7424 matches found
[SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2010 [email protected] http://www.debian.org/security/ Dann Frazier March 10, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-2009-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 09, 2010 http://www.debian.org/security/faq -...
Lenovo Hotkey Driver 5.33 - Local Privilege Escalation
Author: Chilik Tamir - Amdocs Power Security Testing Group Website: http://invalid-packet.blogspot.com/2010/03/full-disclosure-security-vulnerability.html Subject: Security vulnerability in Lenovo Hotkey Driver and Access Connections version =v5.33 Impact: A privilege escalation attack can be use...
DSA-2007-1 cups - arbitrary code execution
Bulletin has no description...
win32/xp sp2 English (calc.exe) 37 bytes
Exploit for win32 platform in category shellcode ========================================================= Windows Xp Home Edition SP2 English calc.exe 37 bytes ========================================================= / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem...
Windows Xp Home Edition SP2 English ( calc.exe ) 37 bytes
No description provided by source. / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem mofeed Aka Hakxer penetration testing labs www.pentestlabs.com / char evil = "\xeb\x16\x5b\x31\xc0\x50\x53\xbb\x8d\x15\x86\x7c\xff\xd3\x31\xc0"...
Windows Xp Home Edition SP2 English calc.exe 37 bytes
Windows Xp Home Edition SP2 English calc.exe 37 bytes. Shellcode exploit for win32 platform / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem mofeed Aka Hakxer penetration testing labs www.pentestlabs.com / char evil =...
blogbus.com(blog coach)XSS cross site vulnerability-vulnerability warning-the black bar safety net
Vulnerability testing process: 1. Apply for an account 2. Into the background--blog--template--homepage layout settings-the content of the articleedit 3. In the dialog box the Edit link in the Add at the Cross-Station code or into the article publishing Switch the editor to HTML mode 4. Test code...
RSA 2010: Top 15 Conference Sessions You Shouldn't Miss
The RSA security conference is known for being a vendor-heavy, corporate-speak shindig that lacks quality content. I disagree. I spent some time perusing the conference agenda this year and found 15 must-attend sessions: 1. The Seven Most Dangerous New Attack Techniques and What Is Coming Next...
[DSECRG-09-039] Symantec Antivirus 10.0 ActiveX - buffer Overflow.
Digital Security Research Group DSecRG Advisory DSECRG-09-039 Application: Symantec Antivirus Client Proxy Versions Affected: Version 10 Vendor URL: http://symantec.com Bugs: Buffer Overflow Exploits: POC Reported: 04.05.2009 Vendor response: 07.05.2009 Date of Public Advisory: 17.02.2010...
Worldweaver DX Studio Player shell.execute() Command Execution
This module exploits a command execution vulnerability within the DX Studio Player from Worldweaver for versions 3.0.29 and earlier. The player is a browser plugin for IE ActiveX and Firefox dll. When an unsuspecting user visits a web page referring to a specially crafted .dxstudio document, an...
Debian: Security Advisory (DSA-1986-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
TVUPlayer 2.4.9beta1 Active-X Insecure Method
DSECRG-09-065 TuvNetworks TVUPlayer ActiveX component - Insecure method TVUPlayer contains ActiveX component PlayerOcx which contains insecure method that can overwrite any unhidden file in the system. Application: TVUPlayer Versions Affected: Tested on v2.4.9beta1build1797 Vendor URL:...
RealAdmin - detail.php Blind SQL Injection
RealAdmin - detail.php Blind SQL Injection RealAdmin detail.php Blind Sql Injection Vulnerability ======================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : RealAdmin .:. Download...
myBusinessAdmin Blind SQL Injection
myBusinessAdmin content.php Blind Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : myBusinessAdmin .:. Download Script:...
DeepBurner pro 1.9.0.228 - '.dbr' file Buffer Overflow (Universal)
/ Deepburner pro 1.9.0.228 dbr file buffer overflow exploituniversal This is buffer: header 253 bytes + junk+ next seh + seh addr + tail 957 bytes dbr/dbi file Date: 29.01.2010 Dicovery Credits: fl0 fl0w Exploit Credits : fl0 fl0w ?Download latest vuln vs from: http://www.deepburner.com/?r=downlo...
DSA-1989-1 fuse - denial of service
Bulletin has no description...
http-methods NSE Script
Finds out what options are supported by an HTTP server by sending an OPTIONS request. Lists potentially risky methods. It tests those methods not mentioned in the OPTIONS headers individually and sees if they are implemented. Any output other than 501/405 suggests that the method is if not in the...
mobile9 local file inclusion vulnerability-vulnerability warning-the black bar safety net
Because he is the base64 encoding of the manual testing is very troublesome just wrote a small tool,master drifting import urllib2,sys import httplib import base64,time if lensys. argv = 2: print "=" 3 0 print "mobile9.com local exploit by cnb|rd Qq:4 4 1 3 0 3 2 2 8" print...
DSA-1980-1 ircd-hybrid ircd-ratbox - arbitrary code execution
Bulletin has no description...