ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
f34331325c5efd47197eca902976c93dGuru JustAnswer Professional version 1.25 suffers from multiple remote SQL injection vulnerabilities.
d7771e297caa5d610e3a0e1998993869iPhone4 FTP Server 1.0 empty CWD-RETR remote crash denial of service exploit.
79657b665e9fa419c1fae8360ff6512fWhitepaper called Reverse Engineering and Memory Patching.
ba1a9d660098c022850547bdb0e9943fThis Metasploit module can be used to gain a remote shell to a Joomla! 1.6.x install when administrator credentials are known. This is achieved by uploading a malicious component which is used to execute the selected payload.
770f64482cd13284a81000f0afe6bddbA vulnerability was discovered by Aung Khant that allows for exploitable SQL Injection attacks against a Joomla 1.6.0 install. This exploit attempts to leverage the SQL Injection to extract admin credentials, and then store those credentials within the notes_db. The vulnerability is due to a validation issue in /components/com_content/models/category.php that erroneously uses the "string" type whenever filtering the user supplied input. This issue was fixed by performing a whitelist check of the user supplied order data against the allowed order types, and also escaping the input.
b819205651e4caec804b0148a1d22d71Kentico CMS versions 5.5R22.23 suffers from a cross site scripting vulnerability.
c22edd73b708209a777319388b6c9d45This Metasploit module exploits a vulnerability in the TinyMCE/tinybrowser plugin. By renaming the uploaded file this vulnerability can be used to upload/execute code on the affected system.
a474da5b9be867cdebee725b28be40fbGloDerWorks suffers from a remote SQL injection vulnerability.
d48b24a2e088c09d886171467bc9b073Allied Telesis accidentally divulged secret backdoors in all of their products.
1d06373d3288eb8f6673834b870f325bBelkin G Wireless Router with firmware version 5.00.12 suffers from a password hash disclosure vulnerability.
0b0b24201b67df4507c45b4baae53759This is an HTTP console to remote administer Windows hosts with a browser-based, AJAX-enabled, command-line interface. Server requires .NET 3.5. Written in C# and JavaScript.
bca2d252dec2fdc40cb4c285d0c3b57aThis Metasploit module exploits multiple vulnerabilities found on IGSS 9's Data Server and Data Collector services. The initial approach is first by transferring our binary with Write packets (opcode 0x0D) via port 12401 (igssdataserver.exe), and then sending an EXE packet (opcode 0x0A) to port 12397 (dc.exe), which will cause dc.exe to run that payload with a CreateProcessA() function as a new thread.
2b8a3b2a358404af9856bc15f95108a4Websolutions suffers from a remote SQL injection vulnerability.
76d87afb1a59cc88f7a5868a6bd9369aSecunia Security Advisory - Two vulnerabilities have been reported in Guru JustAnswer Professional, which can be exploited by malicious people to conduct SQL injection attacks.
4a8d2b90198029c0249dd22097390244Secunia Security Advisory - Debian has issued an update for unbound. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
70d4bb653838ba92dbe0e6b77a1d218eSecunia Security Advisory - A vulnerability has been reported in the sh404SEF component for Joomla!, which can be exploited by malicious people to conduct cross-site scripting attacks.
5443bc3e7fb33b50428788dab9e334b7Secunia Security Advisory - Ubuntu has issued an update for pam. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information and perform certain actions with escalated privileges.
9054e5a3ce7aedb1d239fa1c316ddb1cSecunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
a33d7c3ce2949777f62d182889f6f5c1Secunia Security Advisory - A vulnerability has been discovered in the Ajax File Manager plugin for TinyMCE, which can be exploited by malicious people to compromise a vulnerable system.
75fc10655a201bfdd3cc51a776ce430fSecunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
60868971cd300c719ce7a51b2218b737Secunia Security Advisory - A vulnerability has been reported in IBM Tivoli Management Framework, which can be exploited by malicious users to compromise a vulnerable system.
437c22b6304dd6866176a81f94d7033eSecunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
a4a8f93ab79fbca9778370321c9bbc23Secunia Security Advisory - A vulnerability has been discovered in Puzzle Apps CMS, which can be exploited by malicious people to compromise a vulnerable system.
d06329ba85d5a4f2ed133c557773eb4aSecunia Security Advisory - Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
9111b1523463cbf77015b7a3d63a2b33
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed