Zoom Player - '.avi' Divide-by-Zero Denial of Service

source: https://www.securityfocus.com/bid/54249/info Zoom Player is prone to a remote denial-of-service vulnerability. Successful exploits may allow attackers to crash the affected application, resulting in denial-of-service conditions. Zoom Player 4.51 is vulnerable; other versions may also be...

Zoom Player 4.51 Standard - ".avi" Denial Of Service

Exploit for windows platform in category dos / poc !/usr/bin/perl 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS,...

Cross site scripting

Cross-site scripting XSS vulnerability in the hostingtasklogtable function in modules/hosting/task/hostingtask.module in the Hostmaster Aegir module 6.x-1.x before 6.x-1.9 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a Drush log...

CVE-2012-2708

Cross-site scripting XSS vulnerability in the hostingtasklogtable function in modules/hosting/task/hostingtask.module in the Hostmaster Aegir module 6.x-1.x before 6.x-1.9 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a Drush log...

agora project 2.13.1 - Multiple Vulnerabilities

agora project 2.13.1 - Multiple Vulnerabilities Agora Project 2.13.1 Multiple Vulnerabilities Release Date Bug. 15-06-2012 Vendor Notification Date. Never Product. Agora project Affected versions. 2.13.1 and less Type. No Commercial Attack Vector. XSS, SQLi, BSQLi Solution Status. unpublished CVE...

CVE-2011-2494

kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of another user's password...

Windows Escalate Task Scheduler XML Privilege Escalation

This module exploits the Task Scheduler 2.0 XML 0day exploited by Stuxnet. When processing task files, the Windows Task Scheduler only uses a CRC32 checksum to validate that the file has not been tampered with. Also, In a default configuration, normal users can read and write the task files that...

Agora-Project 2.12.11 Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: agora-project2.12.1112-2011 Remote Shell Upload Google Dork: n0 N0obs Date: 10/06/2012 Exploit Author: Misa3l Vendor Homepage: http://sourceforge.net/projects/agora-project/ Software Link:...

[SECURITY] Fedora 15 Update: rt3-3.8.12-1.fc15

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitt ed by a community of users...

Design/Logic Flaw

The mstop function in fs/proc/taskmmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service OOPS via vectors that trigger an mstart error...

Joomla com_jomestate SQLi vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla comjomestate SQLi vulnerability Google Dork: inurl:comjomestate Date: 10/April/2012 Author: R00T3R - 4L E-Mail: email protected Software Link: http://extensions.joomla.org/extensions/vertical-markets/real-estate/10480...

CVE-2012-1219

Multiple cross-site scripting XSS vulnerabilities in freelancerKit 2.35 allow remote attackers to inject arbitrary web script or HTML via the 1 ticket parameter to tickets.php, 2 title parameter to notes.php, or 3 task parameter to todo.php. NOTE: some of these details are obtained from third par...

Comment field on GH cards do not respect the comment visibility.

If you add the Comment field on any Issue Views on GH the field shows the latest comment but it doesn't inherit the comment visibility from Jira. This misbehaviour happens on Planning board and Task board with any GH views Summaries, Cards and Lists. Steps to Reproduce: Add the comment field to a...

Comment field on GH cards do not respect the comment visibility.

If you add the Comment field on any Issue Views on GH the field shows the latest comment but it doesn't inherit the comment visibility from Jira. This misbehaviour happens on Planning board and Task board with any GH views Summaries, Cards and Lists. Steps to Reproduce: Add the comment field to a...

Comment field on GH cards do not respect the comment visibility.

If you add the Comment field on any Issue Views on GH the field shows the latest comment but it doesn't inherit the comment visibility from Jira. This misbehaviour happens on Planning board and Task board with any GH views Summaries, Cards and Lists. Steps to Reproduce: Add the comment field to a...

Fedora Update for python-celery FEDORA-2011-16549

Check for the Version of python-celery OpenVAS Vulnerability Test Fedora Update for python-celery FEDORA-2011-16549 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

[SECURITY] Fedora 16 Update: python-celery-2.2.8-1.fc16

An open source asynchronous task queue/job queue based on distributed message passing. It is focused on real-time operation, but supports scheduling as well. The execution units, called tasks, are executed concurrently on one or more worker nodes using multiprocessing, Eventlet or gevent. Tasks c...

[SECURITY] Fedora 15 Update: python-celery-2.2.8-1.fc15

An open source asynchronous task queue/job queue based on distributed message passing. It is focused on real-time operation, but supports scheduling as well. The execution units, called tasks, are executed concurrently on one or more worker nodes using multiprocessing, Eventlet or gevent. Tasks c...

Dell KACE K2000 Appliance database administration account allows arbitrary command execution

Overview The Dell KACE K2000 System Deployment Appliance contains a vulnerability that could allow a remote attacker to execute arbitrary commands on an affected device. Description The Dell KACE K2000 Deployment Appliance is an integrated systems provisioning product for large-scale operating...

Trojan Makes Child-Porn Accusation, Locks Computer, Requests $17

A new ransomware scam locks down its victims’ computers, attempting to convince them that child pornography has been found therein, and informs users that their machine will be unlocked only after paying a $17 500 ruble fine, according to a BitDefender analysis reported by MalwareCity. The trojan...