47153 matches found
iSCSI target user-space tools double free
Double free in tgt...
[SECURITY] [DSA 2209-1] tgt security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2209-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 02, 2011 http://www.debian.org/security/faq -...
xmlsec library unauthorized access
It's possible to access files via ds:Transform...
Novell File Reporter Agent buffer overflow
NFRAgent.exe TCP/3037 buffer overflow...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
IBM solidDB authentication bypass
solid.exe TCP/1315, TCP/1964, TCP/2315 authentication bypass...
HTB22911: XSS in Eleanor CMS
Vulnerability ID: HTB22911 Reference: http://www.htbridge.ch/advisory/xssineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by Vendor Risk level:...
Xymon monitor cross-site scripting vulnerabilities
Several cross-site scripting vulnerabilities have been identified in the Xymon systems- and network-monitoring tool available at http://sourceforge.net/projects/xymon/ All versions prior to 4.3.1 released April 3, 2011 are vulnerable. I would like to thank David Ferrest for notifying me of this...
HTB22912: Multiple SQL Injections in Eleanor CMS
Vulnerability ID: HTB22912 Reference: http://www.htbridge.ch/advisory/multiplesqlinjectionsineleanorcms.html Product: Eleanor CMS Vendor: Eleanor CMS http://eleanor-cms.ru/ Vulnerable Version: rc5 Vendor Notification: 22 March 2011 Vulnerability Type: SQL Injection Status: Fixed by Vendor Risk...
RealNetworks RealGames StubbyUtil.ProcessMgr.1 ActiveX Control (InstallerDlg.dll v2.6.0.445) Multiple Remote Commands Execution Vulnerabilities
RealNetworks RealGames StubbyUtil.ProcessMgr.1 ActiveX Control InstallerDlg.dll v2.6.0.445 Multiple Remote Commands Execution Vulnerabilities tested against Internet Explorer 9, Vista sp2 download url: http://www.gamehouse.com/ background: When choosing to play with theese online games ex. the ga...
HTB22914: Local File Inclusion in UseBB
Vulnerability ID: HTB22914 Reference: http://www.htbridge.ch/advisory/localfileinclusioninusebb.html Product: UseBB Vendor: UseBB http://www.usebb.net/ Vulnerable Version: 1.0.11 Vendor Notification: 22 March 2011 Vulnerability Type: Local File Inclusion Risk level: Medium Credit: High-Tech Bridg...
THOMSON Router XSS
Vendor: THOMSON Router Product Name: TG585 v7 Software Release: 7.4.4.7 Vulnerability type: XSS Risk rating: Medium Exploit http://ROUTERIP/cgi/b/ic/connect/?url=scriptalert1/script Credits Edgard Chammas 454447415244 [email protected]...
RealNetworks RealGames ActiveX code execution
Multiple unsage methods...
Multiple BSD systems IPSec IP Compression stack overflow
kernel stack overflow on packet parsing...
[security bulletin] HPSBUX02646 SSRT100396 rev.1 - HP-UX, Local Denial of Service (DoS)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02753287 Version: 1 HPSBUX02646 SSRT100396 rev.1 - HP-UX, Local Denial of Service DoS NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date:...
Hp-UX DoS
No description provided...
Movie Player v4.82 0Day Buffer overflow/DOS Exploit
Hello Team, I have attached a file MoviePlayerExploit.py which exploits the memory vulnerability in Movie Player v4.82 which can be used to perform a Denial of Service attack : and to cause a crash. To run this file, compile the MoviePlayerExploit.py using python and then you may open the generat...
BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload
BSD derived RFC3173 IPComp encapsulation will expand arbitrarily nested payload ------------------------------------------------------------------------------- Gruezi, this document describes CVE-2011-1547. RFC3173 ip payload compression, henceforth ipcomp, is a protocol intended to provide...
iDefense Security Advisory 03.31.10: RealNetworks Helix DNA Server RTSP Stack Buffer Overflow
iDefense Security Advisory 03.31.10 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 31, 2010 I. BACKGROUND Helix DNA Server is software that can play audio and video media in various formats and stream them over a network. It is intended as a largely free and open source digital media...
RealNetworks Helix DNA Server buffer overflow
Buffer overflow on RTSP processing...
Microsoft Windows shmedia.dll DoS
Division by zero on AVI preview creation...
HP Operations for UNIX crossite scripting
No description provided...
[security bulletin] HPSBMA02650 SSRT100429 rev.1 - HP Operations for UNIX, Remote Cross Site Scripting (XSS), Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02770049 Version: 1 HPSBMA02650 SSRT100429 rev.1 - HP Operations for UNIX, Remote Cross Site Scripting XSS, Unauthorized Access NOTICE: The information in this Security Bulletin should be acted...
Movie Player buffer overflow
Buffer overflow on AVI parsing...
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...
Microsoft Windows shmedia.dll Division By Zero, Explore.exe DOS exploit .
Title :Microsoft Windows shmedia.dll Division By Zero, Explore.exe DOS exploit . Version : Checked on XP SP All Versions Discovery : http://Garage4Hackers.com, http://www.fb1h2s.com Author : FB1H2S aka Rahul Sasi Garage4Hackers.com Twitter : @fb1h2s Bug Information: Class :Division By Zero Impact...
AR Web Content Manager (AWCM) Cross-Site scripting Vulnerability
AR Web Content Manager AWCM v2.2 Cross-Site scripting Vulnerability SecPod Technologies www.secpod.com Author: Antu Sanadi SecPod ID: 1012 21/03/2011 Issue Discovered 24/03/2011 Vendor Notified 24/03/2011 Vendor Responded 25/03/2011 Vendor Solution Class: Cross-Site Scripting Severity: Medium...
AoF, IAA, XML Injection и XSS уязвимости в MyBB
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Abuse of Functionality, Insufficient Anti-automation, XML Injection and Cross-Site Scripting уязвимостях в MyBB. Abuse of Functionality WASC-42: Через данный функционал можно выявлять логины в системе...
Уязвимости в MyBB
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и SQL DB Structure Extraction уязвимостях в MyBB. Уязвимости имеют место в скриптах search.php и private.php. XSS WASC-08: http://websecurity.com.ua/uploads/2011/MyBB20XSS.html...
6-year FreeBSD-SA-05:02.sendfile exploit
Hi, This is almost 0-day. In a sense. I wrote this for a pentesting company. I found it ethically OK to do since the FreeBSD advisory was already out for a couple of weeks. It turns out I was not alone to write an exploit for this bug, and to publish the exploit this year. Timeline: 2005/04/04 -...
FreeBSD sendfile() information leak
If file size it changed content of kernel memory can be disclosured...
HTB22906: XSS vulnerabilities in Collabtive
Vulnerability ID: HTB22906 Reference: http://www.htbridge.ch/advisory/xssvulnerabilitiesincollabtive.html Product: Collabtive Vendor: Open Dynamics http://collabtive.o-dyn.de/ Vulnerable Version: 0.6.5 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: XSS Risk...
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
"Simple PHP Newsletter" Remote Admin Password Change With install path
"Simple PHP Newsletter" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
"Simple PHP Newsletter" Remote Admin Password Change With install path
"Simple PHP Newsletter" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com downl...
OpenLDAP vulnerabilities
Authentication bypass, DoS...
DataDynamics Report Library CoreHandler XSS
Class Input Validation Error CVE Remote Yes Local No Published Mar 30 2011 11:00AM Credit Dionach Vulnerable Grapecity DataDynamics Report Library 1.6.1871.61 and earlier Grapecity's DataDynamics Report Library is prone to a cross-site scripting vulnerability because it fails to sufficiently...
HTB22931: XSS vulnerability in InTerra Blog Machine
Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachine.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011...
[SECURITY] [DSA 2206-1] New mahara packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 2206-1 [email protected] http://www.debian.org/security/ Martin Schulze March 29th, 2011 http://www.debian.org/security/faq -...
'Andy's PHP Knowledgebase' SQL Injection Vulnerability (CVE-2011-1546)
'Andy's PHP Knowledgebase' SQL Injection Vulnerability CVE-2011-1546 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in aviewusers.php allowing for SQL injection of the 's' query parameter. II. TESTED VERSION...
HTB22909: Path disclosure in Tine 2.0
Vulnerability ID: HTB22909 Reference: http://www.htbridge.ch/advisory/pathdisclosureintine20.html Product: Tine 2.0 Vendor: Metaways Infosystems GmbH http://www.tine20.org/ Vulnerable Version: Neele 2011-01-2 Vendor Notification: 17 March 2011 Vulnerability Type: Path disclosure Status: Fixed by...
Cisco Network Access Control Guest Server System Software Authentication Bypass
Unauthenticated access to protected network is possible...
ESA-2011-012: Security update for EMC NetWorker Module for Microsoft Applications
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-012: Security update for EMC NetWorker Module for Microsoft Applications. EMC Identifier: ESA-2011-012 CVE Identifier: CVE-2011-0647 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products: EMC NetWorker Module f...
XSS Vulnerability in Tracks 1.7.2
Information -------------------- Name : XSS vulnerability in Tracks Software : Tracks 1.7.2. Vendor Hompeage : http://getontracks.org/ Vulnerability Type : Cross-Site Scripting Severity : High Researcher : Mesut Timur mesut at mavitunasecurity dot com Advisory Reference : NS-11-003 Description...
[SECURITY] [DSA 2205-1] gdm3 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2205-1 [email protected] http://www.debian.org/security/ Florian Weimer March 28, 2011 http://www.debian.org/security/faq -...
Cisco Secure Access Control System privilege escalation
It's possible to reset any user's password...
HTB22907: Directory Traversal in Collabtive
Vulnerability ID: HTB22907 Reference: http://www.htbridge.ch/advisory/directorytraversalincollabtive.html Product: Collabtive Vendor: Open Dynamics http://collabtive.o-dyn.de/ Vulnerable Version: 0.6.5 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: Directory...
EMC Replication Manager code execution
Command execution via TCP/6542 service...
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path
"WESPA PHP Newsletter v3.0" Remote Admin Password Change With install path Author: alieye class : remote E-mail: [email protected] greetz: C.S.Eye Security Team members We Are: Alieye , Z0d14c , Bully13 , Stanly , Safety & All Iranian Hackers Site : www.gcmt.vcp.ir , blog : www.cseye.blogfa.com...
HTB22910: XSRF (CSRF) in Feng Office
Vulnerability ID: HTB22910 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinfengoffice.html Product: Feng Office Vendor: Secure Data SRL http://www.fengoffice.com/ Vulnerable Version: 1.7.3.3 and probably prior versions Vendor Notification: 17 March 2011 Vulnerability Type: CSRF Cross-Site...