Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Sun, 27 May 2012 23:18:34 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1821281228&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0508-exploits%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1821281228.1338160714.1338160714.1338160714.1%3B%2B__utmz%3D32867617.1338160714.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/39727/0508-exploits.tgz http://packetstormsecurity.org/files/39727/0508-exploits.tgz http://packetstormsecurity.org/files/39727/0508-exploits.tgz.html Wed, 31 Aug 2005 07:28:32 GMT New Packet Storm exploits for August, 2005. http://packetstormsecurity.org/files/39721/flat256.html http://packetstormsecurity.org/files/39721/flat256.html http://packetstormsecurity.org/files/39721/flat256.html.html Wed, 31 Aug 2005 06:51:23 GMT FlatNuke version 2.5.6 suffers from remote command execution, cross site scripting, and path disclosure flaws. Detailed exploitation provided. http://packetstormsecurity.org/files/39720/fud.html http://packetstormsecurity.org/files/39720/fud.html http://packetstormsecurity.org/files/39720/fud.html.html Wed, 31 Aug 2005 06:49:53 GMT Remote code execution exploit for FUD Forum versions 2.7 and below. http://packetstormsecurity.org/files/39716/HP_OV_NNM_RCE.c http://packetstormsecurity.org/files/39716/HP_OV_NNM_RCE.c http://packetstormsecurity.org/files/39716/HP_OV_NNM_RCE.c.html Wed, 31 Aug 2005 06:26:49 GMT Remote command execution exploit for HP OpenView Network Node Manager versions 6.2, 6.4, 7.01, and 7.50. http://packetstormsecurity.org/files/39713/AD20050830.txt http://packetstormsecurity.org/files/39713/AD20050830.txt http://packetstormsecurity.org/files/39713/AD20050830.txt.html Wed, 31 Aug 2005 06:09:09 GMT BNBT EasyTracker is susceptible to a remote denial of service vulnerability when accepting a malformed HTTP request. Demonstration exploit provided. Versions 7.7r3.2004.10.27 and below are affected. http://packetstormsecurity.org/files/39711/phpldap.html http://packetstormsecurity.org/files/39711/phpldap.html http://packetstormsecurity.org/files/39711/phpldap.html.html Wed, 31 Aug 2005 06:04:26 GMT phpLDAPadmin versions 0.9.6 through 0.9.7/alpha5 suffer from directory traversal, remote code execution and cross site scripting vulnerabilities. Detailed exploitation provided. http://packetstormsecurity.org/files/39707/bfccown.zip http://packetstormsecurity.org/files/39707/bfccown.zip http://packetstormsecurity.org/files/39707/bfccown.zip.html Wed, 31 Aug 2005 05:50:44 GMT Proof of concept exploit for the flaws relating to BFCC versions 1.22_A and below and BFVCC versions 2.14_B and below. http://packetstormsecurity.org/files/39705/lduSQL.txt http://packetstormsecurity.org/files/39705/lduSQL.txt http://packetstormsecurity.org/files/39705/lduSQL.txt.html Wed, 31 Aug 2005 05:45:23 GMT Land Down Under versions 801 and below suffer from multiple SQL injection vulnerabilities. Full details provided. http://packetstormsecurity.org/files/39703/sphpblog_vulns.pl.txt http://packetstormsecurity.org/files/39703/sphpblog_vulns.pl.txt http://packetstormsecurity.org/files/39703/sphpblog_vulns.pl.txt.html Wed, 31 Aug 2005 05:41:06 GMT Exploit that demonstrates a vulnerability in the comment_delete_cgi.php from SimplePHPBlog. The PHP script allows for the arbitrary deletion of files. This vulnerability, in combination with the fact that the installation scripts are left on the server after installation, allows an arbitrary user to reset the admin password to one of the attacker's choosing. http://packetstormsecurity.org/files/39702/SqWebMail.txt http://packetstormsecurity.org/files/39702/SqWebMail.txt http://packetstormsecurity.org/files/39702/SqWebMail.txt.html Wed, 31 Aug 2005 05:37:12 GMT Secunia Security Advisory - Secunia Research has discovered a vulnerability in SqWebMail, which can be exploited by malicious people to conduct script insertion attacks. The vulnerability is caused due to SqWebMail failing to properly sanitize HTML emails. This can be exploited to include arbitrary script code in HTML emails, which will be executed in context of the SqWebMail server, as soon as the user views a received email. Version 5.0.4 is affected. http://packetstormsecurity.org/files/39701/adv22-y3dips-2005.txt http://packetstormsecurity.org/files/39701/adv22-y3dips-2005.txt http://packetstormsecurity.org/files/39701/Echo-Security-Advisory-2005.22.html Wed, 31 Aug 2005 05:34:44 GMT PunBB 1.2.6 suffers from a script injection flaw in its use of IMG tags. http://packetstormsecurity.org/files/39700/cosmoshop81078.txt