This archive contains all of the 313 exploits added to Packet Storm in September, 2009.
f6224b9b8434137d5c647c5b24d2452fGameforge.de suffers from an insecure cookie and cross site scripting vulnerabilities.
d6d5bb5b1d1f78c493c5c487e2d4bbe4This Metasploit module exploits an out of bounds function table dereference in the SMB request validation code of the SRV2.SYS driver included with Windows Vista, Windows 7 release candidates (not RTM), and Windows 2008 Server prior to R2. Windows Vista without SP1 does not seem affected by this flaw.
bd62fbcf8cbf9573b7dfd23935b5cdb8FlatPress versions 0.804 through 0.812.1 are vulnerable to a local file inclusion vulnerability that allows for remote command execution.
62a2749aa60d5266fdcedba67c735356IBM Installation Manager version 1.3.0 and below iim:// URI handler remote code execution exploit.
cba0b6ebda26e22266089d0679e4c8feMultiple EMC products remote buffer overflow exploit that takes advantage of keyhelp.ocx version 1.2.312.
adf4ba6c42a12de8fc3a8d2998fefbc3Oracle Document Capture BlackIce DEVMODE Active-X related remote stack-based buffer overflow exploit.
45bc30648d4da6d0e456a9e9f3c80694HP LoadRunner version 9.5 Persits.XUpload.2 control (XUpload.ocx) MakeHttpRequest() remote file creation proof of concept exploit.
4550e59e5f7b19bb56e3cde93e538993Oracle Document Capture BlackIce DEVMODE Active-X related remote command execution exploit.
df3df1e008e29b946b9b2bb9ac29b8f2Adobe Photoshop Elements 8.0 Active File Monitor Service suffers from a bad security descriptor local elevation of privileges vulnerability.
4c24f40b5fc01d7fbf5241769744b3a1The E107 eCaptcha plugin suffers from a cross site scripting vulnerability.
9bf6eec349f9f3a9671fd5a91381079eHEAT Call Logging version 8.01 suffers from a remote SQL injection vulnerability.
92d8e7d9f7670dcaea1576a5ecb8fb5cEnjoySAP, SAP GUI for Windows versions 6.4 and 7.1 suffer an arbitrary file overwrite vulnerability.
9d1261561fde3185566f79dbff36638fCore FTP Server version 1.0 build 304 remote denial of service exploit.
771913e74d9fe751af31d5b860117c9fThe Joomla IRCm Basic component suffers from a remote SQL injection vulnerability.
c1d9e4dc245340374cfdf057b21b05beFacebook suffers from a URL string evasion cross site scripting vulnerability.
df50f224d2ff94928a49911a9ff92887EasyMail Quicksoft version 6.0.2.0 suffers from a remote denial of service vulnerability in emimap4.dll.
a4e3361e2d5ad551dbd210acdcad1916Novell Groupwise Client version 7.0.3.1294 suffers from a remote denial of service vulnerability.
4fd697792be74e62e79aaa6a20a5ce91Adobe ShockWave Player version 11.5.1.601 suffers from an Active-X related stack overflow vulnerability.
3c346418efaafe5360bdbbc0fc3e477aMereo web server version 1.8 suffers from a remote source code disclosure vulnerability.
8cb9bb894e84dd235f1e48fa3f6cfaffBigAnt server versions 2.50 SP6 and below local buffer overflow exploit that creates a malicious .zip file.
5813e89ab8bc82f20379574b3e3bb253BigAnt server versions 2.50 SP6 and below local buffer overflow exploit that creates a malicious .zip file.
96d0a72caf7cabb104b6edaab3e19f51CDBurnerXP version 4.2.4.1351 local crash proof of concept exploit.
55b7589317c634786dd478d28d214347Core FTP LE version 2.1 build 1612 local buffer overflow proof of concept exploit.
a528962313b589f441958f1b5772e712VLC Media Player version 1.0.2 smb:// URI handling remote stack overflow proof of concept exploit.
418dcda83ba2c2c08e2492da4c70cee1
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed