is an hourly updated security news portal
Tuesday September 7th 2010

Tags

News.dreamings.org

News.dreamings.org is an hourly updated security news portal with a focus on virus internet security network computer and information.

http://www.dreamings.org

Who's Online

5 visitors online now
5 guests, 0 members

‘Bugtraq’ Archives

KDE <= 4.4.1 Ksysguard RCE via Cross Application Scripting

Author : Georges Kut Published: March 20th, 2010
KDE <= 4.4.1 Ksysguard RCE via Cross Application Scripting

# Exploit Title: Ksysguard RCE via Cross Application Scripting # Date: 2010 03 20 # Author: Emanuele 'emgent' Gentili # Code: http://www.backtrack.it/~emgent/exploits/20100320_Ksysguard_RCE_CAS.txt # Version: <= 4.4.1 # CVE : N/A # Vendor: [...]

Skype – URI Handler Input Validation

Author : Georges Kut Published: March 12th, 2010
Skype – URI Handler Input Validation

Description The Windows Skype client implements two URI handlers, Skype: and Skype-Plugin. Both handlers allow for easy browser integration and are supported by all modern browsers. When a Skype link is clicked, the Skype.exe process is spawned with the /URI: command argument, followed by the user specified phone number or contact [...]

Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability

Author : Georges Kut Published: March 9th, 2010

ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-025 March 9, 2010 -- CVE ID: CVE-2010-0263 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Office Excel -- Vulnerability Details: This vulnerability allows remote attackers to [...]

Core Joomla Community Polls Component ‘controller’ Parameter Local File Include Vulnerability

Author : Georges Kut Published: February 22nd, 2010
Core Joomla Community Polls Component ‘controller’ Parameter Local File Include Vulnerability

The Core Joomla Community Polls component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserver process. This may allow the [...]

cPanel Multiple CSRF Vulnerabilities

Author : Georges Kut Published: February 22nd, 2010
cPanel Multiple CSRF Vulnerabilities

Create Database: <body onload="document.forms.g.submit();"> <form method="post" action="http://sEc-r1z.com:2082/frontend/x3/sql/addb.html" name="mainform" id="mainform"> <h4>Create New Database</h4> <div [...]

Galerie Dezign-Box France Multi Vulnerability

Author : Georges Kut Published: February 22nd, 2010
Galerie Dezign-Box France Multi Vulnerability

======================================================================================== | # Title    : Galerie Dezign-Box © France Multi Vulnerability | # Author   : indoushka | # email    : indoushka@hotmail.com | # Home     : Souk Naamane - 04325 - Oum El Bouaghi - [...]

Windows Media Player 11.0.5721.5145 (.mpg) Buffer Overflow Exploit

Author : Georges Kut Published: February 22nd, 2010

# Windows Media Player 11.0.5721.5145 (.mpg) Buffer Overflow Exploit # Homepage: www.microsoft.com # Exploit Coded by: cr4wl3r <cr4wl3r\x40linuxmail\x2Eorg> # From: Indonesia # #~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ # WARNING - WARNING - [...]

Chrome Password Manager Cross Origin Weakness (CVE-2010-0556)

Author : Georges Kut Published: February 16th, 2010
Chrome Password Manager Cross Origin Weakness (CVE-2010-0556)

Virtual Security Research, LLC. http://www.vsecurity.com/ Security Advisory -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=- Advisory Name: Chrome Password Manager Cross Origin Weakness Release Date: 2010-02-15 Application: Google Chrome Web Browser Versions: 4.0.249.78, 3.0.195.38, and likely [...]

openssl

Author : Georges Kut Published: October 7th, 2009
openssl

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:258 http://www.mandriva.com/security/ _______________________________________________________________________ Package : openssl Date : October 7, [...]

qemu

Author : Georges Kut Published: October 7th, 2009

----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2009:257 http://www.mandriva.com/security/ _______________________________________________________________________ Package : qemu Date : October 5, [...]

 Page 1 of 7  1  2  3  4  5 » ...  Last » 

Social Links

Latest Topics

Adobe Shockwave Player 11.5.6.606 (DIR) Multiple Memory Vulnerabilities Adobe »

Title: Adobe Shockwave Player 11.5.6.606...

Joomla Custom PHP Pages Component com_php LFI Vulnerability Joomla Custom »

Joomla Custom PHP Pages Component LFI...

Joomla Component XOBBIX [prodid] SQL Injection Vulnerability Joomla »

...

Recent Comments