what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 63

Files Date: 2006-06-11

Hardened-PHP Project Security Advisory 2006-04.119

Posted Jun 11, 2006

Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net

Hardened-PHP Project Security Advisory - DokuWiki comes with an AJAX spellchecking service that can be called by every visiting client without the need of authorization. Unfortunately, the spellchecking service used the /e modifier of preg_replace() to handle links that are embedded in the text to translate in an unsafe way, allowing for arbitrary code execution.

tags | advisory, arbitrary, php, code execution

SHA-256 | 36f2eef55480c038e6f244e40684af192918fc3124d276f94581c4096cc9cb92

Download | Favorite | View

HP Security Bulletin 2006-11.57

Posted Jun 11, 2006

Authored by Hewlett Packard | Site hp.com

HPSBMA02121 SSRT061157 rev.2 - HP OpenView Storage Data Protector Remote Arbitrary Command Execution

tags | advisory, remote, arbitrary

SHA-256 | dec2421b118bcbcd01329a30b05ac6413555f005eb6647edb85d3a5290964584

Download | Favorite | View

HP Security Bulletin 2005-10.58

Posted Jun 11, 2006

Authored by Hewlett Packard | Site hp.com

HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service (DoS)

tags | advisory, remote, denial of service, shell

systems | hpux

SHA-256 | 6f3d42b062cc06430c353a883246b5e241f12412cab442ad6dfbff8b0c140477

Download | Favorite | View

Core Security Technologies Advisory 2006.0330

Posted Jun 11, 2006

Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies - Corelabs Advisory: CORE-2006-0330 - Asterisk PBX truncated video miniframe vulnerability

tags | advisory

SHA-256 | 68387be4a55b8d2e35790910943697fa879ed82f77f6725e10ab2b5421773005

Download | Favorite | View

Core Security Technologies Advisory 2006.0327

Posted Jun 11, 2006

Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies - Corelabs Advisory CORE-2006-0327: IAXclient is an open source library that implements the IAX2 VoIP protocol used by the Asterisk IP PBX and several VoIP software phones. Two vulnerabilities have been found in the library that may grant attackers remote execution of arbitrary code on systems using software packages that rely on it to implement the IAX2 protocol support.

tags | advisory, remote, arbitrary, vulnerability, protocol

SHA-256 | 7ba3b346dc7517aff33efbe4dd099cc6f8cbc6b2d7ccdf6c04785dfa56992eef

Download | Favorite | View

rPSA-2006-0099-1.txt

Posted Jun 11, 2006

Site issues.rpath.com

rPath Security Advisory: 2006-0099-1 - openldap

tags | advisory

SHA-256 | 9d09b818308aeca8a5c37ba8a6612810f2862b7e33ecde4323935f3d5460484f

Download | Favorite | View

rPSA-2006-0098-1.txt

Posted Jun 11, 2006

Site issues.rpath.com

rPath Security Advisory: 2006-0098-1 - gdm

tags | advisory

SHA-256 | 8fef2c2920b40ab9ca6851cb7dc0d48e7c77d8b20050a7836cf6e9625c9b1413

Download | Favorite | View

rPSA-2006-0096-1.txt

Posted Jun 11, 2006

Site issues.rpath.com

rPath Security Advisory: 2006-0096-1 - spamassassin

tags | advisory

SHA-256 | 8584f08ad4d12a526d48dcb732cebf12ecb5a6b2d5fc7c2cd2ec6134f62d99d0

Download | Favorite | View

Webserver4D.txt

Posted Jun 11, 2006

Authored by Federico Fazzi

Web server 4D 3.6.0 remote DOS exploit.

tags | exploit, remote, web

SHA-256 | 9ecb021967a204a4e0c6a30ce25bba730abc3141dc7ffad2d9d627831ae2f3b7

Download | Favorite | View

MyServer-0.5.txt

Posted Jun 11, 2006

Authored by Federico Fazzi

MyServer 0.5 denial of service exploit.

tags | exploit, denial of service

SHA-256 | c5eff9bd4d626f2c87231b61b8aa13dcaccb0941e2392a5a2cd80a30c7397ca7

Download | Favorite | View

cmpro-1.1.txt

Posted Jun 11, 2006

Authored by Florian Strankowski | Site sx02.coresec.de

Clan Manager Pro 1.1 and prior remote file inclusion exploit.

tags | exploit, remote, file inclusion

SHA-256 | 33a4a11d03588e954bd7f1728e66ad72cc8284ac0936425f2882698d0d9f14bc

Download | Favorite | View

FLSA-2006-190884.txt

Posted Jun 11, 2006

Site fedoralegacy.org

Fedora Legacy Update Advisory: FLSA:190884 - Updated squirrelmail package fixes security issues.

