Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:09:53 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1587127126&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiledesc%2Fsecunia-qfmddisclose.txt.html%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1587127126.1338181793.1338181793.1338181793.1%3B%2B__utmz%3D32867617.1338181793.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) Quicksilver Forums mysqldump Password Disclosure http://packetstormsecurity.org/files/87368/secunia-qfmddisclose.txt http://packetstormsecurity.org/files/87368/secunia-qfmddisclose.txt http://packetstormsecurity.org/files/87368/Quicksilver-Forums-mysqldump-Password-Disclosure.html Wed, 17 Mar 2010 22:21:20 GMT Secunia Research has discovered a security issue in Quicksilver Forums, which can be exploited by malicious, local users to disclose sensitive information. The application passes the database password via the command line to the "mysqldump" utility, which may disclose the password via the process list.