Packet Storm's last 20 added files.
Last Updated: Thu Aug  7 09:28:15 EDT 2008


[ discuzi-sql.txt ] 87a99a4fd997c3e8a91f7e32e562204a Discuzi version 6.0.1 remote SQL injection exploit.  
[ SSRT080023.txt ] e880134f9f767719a57001f421cad505 HP Security Bulletin - A potential security vulnerability has been identified in HP-UX using libc. This vulnerability could be exploited remotely to create a Denial of Service (DoS).  
[ SSRT080058-3.txt ] 79606329d0ec4f18b2ee224e4dbf5aad HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.  
[ USN-635-1.txt ] 18e67271d5c2ceec08da5c9d1f27e46e Ubuntu Security Notice 635-1 - Many xine-lib arbitrary code execution vulnerabilities have been addressed in Ubuntu.  
[ kshop-xss.txt ] 4a19017db736fa96d49c0bc3d60da3e6 Kshop version 2.22 suffers from a cross site scripting vulnerability.  
[ R7-0033.txt ] 73778b192812cc7c34ee3de05400e251 Rapid7 Security Advisory - mod_proxy_ftp as included with Apache versions 2.2.9 and below and 2.0.63 and below suffers from a cross site scripting vulnerability.  
[ webex-overflow.txt ] ffcef6e99156b9761932f07647471908 The Webex Meeting Manager utilizes several ActiveX controls, one of which is vulnerable to a stack based buffer overflow. The atucfobj Module contains a single method called NewObject() who's only parameter is vulnerable to this issue.  
[ CAID-EmbedIngres.txt ] 51884d1235e06665382101424ab0fe0f CA products that embed Ingres contain multiple vulnerabilities that can allow a remote attacker to execute arbitrary code, gain privileges, or cause a denial of service condition.  
[ glsa-200808-06.txt ] e9b59f5c0ec4c99d2dbdb1a11e9149a8 Gentoo Linux Security Advisory GLSA 200808-06 - Chris Evans (Google Security) reported that the libexslt library that is part of libxslt is affected by a heap-based buffer overflow in the RC4 encryption/decryption functions. Versions less than 1.1.24-r1 are affected.  
[ glsa-200808-05.txt ] ebbacde4d8f36f0bb820cc149e11d6de Gentoo Linux Security Advisory GLSA 200808-05 - A buffer overflow error was found in ISC DHCP server, that can only be exploited under unusual server configurations where the DHCP server is configured to provide clients with a large set of DHCP options. Versions less than 3.1.1 are affected.  
[ glsa-200808-04.txt ] 2852ba52cfaebadb42606bc1ad10308b Gentoo Linux Security Advisory GLSA 200808-04 - Multiple vulnerabilities related to memory management were discovered in the GSM SMS dissector (CVE-2008-3137), the PANA and KISMET dissectors (CVE-2008-3138), the RTMPT dissector (CVE-2008-3139), the syslog dissector (CVE-2008-3140) and the RMI dissector (CVE-2008-3141) and when reassembling fragmented packets (CVE-2008-3145). Versions less than 1.0.2 are affected.  
[ glsa-200808-03.txt ] 3e9e86e69a0a6a15cd07a7aee45c952c Gentoo Linux Security Advisory GLSA 200808-03 - Multiple vulnerabilities have been reported in Mozilla Firefox, Thunderbird, SeaMonkey and XULRunner, some of which may allow user-assisted execution of arbitrary code. Versions less than 2.0.0.16 are affected.  
[ glsa-200808-02.txt ] 44e4c6fc6bddaa075347ab6e5add0b9f Gentoo Linux Security Advisory GLSA 200808-02 - Wes Hardaker reported that the SNMPv3 HMAC verification relies on the client to specify the HMAC length (CVE-2008-0960). John Kortink reported a buffer overflow in the Perl bindings of Net-SNMP when processing the OCTETSTRING in an attribute value pair (AVP) received by an SNMP agent (CVE-2008-2292). Versions less than 5.4.1.1 are affected.  
[ glsa-200808-01.txt ] a3d9a1592b319e3e4d337d727feebd96 Gentoo Linux Security Advisory GLSA 200808-01 - xine-lib is vulnerable to multiple buffer overflows when processing media streams. Versions less than 1.1.13 are affected.  
[ litenews-sql.txt ] a4c389392315b4c44f1dce7a59a70e8b LiteNews versions 1.2 and below suffer from a remote SQL injection vulnerability in index.php.  
[ freehost-cookie.txt ] 93f123e5c80b98672113b242c7c63e94 Free Hosting manager versions 1.2 and 2.0 suffer from an insecure cookie handling vulnerability that allows for administrative access.  
[ requestit-rfi.txt ] f848a4f6753f6ba232e6d3e5aea41956 Request It version 1.0 suffers from a remote file inclusion vulnerability in index.php.  
[ googlenote-xss.txt ] bb05fc1b4fbad623f5a988398715228f Google Notebook and Google Bookmarks suffered from cross site scripting vulnerabilities.  
[ quatecms-lfixss.txt ] 98be7c453897ff72622a641c9d576742 Quate CMS version 0.3.4 suffers from local file inclusion and cross site scripting vulnerabilities.  
[ myclan-sql.txt ] de1c50434c473fbab4d8c714d2a06e64 MyClan version 1.5.2 suffers from a SQL injection vulnerability.