PT-2005-4077 · Zeroblog · Zeroblog

Name of the Vulnerable Software and Affected Versions: Zeroblog versions 1.1f through 1.2a Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the threadID parameter in the thread.php file. Recommendations: For Zeroblog versio...

security flaw

Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread...

CVE-2005-3106

Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...

CVE-2005-3024

Multiple SQL injection vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 announcement parameter to announcement.php, the 2 threadforumid or 3 criteria parameters to thread.php, 4 userid parameter to user.php, the 5...

CVE-2005-3024

Multiple SQL injection vulnerabilities in vBulletin 3.0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 announcement parameter to announcement.php, the 2 threadforumid or 3 criteria parameters to thread.php, 4 userid parameter to user.php, the 5...

CVE-2002-1989

Resin 2.1.1 is affected by CVE-2002-1989. The vulnerability allows remote attackers to cause a denial of service by issuing multiple URL requests that include the DOS name “CON” and a registered file extension such as .jsp or .xtp, leading to thread and connection consumption. The available docum...

phpBB 2.0.15 (highlight) Database Authentication Details Exploit

Exploit for unknown platform in category web applications ================================================================ phpBB 2.0.15 highlight Database Authentication Details Exploit ================================================================ !/usr/bin/perl tested and working /str0ke...

Multiple hardware platforms hyper threading technology systems information leak

Unprivileged thread can read data from privileged thread memory from CPU cache memory...

Stream / Raped (Windows) - Denial of Service

/ Straped 1.0 author: Marco Del Percio 20/05/2005 Remember: this is a mulithreaded program! MSVC++ compile with /MT. Remember: This program requires raw socket support! You can't use it on Windows XP SP2 and if you've done MS05-019 update you'll have to re-enable raw socket support! If you still...

security flaw

fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service deadlock by forcing a core dump when the traced thread is in the TASKTRACED state...

ubbprintthread.txt

UBB Thread /ubbthreads/printthread.php SQL Injection Yes\No vulnerability Full Disclosure Bug discovered By: Axl Exploit By: HLL hllhll at gmail.com 1. Introduction There Is a flaw in printthread.php due to insufficient bound checking of the 'main' query parameter wich allows a malicues SQL to be...

CVE-2005-1743

CVE-2005-1743 affects BEA WebLogic Server/Express versions 8.1 (SP3) and 7.0 (SP5). The root cause: when a security provider throws an exception, WebLogic may use an incorrect thread identity and may fail to audit security exceptions. Implications noted: potential partial impact on confidentialit...

CVE-2005-1743

BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to use incorrect identity for the thread, or to fail to audit security exceptions...

CVE-2005-1743

BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to use incorrect identity for the thread, or to fail to audit security exceptions...

glibc, nptl, nscd security update

CentOS Errata and Security Advisory CESA-2005:256 Updated glibc packages that address several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The GNU libc packages known as glibc contain the standard C libraries used by...

MS Windows WINS Vulnerability and OS/SP Scanner

Exploit for unknown platform in category remote exploits =============================================== MS Windows WINS Vulnerability and OS/SP Scanner =============================================== / HAT-SQUAD WINS VULNERABILITY/OS SCANNER ------------------------------------...

UBB Thread printthread.php SQL Injection

UBB Thread /ubbthreads/printthread.php SQL Injection YesNo vulnerability Full Disclosure Bug discovered By: Axl Exploit By: HLL hllhll at gmail.com 1. Introduction There Is a flaw in printthread.php due to insufficient bound checking of the 'main' query parameter wich allows a malicues SQL to be...

php-fusion.txt

TheGreatOne2176, Reapercore I have a found an error in php-fusion 4.x where you can view any thread on the forum. In fusionforum/viewthread.php the $GET variables arent properly checked or queried making it possible to view all threads. The example I tested was...

php-fusion 4.x vuln

TheGreatOne2176, Reapercore I have a found an error in php-fusion 4.x where you can view any thread on the forum. In fusionforum/viewthread.php the $GET variables arent properly checked or queried making it possible to view all threads. The example I tested was...

Low: Red Hat Security Advisory: glibc security update

Updated glibc packages that address several bugs and implement some enhancements are now available. The GNU libc packages known as glibc contain the standard C libraries used by applications. This errata fixes several bugs in the GNU C Library. Fixes include in addition to enclosed Bugzilla...