Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:32:38 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1247464336&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1003-exploits%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1247464336.1338179558.1338179558.1338179558.1%3B%2B__utmz%3D32867617.1338179558.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/86981/bildflirt-sql.txt http://packetstormsecurity.org/files/86981/bildflirt-sql.txt http://packetstormsecurity.org/files/86981/Bild-Flirt-System-2.0-SQL-Injection.html Thu, 15 Apr 2010 23:24:52 GMT Bild Flirt System version 2.0 suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/87912/1003-exploits.tgz http://packetstormsecurity.org/files/87912/1003-exploits.tgz http://packetstormsecurity.org/files/87912/Packet-Storm-New-Exploits-For-March-2010.html Thu, 01 Apr 2010 04:20:09 GMT This archive contains all of the 424 exploits added to Packet Storm in March, 2010. http://packetstormsecurity.org/files/87897/cdtrustee-crash.txt http://packetstormsecurity.org/files/87897/cdtrustee-crash.txt http://packetstormsecurity.org/files/87897/CDTrustee-Crash-Proof-Of-Concept.html Thu, 01 Apr 2010 03:55:13 GMT CDTrustee version 2.06 local crash proof of concept exploit that creates a malicious .bak file. http://packetstormsecurity.org/files/87892/bitcomet-dos.txt http://packetstormsecurity.org/files/87892/bitcomet-dos.txt http://packetstormsecurity.org/files/87892/BitComet-1.19-Remote-Denial-Of-Service.html Thu, 01 Apr 2010 03:43:17 GMT BitComet versions 1.19 and below remote denial of service exploit. http://packetstormsecurity.org/files/87884/joomladwgraph-lfi.txt http://packetstormsecurity.org/files/87884/joomladwgraph-lfi.txt http://packetstormsecurity.org/files/87884/Joomla-DW-Graph-Local-File-Inclusion.html Thu, 01 Apr 2010 03:24:14 GMT The Joomla DW Graph component suffers from a local file inclusion vulnerability. http://packetstormsecurity.org/files/87874/optimal-overflow.txt http://packetstormsecurity.org/files/87874/optimal-overflow.txt http://packetstormsecurity.org/files/87874/Optimal-Archive-1.38-Buffer-Overflow.html Thu, 01 Apr 2010 02:44:09 GMT Optimal Archive version 1.38 SEH buffer overflow exploit that creates a malicious .zip file. http://packetstormsecurity.org/files/87873/ossim221-xss.txt http://packetstormsecurity.org/files/87873/ossim221-xss.txt http://packetstormsecurity.org/files/87873/OSSIM-2.2.1-Cross-Site-Scripting.html Thu, 01 Apr 2010 02:42:44 GMT OSSIM version 2.2.1 suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/87872/opendchub-exec.txt http://packetstormsecurity.org/files/87872/opendchub-exec.txt http://packetstormsecurity.org/files/87872/OpenDcHub-0.8.1-Code-Execution.html Thu, 01 Apr 2010 02:40:35 GMT OpenDcHub version 0.8.1 remote code execution exploit. http://packetstormsecurity.org/files/87871/ms10_018_ie_behaviors.rb.txt http://packetstormsecurity.org/files/87871/ms10_018_ie_behaviors.rb.txt http://packetstormsecurity.org/files/87871/Internet-Explorer-DTHML-Behaviors-Use-After-Free.html Thu, 01 Apr 2010 02:36:57 GMT This Metasploit module exploits a use-after-free vulnerability within the DTML behaviors functionality of Microsoft Internet Explorer versions 6 and 7. This bug was discovered being used in-the-wild and was previously known as the "iepeers" vulnerability. The name comes from Microsoft's suggested workaround to block access to the iepeers.dll file. According to Nico Waisman, "The bug itself is when trying to persist an object using the setAttribute, which end up calling VariantChangeTypeEx with both the source and the destination being the same variant. So if you send as a variant an IDISPATCH the algorythm will try to do a VariantClear of the destination before using it. This will end up on a call to PlainRelease which decref the reference and clean the object." NOTE: Internet Explorer 8 and Internet Explorer 5 are not affected. http://packetstormsecurity.org/files/87870/hp_nnm_ovwebhelp.rb.txt http://packetstormsecurity.org/files/87870/hp_nnm_ovwebhelp.rb.txt http://packetstormsecurity.org/files/87870/HP-OpenView-Network-Node-Manager-OvWebHelp.exe-CGI-Buffer-Overflow.html Thu, 01 Apr 2010 02:36:04 GMT This Metasploit module exploits a stack overflow in HP OpenView Network Node Manager 7.50. By sending a specially crafted CGI request to OvWebHelp.exe, an attacker may be able to execute arbitrary code. http://packetstormsecurity.org/files/87869/piwik-xss.txt http://packetstormsecurity.org/files/87869/piwik-xss.txt http://packetstormsecurity.org/files/87869/Piwik-0.5.5-Cross-Site-Scripting.html Thu, 01 Apr 2010 02:34:36 GMT Piwik version 0.5.5 suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/87868/wmdownloaderasx-overflow.txt http://packetstormsecurity.org/files/87868/wmdownloaderasx-overflow.txt http://packetstormsecurity.org/files/87868/WM-Downloader-3.0.0.9-Buffer-Overflow.html Thu, 01 Apr 2010 02:33:20 GMT WM Downloader version 3.0.0.9 local buffer overflow exploit that creates a malicious .asx file. http://packetstormsecurity.org/files/87867/huroncms-sql.txt http://packetstormsecurity.org/files/87867/huroncms-sql.txt http://packetstormsecurity.org/files/87867/Huron-CMS-SQL-Injection.html Thu, 01 Apr 2010 02:29:43 GMT Huron CMS suffers from a remote SQL injection vulnerability that allows for authentication bypass. http://packetstormsecurity.org/files/87838/xilisoft-dos.txt http://packetstormsecurity.org/files/87838/xilisoft-dos.txt http://packetstormsecurity.org/files/87838/Xilisoft-Blackberry-Ring-Tone-Maker-Crash.html Wed, 31 Mar 2010 15:47:51 GMT Xilisoft Blackberry Ring Tone Maker local crash exploit that creates a malicious .wma file. http://packetstormsecurity.org/files/87837/kimsq-rfi.txt http://packetstormsecurity.org/files/87837/kimsq-rfi.txt http://packetstormsecurity.org/files/87837/KimsQ-040109-Remote-File-Inclusion.html Wed, 31 Mar 2010 15:46:31 GMT KimsQ 040109 suffers from multiple remote file inclusion vulnerabilities. http://packetstormsecurity.org/files/87836/phpclassifieds-disclose.txt http://packetstormsecurity.org/files/87836/phpclassifieds-disclose.txt http://packetstormsecurity.org/files/87836/PHP-Classifieds-6.09-E-mail-Dump.html Wed, 31 Mar 2010 15:45:35 GMT PHP Classifieds version 6.09 suffers from an email dump vulnerability. http://packetstormsecurity.org/files/87835/metacart-disclose.txt http://packetstormsecurity.org/files/87835/metacart-disclose.txt http://packetstormsecurity.org/files/87835/MetaCart-Free-eCommerce-Shopping-Cart-Database-Disclosure.html Wed, 31 Mar 2010 15:43:57 GMT MetaCart Free eCommerce Shopping Cart suffers from a database disclosure vulnerability. http://packetstormsecurity.org/files/87833/oxid-fixationxss.txt http://packetstormsecurity.org/files/87833/oxid-fixationxss.txt http://packetstormsecurity.org/files/87833/OXID-eShop-Enterprise-Edition-Cross-Site-Scripting-Session-Fixation.html Wed, 31 Mar 2010 15:40:49 GMT OXID eShop Enterprise Edition suffers from cross site scripting and session fixation vulnerabilities. http://packetstormsecurity.org/files/87832/easyicon-dos.txt http://packetstormsecurity.org/files/87832/easyicon-dos.txt http://packetstormsecurity.org/files/87832/Easy-Icon-Maker-Crash.html Wed, 31 Mar 2010 15:39:06 GMT Easy Icon Maker file reading crash exploit that creates a malicious .ico file. http://packetstormsecurity.org/files/87831/joomlaactions-sql.txt http://packetstormsecurity.org/files/87831/joomlaactions-sql.txt http://packetstormsecurity.org/files/87831/Joomla-Actions-SQL-Injection.html Wed, 31 Mar 2010 02:00:42 GMT The Joomla Actions component suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/87830/freemp3cdripper-overflow.txt http://packetstormsecurity.org/files/87830/freemp3cdripper-overflow.txt http://packetstormsecurity.org/files/87830/Free-MP3-CD-Ripper-2.6-Buffer-Overflow.html Wed, 31 Mar 2010 01:59:49 GMT Free MP3 CD Ripper version 2.6 buffer overflow exploit. http://packetstormsecurity.org/files/87819/react-lfi.txt http://packetstormsecurity.org/files/87819/react-lfi.txt http://packetstormsecurity.org/files/87819/React-Software-Local-File-Inclusion.html Wed, 31 Mar 2010 01:49:52 GMT React Software suffers from a local file inclusion vulnerability. http://packetstormsecurity.org/files/87818/joomlatelevision-sql.txt http://packetstormsecurity.org/files/87818/joomlatelevision-sql.txt http://packetstormsecurity.org/files/87818/Joomla-Television-SQL-Injection.html Wed, 31 Mar 2010 01:49:10 GMT The Joomla Television component suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/87817/joomlaspec-sql.txt http://packetstormsecurity.org/files/87817/joomlaspec-sql.txt http://packetstormsecurity.org/files/87817/Joomla-Spec-SQL-Injection.html Wed, 31 Mar 2010 01:48:40 GMT The Joomla Spec component suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/87816/easyclanpage21-sql.txt http://packetstormsecurity.org/files/87816/easyclanpage21-sql.txt http://packetstormsecurity.org/files/87816/Easy-Clanpage-2.1-SQL-Injection.html Wed, 31 Mar 2010 01:45:36 GMT Easy-Clanpage versions 2.1 and below remote SQL injection exploit.