[BMSA 2008-09] Two buffer overflow vulnerabilities in Rumpus v6.0
.::anti-abuse.com::.
Security Revealed
rss's archive
Bugtraq: [BMSA 2008-09] Two buffer overflow vulnerabilities in Rumpus v6.0
Posted in December 1st, 2008
Comments Off
Bugtraq: [USN-681-1] ImageMagick vulnerability
Posted in December 1st, 2008
[USN-681-1] ImageMagick vulnerability
Comments Off
activebizdir-sql.txt
Posted in December 1st, 2008
Active Business Directory version 2 suffers from a remote blind SQL injection vulnerability.
Comments Off
ktpccd-lfi.txt
Posted in December 1st, 2008
KTP Computer Customer Database CMS local file inclusion exploit.
Comments Off
ktpccd-sql.txt
Posted in December 1st, 2008
KTP Computer Customer Database CMS suffers from a blind SQL injection vulnerability.
Comments Off
minimalablog-sqlfubypass.txt
Posted in December 1st, 2008
Minimal Ablog version 0.4 suffers from file upload, administrative bypass, and remote SQL injection vulnerabilities.
Comments Off
cpcommerce-bypass.txt
Posted in December 1st, 2008
cpCommerce version 1.2.6 suffers from input variable overwrite and authentication bypass vulnerabilities.
Comments Off
broadcast-rfi.txt
Posted in December 1st, 2008
Broadcast Machine version 0.1 suffers from multiple remote file inclusion vulnerabilities.
Comments Off
z1exchange-sql.txt
Posted in December 1st, 2008
z1exchange versions 1.0 suffers from a remote SQL injection vulnerability in edit.php.
Comments Off
andysphpkb-upload.txt
Posted in December 1st, 2008
Andy’s PHP Knowledgebase version 0.92.9 suffers from an arbitrary file upload vulnerability.
Comments Off
0811-exploits.tgz
Posted in December 1st, 2008
Packet Storm new exploits for November, 2008.
Comments Off
search.free.fr XSS
Posted in December 1st, 2008
C1c4Tr1Z has discovered a vulnerability in search.free.fr, which could be exploited by malicious people to conduct XSS attacks.
Comments Off
ssl.seat.de Script Insertion
Posted in December 1st, 2008
Uber0n has discovered a vulnerability in ssl.seat.de, which could be exploited by malicious people to conduct Script Insertion attacks.
Comments Off
ssl.seat.de Script Insertion
Posted in December 1st, 2008
Uber0n has discovered a vulnerability in ssl.seat.de, which could be exploited by malicious people to conduct Script Insertion attacks.
Comments Off
ssl.seat.de Script Insertion
Posted in December 1st, 2008
Uber0n has discovered a vulnerability in ssl.seat.de, which could be exploited by malicious people to conduct Script Insertion attacks.
Comments Off
ssl.seat.de Script Insertion
Posted in December 1st, 2008
Uber0n has discovered a vulnerability in ssl.seat.de, which could be exploited by malicious people to conduct Script Insertion attacks.
Comments Off
www.kungfudirect.com XSS
Posted in December 1st, 2008
PaPPy has discovered a vulnerability in www.kungfudirect.com, which could be exploited by malicious people to conduct XSS attacks.
Comments Off
finance.aol.com XSS
Posted in December 1st, 2008
S_e_YM_e_N has discovered a vulnerability in finance.aol.com, which could be exploited by malicious people to conduct XSS attacks.
Comments Off
dsa-1675-1.txt
Posted in December 1st, 2008
Debian Security Advisory 1675-1 - Masako Oono discovered that phpMyAdmin, a web-based administration interface for MySQL, insufficiently sanitises input allowing a remote attacker to gather sensitive data through cross site scripting, provided that the user uses the Internet Explorer web browser.
Comments Off
Microsoft’s $20 billion Yahoo deal: bogus?
