SecureCRT Insecure Password Storage
SecureCRT versions 7.0.3 and below suffer from an insecure password storage vulnerability.
View ArticleSimple Admin Page Finder For Recon-NG
Simple Admin Page Finger is a module for the Recon-NG framework. It is considered a discovery module. It checks the hosts for possible administrator pages and administrative directories.
View ArticleRed Hat Security Advisory 2013-0578-01
Red Hat Security Advisory 2013-0578-01 - In accordance with the Red Hat Enterprise Linux Errata Support Policy, the Extended Update Support Add-On for Red Hat Enterprise Linux 5.6 will conclude on July...
View ArticleRed Hat Security Advisory 2013-0579-01
Red Hat Security Advisory 2013-0579-01 - The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a...
View ArticleRed Hat Security Advisory 2013-0581-01
Red Hat Security Advisory 2013-0581-01 - The libxml2 library is a development toolbox providing the implementation of various XML standards. A denial of service flaw was found in the way libxml2...
View ArticleCisco Security Advisory 20130227-cucm
Cisco Security Advisory - Cisco Unified Communications Manager contains two vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition....
View ArticleOracle Enterprise Manager advReplicationAdmin SQL Injection
Team SHATTER Security Advisory - Some parameters of /em/console/database/dist/advRepl/advReplicationAdmin in Oracle Enterprise Manager are vulnerable to SQL Injection attacks. Versions affected include...
View ArticlePHP-Fusion 7.02.05 XSS / LFI / SQL Injection
PHP-Fusion version 7.02.05 suffers from insecure backup handling, cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.
View ArticleROOTCON 7 Call For Papers
The ROOTCON 7 Call For Papers has been announced. It will be held September 13th and 14th, 2013 at the Parklane International Hotel, Cebu City, Philippines.
View ArticleOracle Auto Service Request File Clobber
Oracle Auto Service Request insecure creates files in /tmp using time stamps allow for root-owned files to be clobbered.
View ArticleUbuntu Security Notice USN-1729-2
Ubuntu Security Notice 1729-2 - USN-1729-1 fixed vulnerabilities in Firefox. This update introduced a regression which sometimes resulted in freezes and crashes when using multiple tabs with images...
View ArticlePacket Storm New Exploits For February, 2013
This archive contains all of the 157 exploits added to Packet Storm in February, 2013.
View ArticleHanso Player 2.1.0 Buffer Overflow
Hanso Player version 2.1.0 suffers from a buffer overflow vulnerability when handling malformed .m3u files.
View ArticleSami FTP Server 2.0.1 Buffer Overflow
Sami FTP Server version 2.0.1 LIST command buffer overflow exploit.
View ArticleDrupal Premium Responsive 7.x Cross Site Scripting
Drupal Premium Responsive third party theme version 7.x suffers from a cross site scripting vulnerability.
View ArticlePost XSS Exploitation: Advanced Attacks And Remedies
This paper presents an in depth study of the dangers of XSS vulnerabilities and vulgarizes its exploitation, it also showcases the remedies of post XSS attacks that can be adopted as a safeguard....
View ArticleRSA Authentication Agent 7.1.1 Access Bypass
RSA Authentication Agent version 7.1.1 for Windows suffers from an issue where a user may incorrectly gain access to a desktop or a server.
View Article