IPhone TreasonSMS & WifiSMS - Multiple Web Vulnerabilities

Document Title: =============== IPhone TreasonSMS & WifiSMS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=154 Release Date: ============= 2012-04-22 Vulnerability Laboratory ID VL-ID: ====================================...

Design/Logic Flaw

The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service assertion failure and panic via an unspecified series of packets...

IBM AIX TCP栈拒绝服务漏洞

Bugtraq ID: 51864 CVE ID：CVE-2012-0194 IBM AIX是一款商业性质的操作系统 当在IBM AIX网络接口上启用TCP "Large Send Offload"选项时才能在一个错误，AIX允许远程攻击者对系统进行拒绝服务攻击。通过发送特殊构建的报文序列，攻击者可以利用此漏洞触发内核崩溃 0 IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息...

PHPList 2.10.9 Cross Site Request Forgery / Cross Site Scripting

+-------------------------------------------------------------------------+ Exploit Title : phplist - version 2.10.9 CSRF/XSS Vulnerability version : 2.10.9 Author : Cyber-Crystal Date : n/a Dork : inurl:"powered by phplist - version 2.10.9" Software Link : http://www.phplist.com/...

phpList 2.10.9 - Cross-Site Request Forgery / Cross-Site Scripting

+-------------------------------------------------------------------------+ Exploit Title : phplist - version 2.10.9 CSRF/XSS Vulnerability version : 2.10.9 Author : Cyber-Crystal Date : n/a Dork : inurl:"powered by phplist - version 2.10.9" Software Link : http://www.phplist.com/...

Spreecommerce 0.60.1 Arbitrary Command Execution

This module exploits an arbitrary command execution vulnerability in the Spreecommerce search. Unvalidated input is called via the Ruby send method allowing command execution. This module requires Metasploit: https://metasploit.com/download Current source:...

Spreecommerce 0.60.1 Arbitrary Command Execution

Exploit for linux platform in category web applications $Id: spreesearchexec.rb 13831 2011-10-07 17:45:15Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

Remote Command Execution in Spree search functionality

Spree versions prior to 0.60.2 contain a remote command execution vulnerability in the search functionality. The application fails to properly sanitize input passed via the search:send parameter, which is dynamically invoked using Ruby’s send method. This allows attackers to execute arbitrary she...

Command injection

usb-creator-helper in usb-creator before 0.2.28.3 does not enforce intended PolicyKit restrictions, which allows local users to perform arbitrary unmount operations via the UnmountFile method in a dbus-send command...

CVE-2011-1828

usb-creator-helper in usb-creator before 0.2.28.3 does not enforce intended PolicyKit restrictions, which allows local users to perform arbitrary unmount operations via the UnmountFile method in a dbus-send command...

MS11-035: Vulnerability in WINS Could Allow Remote Code Execution (2524426)

The version of WINS Windows Internet Name Service installed on the remote Windows host is affected by a memory corruption vulnerability due to a logic error when handling a socket send exception. By sending specially crafted packets to the affected WINS system, a remote attacker can potentially...

Microsoft WINS Service Failed Response Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows Internet Name Service WINS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the wins.exe service distributed with Microsoft Windows...

CVE-2011-1828

usb-creator-helper in usb-creator before 0.2.28.3 does not enforce intended PolicyKit restrictions, which allows local users to perform arbitrary unmount operations via the UnmountFile method in a dbus-send command...

Spreecommerce < 0.50.0 Arbitrary Command Execution

Exploit for unix platform in category remote exploits $Id: spreesearchlogicexec.rb 12397 2011-04-21 19:38:42Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informatio...

Spreecommerce &lt; 0.50.0 - Arbitrary Command Execution (Metasploit)

$Id: spreesearchlogicexec.rb 12397 2011-04-21 19:38:42Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Remote Command Execution in Spree search functionality

Spree versions prior to 0.60.2 contain a remote command execution vulnerability in the search functionality. The application fails to properly sanitize input passed via the search:send parameter, which is dynamically invoked using Ruby’s send method. This allows attackers to execute arbitrary she...

SquirrelMail vulnerable to cross-site request forgery

Overview SquirrelMail contains a cross-site request forgery vulnerability. SquirrelMail from SquirrelMail Project is an open source webmail web-based email. SquirrelMail contains an issue in processing of sending a message or setting changes, which may result in cross-site request forgery. Daiki...

kernel: tipc: heap overflow in tipc_msg_build()

Multiple integer signedness errors in the TIPC implementation in the Linux kernel before 2.6.36.2 allow local users to gain privileges via a crafted sendmsg call that triggers a heap-based buffer overflow, related to the tipcmsgbuild function in net/tipc/msg.c and the verifyiovec function in...

DSA-2138-1 wordpress - SQL injection

Bulletin has no description...

DEBIAN-CVE-2010-4257

SQL injection vulnerability in the dotrackbacks function in wp-includes/comment.php in WordPress before 3.0.2 allows remote authenticated users to execute arbitrary SQL commands via the Send Trackbacks field...