[USN-642-1] Postfix vulnerabilities

2008-09-11 Thread Kees Cook
=== Ubuntu Security Notice USN-642-1 September 10, 2008 postfix vulnerabilities CVE-2008-3889 === A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu

Ezphotogallery 2.1 Multiple Vulnerabilities ( Xss/Login Bypass/Sql injection Exploit/File Disclosure)

2008-09-11 Thread irancrash
#!/usr/bin/perl # # #Script : Ezphotogallery 2.1 # #Type : Multiple Vulnerabilities ( Xss/Login Bypass/Sql injection Exploit/File Disclosure) # #Method : GET # #Alert : High # #Google Dork : 100% | 50% | 25% Back to gallery

sqlvdir.dll ActiveX Remote Buffer Overflow Exploit

2008-09-11 Thread beenudel1986
# est.2007\/\/ forum.darkc0de.com # # --d3hydr8 -rsauron-baltazar -sinner_01 -C1c4Tr1Z - r4s4al# # ---QKrun1x-P47tr1ck - FeDeReR -MAGE -JeTFyrE# # and all

PhsBlog v0.2 Bypass Sql injection Filtering Exploit

2008-09-11 Thread irancrash
#!/usr/bin/perl # # #Script : PhsBlog v0.2 # #Type : Bypass Sql injection Filtering Exploit # #Method : GET # #Risk : High # # # #Discovered by : Khashayar Fereidani

minb Remote Code Execution Exploit

2008-09-11 Thread r3d . w0rm
#!/usr/bin/python # minb Remote Code Execution Exploit # #

[security bulletin] HPSBOV02364 SSRT080078 rev.1 - HP OpenVMS SMGRTL Run Time Library, Local Authorized User, Gain Privileged Access

2008-09-11 Thread security-alert
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01539423 Version: 1 HPSBOV02364 SSRT080078 rev.1 - HP OpenVMS SMGRTL Run Time Library, Local Authorized User, Gain Privileged Access NOTICE: The information in this Security Bulletin should

Nooms 1.1

2008-09-11 Thread irancrash
Script : Nooms 1.1 Type : Multiple Vulnerabilities (Cross Site Scripting/Redirect/Mysql Brute Force Local Access) Risk : Medium Download From :

Advisory 04/2008: Joomla Weak Random Password Reset Token Vulnerability

2008-09-11 Thread Stefan Esser
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: Joomla Weak Random Password Reset Token Vulnerability Release Date: 2008/09/11 Last Modified:

RE: SQL Smuggling

2008-09-11 Thread Gary Oleary-Steele
Hi, First let me start by saying im not writing to flame anyone (or whatever you kids say these days). I know its can be a daunting to release a paper to the security community because if any of its incorrect you're gonna hear about it. However releasing a paper and claiming it to be a new

[SECURITY] [DSA 1636-1] New Linux 2.6.24 packages fix several vulnerabilities

2008-09-11 Thread dann frazier
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Debian Security Advisory DSA-1636-1[EMAIL PROTECTED] http://www.debian.org/security/ dann frazier Sep 11, 2008

ZoneAlarm Security Suite buffer overflow

2008-09-11 Thread jplopezy
Application: ZoneAlarm Security Suite OS: Windows Xp (All patches a day) -- 1 - Description 2 - Vulnerability 3 - POC/EXPLOIT -- Description The zonealarm is a known firewall, which in the