239 matches found
WordPress Over Easy Theme - Remote Code Execution
There are a bug in this theme, that allows any website visitor to run and see the output of any shortcode. This gives unauthenticated visitors the same power to execute code on the server as regular publishers have. Solution Update the theme...
WordPress Optimize Theme - Remote Code Execution
There are a bug in this theme, that allows any website visitor to run and see the output of any shortcode. This gives unauthenticated visitors the same power to execute code on the server as regular publishers have. Solution Update the theme...
Scientific Linux Security Update : openssl on SL6.x i386/x86_64
A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSLOPNETSCAPEREUSECIPHERCHANGEBUG option, possibly forcing the clien...
FreeBSD UIPC socket stack overflow-vulnerability warning-the black bar safety net
!/ bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley a, 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details: http://www.securityfocus.com/archive/1/519864/30/0/threaded this P...
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7766)
Server code for ECDH could have crashed if it received a specially crafted handshake message CVE-2011-3210. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
FreeBSD UIPC socket heap overflow proof-of-concept
Exploit for freebsd platform in category dos / poc !/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details:...
CVE-2011-1018
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server...
[USN-1029-1] OpenSSL vulnerabilities
=========================================================== Ubuntu Security Notice USN-1029-1 December 08, 2010 openssl vulnerabilities CVE-2008-7270, CVE-2010-4180 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS...
Angel LMS 7.3 Cross Site Scripting
I have discovered a security exploit in Angel LMS 7.3 "Colleges and universities worldwide choose the ANGEL LMS to deliver powerful online teaching and learning experiences. ANGEL provides the comprehensive LMS features institutions need in a simple interface that promotes adoption. A recognized...
DSA-1583-1 gnome-peercast - several vulnerabilities
Bulletin has no description...
DB2 < 8.1 FixPak 16 Multiple Vulnerabilities (deprecated)
Binary data 4358.prm...
IBM DB2 < 8.1 Fix Pack 16 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 running on the remote host is affected by one or more of the following issues : - A local user may be able to gain root privileges using the 'db2pd' tool. IZ03546 - The 'b2dart' tool executes a TPUT command, which effectively allows users to r...
USN-411-1: libsoup vulnerability
Roland Lezuo and Josselin Mouette discovered that the HTTP server code in libsoup did not correctly verify request headers. Remote attackers could crash applications using libsoup by sending a crafted HTTP request, resulting in a denial of service...
asp mA kill free tools-asp universal solvent-vulnerability warning-the black bar safety net
7 days ago I asked netxfly. put this tool issued to,the results are not satisfactory IHey Hey5 Section 1., We have good busy which asp universal solvent----Oh,suddenly came up with a such a name for my little tool,feel also able to image. This is a demo version The first hit ad.: Bugs asp univers...
rsh security update
CentOS Errata and Security Advisory CESA-2005:074 Updated rsh packages that fix various bugs and a theoretical security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team The rsh package contains a set of programs that allow use...
Sumus 0.2.2 - HTTPd Remote Buffer Overflow
Sumus 0.2.2 - HTTPd Remote Buffer Overflow / sumusv0.2.2: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xsumus.c -o xsumus syntax: ./xsumus -pscrln -h host sumus homepage/url: http://sumus.sourceforge.net Mus is a Spanish cards game played by 4...
New OpenSSL remote vulnerability (issue date 2003/10/02)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ====================================================================== Security advisory 20031002 - ---------------------------------------------------------------------- Product: openssl Issue date: 2003/10/02 Last updated: 2003/10/02...
Vignette Story Server sensitive information disclosure (a040703-1)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Vignette Story Server sensitive information disclosure Release Date: 04/07/2003 Application: Vignette Story Server v4.1, 6 Platform: Windows / Unix Severity: A remote user can extract sessi...
Microsoft Index Server contains buffer overflow
Overview A buffer overflow exists in Microsoft Index Server 2.0, which may allow remote attackers to execute code with administrarive privileges. Description Microsoft Index Server 2.0 is a tool for building an index of a web site to permit efficient searches. An intruder who can authenticate to...