31 matches found
[SECURITY] Fedora 22 Update: jenkins-1.609.3-4.fc22
Jenkins is an award-winning application that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Among those things, current Jenkins focuses on the following two jobs: - building/testing software projects continuously. In a nutshell, Jenkins provides an...
Multi Purpose Fuzzer: zzuf
Multi Purpose Fuzzer zzuf is a transparent application input fuzzer. Its purpose is to find bugs in applications by corrupting their user-contributed data which more than often comes from untrusted sources on the Internet. It works by intercepting file and network operations and changing random...
[Windbgshark] Windbg extension for VM traffic manipulation and analysis
This project includes an extension for the windbg debugger as well as a driver code, which allow you to manipulate the virtual machine network traffic and to integrate the wireshark protocol analyzer with the windbg commands. The motivation of this work came from the intention to find a handy...
Winlog Lite SCADA HMI system - Overwrite (SEH)
Winlog Lite SCADA HMI system - Overwrite SEH Vuln Title: Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability Author: FaryadR a.k.a Ciph3r tested on : winXp sp3 and Winlog Lite 2.06.17 Version Twitter : https://twitter.com/faryadR Mail : [email protected] Website : http://0c0c0c0c.com...
Universal Fuzzer by Codenomicon !
Codenomicon is a Finland based Information Security company. Recently it has released a universal fuzzer, a fuzz testing solution that combines heuristics and multiple fuzzers with a graphical user interface, automated test executions and reporting features. Fuzzing has been popular between hacke...
SiteEngine CMS 5.1.0 file upload vulnerability-vulnerability warning-the black bar safety net
Website engineSiteEngine,name: Boca website, the engine management system, The Beijing Boca vanguard Software Development Co., Ltd. in 2 0 0 2-year independent research and development, with intellectual property rights of a marketing type website construction management class software. At the sa...
[Full-disclosure] HP Mercury Quality Center Any SQL execution
Vendor: HP Product: Mercury Quality Center Version: 9.0 build 9.1.0.4352 Vendor Informed: No HP Mercury Quality Center is test management product for companys to do software testing and quality insurance. HP Mercury Quality Center has additional guest command on server which allows any user who...
TestDirector (TD) for Mercury Quality Center SPIDERLib.Loader ActiveX Control (Spider90.ocx) ProgColor Property Overflow (2)
The remote host is running Mercury Quality Center, a web-based solution for automatic software testing. The version of Quality Center installed on the remote host hosts an ActiveX control affected by a buffer overflow vulnerability and will serve up a copy of that control if a connecting client...
Opera 7 vulnerabilities
We've done some basic security tests, in cooperation with Tom Gilder, on the new Opera 7 beta release and found two major security vulnerabilities. These vulnerabilities are quite obvious and likely to be discovered by malicious users. Combined, they allow full read access to a victim's file syst...
Problems with various windows FTP servers
Hi, I am just writing a small set of perl scripts, to test server implementations of different protocols agains common problems i.e. Buffer overflow and format strings.. . The first script is against FTP servers, and just stupidly sends stuff to a server, verifies if the server crashes and if it...
VS 2005 - VS - VSTT (Team Test)
...