Oracle Linux 7 : qemu-kvm (ELSA-2014-0927)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-0927 advisory. - Resolves: bz1095782 CVE-2014-0182 qemu-kvm: qemu: virtio: out-of-bounds buffer write on state load with invalid configlen rhel-7.0.z -...

PwnPi - A Pen Test Drop Box distro for the Raspberry Pi

PwnPi is a Linux-based penetration testing dropbox distribution for the Raspberry Pi. It currently has 200+ network security tools pre-installed to aid the penetration tester. It is built a stripped down version of the Debian Wheezy image from the Raspberry Pi foundation's website and uses Openbo...

NoVirusThanks File Governor - Unlock locked files and folders

NoVirusThanks File Governor is an advanced program which allows for files and folders within the system to be unlocked so that normal file I/O operations can be completed when normally they would not be able to be due to operating system restrictions for files currently in use. Once a file or...

Symantec pcAnywhere 8.0.1/8.0.2/9.0/9.2 Port Scan DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1150/info Performing a TCP SYN or TCP connect scan on a host running Symantec pcAnywhere will cause the program to crash. Restarting the application is required in order to regain normal functionality. nmap -sS target...

Symantec Norton AntiVirus 2002 Nested File Manual Scan Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10164/info A vulnerability has been reported in Symantec Norton AntiVirus 2002 that may potentially cause deeply nested files with specific names to bypass manual scanning. This could permit malicious executable content t...

Webfroot Shoutbox 2.32 Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7746/info Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of the 'conf' URI parameter. An attacker can exploit this...

Rising Online Virus Scanner 22.0.0.5 - ActiveX Control DoS (Stack overflow)

No description provided by source. Exploit Title: Rising Online Virus Scanner ActiveX Control DoS Stack overflow Author: wirebonder Software Link: http://www.rising-global.com/products/online-scanner-intro.html Tested on: Windows XP sp3 ProgID: RavOLCtlLib.RavOnline ClassID:...

Trend Micro InterScan VirusWall 3.5/3.6 Content-Length Scan Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses and malicious code. A vulnerability h...

Apache Tomcat Remote Exploit (PUT Request) and Account Scanner

No description provided by source. ISOWAREZ RELEASE By KINGCOPE - YEAR 2012 -== Apache Tomcat Remote Exploit and Account Scanner ==- the modified pnscan scanner utility scans a range of IPs to find open apache tomcat servers by trying the following login access combinations: tomcat:tomcat...

OpenBSD <= 4.5 (IP datagrams) Remote DoS Vulnerability

No description provided by source. / / / / / / / / / / / / / // / / / / / / / / / // / / / // // / / / / / // ///// // // // Helith - 0815 -------------------------------------------------------------------------------- Author : Rembrandt Date : 2009-04-09 Affected Software: OpenBSD Kernel Affect...

ManageEngine OpUtils 6.0 - Stored XSS

No description provided by source. Author: loneferret of Offensive Security Product: ManageEngine OpUtils Version: 6 Vendor Site: http://www.manageengine.com Software Download: http://www.manageengine.com/products/oputils/download.html Software Description:...

Enterasys SSR8000 SmartSwitch Port Scan Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5703/info The SSR8000 is a SmartSwitch distributed and maintained by Enterasys. It has been discovered that SSR8000 switches react unpredictably when portscanned. When these switches are scanned using specific types of TC...

MultiCMS Local File Inclusion Vulnerbility

No description provided by source. Source: http://packetstormsecurity.org/files/view/97987/multicms-lfi.txt =============================wwwdotWhiteponnydotcom============================= Date: 29/01/2011 Author: R3VANBASTARD Exploit Title: MultiCMS File Inclusion Vulnerbility Vendor:...

SPiD 1.3.1 Scan_Lang_Insert.PHP Local File Include Vulnerability

No description provided by source...

OpenWFE 1.4.x Remote Cross-Site Scripting And Connection Proxy Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11514/info OpenWFE is affected by a cross-site scripting and connection proxy vulnerability. These issues are due to a failure of the application to properly sanitize user-supplied input. An attacker may leverage the...

Zone Labs ZoneAlarm 2.1 Personal Firewall Port 67 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1137/info Certain versions of Zone Labs personal Firewall have a vulnerability which allows malicious users to port scan the firewall without being detected. In particular if the port scan originates from source port 67 o...

cPanel 5.0 Guestbook.cgi Remote Command Execution Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/6882/info A remote command execution vulnerability has been discovered in the cPanel CGI Application. This issue occurs due to insufficient sanitization of externally supplied data to the 'guestbook.cgi' script. An attack...

Google Chrome 1.0.154.36 - FTP Client PASV Port Scan Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33112/info Google Chrome is prone to an information-disclosure vulnerability because it fails to adequately validate server-issued instructions while in PASV passive mode. Attackers can exploit this issue to port-scan...

ELOG <= 2.5.6 - Remote Shell Exploit

No description provided by source. / Worked on latest version for me http://midas.psi.ch/elog/download/tar/elog-latest.tar.gz elog-latest.tar.gz 26-Jan-2005 21:36 519K Default port 8080. str0ke / / Hi there, someone has brought to u a gift. ELOG Remote Shell Exploit = 2.5.6 Also for future Versio...

Epson EventManager <= 2.50 Denial of Service

No description provided by source. Luigi Auriemma Application: Epson EventManager http://www.epson.com Versions: = 2.50 Platforms: Windows Bug: Denial of Service Exploitation: remote Date: 14 Mar 2012 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The...