EXPLOIT DATABASE
- [papers] - [Persian] CRLF Injection Attacks
- [remote] - FathFTP 1.8 (FileExists Method) ActiveX Buffer Overflow (SEH)
- [remote] - FathFTP 1.8 (EnumFiles Method) ActiveX Buffer Overflow (SEH)
- [remote] - FathFTP v1.8 (DeleteFile Method) ActiveX Buffer Overflow (SEH)
- [local] - Exploit Easy RM to MP3 2.7.3.700 ( .m3u , .pls , .smi , .wpl , .wax , .wvx , .ram)
- [papers] - Exploitation on ARM - Whitepaper
- [papers] - Exploitation on ARM - Presentation
- [remote] - HP OpenView NNM v.7.53 OvJavaLocale Buffer Overflow Vulnerability - [CVE: 2010-2709]
- [webapps] - Team Johnlong RaidenTunes 2.1.1 Remote Cross-Site Scripting Vulnerability
- [local] - Progitek Visionner Photos v2.0 - File Format DOS
- [webapps] - WordPress NextGEN Smooth Gallery Blind SQL Injection Vulnerability
- [remote] - FathFTP 1.8 (RasIsConnected Method) ActiveX Buffer Overflow (SEH)
- [local] - Apple iOS pdf Jailbreak Exploit
- [webapps] - APT-WEBSHOP-SYSTEM modules.php SQL injection
- [dos] - Oracle MySQL 'ALTER DATABASE' Remote Denial Of Service Vulnerability - [CVE: 2010-2008]
PACKETSTORM DATABASE
- : oraclemysql-dos.txt
Oracle MySQL versions prior to 5.1.48 suffer from a remote ALTER DATABASE denial of service vulnerability. - : avastis-corrupt.txt
Avast! Internet Security version 5.0 suffers from a memory pool corruption denial of service vulnerability. - : wpnextgensg-sql.txt
WordPress NextGEN Smooth Gallery version 1.2 suffers from a remote blind SQL injection vulnerability. - : esmartvision-sql.txt
eSmart-Vision Trading suffers from multiple remote SQL injection vulnerabilities. - : ios-jailbreak.tgz
Apple iOS PDF jailbreaking exploit that gives root access. - : fathftp18-overflow.txt
FathFTP version 1.8 (SEH) Active-X buffer overflow exploit. - : TWSL2010-003.txt
The EMC Celerra Network Attached Storage (NAS) appliance allows for unauthorized access to a root NFS export. - : dsa-2084-1.txt
Debian Linux Security Advisory 2084-1 - Kevin Finisterre discovered that several integer overflows in the TIFF library could lead to the execution of arbitrary code. - : dsa-2083-1.txt
Debian Linux Security Advisory 2083-1 - It was discovered that moin, a python clone of WikiWiki, does not sufficiently sanitize parameters when passing them to the add_msg function. This allows a remote attackers to conduct cross-site scripting (XSS) attacks for example via the template parameter. - : cybsec-2010-0801.pdf
MyIT CRM version 0.2.8.1 suffers from cross site scripting vulnerabilities. - : DCA-0008.txt
Quick N Easy Web Server version 3.3.7 suffers from a denial of service vulnerability. - : DCA-0007.txt
Quick N Easy FTP Server version 3.2 suffers from a denial of service vulnerability. - : 60kb-rfi.txt
60KB version 1.0.0rc4 suffers from a remote file inclusion vulnerability. - : turboftp6-traversal.txt
TurboFTP client version 6.30.806 suffers from a directory traversal vulnerability. - : 32bitftp-traversal.txt
32bit FTP Client version 10.07.09 suffers from a directory traversal vulnerability.
OPENSOURCE VULNERABILITY DATABASE
- : QtDemoBrowser webview.cpp Nonexistent Domain Name XSS
QtDemoBrowser webview.cpp Nonexistent Domain Name XSS - : kwebkitpart webkitpart.cpp Nonexistent Domain Name XSS
kwebkitpart webkitpart.cpp Nonexistent Domain Name XSS - : bozohttpd GCC Code Generation Interaction DoS
bozohttpd GCC Code Generation Interaction DoS - : MapServer mapserv mapserv.c Crafted Debug Argument Unspecified Remote Issue
MapServer mapserv mapserv.c Crafted Debug Argument Unspecified Remote Issue - : hsolink hsolinkcontrol Multiple Programs PATH Environment Variable Local Privilege Escalation
hsolink hsolinkcontrol Multiple Programs PATH Environment Variable Local Privilege Escalation - : hsolink hsolinkcontrol Command-line Argument Multiple Local Overflows
hsolink hsolinkcontrol Command-line Argument Multiple Local Overflows - : Cetera eCommerce cms/templates/search.php sobject Parameter XSS
Cetera eCommerce cms/templates/search.php sobject Parameter XSS - : Cetera eCommerce cms/templates/bannerlist.php Multiple Parameter XSS
Cetera eCommerce cms/templates/bannerlist.php Multiple Parameter XSS - : Cetera eCommerce cms/templates/banner.php errorMessage Parameter XSS
Cetera eCommerce cms/templates/banner.php errorMessage Parameter XSS - : Cetera eCommerce cms/index.php Multiple Parameter XSS
Cetera eCommerce cms/index.php Multiple Parameter XSS
SECURITYFOCUS DATABASE
- Wed, 04 Aug 2010 00:00:00 +0000: Vuln: Apple iOS Multiple Vulnerabilities
Apple iOS Multiple Vulnerabilities - Wed, 04 Aug 2010 00:00:00 +0000: Vuln: LibTIFF FAX3 Decoder Remote Integer Overflow Vulnerability
LibTIFF FAX3 Decoder Remote Integer Overflow Vulnerability - Wed, 04 Aug 2010 00:00:00 +0000: Vuln: LibTIFF Multiple Remote Denial of Service Vulnerabilities
LibTIFF Multiple Remote Denial of Service Vulnerabilities - Wed, 04 Aug 2010 00:00:00 +0000: Vuln: LibTIFF Multiple Remote Code Execution Vulnerabilities
LibTIFF Multiple Remote Code Execution Vulnerabilities - Wed, 04 Aug 2010 00:00:00 +0000: Bugtraq: Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module - Wed, 04 Aug 2010 00:00:00 +0000: Bugtraq: Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances
Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances - Wed, 04 Aug 2010 00:00:00 +0000: Bugtraq: Fwd: {Lostmon´s Group} Safari for windows Long link DoS
Fwd: {Lostmon´s Group} Safari for windows Long link DoS - Wed, 04 Aug 2010 00:00:00 +0000: Bugtraq: Fwd: {Lostmon´s Group} K-Meleon for windows about:neterror Stack Overflow DoS
Fwd: {Lostmon´s Group} K-Meleon for windows about:neterror Stack Overflow DoS - Wed, 04 Aug 2010 00:00:00 +0000: More rss feeds from SecurityFocus
News, Infocus, Columns, Vulnerabilities, Bugtraq ...