|
|
Colapse all |
Post message
remote command execution in include.cgi script 2005-04-25 fireboy fireboy (fireboynet webmails com) Tunis 24/04/2005 BUG found by fireboy fireboy (at) webmails (dot) com [email concealed] THERE ARE SOME BUGS IN include.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1)file showing http://www.target.c [ more ] [ reply ] Multiple SQL Injections in StorePortal 2.63 2005-04-24 dcrab (dcrab hackerscenter com) Dcrab 's Security Advisory [Hsc Security Group] http://www.hackerscenter.com/ [dP Security] http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity: High Title: Multiple SQL Injections in [ more ] [ reply ] DMA[2005-0423a] - 'Nokia Affix Bluetooth Integer Underflow' 2005-04-24 KF (lists) (kf_lists digitalmunition com) Sql Injection in Confixx 3.06 & 3.08 & 3.?? ? 2005-04-25 Erich Klaus (DR erich gmx net) Sql injection is possbile with reseller rights: i.e. it is possible to enter '# in the "change user" field. as result you get a list of all added users on the server. With a special malformed string it is possible to execute any sql command as confixx mysql user to the confixx database. Vendor w [ more ] [ reply ] remote command execution in inserter.cgi script 2005-04-25 fireboy fireboy (fireboynet webmails com) Tunis 24/04/2005 BUG found by fireboy fireboy (at) webmails (dot) com [email concealed] THERE ARE SOME BUGS IN inserter.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1)file showing http://www.target. [ more ] [ reply ] [CIRT.DK - Advisory] Novell Nsure Audit 1.0.1 Denial of Service 2005-04-24 CIRT.DK Advisory (advisory cirt dk) Description: A vulnerability was reported in Novell Nsure Audit. A remote user can cause denial of service conditions. A remote user can conduct a brute force attack against 'webadmin.exe' on TCP port 449 to cause the target system to stop responding. Read the full advisory http://www.cirt.dk Den [ more ] [ reply ] [SNS Advisory No.80] nProtect:Netizen Arbitrary File Download Vulnerability 2005-04-25 snsadv lac co jp (snsadv) ------------------------------------------------------------------ SNS Advisory No.80 nProtect:Netizen Arbitrary File Download Vulnerability Problem first discovered on: Wed, 13 Apr 2005 Published on: Mon, 25 Apr 2005 ------------------------------------------------------------------ Severity Leve [ more ] [ reply ] Multiple Sql injection and XSS in CartWIZ ASP Cart 2005-04-24 dcrab (dcrab hackerscenter com) Dcrab 's Security Advisory [Hsc Security Group] http://www.hackerscenter.com/ [dP Security] http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity: High Title: Multiple Sql injection and [ more ] [ reply ] E-Cart v1.1 Remote Command Execution 2005-04-23 Nicolas Montoza (xonico gmail com) ============================================================ Title: E-Cart v1.1 Remote Command Execution Vulnerability discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 20/04/2005 Severity: High. Remote Users Can Execute Arbitrary Code. Affected version: <= E-Cart 2004 v1.1 Ve [ more ] [ reply ] Local file detection found through Adobe Reader ActiveX control 2005-04-23 Hyperdose Security (robfly hyperdose com) Hyperdose Security Advisory Name: Local file detection found through Adobe Reader ActiveX control Systems Affected: Adobe Reader 7.0 and earlier Severity: Low Author: Robert Fly - robfly (at) hyperdose (dot) com [email concealed] Advisory URL: http://www.hyperdose.com/advisories/H2005-06.txt --Adobe Description-- From Adobe [ more ] [ reply ] artmedic_links5 remote file access exploit 2005-04-23 Adam n30n Simuntis (n30n satfilm net pl) You can read details of this vulnerability here: http://www.securityfocus.com/archive/1/367144 