Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:51:52 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1560852149&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%20Date%3A%202012-01-28%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fdates%2F2012-01-28%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1560852149.1338191512.1338191512.1338191512.1%3B%2B__utmz%3D32867617.1338191512.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/109219/VL-171.txt http://packetstormsecurity.org/files/109219/VL-171.txt http://packetstormsecurity.org/files/109219/FAA-US-Academy-SQL-Injection.html Sat, 28 Jan 2012 18:22:11 GMT FAA US Academy suffers from a remote SQL injection vulnerability that allows for authentication bypass. http://packetstormsecurity.org/files/109232/VL-313.txt http://packetstormsecurity.org/files/109232/VL-313.txt http://packetstormsecurity.org/files/109232/eBank-IT-Online-Banking-Cross-Site-Scripting.html Sat, 28 Jan 2012 18:22:11 GMT eBank IT Online Banking suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109214/joomlavisa-lfisql.txt http://packetstormsecurity.org/files/109214/joomlavisa-lfisql.txt http://packetstormsecurity.org/files/109214/Joomla-Visa-SQL-Injection-Local-File-Inclusion.html Sat, 28 Jan 2012 18:21:22 GMT The Joomla Visa component suffers from local file inclusion and remote SQL injection vulnerabilities. http://packetstormsecurity.org/files/109215/dgc-sql.txt http://packetstormsecurity.org/files/109215/dgc-sql.txt http://packetstormsecurity.org/files/109215/DGC-SQL-Injection.html Sat, 28 Jan 2012 17:22:22 GMT DGC suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109231/joomlacmotour-sql.txt http://packetstormsecurity.org/files/109231/joomlacmotour-sql.txt http://packetstormsecurity.org/files/109231/Joomla-Cmotour-SQL-Injection.html Sat, 28 Jan 2012 14:55:11 GMT The Joomla Cmotour component suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109226/nedarayaneh-sql.txt http://packetstormsecurity.org/files/109226/nedarayaneh-sql.txt http://packetstormsecurity.org/files/109226/Neda-Rayaneh-CMS-SQL-Injection.html Sat, 28 Jan 2012 14:44:44 GMT Neda Rayaneh CMS suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109220/tndmedia-sql.txt http://packetstormsecurity.org/files/109220/tndmedia-sql.txt http://packetstormsecurity.org/files/109220/TND-Media-CMS-SQL-Injection.html Sat, 28 Jan 2012 14:44:44 GMT TND Media CMS suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector-.zip http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector-.zip http://packetstormsecurity.org/files/109211/FatCat-SQL-Injector.html Sat, 28 Jan 2012 13:22:22 GMT This is an automatic SQL Injection tool called FatCat. It has features that help you to extract the database information, table information, and column information from a web application. http://packetstormsecurity.org/files/109210/silverstripecmspage-xss.txt http://packetstormsecurity.org/files/109210/silverstripecmspage-xss.txt http://packetstormsecurity.org/files/109210/Silverstripe-CMS-Cross-Site-Scripting.html Sat, 28 Jan 2012 12:12:12 GMT Silverstripe CMS suffers from a cross site scripting vulnerability in the page title module. http://packetstormsecurity.org/files/109225/lifesystems-xss.txt http://packetstormsecurity.org/files/109225/lifesystems-xss.txt http://packetstormsecurity.org/files/109225/Lifesystems-Cross-Site-Scripting.html Sat, 28 Jan 2012 10:12:12 GMT Lifesystems suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109221/motigo-xss.txt http://packetstormsecurity.org/files/109221/motigo-xss.txt http://packetstormsecurity.org/files/109221/Motigo-Forums-Calendar-Guestbook-Cross-Site-Scripting.html Sat, 28 Jan 2012 04:44:44 GMT Motigo Forums/Calendar/Guestbook suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109178/advisory_gitorious.txt http://packetstormsecurity.org/files/109178/advisory_gitorious.txt http://packetstormsecurity.org/files/109178/Gitorious-Remote-Command-Execution.html Sat, 28 Jan 2012 00:49:55 GMT Gitorious versions prior to 2.1.1 suffer from a remote command execution vulnerability. http://packetstormsecurity.org/files/109177/hp_magentservice.rb.txt http://packetstormsecurity.org/files/109177/hp_magentservice.rb.txt http://packetstormsecurity.org/files/109177/HP-Diagnostics-Server-magentservice.exe-Overflow.html Sat, 28 Jan 2012 00:46:13 GMT This Metasploit module exploits a stack buffer overflow in HP Diagnostics Server magentservice.exe service. By sending a specially crafted packet, an attacker may be able to execute arbitrary code. Originally found and posted by AbdulAziz Harir via ZDI. http://packetstormsecurity.org/files/109176/ms12_004_midi.rb.txt http://packetstormsecurity.org/files/109176/ms12_004_midi.rb.txt http://packetstormsecurity.org/files/109176/MS12-004-midiOutPlayNextPolyEvent-Heap-Overflow.html Sat, 28 Jan 2012 00:45:35 GMT This Metasploit module exploits a heap overflow vulnerability in the Windows Multimedia Library (winmm.dll). The vulnerability occurs when parsing specially crafted MIDI files. Remote code execution can be achieved by using Windows Media Player's ActiveX control. Exploitation is done by supplying a specially crafted MIDI file with specific events, causing the offset calculation being higher than how much is available on the heap (0x400 allocated by WINMM!winmmAlloc), and then allowing us to either "inc al" or "dec al" a byte. This can be used to corrupt an array (CImplAry) we setup, and force the browser to confuse types from tagVARIANT objects, which leverages remote code execution under the context of the user. At this time, for IE 8 target, JRE (Java Runtime Environment) is required to bypass DEP (Data Execution Prevention). Note: Based on our testing, the vulnerability does not seem to trigger when the victim machine is operated via rdesktop. http://packetstormsecurity.org/files/109175/SA-2012-L119-003.txt http://packetstormsecurity.org/files/109175/SA-2012-L119-003.txt http://packetstormsecurity.org/files/109175/AWS-Hash-Collisions.html Sat, 28 Jan 2012 00:43:57 GMT AdaCore Security Advisory - All AWS releases and wavefronts prior to 2012-01-21 suffer from hash collision vulnerabilities. http://packetstormsecurity.org/files/109174/smlistarivisteuk-sql.txt http://packetstormsecurity.org/files/109174/smlistarivisteuk-sql.txt http://packetstormsecurity.org/files/109174/Studio-Manolibera-Listarivisteuk-SQL-Injection.html Sat, 28 Jan 2012 00:41:31 GMT Studio Manolibera's listarivisteuk.php suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109171/darkd0rk3r-0.5.py.txt http://packetstormsecurity.org/files/109171/darkd0rk3r-0.5.py.txt http://packetstormsecurity.org/files/109171/Dark-D0rk3r-0.5.html Sat, 28 Jan 2012 00:39:16 GMT Dark D0rk3r is a python script that performs dork searching and searches for local file inclusion and SQL injection errors. http://packetstormsecurity.org/files/109169/ibbynouvelles-sql.txt http://packetstormsecurity.org/files/109169/ibbynouvelles-sql.txt http://packetstormsecurity.org/files/109169/IBBY-SQL-Injection.html Sat, 28 Jan 2012 00:33:08 GMT IBBY's nouvelles.php suffers from a remote SQL injection vulnerability.