Packet Storm new exploits for January, 2007.
95724f85c8e7c3ede5c7034235ed9230Local file inclusion exploit for zd_numer.php in Galeria Zdjec versions 3.0 and below.
ed0e666593ebe110ce6d291e86dd7173PHPFootball version 1.6 suffers from a remote database disclosure flaw in show.php.
96487c2eea99217b0f2ffc08d5e59b1fCascadianFAQ versions 4.1 and below suffer from a remote SQL injection vulnerability in index.php.
b1e7140613128993a9d09d391615c462MyNews versions 4.2.2 and below suffer from a remote file inclusion vulnerability.
46cde9b29df8c857c2a41d7ae5ae08e6phpBB2 MODificat versions 0.2.0 and below suffer from a remote file inclusion vulnerability.
20df6be9bc350ee80a75ca9bee5b1aa6Dev-C++ version 4.9.9.2 CPP file parsing local stack overflow proof of concept exploit.
3b200e9a5cfbe00a7c1ee6305f3aab23Month of Apple Bugs - Apple iChat Bonjour functionality is affected by several remotely exploitable denial of service flaws which can be triggered via advertising presence services over multicast DNS. This is the denial of service proof of concept exploit.
3c46cb42934dba072146951e4a6e1324Generic PHP remote file inclusion exploit framework.
ba3e49e8bcc3b517ab2b46f3ec2a4cb1RBL ASP suffers from a SQL injection vulnerability in its login/password fields.
9b073e4919e53d41e8b63eca597b6f77Universal exploit for vulnerable EnumPrintersW() calls related to the spooler service. Allows code execution with SYSTEM privileges. Affected includes DiskAccess NFS Client (dapcnfsd.dll version 0.6.4.0), Citrix Metaframe - cpprov.dll, and Novell - nwspool.dll.
7772176447738b443f1b8706a46460e0MDPro version 1.0.76 suffers from multiple SQL injection vulnerabilities.
e894e03ee3be6b21b1b86f63a4c38d29Month of Apple Bugs - crashdump follows symlinks within the /Library/Logs/CrashReporter/ directory, allowing admin-group users to execute arbitrary code and overwrite files with elevated privileges. In couple with a specially crafted Mach-O binary, this can be used to write a malicious crontab entry, which will run with root privileges. This ruby code demonstrates this vulnerability.
d2a1cdd08b0f39cc9d815a3572650b30Month of Apple Bugs - Flip4Mac fails to properly handle WMV files with a crafted ASF_File_Properties_Object size field, leading to an exploitable memory corruption condition, which can be abused remotely for arbitrary code execution. This tgz holds a malicious .wmv file that demonstrates this vulnerability.
251f0955c2ec6f2f9ea3ea7160b05822Heap overflow exploit for msgeng.exe in Computer Associates BrightStor ARCserve Backup.
007fb8db9780785af6cfbae92d4c03d4Local Calendar System version 1.1 suffers from a remote file inclusion flaw.
c1397db7851ddeaef4bb0baff9e654adAdMentor suffers from a SQL injection vulnerability that allows for login bypass.
255ca22fc52604dc52d49c8054b99032Month of Apple Bugs - Ruby exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.
d7a1cfb7ab5a8a173db599dc81d957deMonth of Apple Bugs - C exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.
ac9a8250d37eaab982f149693cdcbca0The Intel wireless mini-pci driver provided with Intel 2200BG cards is vulnerable to a remote memory corruption flaw. Malformed disassociation packets can be used to corrupt internal kernel structures, causing a denial of service (BSOD). Proof of concept exploit included.
3d71353fc88cf43b77b3b6cf44f6cb52Local root exploit for vscan/VSAPI in Trend Micro VirusWall version 3.81 on Linux.
0ab083587b33449c1ee9e02dbb117db5Siteman version 1.1.11 suffers from a remote password disclosure flaw.
9b044235264b8a4eb132fc8a7df84185Aztek Forum version 4.1 exploit that demonstrates multiple vulnerabilities including SQL injection and filter bypas flaws.
bd590478d05ad6c99ce470ad94c2ffb4Siteman version 2.0.x2 suffers from a remote password disclosure flaw.
5a31a127acf8c785249d78f747c33195uniForum versions 4 and below suffer from a remote SQL injection vulnerability in wbsearch.aspx.
1dcdf1f915724c9910e127ed1693b232
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed