New Packet Storm exploits for October, 2005.
818f8615584dabdd06b6c482230fcbf7The MG2 Image Gallery system suffers from a password bypass flaw that allows remote viewing of any images.
d65a81ffc0e3fd98c87873459cca106eSwisscom EuroSpot wireless service suffers from multiple cross site scripting vulnerabilities. Details provided.
9741d277e2403db9c5b6f2c1ee4ff94bEthereal SLIMP3 protocol dissector remote buffer overflow proof of concept exploit that crashes the program. Tested with Ethereal 0.10.12, WinPcap 3.1 beta4, WinXP SP2.
8079fdf507021e269a350b1e0f4f8dd2VERITAS Netbackup remote format string exploit for Mac OS-X.
a99cc0cea55e300e8b4870f2a1456aa5VERITAS Netbackup remote format string exploit for Win32.
11ed9502250aaf16e593f90f9b662354VERITAS Netbackup remote format string exploit for Linux.
3337b74b703e0c9d2f85a5a4e04a70e0Mirabilis ICQ 2003a buffer overflow download shellcoded exploit. Affected versions: Mirabilis ICQ Pro versions 2003a and below.
68429a8c319db0ab0a22dff8987e36a7Updated and improved version of the local root exploit for the Linux kernel code that has the Bluetooth related flaw.
07d7f431a44a04e36697686663a1216bDuring an audit of a client, Security-Assessment.com discovered multiple critical vulnerabilities within the RockLiffe MailSite Express WebMail software. The vulnerabilities include the retrieval of arbitrary files from the web server, and bypassing attachment validation routines allowing for remote code execution. Exploitation details included. All versions of RockLiffe MailSite Express WebMail prior to version 6.1.22 are affected.
3ff38e4d684180018f4aebab2106f220Exploit for a remote denial of service flaw for HTTP GET in Hasbani-WindWeb version 2.0.
62411e2cbf277383b98e1096a7b2e2c7Remote denial of service exploit that makes of a length checking issue in the Microsoft UMPNPMGR PNP_GetDeviceList. This code crashes services.exe.
d44d6f25706a4763f50ad2705945e957Secunia Research has discovered some vulnerabilities in ATutor, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system. The vulnerabilities have been confirmed in version 1.5.1-pl1. Other versions may also be affected.
cb2e39612b6178817ab884e23fe1aab3The Novell ZENworks Patch Management Server version 6.0.0.52 is vulnerable to SQL injection attacks in the management console. Details provided.
57b33786dec8c9d43b1c15a0cd5614d7PBLang versions 4.65 and below suffer from file inclusion and cross site scripting flaws. Details provided.
d57d9fec88333ad0eab54f49eaff02aevCard 2.9 is susceptible to a remote file inclusion vulnerability. Details provided.
3a0f64528ea5cc82b7f15ce0998a12e8The latest version of cPanel comes with a blank remote MySQL user password.
018dc7e828206ceb26636bc38595dd07Various Techno Dreams scripts are susceptible to sql injection flaws. Proof of concept examples provided.
9dfaf6f058204304f8c96c9a17cffee7Secunia Research has discovered a vulnerability in Mantis, which can be exploited by malicious people to compromise a vulnerable system. Input passed to the t_core_path parameter in bug_sponsorship_list_view_inc.php is not properly verified before it used to include files. This can be exploited to include arbitrary files from external and local resources. Affected versions: Mantis 0.19.2 and 1.0.0rc2. Other versions may also be affected.
a80126dd9202835f1f33d9100084b167Woltlab Burning Board info_db.php is susceptible to multiple sql injection flaws. Versions 2.7 and below are affected.
ec97c539d271cd59c541a54b02a795b6MyBB Preview Release 2 sql injection proof of concept exploit.
40b801a07add54caa862ba4d1f969fe0PHP-Nuke is susceptible to cross site scripting attacks.
f6cd8a88ef6a2719b0a48477f4da38c0Flyspray versions 0.9.7, 0.9.8, and 0.9.8-devel are susceptible to cross site scripting. Exploitation details included.
ea71179354fed766b45b5fc6c8e73f36SEC-CONSULT Security Advisory 20051025-1 - RSA Authentication Agent for Web 5.1 is prone to a cross site scripting vulnerability. Please note that this is issue is different from CVE-2003-0389. Affected versions: This flaw was discovered in version 5.1 of RSA Agent for Web. No other versions were available for testing. Web Agents greater than 5.1 may also be vulnerable.
07936548503e95a84c2ec606f8e734e8SEC-CONSULT Security Advisory 20051025-0 - The Snoop PHP web client is susceptible to a remote command execution vulnerability when a specially crafted URL is supplied. Versions 1.2 and earlier are affected.
907f0220f39742e9598e02d67bfe5f84
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed