Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 06:09:33 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1999542790&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0710-exploits%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1999542790.1338185373.1338185373.1338185373.1%3B%2B__utmz%3D32867617.1338185373.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/60594/0710-exploits.tgz http://packetstormsecurity.org/files/60594/0710-exploits.tgz http://packetstormsecurity.org/files/60594/0710-exploits.tgz.html Thu, 01 Nov 2007 16:46:43 GMT Packet Storm new exploits for October, 2007. http://packetstormsecurity.org/files/60568/ispworker-disclose.txt http://packetstormsecurity.org/files/60568/ispworker-disclose.txt http://packetstormsecurity.org/files/60568/ispworker-disclose.txt.html Wed, 31 Oct 2007 22:25:02 GMT ISPworker version 1.21 suffers from a remote file disclosure vulnerability in download.php. http://packetstormsecurity.org/files/60566/mb-disclose.txt http://packetstormsecurity.org/files/60566/mb-disclose.txt http://packetstormsecurity.org/files/60566/mb-disclose.txt.html Wed, 31 Oct 2007 22:23:38 GMT ModuleBuilder version 1.0 suffers from a remote file disclosure vulnerability. http://packetstormsecurity.org/files/60544/ilias-xss.txt http://packetstormsecurity.org/files/60544/ilias-xss.txt http://packetstormsecurity.org/files/60544/ilias-xss.txt.html Wed, 31 Oct 2007 00:15:13 GMT ILIAS versions 3.8.3 and below suffer from a cross site scripting vulnerability. http://packetstormsecurity.org/files/60543/phpfaber-rfi.txt http://packetstormsecurity.org/files/60543/phpfaber-rfi.txt http://packetstormsecurity.org/files/60543/phpfaber-rfi.txt.html Wed, 31 Oct 2007 00:09:12 GMT phpFaber URLInn version 2.0.5 is susceptible to a remote file inclusion vulnerability. http://packetstormsecurity.org/files/60542/minibb-sql.txt http://packetstormsecurity.org/files/60542/minibb-sql.txt http://packetstormsecurity.org/files/60542/minibb-sql.txt.html Wed, 31 Oct 2007 00:04:45 GMT miniBB version 2.1 suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/60526/django-csrf.txt http://packetstormsecurity.org/files/60526/django-csrf.txt http://packetstormsecurity.org/files/60526/django-csrf.txt.html Tue, 30 Oct 2007 16:17:12 GMT Django version 0.96 suffers from a cross site request forgery vulnerability in the administrative panel. http://packetstormsecurity.org/files/60523/profile-upload.txt http://packetstormsecurity.org/files/60523/profile-upload.txt http://packetstormsecurity.org/files/60523/profile-upload.txt.html Tue, 30 Oct 2007 00:44:12 GMT ProfileCMS version 1.0 suffers from a remote shell upload vulnerability. http://packetstormsecurity.org/files/60522/msrs-rfi.txt http://packetstormsecurity.org/files/60522/msrs-rfi.txt http://packetstormsecurity.org/files/60522/msrs-rfi.txt.html Tue, 30 Oct 2007 00:43:02 GMT MySpace Resource Script (MSRC) version 1.21 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/60502/omnistar-xss.txt http://packetstormsecurity.org/files/60502/omnistar-xss.txt http://packetstormsecurity.org/files/60502/omnistar-xss.txt.html Mon, 29 Oct 2007 20:30:08 GMT Omnistar Live suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/60501/agtc-addadmin.txt http://packetstormsecurity.org/files/60501/agtc-addadmin.txt http://packetstormsecurity.org/files/60501/agtc-addadmin.txt.html Mon, 29 Oct 2007 20:29:22 GMT AGTC-Membership system version 1.1a remote add administrator exploit. http://packetstormsecurity.org/files/60500/gomplayer-overflow.txt http://packetstormsecurity.org/files/60500/gomplayer-overflow.txt http://packetstormsecurity.org/files/60500/gomplayer-overflow.txt.html Mon, 29 Oct 2007 20:28:17 GMT GOM Player version 2.1.6.3499 remote overflow exploit that makes use of GomWeb3.dll version 1.0.0.12. Spawns