2008 Date of Public Advisory:...

Team SHATTER Advisory: IBM DB2 Buffer overflow in sysproc.auth_list_groups_for_authid

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 AppSecInc Team SHATTER Security Advisory IBM DB2 Buffer overflow in sysproc.authlistgroupsforauthid August 31st 2007 Risk Level: High Affected versions: DB2 9.1 Fixpack 2 Enterprise server edition Remote exploitable: Yes Credits: This vulnerability wa...

EVA-Web 1.1 < 2.2 - 'index.php3' Remote File Inclusion

/ \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ Program Title EVA-Web 1.1=2.2 Remote File Inclusion Note A patch was released some time ago..but there was never an exploit released.. Script Download...

kiwicat-exec.txt

Path traversal security vulnerability in Kiwi CatTools TFTP up to 3.2.8 server can lead to information disclosure and remote code execution Risk: High DISCUSSION Kiwi CatTools TFTP server doesn't properly verify filename in PUT and GET request which can be used to download/upload any file from/to...

[KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities

KAPDA New advisory Vulnerable product : PacPoll = 4.0 Vendor: http://www.pacosdrivers.com/asp/poll/poll.asp Vulnerability: Admin Logon bypass , SQLInjection Date : -------------------- Found : 2006/10/10 Vendor Contacted : N/A Release Date : 2006/10/25 Vulnerabilities: -------------------- Admin...

CYBSEC-SAPBC2.txt

The following advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSECSecurityAdvisoryArbitraryFileReadorDeleteinSAPBC.pdf CYBSEC S.A. www.cybsec.com Advisory Name: Arbitrary File Read/Delete in SAP BC Business Connector Vulnerability Class: Improper Input...

Interspire TrackPoint NX XSS Vulnerability

I.Vulnerability Interspire TrackPoint NX Cross Site Scripting Vulnerability II.Vendor Interspire www.interspire.com III.Affected Systems - Interspire TrackPoint NX 0.1 IV.About TrackPoint is a web based sales tracking software. V.Description An attacker is able to inject HTML and client-side scri...

[Hat-Squad] Remote Heap Corruption Vulnerability in Interaction SIP Proxy

Hat-Squad Advisory: Remote Heap Corruption Vulnerability in Interaction SIP Proxy Product: Interaction SIP Proxy Vendor: Interactive Intelligence Inc. http://www.inin.com Systems Affected: Vonexus Enterprise Interaction Center Interaction SipProxy 3.0.010 Release Date: 12/21/2005 Vendor Status:...

mailEnableDoS.txt

Synopsis: MailEnable Imap Remote DOS. Product: MailEnable Pro MailEnable Enterprise http://www.mailenable.com Version: Confirmed on MailEnable Pro 1.7 and MailEnable Enterprise 1.1 Author: Josh Zlatin-Amishav Date: November 24, 2005 Background: MailEnable's mail server software provides a powerfu...

Redhat Stronghold File System Disclosure

Redhat Stronghold Secure Server File System Disclosure Vulnerability The problem: In Redhat Stronghold from versions 2.3 up to 3.0 a flaw exists that allows a remote attacker to disclose sensitive system files including the httpd.conf file, if a restricted access to the server status report is no...

[SEC-1 Advisory] Collaboration Data Objects Buffer Overflow Vulnerability

SEC-1 LTD. www.sec-1.com Security Advisory Advisory Name: Collaboration Data Objects Buffer Overflow Vulnerability Application: Multiple Applications that implement CDO Platform: Windows 2000 All versions Windows XP All versions inc sp2 Windows Server 2003 All versions Exchange 2000 Server Servic...

Denial of service vulnerability in X-Chat for Windows from Silverex.org

Critical Security research group found a denial of service vulnerability in X-Chat for Windows from Silverex.org. Vulnerable versions: 2.4.5-1 and prior. Vulnerable code: define MAXLINE 300 for x = 2; wordx0 != '0'; ++x strncatinfo, wordx, MAXLINE; strncatinfo, " ", MAXLINE; Proof of concept: Pla...

BEA05-V0100.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 BEA WebLogic Administration Console error page cross-site scripting vulnerability AppSecInc Team SHATTER Security Advisory BEA05-V0100 http://www.appsecinc.com/resources/alerts/general/BEA-001.html May 27, 2005 Affected versions: BEA WebLogic Server 7...

Golden FTP Server Pro 2.52 - Remote Buffer Overflow (2)

/ Golden FTP Server Pro remote stack BOF exploit author : c0d3r "kaveh razavi" [email protected] [email protected] risk : highly critical vender status : no patch released , all targets are vuln package : golden-ftp-server-pro 2.5.0.0 and prior advisory : http://secunia.com/advisories/15156/...

Golden FTP Server Pro 2.52 Remote Buffer Overflow Exploit (2nd)

No description provided by source. / Golden FTP Server Pro remote stack BOF exploit author : c0d3r "kaveh razavi" [email protected] [email protected] risk : highly critical vender status : no patch released , all targets are vuln package : golden-ftp-server-pro 2.5.0.0 and prior advisory :...

CA License Server (GETCONFIG) Remote Buffer Overflow Exploit (c)

Exploit for unknown platform in category remote exploits ================================================================ CA License Server GETCONFIG Remote Buffer Overflow Exploit c ================================================================ / Computer-Associates, License Service Stack...

hostingControl.txt

-= Security Advisory =- Advisory Information ------------------------- Software Package : Hosting Controller Vendor Homepage : http://www.hostingcontroller.com Platforms : Windows based servers Vulnerable Versions: All version Tested on: v.6.1 Hotfix 1.4 Vendor Contacted : 12/5/2004 Release Date:...

MS04-031: Vulnerability NetDDE Could Allow Code Execution (841533) (uncredentialed check)

The remote version of Windows is affected by a vulnerability in Network Dynamic Data Exchange NetDDE. An attacker may exploit this flaw to execute arbitrary code on the remote host with the SYSTEM privileges. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid15572;...