Bild Flirt System version 2.0 suffers from a remote SQL injection vulnerability.
a642e3a8283ac1b6e538470c86012e5fThis archive contains all of the 424 exploits added to Packet Storm in March, 2010.
a972bdaa0f44e3e045d2675474ecad96CDTrustee version 2.06 local crash proof of concept exploit that creates a malicious .bak file.
c43f7f7b56d69d7ba0c4cf6f433b32aeBitComet versions 1.19 and below remote denial of service exploit.
286f64ee253cc6f8cbe31846dcce5182The Joomla DW Graph component suffers from a local file inclusion vulnerability.
82fafe1c5d3b3b48edaf4a3b5314048cOptimal Archive version 1.38 SEH buffer overflow exploit that creates a malicious .zip file.
1dfdacceac21e22e0a9dfb985f2e88f5OSSIM version 2.2.1 suffers from a cross site scripting vulnerability.
2c6b88f7b34263a9beb1fe7092dc263dOpenDcHub version 0.8.1 remote code execution exploit.
671a02683f4252b07253c0b77a40e679This Metasploit module exploits a use-after-free vulnerability within the DTML behaviors functionality of Microsoft Internet Explorer versions 6 and 7. This bug was discovered being used in-the-wild and was previously known as the "iepeers" vulnerability. The name comes from Microsoft's suggested workaround to block access to the iepeers.dll file. According to Nico Waisman, "The bug itself is when trying to persist an object using the setAttribute, which end up calling VariantChangeTypeEx with both the source and the destination being the same variant. So if you send as a variant an IDISPATCH the algorythm will try to do a VariantClear of the destination before using it. This will end up on a call to PlainRelease which decref the reference and clean the object." NOTE: Internet Explorer 8 and Internet Explorer 5 are not affected.
499222317361c6b4495867bed56de302This Metasploit module exploits a stack overflow in HP OpenView Network Node Manager 7.50. By sending a specially crafted CGI request to OvWebHelp.exe, an attacker may be able to execute arbitrary code.
e47b671bf621568a3db40a9b4cf70679Piwik version 0.5.5 suffers from a cross site scripting vulnerability.
c88e4ed176e9018667b25433933e5c23WM Downloader version 3.0.0.9 local buffer overflow exploit that creates a malicious .asx file.
94029e3054a5c9a044aae21614a9d44cHuron CMS suffers from a remote SQL injection vulnerability that allows for authentication bypass.
9436896253cc01e000b66636e449832aXilisoft Blackberry Ring Tone Maker local crash exploit that creates a malicious .wma file.
0de285d3b2d1bd8057448594cff65024KimsQ 040109 suffers from multiple remote file inclusion vulnerabilities.
b02c8daff18cf22778d37d47e02e39c9PHP Classifieds version 6.09 suffers from an email dump vulnerability.
2288de396d24928da4b45516d98ab3ecMetaCart Free eCommerce Shopping Cart suffers from a database disclosure vulnerability.
303193f9cccbee4c033a8aec5802f33fOXID eShop Enterprise Edition suffers from cross site scripting and session fixation vulnerabilities.
b60703fb70f985cb494c9ebd11ea963eEasy Icon Maker file reading crash exploit that creates a malicious .ico file.
2d64294f406053c3cb52d866b450b2cbThe Joomla Actions component suffers from a remote SQL injection vulnerability.
b598b03532e4d10ec9e705b89df2a4edFree MP3 CD Ripper version 2.6 buffer overflow exploit.
df882ecfbd2985ab10440a33fa5df139React Software suffers from a local file inclusion vulnerability.
33c9cf8ace99e5cd431b8a181cd37e94The Joomla Television component suffers from a remote SQL injection vulnerability.
9d814080b5384f0d55ffafddd8f21000The Joomla Spec component suffers from a remote SQL injection vulnerability.
f8e41217f6d87bfd4ae75bf62a128e9aEasy-Clanpage versions 2.1 and below remote SQL injection exploit.
5db926d1467ddfcc390e48bcb827a010
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed