Packet Storm new exploits for February, 2006.
1a5856209519ce70bf61ddafd37b7396SaphpLesson version 2.0 remote SQL injection exploit.
5ac4708a3b589768e21f0f412b7c4513iGENUS WebMail versions 2.0.2 and below remote command execution exploit.
7f5249c4a254c90842c0495c2fadd6bcLocal privilege escalation exploit for MySQL 4.x and 5.0 that makes use of UDFs.
80e3856c846d6dcafeb92c1d3ef8eecfThis Metasploit module exploits a vulnerability in Safari's "Safe file" feature, which will automatically open any file with one of the allowed extensions. This can be abused by supplying a zip file, containing a shell script, with a metafile indicating that the file should be opened by Terminal.app. This module depends on the 'zip' command-line utility.
caf3501268c966ac68fd12049bcd0d09Microsoft Windows Media Player 10 Plug-In EMBED overflow universal exploit that makes use of the flaw discussed in MS06-006.
a2a5799ed02302d4740c0a4ba2537157This Metasploit module exploits a vulnerability in the Windows Media Player plugin for non-Microsoft web browsers. This module has been tested with Windows Media Player 9 on Windows 2000 SP4, Windows XP SP2, and Windows 2003 SP0 (Firefox 1.5 and Opera 8.5).
4e91f5c4a5d1ab1836872f7b2b6eb6eeMicrosoft Windows Media Player BMP handling buffer overflow denial of service exploit.
a08077d3cdc17d30808fcbc0c03e6191Windows Media Player BMP heap overflow exploit.
1567da57e75b11cbd1aee574fd513983eZ publish versions 3.7.3 and below suffer from cross site scripting flaws.
ab2d214203503739e143e64a1888a525ICQmail.com and Mail2World.com suffer from cross site scripting flaws.
c3fee6f7605d4b6c0b0ed69706cf3e4ePentacle In-Out Board versions 6.03 and below suffer from a SQL injection flaw in newsdetailsview.asp.
fef12d62b3fe84a2836fd1b5c31d4c67Pentacle In-Out Board versions 6.03 and below suffer from a SQL injection flaw in login.asp that allows for authentication bypass.
ebfc4d1823dd0b1a3a33ba4e0fef444dNSA Group Advisory - SPiD version 1.3.1 suffers from a classic directory traversal flaw.
fb2c7f7b0a9e482e7b6e02404373198eRemote exploit for ArGoSoft FTP server versions 1.4.3.5 and below that makes use of a remote heap overflow in the DELE command.
1c192a60c30b4db1f397595407a4cb15Hotmail/MSN cross site scripting exploit.
b87ded6d6ee6ee2ea0ef065c9c27d979Guestext version 1.0 is susceptible to cross site scripting attacks.
eb64b10aea3be0bea31784c09b4a162eNSA Group Advisory - Website Generator version 3.3 suffers from an arbitrary remote PHP file inclusion flaw.
7804124a6a7b0e99f86a6ee674060f9cMambo versions 4.5.3h and below are susceptible to SQL injection and file inclusion attacks. Full details provided.
065a2f9828389a6ddc970cd0e7a1d9a5MyPHPNuke versions 1.8.8 and below are susceptible to multiple cross site scripting vulnerabilities. Details provided.
bd1d88960738101f0b46b4df7e606232Woltlab Burning Board 2.x is susceptible to multiple cross site scripting flaws. Details provided.
420c3e636135a43dce33fd16c785df0aGuestext version 1.0 suffers from a remote command execution flaw. Exploitation details provided.
e9f94d35db89e754dc5205441404d836NSA Group Advisory - The ArGoSoft Mail Server Pro version 1.8 IMAP server suffers from improper input validation when RENAME is being used.
548ffc621afef361e0a99b7389eb5eceNSA Group Advisory - The ArGoSoft Mail Server Pro version 1.8 POP server discloses system information to removed users.
a664eb4bc5ad9a128cee065c95a6b8f4NSA Group Advisory - A flaw in CubeCart versions 3.0.0 through 3.0.6 allows for removed users to load arbitrary files onto the system.
19108f66edbe964b3b55093e82d88ff6
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed