Internet Explorer "Aurora" Memory Corruption

No description provided by source. $Id: ms10002aurora.rb 9787 2010-07-12 02:51:50Z egypt $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

PHPBBMod 1.3.3 PHPInfo Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5942/info phpBBmod ships with a sample script phpinfo.php that may disclosure sensitive information to remote attackers. When this script is accessed, sensitive information about the underlying environment will be reveale...

Emumail EMU Webmail 5.2.7 emumail.fcgi Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/9861/info Multiple vulnerabilities have been identified in the application that may allow an attacker to carry out cross-site scripting attacks and disclose the path to the victim's home directory. The issues are reported...

Joomla 3.2.1 - SQL Injection Vulnerability

No description provided by source. Exploit Title: Joomla 3.2.1 sql injection Date: 05/02/2014 Exploit Author: [email protected] Vendor Homepage: http://www.joomla.org/ Software Link: http://joomlacode.org/gf/download/frsrelease/19007/134333/Joomla3.2.1-Stable-FullPackage.zip Version: 3.2.1 default...

NCSA httpd-campas 1.2 sample script Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1975/info Campas is a sample CGI script shipped with some older versions of NCSA HTTPd, an obsolete web server package. The versions that included the script could not be determined as the server is no longer maintained,...

IrfanView 4.27 - JP2000.dll plugin DoS

No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.18 published: 2010.12.27 tested on: Windows XP SP3 Home Edition App: IrfanView 4.27 DoS, Integer division by zero in module JPEG2000.dll iview32.exe MD5: 58150C1AC5B86C1A6B5E15FE1C3A870D...

Digital Scribe 1.4.1 - Multiple SQL Injection Vulnerabilities

No description provided by source. Digital Scribe 1.4.1 Multiple SQL Injection Vulnerabilities Name Digital Scribe Vendor http://www.digital-scribe.org Versions Affected 1.4.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Da...

IBM DB2 Universal Database for Windows NT 6.1/7.1 SQL DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2067/info IBM DB2 Universal Database is a distributed database application. It may be possible for a database user to crash the server through a bug in handling certain queries. If a certain query is executed that contain...

Microsoft IIS 4.0,Microsoft Site Server 3.0 Showcode ASP Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/167/info A sample Active Server Page ASP script installed by default on Microsoft's Internet Information Server IIS 4.0 gives remote users access to view any file on the same volume as the web server that is readable by t...

OmniHTTPd 1.1/2.0.x/2.4 test.shtml Sample Application XSS

No description provided by source. source: http://www.securityfocus.com/bid/5568/info Cross site scripting vulnerabilities have been reported in multiple sample scripts including with OmniHTTPD. In particular, test.shtml and test.php contain errors. This type of vulnerability may be used to steal...

OmniHTTPd 1.1/2.0.x/2.4 test.php Sample Application XSS

No description provided by source. source: http://www.securityfocus.com/bid/5568/info Cross site scripting vulnerabilities have been reported in multiple sample scripts including with OmniHTTPD. In particular, test.shtml and test.php contain errors. This type of vulnerability may be used to steal...

Threat Outbreak Alert RuleID10289: Email Messages Distributing Malicious Software on June 10, 2014

Medium Alert ID: 34583 First Published: 2014 June 11 13:02 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID10289 may contain the following files: Name | Siz...

CVE-2014-1542

Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate...

Buffer overflow

Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate...

UBUNTU-CVE-2014-1542

Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate...

CVE-2014-1542

Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate...

Threat Outbreak Alert: Fake Product Sample Request Email Messages on May 1, 2014

Medium Alert ID: 34025 First Published: 2014 May 2 15:49 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product sample request for the recipient. The text in the email message attempts to convince the recipient to ope...

Threat Outbreak Alert: Fake Product Sample Request Email Messages on April 22, 2014

Medium Alert ID: 33888 First Published: 2014 April 22 14:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product request for the recipient. The text in the email message attempts to convince the recipient to open th...

Office modular exploit sample analysis-vulnerability warning-the black bar safety net

1 Overview Online disclosure of a suspected CVE-2 0 1 4-1 7 6 1 RTF sample, hanhai source analysis found that the sample is not a CVE-2 0 1 4-1 7 6 1, but in a RTF sample includes both the two vulnerabilities, respectively, for the CVE-2 0 1 2-0 1 5 8 and CVE-2 0 1 3-3 9 0 6, compare the special...

Office”combination”formula exploits the sample analysis-vulnerability warning-the black bar safety net

by hcl, nine8 of code audit labs of vulnhunt.com 1 Overview Online disclosure of a suspected CVE-2 0 1 4-1 7 6 1 RTF sample, hanhai source analysis found that the sample is not a CVE-2 0 1 4-1 7 6 1, but in a RTF sample includes both the two vulnerabilities, respectively, for the CVE-2 0 1 2-0 1 ...