Posted in December 1st, 2008
by Alex Zaharov-Reutt in rss
Looks like the Times Online’s report about Microsoft offering $20 billion to buy Yahoo was bogus, with key figures in both the Microsoft and Yahoo camps saying there’s no truth to the story. The thing is, the denials could be yet more misinformation…
Comments Off
Bugtraq: [TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability
Posted in December 1st, 2008
[TKADV2008-013] VLC media player RealMedia Processing Integer Overflow Vulnerability
Comments Off
Bugtraq: /bin/login gives root to group utmp
Posted in December 1st, 2008
/bin/login gives root to group utmp
Comments Off
Bugtraq: Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability
Posted in December 1st, 2008
Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability
Comments Off
Recent Firefox extensions for tab addicts
Posted in December 1st, 2008
by Bruce Byfield in rss
The number of Firefox extensions continues to grow. For example, when I last wrote about tab extensions just over a year ago, about 110 existed. Now, despite the need to rewrite many extensions to make them compatible with Firefox 3.0, the number is over 190, and the choice is greater than ever. Basic functionality, coloring options, positioning of the tab bar, automatic opening of tabs at startup — whatever your need, you can probably find it on the Firefox add-ons site.
Comments Off
Why Robert Gates is a Terrible Pick
Posted in December 1st, 2008
The appointment of Robert Gates — a vocal critic of Obama’s Iraq withdrawal plan who will undoubtedly shape policy– is alarming.
Comments Off
SB08-336: Vulnerability Summary for the Week of November 24, 2008
Posted in December 1st, 2008
by info@us-cert.gov in rss
Vulnerability Summary for the Week of November 24, 2008
Comments Off
[3/5] RakhiSoftware Shopping Cart Multiple Vulnerabilities
Posted in December 1st, 2008
Charalambous Glafkos has reported some vulnerabilities in RakhiSoftware Shopping Cart, which can be exploited by malicious people to disclose system information, or to conduct SQL injection and cross-site scripting attacks.
http://secunia.com/Advisories/32950/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
Comments Off
Bugtraq: [SECURITY] [DSA 1673-1] New wireshark packages fix several vulnerabilities
Posted in December 1st, 2008
[SECURITY] [DSA 1673-1] New wireshark packages fix several vulnerabilities
Comments Off
Bugtraq: [SECURITY] [DSA 1674-1] New jailer packages fix denial of service
Posted in December 1st, 2008
[SECURITY] [DSA 1674-1] New jailer packages fix denial of service
Comments Off
Bugtraq: [SECURITY] [DSA 1675-1] New phpmyadmin packages fix cross site scripting
Posted in December 1st, 2008
[SECURITY] [DSA 1675-1] New phpmyadmin packages fix cross site scripting
Comments Off
Advertisments
Popular Tags
Recent Entries
- Bugtraq: [BMSA 2008-09] Two buffer overflow vulnerabilities in Rumpus v6.0
- Bugtraq: [USN-681-1] ImageMagick vulnerability
- activebizdir-sql.txt
- ktpccd-lfi.txt
- ktpccd-sql.txt
- minimalablog-sqlfubypass.txt
- cpcommerce-bypass.txt
- broadcast-rfi.txt
- z1exchange-sql.txt
- andysphpkb-upload.txt
Recent Comments
- Keine Kommentare vorhanden.
Social Network
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Nov | ||||||
| 1 | 2 | 3 | 4 | 5 | 6 | 7 |
| 8 | 9 | 10 | 11 | 12 | 13 | 14 |
| 15 | 16 | 17 | 18 | 19 | 20 | 21 |
| 22 | 23 | 24 | 25 | 26 | 27 | 28 |
| 29 | 30 | 31 | ||||
Subscribes
Meta
Archives
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- August 2005
- July 2005
- June 2005
- May 2005
- January 2005
- November 2004
- October 2004
- September 2004
- January 1970
- December 1969