PKs Movie Database version 3.0.3 (SQL/XSS)

 ( 650 days 20 hours ago)

H-T Team [ HouSSaMix ToXiC350 ] from MoroCCo = Author : HouSSaMix From H-T Team = Script : PKs Movie Database version 3.0.3 = BUG 1 : Remote SQL Injection Vulnerability exploit => www.target.com/path/index.php?num=[SQL] = BUG 2 : XSS exploit => www.target.com/path/index.php?category=[XSS] www.target.com/path/index.php?num=9999999999&category=[XSS] example : www.target.com/path/index.php?category=%22%3E%3Cscript%3Ealert(1);%3C/script%3E www.target.com/path/index.php?num=9999999999&category=%22%3E%3Cscript%3Ealert(1);%3C/script%3E ...

iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat Multiple Stack-based Buffer Overflow Vulnerabilities

 ( 650 days 23 hours ago)

iDefense Security Advisory 02.08.08 Feb 08, 2008 I. BACKGROUND Adobe Reader is a program for viewing Portable Document Format (PDF) documents. Acrobat is the program used to create such documents. More information is available at the following URLs. II. DESCRIPTION ...

iDefense Security Advisory 02.08.08: Adobe Reader Security Provider Unsafe Libary Path Vulnerability

 ( 650 days 23 hours ago)

iDefense Security Advisory 02.08.08 Feb 08, 2008 I. BACKGROUND Adobe Reader is a program for viewing Portable Document Format (PDF) documents. More information is available at the following URLs. II. DESCRIPTION Remote exploitation of an unsafe library path vulnerability in Adobe ...

iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat JavaScript Insecure Method Exposure Vulnerability

 ( 650 days 23 hours ago)

iDefense Security Advisory 02.08.08 Feb 08, 2008 I. BACKGROUND Adobe Reader is a program for viewing Portable Document Format (PDF) documents. Acrobat is the program used to create such documents. More information is available at the following URLs. II. DESCRIPTION ...

Some interesting hashes

 ( 650 days 23 hours ago)

OpenBSD 4.1 sshd remote root exploit (on the default install!): SHA1(screwtheo.tar)=ad1bc1f05afa2cc3ccadb18fabb985394c02ce8d MD5(screwtheo.tar)= cee67df76eaa0706e666cd5c0b8b711c OpenSSH exploit for linux SHA1(screwtheolinux.tar)=cb6816de43df87193050a497a83cd8f7ab721fbd MD5(screwtheolinux.tar)=8d65c90d40975556b199a3e1028a5a51

rPSA-2008-0051-1 firefox

 ( 651 days 2 hours ago)

rPath Security Advisory: 2008-0051-1 Published: 2008-02-08 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: firefox=conary.rpath.comatrpl:1/2.0.0.12-0.1-1 rPath Issue Tracking System: References: Description: Previous versions of the firefox package are vulnerable to several ...

[SECURITY] [DSA 1488-1] New phpbb2 packages fix several vulnerabilities

 ( 651 days 2 hours ago)

- Debian Security Advisory DSA-1488-1 securityatdebian.org Thijs Kinkhorst February 09, 2008 - Package : phpbb2 Vulnerability : several Problem type : remote Debian-specific: no CVE Id(s) : CVE-2006-4758 CVE-2006-6839 CVE-2006-6840 CVE-2006-6508 CVE-2006-6841 CVE-2008-0471 Debian Bug : 388120 405980 463589 ...

[SECURITY] CVE-2007-6286: Tomcat duplicate request processing vulnerability

 ( 651 days 2 hours ago)

CVE-2007-6286: Tomcat duplicate request processing vulnerability Severity: Important Vendor: The Apache Software Foundation Versions Affected: Tomcat 5.5.11 to 5.5.25 Tomcat 6.0.0 to 6.0.15 Description: When using the native (APR based) connector, connecting to the SSL port ...

[SECURITY] CVE-2007-5333: Tomcat Cookie handling vulnerabilities

 ( 651 days 2 hours ago)

CVE-2007-5333: Tomcat Cookie handling vulnerabilities Severity: low - Session hi-jacking Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.1.0 to 4.1.36 Tomcat 5.5.0 to 5.5.25 Tomcat 6.0.0 to 6.0.14 Description: The previous fix for CVE-2007-3385 was incomplete. It did not consider the ...