http://packetstormsecurity.org/files/39700/cosmoshop81078.txt http://packetstormsecurity.org/files/39700/cosmoshop81078.txt.html Wed, 31 Aug 2005 05:32:48 GMT Cosmoshop versions 8.10.78 and below suffer from SQL injection flaws, clear text passwords, and directory traversal flaws. http://packetstormsecurity.org/files/39699/phpfusionXSS2.txt http://packetstormsecurity.org/files/39699/phpfusionXSS2.txt http://packetstormsecurity.org/files/39699/phpfusionXSS2.txt.html Wed, 31 Aug 2005 05:24:14 GMT PHP-Fusion versions 6.00.107 and below are susceptible to cross site scripting attacks. http://packetstormsecurity.org/files/39698/autolinks21.txt http://packetstormsecurity.org/files/39698/autolinks21.txt http://packetstormsecurity.org/files/39698/autolinks21.txt.html Wed, 31 Aug 2005 05:22:26 GMT AutoLinks Pro 2.1 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/39697/lduXSS2.txt http://packetstormsecurity.org/files/39697/lduXSS2.txt http://packetstormsecurity.org/files/39697/lduXSS2.txt.html Wed, 31 Aug 2005 05:18:57 GMT Land Down Under suffers from cross site scripting vulnerabilities in the signature and topic payloads. http://packetstormsecurity.org/files/39696/mybbSQL.pl.txt http://packetstormsecurity.org/files/39696/mybbSQL.pl.txt http://packetstormsecurity.org/files/39696/mybbSQL.pl.txt.html Wed, 31 Aug 2005 05:17:00 GMT MyBulletinBoard (MyBB) member.php SQL injection exploit. http://packetstormsecurity.org/files/39695/multiVulns.txt http://packetstormsecurity.org/files/39695/multiVulns.txt http://packetstormsecurity.org/files/39695/multiVulns.txt.html Wed, 31 Aug 2005 05:15:14 GMT Multiple vulnerabilities have been discovered in various CMS and forum software. e107 suffers from a cross site scripting flaw, Wordpress suffers from a SQL injection flaw, PHPNews suffers from a remote inclusion flaw, phpBB suffers from a SQL injection flaw, Google suffers from a SQL injection flaw, and myspace.com suffers from a user profile defacement flaw. Oh.. and UBB 6.3.2 suffers from a remote code execution flaw. http://packetstormsecurity.org/files/39659/phpwebnotes.txt http://packetstormsecurity.org/files/39659/phpwebnotes.txt http://packetstormsecurity.org/files/39659/phpwebnotes.txt.html Sun, 28 Aug 2005 19:20:45 GMT phpWebNotes version 2.0.0-pr1 suffers from a remote inclusion vulnerability that may allow for cross site scripting attacks. http://packetstormsecurity.org/files/39658/DMA-2005-0826a.txt http://packetstormsecurity.org/files/39658/DMA-2005-0826a.txt http://packetstormsecurity.org/files/39658/DMA-2005-0826a.txt.html Sun, 28 Aug 2005 19:17:28 GMT The Nokia Affix Bluetooth btsrv makes poor use of a popen() that in turn allows for privileged code execution as root. http://packetstormsecurity.org/files/39654/lglass20040427.txt http://packetstormsecurity.org/files/39654/lglass20040427.txt http://packetstormsecurity.org/files/39654/lglass20040427.txt.html Sun, 28 Aug 2005 09:31:58 GMT Exploit for Looking Glass v20040427 arbitrary command execution / cross site scripting vulnerabilities http://packetstormsecurity.org/files/39591/qnx-inputtrap.txt http://packetstormsecurity.org/files/39591/qnx-inputtrap.txt http://packetstormsecurity.org/files/39591/qnx-inputtrap.txt.html Thu, 25 Aug 2005 06:09:10 GMT QNX inputtrap from QNX RTOS versions 6.3 and 6.1.0 suffers from an arbitrary file read vulnerability. http://packetstormsecurity.org/files/39589/foojanInject.txt http://packetstormsecurity.org/files/39589/foojanInject.txt http://packetstormsecurity.org/files/39589/foojanInject.txt.html Thu, 25 Aug 2005 05:16:23 GMT Foojan PHP Weblog suffers from an injection flaw when trusting an unsanitized HTTP_REFERER payload. http://packetstormsecurity.org/files/39587/PaFileDB31SQL.txt http://packetstormsecurity.org/files/39587/PaFileDB31SQL.txt http://packetstormsecurity.org/files/39587/PaFileDB31SQL.txt.html Thu, 25 Aug 2005 05:09:21 GMT PaFileDB 3.1 is susceptible to a SQL injection attack that allows for login bypass. http://packetstormsecurity.org/files/39585/beaXSS.txt http://packetstormsecurity.org/files/39585/beaXSS.txt http://packetstormsecurity.org/files/39585/beaXSS.txt.html Thu, 25 Aug 2005 04:59:40 GMT BEA WebLogic versions 8.1 SP4 and below suffer from a cross site scripting flaw in the Administration console. http://packetstormsecurity.org/files/39584/onunload.txt http://packetstormsecurity.org/files/39584/onunload.txt http://packetstormsecurity.org/files/39584/onunload.txt.html Thu, 25 Aug 2005 04:57:48 GMT In nearly all browsers you can overwrite the window location in the 'onunload' event. This has been tested against Firefox, Opera, and Internet Explorer.