calc.exe. http://packetstormsecurity.org/files/60499/kodak-exec.txt http://packetstormsecurity.org/files/60499/kodak-exec.txt http://packetstormsecurity.org/files/60499/kodak-exec.txt.html Mon, 29 Oct 2007 20:26:42 GMT Kodak Image Viewer code execution exploit that takes advantage of the MS07-055 TIFF vulnerability. Spawns calc.exe. http://packetstormsecurity.org/files/60498/sony-overflow.txt http://packetstormsecurity.org/files/60498/sony-overflow.txt http://packetstormsecurity.org/files/60498/sony-overflow.txt.html Mon, 29 Oct 2007 20:23:37 GMT Sony CONNECT Player M3U playlist processing stack buffer overflow local exploit. http://packetstormsecurity.org/files/60492/saxon-sql.txt http://packetstormsecurity.org/files/60492/saxon-sql.txt http://packetstormsecurity.org/files/60492/saxon-sql.txt.html Mon, 29 Oct 2007 20:01:39 GMT SAXON version 5.4 is susceptible to a SQL injection vulnerability. http://packetstormsecurity.org/files/60491/saxon-xss.txt http://packetstormsecurity.org/files/60491/saxon-xss.txt http://packetstormsecurity.org/files/60491/saxon-xss.txt.html Mon, 29 Oct 2007 20:01:00 GMT SAXON version 5.4 is susceptible to a cross site scripting vulnerability. http://packetstormsecurity.org/files/60486/smartshop-xss.txt http://packetstormsecurity.org/files/60486/smartshop-xss.txt http://packetstormsecurity.org/files/60486/smartshop-xss.txt.html Mon, 29 Oct 2007 19:13:34 GMT Smart-Shop Shopping Cart is susceptible to cross site scripting vulnerabilities. http://packetstormsecurity.org/files/60484/teatro-rfi.txt http://packetstormsecurity.org/files/60484/teatro-rfi.txt http://packetstormsecurity.org/files/60484/teatro-rfi.txt.html Mon, 29 Oct 2007 19:11:09 GMT teatro version 1.6 suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/60483/sige-rfi.txt http://packetstormsecurity.org/files/60483/sige-rfi.txt http://packetstormsecurity.org/files/60483/sige-rfi.txt.html Mon, 29 Oct 2007 19:10:02 GMT Sige version 0.1 suffers from a remote file inclusion vulnerability in sige_init.php. http://packetstormsecurity.org/files/60482/fireconfig-lfi.txt http://packetstormsecurity.org/files/60482/fireconfig-lfi.txt http://packetstormsecurity.org/files/60482/fireconfig-lfi.txt.html Mon, 29 Oct 2007 19:07:42 GMT FireConfig version 0.5 suffers from a remote file disclosure vulnerability in dl.php. http://packetstormsecurity.org/files/60481/emagic-sql.txt http://packetstormsecurity.org/files/60481/emagic-sql.txt http://packetstormsecurity.org/files/60481/emagic-sql.txt.html Mon, 29 Oct 2007 19:06:54 GMT emagiC CMS.NET version 4.0 suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/60480/cauposhop-rfi.txt http://packetstormsecurity.org/files/60480/cauposhop-rfi.txt http://packetstormsecurity.org/files/60480/cauposhop-rfi.txt.html Mon, 29 Oct 2007 19:05:41 GMT CaupoShop Pro version 2.x suffers from a remote file inclusion vulnerability. http://packetstormsecurity.org/files/60479/jobsite-sql.txt http://packetstormsecurity.org/files/60479/jobsite-sql.txt http://packetstormsecurity.org/files/60479/jobsite-sql.txt.html Mon, 29 Oct 2007 19:04:31 GMT JobSite Professional version 2.0 suffers from remote SQL injection vulnerabilities. http://packetstormsecurity.org/files/60478/gosamba-rfi.txt http://packetstormsecurity.org/files/60478/gosamba-rfi.txt http://packetstormsecurity.org/files/60478/gosamba-rfi.txt.html Mon, 29 Oct 2007 19:03:43 GMT GoSamba version 1.0.1 suffers from multiple remote file inclusion vulnerabilities. http://packetstormsecurity.org/files/60477/waraxe-2007-SA059.txt http://packetstormsecurity.org/files/60477/waraxe-2007-SA059.txt http://packetstormsecurity.org/files/60477/waraxe-2007-SA059.txt.html Mon, 29 Oct 2007 18:48:03 GMT WordPress version 2.3 is susceptible to a cross site scripting vulnerability in edit-post-rows.php.