Very simple source of exploit, enjoy. /* * artmedic_links5 remote file access exploit * Adam Simuntis <n30n (at) o2 (dot) pl [email concealed]> */ #include <stdio.h> #include <stdlib.h> #include <arpa/inet.h> #include <sys/ [ more ] [ reply ] ACSblog bug 2005-04-23 farhad koosha (farhadkey yahoo com) */ WWW.BAHADORLOVER.COM \* ACSblog : A asp weblog with manageable code blocks and logical structure make it easy for the novice to get into the code and customize it to your site. Full-featured enough for expert bloggers vendor:www.asppress.com Where is the bug ? inc_login_check.asp <% if re [ more ] [ reply ] -==phpBB 2.0.14 Multiple Vulnerabilities==- 2005-04-23 HaCkZaTaN (hck_zatan hotmail com) (1 replies) /* -------------------------------------------------------- [N]eo [S]ecurity [T]eam [NST]® - Advisory #14 - 17/04/05 -------------------------------------------------------- Program: phpBB 2.0.14 Homepage: http://www.phpbb.com Vulnerable Versions: phpBB 2.0.14 & Lower versions Risk: Low Risk!! I [ more ] [ reply ] Multiple Sql injection vulnerabilities in BK Forum v.4 2005-04-23 dcrab (dcrab hackerscenter com) Dcrab 's Security Advisory [Hsc Security Group] http://www.hackerscenter.com/ [dP Security] http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity: High Title: Multiple Sql injection vuln [ more ] [ reply ] New auto download / install / exploit URL? 2005-04-23 Gandalf The White (gandalf digital net) Greetings and Salutations: Just received the attached e-mail with the below suspicious URL. I did a fetch on the URL and received the item after the part labeled: ------ Fetched URL FYI. Looks like possibly a Microsoft Media player exploit? Someone want to take the time to decode? Ken ------- [ more ] [ reply ] [SePro Bugtraq] WBB - WoltLab Burning Board <= 2.3.1 - XSS Vulnerability (22.04.05) 2005-04-22 deluxe security-project org [SePro Bugtraq] WBB - WoltLab Burning Board <= 2.3.1 - XSS Vulnerability (22.04.05) Vendor: WoltLab URL: http://www.woltlab.de/ Version: <= 2.3.1 Type: XSS Discovered by deluxe89 Description: -------------------------------- The WoltLab Burning Board is a high customisable forum softw [ more ] [ reply ] FreeBSD Security Advisory FreeBSD-SA-05:05.cvs 2005-04-22 FreeBSD Security Advisories (security-advisories freebsd org) BitDefender 8 - Race condition vulnerability 2005-04-23 SecuBox fRoGGz (unsecure writeme com) ----------------------------- Product: BitDefender Version: 8 Tested on: Windows 2000 SP4 Vulnerability: Race condition ----------------------------- BACKGROUND ---------- BitDefender ensures the most advanced antivirus protection, as well as data confidentiality, active content control and Inte [ more ] [ reply ] Microsoft Windows image rendering DoS vuln 2005-04-21 Luis Alberto Cortes Zavala (napa hackersoft net) Mmm i don`t know, i test it and my pc crashed, it looks that get all my windows virtual memory, and any key didn´t works fine, so I have to make ?button reboot?. If someone knows how to make something with the flaw I hope comments.. I seen source code, for me looks that ypu have to put a lot [ more ] [ reply ] [ GLSA 200504-23 ] Kommander: Insecure remote script execution 2005-04-22 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [ GLSA 200504-22 ] KDE kimgio: PCX handling buffer overflow 2005-04-22 Sune Kloppenborg Jeppesen (jaervosz gentoo org) |
|
Privacy Statement |
Here is another exploit for MS05-019 vulnerability.
Well, it is just to promote Net::Packet ;)
---
#!/usr/bin/perl
use strict;
use warnings;
my %opts;
use Getopt::Std;
getopts('t:p:', \%opts);
die("Usage: $0 -t TARGET -p PORT\n") unless $opts{t} && $opts{p};
use Net::Pkt;
$Env->debug(3);
[ more ] [ reply ]