http://packetstormsecurity.org/ 20 Most Recent Packet Storm File Additions en-us http://packetstormsecurity.org/1003-exploits/phpbb2plus-sql.txt phpBB2 Plus version 1.53 suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/1003-exploits/oraclexdb-overflow.txt Oracle XDB FTP service UNLOCK buffer overflow exploit that spawns a reverse shell. http://packetstormsecurity.org/1003-exploits/phpnukerd-sql.txt PHP-Nuke Ratedownload suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/1003-exploits/ninkobb-addadmin.txt NinkoBB version 1.3RC4 change / add administrator cross site request forgery exploit. http://packetstormsecurity.org/1003-exploits/joomlaalert-sql.txt Joomla Alert suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/1003-advisories/miranda-fail.txt Miranda versions 0.8.16 and 0.9.0 alpha build #6 Unicode and SVN rev. 11383 suffer from a silent TLS failure. http://packetstormsecurity.org/1003-exploits/arp_sniff.c ARP Sniff (Sniffer Lite) is a tiny ARP sniffer. This tool will be useful to analyze the ARP packets in the network. The tool gives out two types of information, the 14 byte Ethernet header and 28 byte ARP header. The tool requires G++ compiler and a libpcap package. Three arguments are coded as of now. One is to list the available devices, second is to sniff the default device and third is to sniff the device given as argument. The sniffer outputs the Ethernet header (Source MAC address, Destination MAC address and Ethernet type), ARP Header (Hardware type, Protocol type, Hardware address length, Protocol address length, Opcode, Source Hardware address and Protocol address, Destination hardware address and Protocol address). http://packetstormsecurity.org/1003-exploits/varicad-overflow.c VariCAD version 2010-2.05 EN local buffer overflow exploit. Comes with options to spawn calc.exe, bindshell, and add user shellcode. http://packetstormsecurity.org/1003-exploits/softsaurus-rfi.txt Softsaurus version 2.01 suffers from multiple remote file inclusion vulnerabilities. http://packetstormsecurity.org/1003-exploits/nensorcms-lfisql.txt Nensor CMS version 2.01 suffers from remote SQL injection and local file inclusion vulnerabilities. http://packetstormsecurity.org/1003-exploits/sahana-bypass.txt Sahana version 0.6.2.2 suffers from an authentication bypass vulnerability. http://packetstormsecurity.org/1003-advisories/USN-914-1.txt Ubuntu Security Notice 914-1 - Mathias Krause discovered that the Linux kernel did not correctly handle missing ELF interpreters. Marcelo Tosatti discovered that the Linux kernel's hardware virtualization did not correctly handle reading the /dev/port special device. Sebastian Krahmer discovered that the Linux kernel did not correctly handle netlink connector messages. Ramon de Carvalho Valle discovered that the Linux kernel did not correctly validate certain memory migration calls. Jermome Marchand and Mikael Pettersson discovered that the Linux kernel did not correctly handle certain futex operations. http://packetstormsecurity.org/1003-advisories/secunia-qfxsrf.txt Secunia Research has discovered a vulnerability in Quicksilver Forums, which can be exploited by malicious people to conduct cross-site request forgery attacks. The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. execute arbitrary SQL queries by tricking a logged in administrator into visiting a malicious web site. http://packetstormsecurity.org/1003-exploits/joomlackforms-lfisql.txt The Joomla Ckforms component suffers from local file inclusion and remote SQL injection vulnerabilities. http://packetstormsecurity.org/1003-exploits/preisschlact-sql.txt Preisschlacht Multi Liveshop System suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/sip/sipwitch-0.7.4.tar.gz GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP rver, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. http://packetstormsecurity.org/1003-advisories/secunia-qfbidisclose.txt Secunia Research has discovered a security issue in Quicksilver Forums, which can be exploited by malicious people to disclose potentially sensitive information. The database backup functionality stores the database backup with a semi-predictable file name inside the web root. This can be exploited to download the backup by guessing the file name. http://packetstormsecurity.org/1003-exploits/postnukece-sql.txt The Postnuke ContentExpress module suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/1003-advisories/secunia-qfmddisclose.txt Secunia Research has discovered a security issue in Quicksilver Forums, which can be exploited by malicious, local users to disclose sensitive information. The application passes the database password via the command line to the mysqldump utility, which may disclose the password via the process list. http://packetstormsecurity.org/1003-exploits/joomlainclude-sql.txt The Joomla Include component suffers from a remote SQL injection vulnerability.