tags | advisory

systems | linux, fedora

SHA-256 | ad9bdc6fac6d6604d850286db5fc0e5f4f4d12d654dd15c972aacd0ed0836ea2

Download | Favorite | View

FLSA-2006-190777.txt

Posted Jun 11, 2006

Site fedoralegacy.org

Fedora Legacy Update Advisory - FLSA:190777: Updated X.org packages fix security issue

tags | advisory

systems | linux, fedora

SHA-256 | 0b177de6a9939bbd9ca1d458c6ffcb40410c4361894fe7a31e6f56db7e658db5

Download | Favorite | View

FLSA-2006-189137-2.txt

Posted Jun 11, 2006

Site fedoralegacy.org

Fedora Legacy Update Advisory - FLSA:189137-2: Updated firefox package fixes security issues

tags | advisory

systems | linux, fedora

SHA-256 | 1189511be1c0e21641f364b95652d17f5914444802fc8e1456be26d57672b02c

Download | Favorite | View

FLSA-2006-190941.txt

Posted Jun 11, 2006

Site fedoralegacy.org

Fedora Legacy Update Advisory - FLSA:190941: Updated ipsec-tools package fixes security issue

tags | advisory

systems | linux, fedora

SHA-256 | ccaccd9144401858ea71d9bb3eca3a12e621a75cfaa86192257b9a581ec39051

Download | Favorite | View

FLSA-2006-189137-1.txt

Posted Jun 11, 2006

Site fedoralegacy.org

Fedora Legacy Update Advisory: FLSA:189137-1 - Updated mozilla packages fix security issues

tags | advisory

systems | linux, fedora

SHA-256 | 81496ee91d22033c80e7689d237b3bedd94b43a16543c9d558ff41eec5699665

Download | Favorite | View

BloggIT-1.01.txt

Posted Jun 11, 2006

Authored by Federico Fazzi

BloggIT versions 1.01 or prior suffer from arbitrary code execution vulnerabilities.

tags | advisory, arbitrary, vulnerability, code execution

SHA-256 | 0bc85b59e1874ae02b9adfb22039712f92ab2077543dbbb82d04516b39963b9b

Download | Favorite | View

aWebNews-1.0.txt

Posted Jun 11, 2006

Authored by Federico Fazzi

aWebNews version 1.0 suffers from a remote file disclosure vulnerability.

tags | advisory, remote

SHA-256 | 5c9f5bc5d30352655a77d39b647d30e151e63b31a79dc8ad4003053833c675a7

Download | Favorite | View

XtremeDownloadsv.1.0.txt

Posted Jun 11, 2006

Authored by black-code

Xtreme Downloads v.1.0 suffers from multiple file inclusion vulnerabilities.

tags | advisory, vulnerability, file inclusion

SHA-256 | 38e4e7557526336ccb7e5323268cd5e52b35a9b790b7f3403a99ffd73990aef0

Download | Favorite | View

KAPDA-47.txt

Posted Jun 11, 2006

Site KAPDA.ir

[KAPDA::#47] - myNewsletter 1.1.2 SQL_Injection

tags | advisory

SHA-256 | 82a7ec23cb143125b684e3399b7dc53358e514e87658b7faa3df0c09565847e7

Download | Favorite | View

DmxForum-2.1a.txt

Posted Jun 11, 2006

Authored by DarkFig | Site acid-root.new.fr

Dmx Forum v2.1a and prior Remote Passwords Disclosure exploit.

tags | exploit, remote

SHA-256 | af5f88293d2fbb88c507a61b62e99d1c4f00c5f7c4a85862e3335162a854b2fe

Download | Favorite | View

MajorSecurity-9.txt

Posted Jun 11, 2006

Site majorsecurity.de

[MajorSecurity #9] HostAdmin 3.1 and prior - Remote File Include Vulnerability

tags | advisory, remote

SHA-256 | 8d94dfb563f0b734c5d4993c4ff573f0f99ab2a83e9c37c0a3df76a6aa8dfc9c

Download | Favorite | View

MajorSecurity-8.txt

Posted Jun 11, 2006

Site majorsecurity.de

[MajorSecurity #8]DreamAccount 3.1 and prior - Remote File Include Vulnerability

tags | advisory, remote

SHA-256 | c5dc46008c0077c7b0151dc2d240e8a1f30de73263af4e3fdad497789240d2b4

Download | Favorite | View

ewsEngine-1.5.0.txt

Posted Jun 11, 2006

Authored by ajann

NewsEngine 1.5.0 or prior suffers from a remote SQL injection vulnerability in newscomments.php.

tags | advisory, remote, php, sql injection

SHA-256 | 0e2f1699f9db1562259804487687422defe2294c9603b089bbba37007c8f8600

Download | Favorite | View

FunkBoardCF0.71.txt

Posted Jun 11, 2006

Authored by ajann

FunkBoard CF0.71 Remote User Pass Change Exploit

tags | exploit, remote

SHA-256 | 838f01d4b20928b6141b400e94625cffeaa222430c1147cc17be768a8eec8d7c

Download | Favorite | View