phpPrintAnalyzer 1.1 rep_par_rapport_racine Remote File Inclusion
August 14th, 2006————————————————————————
—————
phpPrintAnalyzer 1.1 rep_par_rapport_racine Remote File Inclusion
————————————————————————
—————
Read the rest of this entry »
TinyWebGallery v1.5 ( image ) Remote Include Vulnerability
August 14th, 2006C Y B E R - W A R R i O R TIM
TinyWebGallery v1.5 ( image ) Remote Include Vulnerability
————————————————————————
——
Read the rest of this entry »
Windows Explorer URL File format overflow
July 8th, 2006Affected Vendor: Microsoft
Affected Products: WindowsXP ALL, Windows2003 ALL
Vulnerability Details:
When explorer.exe parsing *.url file which contains a url as follows format will cause explorer.exe crash.
if you create the Exploit.url on Desktop
Read the rest of this entry »
WebEx Downloader Plug-in Multiple Vulnerabilities + rant
July 8th, 2006All these vulnerabilities were reported to WebEx by NGS Software back on the
24th February 2005 along with some other issues.
The current Director of the X-Force new about these issues as at the time of
their discovery, he worked with NGS.
Read the rest of this entry »
McAfee VirusScan Enterprise 8.0.0 Buffer Overflow
July 8th, 2006A local Buffer Overflow was discovered in McAfee VirusScan Enterprise 8.0.0.
The overflow can be triggered within the “Buffer OverFlow Protection Properties” by creating a buffer overflow exclusion. Then fill each field
Read the rest of this entry »
Format string bug in Sparklet 0.9.4try3
July 8th, 2006Luigi Auriemma
Application: Sparklet
http://sparklet.sourceforge.net
Versions: <= 0.9.4try3
Platforms: Windows, *nix, *BSD and more
Bug: format string in client's display
Exploitation: remote, versus clients
Date: 06 Jul 2006
Author: Luigi Auriemma
e-mail: aluigi (at) autistici (dot) org [email concealed]
web: aluigi.org
Read the rest of this entry »
Cumulative Security Update for Internet Explorer
July 3rd, 2006Vulnerability Identifier: CVE-2006-2218, CVE-2006-2382, CVE-2006-2383, CVE-2006-1303, CVE-2005-4089, CVE-2006-2384, CVE-2006-2385, CVE-2006-1626
Discovery Date: Jun 13, 2006
Risk: Critical
Affected Software: Read the rest of this entry »
Vulnerability in Server Message Block
July 3rd, 2006Vulnerability Identifier: CVE-2006-2373, CVE-2006-2374
Discovery Date: Jun 13, 2006
Risk: Important Read the rest of this entry »
How to Filter out Spam - ICQ Users Must Read
June 19th, 2006Spam is unsolicited, usually commercial or objectionable, form of communication (e.g. using e-mail, instant messaging, etc.) sent to a large number of recipients. The privacy tools integrated into ICQ offer 5 approaches to help you identify and minimize your spam exposure:
Read the rest of this entry »
Youtube.com
June 19th, 2006Homepage:
http://www.youtube.com
Affected files:
* Search box input
* Adding a new blog:
- Blog name
XSS Vuln with cookie disclosure via search box:
Read the rest of this entry »