GLSA-201111-09 : Perl Safe module: Arbitrary Perl code injection

The remote host is affected by the vulnerability described in GLSA-201111-09 Perl Safe module: Arbitrary Perl code injection Unsafe code evaluation prevents the Safe module from properly restricting the code of implicitly called methods on implicitly blessed objects. Impact : A remote attacker...

GLSA-201110-22 : PostgreSQL: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201110-22 PostgreSQL: Multiple vulnerabilities Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact : A remote authenticated attacker could send a...

HP (OpenView Storage) Data Protector Client 'EXEC_CMD' RCE Vulnerability

HP OpenView Storage Data Protector is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Belkin G Wireless Router F5D7234-4 v5 Exploit

Exploit for hardware platform in category web applications +-----------------------------------------+ | Belkin G Wireless Router Admin Exploit. | +-----------------------------------------+ Firmware Version : 5.00.12 Sep 10 2009 19:54:12 Boot Version : 1.18 Hardware : F5D7234-4 v5 01 Author :...

Tugux CMS 1.0_final - Multiple Vulnerabilities

Tugux CMS 1.0final - Multiple Vulnerabilities +----------------------------------------------+ | Tugux CMS 1.0final Multiple Vulnerabilities | +----------------------------------------------+ Vulnerable Web-App : Tugux CMS 1.0final Vulnerability : Multiple Vulnerabilities. Author : Aodrulez. Atul...

Tugux CMS 1.0_final - Multiple Vulnerabilities

+----------------------------------------------+ | Tugux CMS 1.0final Multiple Vulnerabilities | +----------------------------------------------+ Vulnerable Web-App : Tugux CMS 1.0final Vulnerability : Multiple Vulnerabilities. Author : Aodrulez. Atul Alex Cherian Email : [email protected]...

Log1 CMS File Modification / Download

+---------------------------------------+ | Log1 CMS 2.0 Multiple Vulnerabilities | +---------------------------------------+ Vulnerable Web-App : Log1 CMS 2.0 Vulnerability : Multiple Vulnerabilities. Author : Aodrulez. Atul Alex Cherian Email : [email protected] Google-Dork : "POWERED BY LOG...

Log1 CMS 2.0 - Multiple Vulnerabilities

Log1 CMS 2.0 - Multiple Vulnerabilities +---------------------------------------+ | Log1 CMS 2.0 Multiple Vulnerabilities | +---------------------------------------+ Vulnerable Web-App : Log1 CMS 2.0 Vulnerability : Multiple Vulnerabilities. Author : Aodrulez. Atul Alex Cherian Email :...

CVE-2011-0923

The client in HP Data Protector does not properly validate EXECCMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."...

Terminal Server Client .rdp Denial of Service

Exploit for linux platform in category dos / poc !/usr/bin/perl Exploit Title: Terminal Server Client .rdp Dos Date: 2011-02-01 Author: D3V!L FUCKER Software Link: sudo apt-get install tsclient ^^ Version: All Version Tested on: ubuntu 10.10 press to open then chois the T-T34M.rdp file then conne...

[DCA-0006] Baby ASP Web Server DoS

DCA-0006 Software - Baby ASP Server Vendor Product Description - This program was build as an alternative for Microsoft's IIS. The main goal was to design a simple web server with support for ASP. Setting up Baby ASP Web Server is very easy: copy the executable to a directory of your choice, set...

Ubuntu Update for PostgreSQL vulnerabilities USN-942-1

Ubuntu Update for Linux kernel vulnerabilities USN-942-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9421.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for PostgreSQL vulnerabilities USN-942-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

Debian DSA-2051-1 : postgresql-8.3 - several vulnerabilities

Several local vulnerabilities have been discovered in PostgreSQL, an object-relational SQL database. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-1169 Tim Bunce discovered that the implementation of the procedural language PL/Perl insufficiently...

USN-942-1: PostgreSQL vulnerabilities

It was discovered that the Safe.pm module as used by PostgreSQL did not properly restrict PL/perl procedures. If PostgreSQL was configured to use Perl stored procedures, a remote authenticated attacker could exploit this to execute arbitrary Perl code. CVE-2010-1169 It was discovered that...

CVE-2010-1169

PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrar...

Code injection

PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrar...

Vulnerability in core server (CVE-2010-1169)

A vulnerability in Safe.pm and PL/Perl can allow an authenticated user to run arbitrary Perl code on the database server if PL/Perl is installed and enabled...

CVE-2010-1169

PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrar...

MusicBox v 3.3 SQL Injection Exploit

Exploit for php platform in category web applications ==================================== MusicBox v 3.3 SQL Injection Exploit ==================================== !/usr/bin/perl use LWP::Simple; print "\n"; print "\n"; print " MusicBox v 3.3 SQL INJECTION EXPLOIT \n"; print " Author: Ctacok...

Lalim Compact Player (.mp3) Local Denial of Service

Exploit for unknown platform in category dos / poc =================================================== Lalim Compact Player .mp3 Local Denial of Service =================================================== Exploit Title: Lalim Compact Player .mp3 Local Denial of Service DoS Download :...