Code that demonstrates the Google Chrome version 1.0.154.43 clickjacking vulnerability.
03574def8d9d7f4c377488d4c1a5b9243ec0d8f75e5d2d7f597a272799ae8201FFmpeg contains a type conversion vulnerability while parsing malformed 4X movie files. The vulnerability may be exploited by a (remote) attacker to execute arbitrary code in the context of FFmpeg or an application using the FFmpeg library.
fdcf90835a6517d5d2a479f58cb2df9924557def551619884e79cb3f547d6180Debian Security Advisory 1714-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.
05a5adea0d8ec28c0010e75b95a578fbe74e1759d8175b86d33a04c0cea7878dDebian Security Advisory 1713-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.
68f93e87aeb3723d64ef0ed09181b91f5c6221b04ebdc9900b50af215e4bf67eDebian Security Advisory 1712-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.
806d1b0b94508c455675218ab282784460171f46e59d0aa75263b9520e2dfd97Core Security Technologies Advisory - Multiple stack buffer overflow vulnerabilities have been discovered in Amaya, which can be exploited by unauthorized people using crafted web pages to compromise a user's system. Versions 11.0 and below are affected.
4f5fe11c68b25a031c852b7dc492461acfaa7a12adbc0ba45ed0651a87ee791aSmartSiteCMS version 1.0 remote blind SQL injection exploit that uses articles.php.
8dc4d65963b9a2e3ec5485d75b7c08e6c1985ae66c0fe9a9e27eff286bdfcbb5The Google Chrome browser versions 1.0.154.43 and below suffer from a clickjacking vulnerability.
27dcfcdabbcecce3e8e4b66b1588af2538f343cb247465ef7a0c037215785377Social Engine suffers from a remote SQL injection vulnerability in blog.php.
250d58cd724dbf96f25515b1811cc40a57dd614cb233d80da00e837194214d87Community CMS versions 0.4 and below remote blind SQL injection exploit that uses index.php.
2c06704b235eaf18e149f1b6c3fbf06134295427b659e6f5d9ebd948209e2968Zinf Audio Player version 2.2.1 universal local buffer overflow exploit that creates a malicious .pls file and launches calc.exe.
82389511c38046d9cfc27b5557ecad039256e81f283690cf234c8d68e3071e38This file documents recent incidents that have been reported to the Web Hacking Incidents Database (WHID).
937af488cc6082b0ce51a0af28870120abb73256fee5ef8a02f8e960a5ffe8bdMicrosoft Internet Explorer 7.0 suffers from a stack overflow vulnerability when accepting a very large payload for any form variable.
04c28a2e489f7f974c91bd9f44d1683672b451a1bcb121885ef732f143930f2aFinal call for papers for the 5th edition of CONFIDENCE which is taking place on May 15th and May 16th, 2009 in Krakow, Poland.
aeaaeec2abf263bdc2fb8236ba9c89aa2ec4f1d8c9bc14ce1713188073033472Max.Blog versions 1.0.6 and below suffer from an offline authentication bypass vulnerability in offline_auth.php.
7fbacf2aeb40d0bfed5b5238ae5d62c675412063aee58b207e2ed16e2e5ebcefMax.Blog versions 1.0.6 and below suffer from a remote SQL injection vulnerabilty in submit_post.php.
039ea77ba9557deb0e5c89b7b7fc9e6fe8f0be1658e75d83a4c117a5882ca7f8Lore version 1.5.6 blind SQL injection exploit that uses article.php.
162b37cc90e2e08478870b1b63ede365f3f9d5b90c5d9ec360711e24376edc55Local file inclusion exploit for PHP-List version 2.10.x that performs remote code execution.
1b19a9078c5a8b7604e637366f4a7c7930ad19ab102b1d5f23196e62243d7af5Authentication bypass exploit for Chipmunk Blog that adds an administrative user.
a3abbcb39e002d42d2678747cd2f3024ed2bad8f47cbf8b8e88f5587dc01d561GameScript version 4.6 suffers from cross site scripting, remote SQL injection, and local file inclusion vulnerabilities.
c59472aa5bc53787f194e5406e892945d1e6162e18e6cf83d1935e2743f37873Secunia Security Advisory - Xianur0 has discovered a vulnerability in Simple Machines Forum, which can be exploited by malicious people to conduct cross-site scripting attacks.
cc76e61b6b65ec7ce1345da205f1e4e4923af34cac43386dcaa1be4a30b31cd6Secunia Security Advisory - A vulnerability has been discovered in osCommerce, which can be exploited by malicious people to conduct cross-site request forgery attacks.
a24e8f34fed73cdb25dc3ac93cccd101c83579ef94c36b36b7d01ba9e7857932Secunia Security Advisory - Encrypt3d.M!nd has reported some vulnerabilities in GameScript, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
84f921f751f5c6cb1cd0a52617dfdc242800ec58b4f5c6b22cb4bbf35402b84bSecunia Security Advisory - fuzion has discovered a vulnerability in Gazelle CMS, which can be exploited by malicious people to disclose sensitive information.
eef8aec064a81dbb05780a5011aeb2b7f801c97ae28be496f78582fe5c4f17c8Secunia Security Advisory - Some weaknesses have been reported in various CA products, which can be exploited by malware to bypass the scanning functionality.
4e2196907b5e41de5a8b18bc8993911b9cbe6a5311ec8c7503b38f8fb98957dc
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed