This is a patch for THC Hydra that fixes a status code parsing error for the HTTP protocol.
9f8bbdd611cf293292e197b96cc9bc52d77927cf395d6b5e00bc56cdf3233cc4
Webmin version 1.390 suffers from a cross site scripting vulnerability.
c450bd3d09d7f21c613a13caf883400dd48a8da4a244ea4e1cc7965dbbb7a2fe
JaPCrypt stands for Javascript and PHP Encryption. It is a PHP/JavaScript suite that allows data encryption over HTTP.
96ba103d25f01e3d3c3d1a105d6cf5244df6bf93d4e42122e8a5d08c1b8e06ff
OpenSiteAdmin versions 0.9.1.1 and below suffer from multiple remote file inclusion vulnerabilities.
40bbe74570d048d429056d0c1a17fda85bc1e944fbaa129886682ca5af5ac6f4
CYBSEC Security Advisory - An arbitrary file overwrite vulnerability exists in Documentum Administrator version 5.3.0.313 and Documentum Webtop version 5.3.0.317.
6a7edaff25163bf5c8ba2f9a8295f93135c7d9b176a6b44472697e278f40a5dc
Secunia Security Advisory - mu-b has reported a vulnerability in SafeNet products, which can be exploited by malicious, local users to gain escalated privileges.
376a5dae6691da63afa118e62ea41de07e1446fc4c6aaf1b0d9c1828539568c3
Secunia Security Advisory - Ubuntu has issued an update for apache2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct cross-site scripting attacks.
a0dc630aef2c54b5858815993484b7853644f748e9343044dbeffd41070eacbd
Secunia Security Advisory - A vulnerability has been reported in RaidenHTTPD, which can be exploited by malicious people to conduct cross-site scripting attacks.
da8ac656cff68f73a24d799c26ba17b0b8d1d5990bccf06eba215b17c7c838fd
Debian Security Advisory 1482-1 - It was discovered that malformed cache update replies against the Squid WWW proxy cache could lead to the exhaustion of system memory, resulting in potential denial of service.
2c51495f26c004770d1c059d6fbb090b1039026ad891e5815331d2be6be51742
Debian Security Advisory 1481-1 - It was discovered that a directory traversal vulnerability in CherryPy, a pythonic, object-oriented web development framework may lead to denial of service by deleting files through malicious session IDs in cookies.
2d5292a88121aef527bffd7b0ee0ec142d4f5920d873bdf8bb0b39d09f0df0f6
Debian Security Advisory 1480-1 - Alin Rad Pop discovered several buffer overflows in the Poppler PDF library, which could allow the execution of arbitrary code if a malformed PDF file is opened.
351f35d4a89cf79f04f78425068edefe418915d70daa17fd52690d59d2bf1972
Debian Security Advisory 1486-1 - "r0t" discovered that gnatsweb, a web interface to GNU GNATS, did not correctly sanitize the database parameter in the main CGI script. This could allow the injection of arbitrary HTML, or javascript code.
9ddea4aef7c77083962882bd870e592448662806878b24939fc986855efe1276
Titan FTP server version 6.05 Build 550 heap overflow denial of service exploit written in Python.
655e3bd21682f5919b38572e699c056b7f3e453bfc145174c61681149f483cd6
ActiveX - Active Exploitation. A simple white paper discussing the basic elements of hacking ActiveX.
ce1f2b94c26dc95fe4e0ce9dcba7adcb316b6611961de9a52812991efd50cdf2
Wordpress MU versions below 1.3.2 active_plugins option code execution exploit.
7a3a21235d51bdc42e6c0752a58a8406a9a623dc11f99413787468d3da4d605c
Photokorn Gallery version 1.543 suffers from a SQL injection vulnerability.
2a380c0b9ac0085a9dd740d146f8371094fe525197b9dc314df7e761db5291ad
All Club CMS versions 0.0.1f and below suffer from a remote SQL injection vulnerability in index.php.
2a3ccc3f238f132e87f7620c383b70107da32ac6a02e64553b4d966c51a57d71
RMSOFT Gallery System version 2.0 suffers from a SQL injection vulnerability in images.php.
642c6b6b03346e959b4fbfb2fb25c4f211fff0e0221aac67b77d30052d9694ba
Azucar CMS version 1.3 suffers from a local file inclusion vulnerability.
76d67bb1ad5cdee81c2affe6bbd951d58ba0d73bfc54904bf400489904bb7656
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to create a Denial of Service (DoS).
d7e55f41d0df6daf8cdcd012ba76422e306853c3736291a2eff50bd0e367d0ca
All Club CMS versions 0.0.1f and below suffer from a local file inclusion vulnerability in index.php.
7b484d9c53345d3a9f9556d695fc6149c1573cb91ba442195bac31775e0d697f
dBpowerAMP Audio Player release 2 remote buffer overflow proof of concept denial of service exploit.
1ce10d693a440f9dc1e8d383b59ea575028760e6510c906caaceb65b90179704
NERO Media Player versions 1.4.0.35b and below M3U file buffer overflow proof of concept denial of service exploit.
a97a33b09322cbad75583fb79c61778781c1d02d178c7506c9bf1ef402732509
Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
50435a4804e9d77bcb7cc77de984f44efb9292e75af1e40104e74f3d1d79d022
Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
32d9794c00c4a6afa9bb98fff43e97dae6fb37e7681049aefd9735ba471b887d