Packet Storm new exploits for January, 2005.
37bd4fdc8193b756cddbabeaa2a60f7eMicrosoft Internet Explorer .ANI file handling exploit. Modified version of the houseofdabus exploit. Universal version of the exploit. Tested on: Windows Server 2003, Windows XP SP0/SP1, Windows 2000 SP2/SP3/SP4.
d7655c62bf4f64164f7a24520e057746The webmail portion of Infinite Mobile Delivery 2.6 from Captaris, Inc. contains a Cross Site Scripting vulnerability. In addition to the XSS, an even smaller issue exists where a user can determine the installation path of the client and where e-mails are stored.
73bf8815871d7d252113b66d4b21f75eMultiple versions of the Merak Mail Server with Icewarp Web Mail suffer from various flaws. Included are cross site scripting, path disclosure, arbitrary file manipulation/access, and weak password encryption vulnerabilities.
22281f06d752d9deb5bb3663a37d1d5cAlt-N WebAdmin, the web application used to administer MDaemon and RelayFax, is susceptible to cross site scripting, html injection, and unauthenticated account modification vulnerabilities. Versions 3.0.2 and below are susceptible.
b3c073f533c811a3079686b8142631ffWebWasher Classic has a design flaw weakness where the CONNECT method allows remote attackers to connect to any server listening on the localhost interface of the proxy server.
73ddc497f3ae9999b4e962bbea99a087Two exploits for Winamp 5.05 and 5.08. They make use of the buffer overflow vulnerability discovered by NSFOCUS.
b7230f0d8cc7a676a94142a80a56e9d4Exploit for Outlook that can press a button to verify it is okay to access protected contact data. Tested against Windows XP SP1. This functionality may be utilized in future worm creation.
55f67af1a82aec066bc16a4846d93360An unnamed antivirus product can cause a denial of service on Microsoft Windows due to not closing open registry handles.
177efb9580b2cc67ffc17e1178af9692Apple's OS X batch family of commands make poor use of setuid capabilities allowing for privilege escalation.
56dcf81c83031240460012b3ba4d6624Pocket IE on a Windows Mobile Pocket PC suffers from Unicode URL obfuscation, local file access, and cross site scripting vulnerabilities.
4a7aa53d0c4f547a8a6702e988be69d5Modified uselib() local exploit for the Linux kernel series. This version has been modified to also work on SMP kernels. Linux kernel versions 2.4 up to and including 2.4.29-pre3, 2.6 up to and including 2.6.10 are affected.
7d1888194c26d9c12a40a81c1aa3e184Siteman versions 1.1.10 and below remote administrative account addition exploit.
23d964d6078eb95f5bdac2764881067cLocal root exploit for /usr/bin/trn. Tested on Mandrake 9.2, Slackware 9.1.0/10.0.0.
eccb9e46d859b8d7283889195634aa02Remote format string exploit for Berlios gpsd, a remake of pygps. On Debian, it achieves uid of gpsd. On Redhat, it achieves root.
827e4de2273f8b6087f440740e1ddaafphpEventCalendar version 0.2 does not check title and event text when the data is inserted in the database, allowing for arbitrary HTML injection.
e9a569c32f80bca6c0ffb8d8af9ac8ffExponent CMS version 0.95 is susceptible to full path disclosure and cross site scripting vulnerabilities.
724c9736a6bc618a34641f4f77dcfcb6Detailed analysis of three different vulnerabilities that reside in AWStats which all allow for remote command execution.
b80c768c3977749e69e1d763168985e4Codebug Labs Advisory 07 - MercuryBoard version 1.1.1 suffers from full path disclosure, cross site scripting, and SQL injection vulnerabilities.
4cd7f78f29b25991daec36c2ccd910d3Local proof of concept exploit for W32Dasm which suffers from a classic buffer overflow vulnerability when analyzing files.
c47e3a1d1537b77c56f9e8f526960c2fAwStats exploit that makes use of a remote command execution vulnerability in versions 6.2 and below.
cd4e6e2173c331307cd924b556c45421AwStats exploit that makes use of a remote command execution vulnerability in versions 6.2 and below.
ad96eacf2a2869f6c15ae4c2c84b43eeFunduc search and replace compressed file local buffer overflow exploit.
844f3c4379637e8d9face8f6c77724a7Siteman version 1.0.x remote perl exploit that adds an administrative account.
1b882d55dd0ffddcd81e52c52d19acbaLocal root exploit for mRouter installed by iSync on Mac OS X 10.3.
9dd5712dae885584c97c7a9575e3d4f6
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed