Web Files ≈ Packet Storm

Symantec Web Gateway 5.0.2 Local File Inclusion

Sat, 26 May 2012 15:04:17 GMT

Symantec Web Gateway version 5.0.2 remote local file inclusion root exploit.

RabidHamster R4 Log Entry sprintf() Buffer Overflow

Fri, 25 May 2012 20:56:18 GMT

This Metasploit module exploits a vulnerability found in RabidHamster R4's web server. By supplying a malformed HTTP request, it is possible to trigger a stack-based buffer overflow when generating a log, which may result in arbitrary code execution under the context of the user.

Kolkata Web Application Fingerprinting

Fri, 25 May 2012 20:31:24 GMT

Kolkata is a tool for IDS evading web application fingerprinting. It is written in perl and uses LibWhisker.

Red Hat Security Advisory 2012-0688-01

Thu, 24 May 2012 02:22:51 GMT

Red Hat Security Advisory 2012-0688-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes one vulnerability in Adobe Flash Player. This vulnerability is detailed on the Adobe security page APSB12-09, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the specially-crafted SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 10.3.183.19.

Secunia Security Advisory 49270

Tue, 22 May 2012 12:36:39 GMT

Secunia Security Advisory - Red Hat has issued an update for JBoss Enterprise Web Server. This fixes multiple weakness, two security issues, and multiple vulnerabilities, which can be exploited by malicious, local users and malicious people to disclose sensitive information, bypass certain security restrictions, or cause a DoS (Denial of Service).

Red Hat Security Advisory 2012-0681-01

Tue, 22 May 2012 00:23:56 GMT

Red Hat Security Advisory 2012-0681-01 - Apache Tomcat is a servlet container. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update fixes the JBPAPP-4873, JBPAPP-6133, and JBPAPP-6852 bugs. It also resolves multiple flaws that weakened the Tomcat HTTP DIGEST authentication implementation, subjecting it to some of the weaknesses of HTTP BASIC authentication, for example, allowing remote attackers to perform session replay attacks.

Red Hat Security Advisory 2012-0679-01

Tue, 22 May 2012 00:22:52 GMT

Red Hat Security Advisory 2012-0679-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update includes bug fixes as documented in JBPAPP-4873 and JBPAPP-6133.

Red Hat Security Advisory 2012-0682-01

Tue, 22 May 2012 00:21:41 GMT

Red Hat Security Advisory 2012-0682-01 - Apache Tomcat is a servlet container. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update fixes the JBPAPP-4873, JBPAPP-6133, and JBPAPP-6852 bugs. It also addresses multiple flaws that weakened the Tomcat HTTP DIGEST authentication implementation, subjecting it to some of the weaknesses of HTTP BASIC authentication, for example, allowing remote attackers to perform session replay attacks.

Red Hat Security Advisory 2012-0680-01

Tue, 22 May 2012 00:20:13 GMT

Red Hat Security Advisory 2012-0680-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. JBoss Enterprise Web Server includes the Tomcat Native library, providing Apache Portable Runtime support for Tomcat. This update includes bug fixes as documented in JBPAPP-4873 and JBPAPP-6133.

ClubHACK Magazine Issue 28

Mon, 21 May 2012 09:22:22 GMT

ClubHACK Magazine Issue 28 - Topics covered include Steganography over covert channels, Kautilya, HTTPS, and more.

Oracle Weblogic Apache Connector POST Request Buffer Overflow

Fri, 18 May 2012 14:58:27 GMT

This Metasploit module exploits a stack based buffer overflow in the BEA Weblogic Apache plugin. The connector fails to properly handle specially crafted HTTP POST requests, resulting a buffer overflow due to the insecure usage of sprintf. Currently, this module works over Windows systems without DEP, and has been tested with Windows 2000 / XP. In addition, the Weblogic Apache plugin version is fingerprinted with a POST request containing a specially crafted Transfer-Encoding header.

HULK - Http Unbearable Load King

Fri, 18 May 2012 14:31:37 GMT

HULK is a web server denial of service tool written for research purposes. It is designed to generate volumes of unique and obfuscated traffic at a webserver, bypassing caching engines and therefore hitting the server's direct resource pool.

Cross Site Scripting Walkthrough

Fri, 18 May 2012 14:23:24 GMT

This is a whitepaper that gives a complete cross site scripting walkthrough.

Secunia Security Advisory 49185

Fri, 18 May 2012 11:16:11 GMT

Secunia Security Advisory - A vulnerability has been reported in Tornado, which can be exploited by malicious people to conduct HTTP response splitting attacks in an application using the framework.

Secunia Security Advisory 49216

Fri, 18 May 2012 05:24:51 GMT

Secunia Security Advisory - Multiple vulnerabilities have been reported in Symantec Web Gateway, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, manipulate certain data, and compromise a vulnerable system.

Cryptographp Local File Inclusion / HTTP Response Splitting

Fri, 18 May 2012 02:22:22 GMT

Cryptographp suffers from local file inclusion and HTTP response splitting vulnerabilities.

Web Application Vulnerability Scanner 0.11

Thu, 17 May 2012 21:54:06 GMT

WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, web applications for security vulnerabilities. As a scan is running, details of the scan are dynamically updated to the user. These details include the status of the scan, the number of URLs found on the web application, the number of vulnerabilities found and details of the vulnerabilities found. After a scan is complete, a detailed PDF report is emailed to the user. The report includes descriptions of the vulnerabilities found, recommendations and details of where and how each vulnerability was exploited.

Bluelog Bluetooth Scanner/Logger 1.0.3

Tue, 15 May 2012 03:19:40 GMT

Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.

WordPress Zingiri Web Shop 2.3.5 Cross Site Scripting

Tue, 15 May 2012 02:00:37 GMT

WordPress Zingiri Web Shop plugin version 2.3.5 suffers from a cross site scripting vulnerability.

Vallarta Web Services SQL Injection

Mon, 14 May 2012 17:23:33 GMT

Vallarta Web Services suffers from a remote SQL injection vulnerability.

Netgear WNDRMAC 1.0.0.22 Information Disclosure

Sun, 13 May 2012 13:33:33 GMT

Netgear WNDRMAC versions 1.0.0.22 and below suffer from a serial number disclosure vulnerability. http://www.senseofsecurity.com.au/.

XCat 1.5

Sun, 13 May 2012 12:12:12 GMT

XCat is a PHP web interface for scanning sites mined through bing.com.

Debian Security Advisory 2670-1

Fri, 11 May 2012 21:47:59 GMT

Debian Linux Security Advisory 2670-1 - Several vulnerabilities were identified in Wordpress, a web blogging tool. As the CVEs were allocated from release announcements and specific fixes are usually not identified, it has been decided to upgrade the Wordpress package to the latest upstream version instead of backporting the patches.

Red Hat Security Advisory 2012-0570-01

Fri, 11 May 2012 21:47:37 GMT

Red Hat Security Advisory 2012-0570-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A flaw was found in the way the php-cgi executable processed command line arguments when running in CGI mode. A remote attacker could send a specially-crafted request to a PHP script that would result in the query string being parsed by php-cgi as command line options and arguments. This could lead to the disclosure of the script's source code or arbitrary code execution with the privileges of the PHP interpreter. Red Hat is aware that a public exploit for this issue is available that allows remote code execution in affected PHP CGI configurations. This flaw does not affect the default configuration using the PHP module for Apache httpd to handle PHP scripts.

OWASP Mantra - Lexicon 0.91 Beta

Fri, 11 May 2012 15:43:54 GMT

OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals, etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the source code release.