jetlib.sec » Tags » index

Feeds

268039 items (8 unread) in 27 feeds

• 0day.today (was: 1337day, Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines (8 unread)
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

126 items tagged "index"

Related tags: privilege escalation vulnerability [+], local privilege escalation [+], vulnerability [+], software index [+], Software [+], remote [+], postgresql [+], mandriva linux [+], linux kernel [+], linux [+], kernel [+], index function [+], function [+], php [+], inclusion [+], array index [+], admin [+], x atsserver [+], web [+], txt [+], sql [+], smartcms [+], service vulnerability [+], server [+], null pointer [+], null [+], gitweb [+], git [+], disclosure [+], cyrus imap server [+], cyrus imap [+], charstrings [+], arbitrary web [+], zylone [+], zephyrus cms [+], zephyrus [+], xss [+], wireless network adapter [+], webmin [+], web script [+], vulnerabilities [+], useradmin [+], supernews [+], sql commands [+], source code [+], script index [+], script code [+], script [+], retired [+], remote shell [+], quickphp [+], openpage [+], mipstudio [+], memory corruption [+], koobi [+], keyword parameter [+], inventory [+], idevspot [+], html [+], code execution [+], cff [+], arbitrary html [+], apple os x [+], apple os [+], zero day [+], zaki cms [+], zaki [+], wowd [+], wiki [+], werkform [+], webasyst [+], web solution [+], web index [+], web applications [+], wafer [+], visio [+], virtuemart [+], vidiscript [+], user [+], txt software [+], textpattern [+], technofact [+], target [+], source index [+], source [+], solution index [+], solution [+], softnsolv [+], social [+], smarty [+], simpel [+], sign [+], side [+], shop index [+], shop [+], shell [+], sardus [+], rw download [+], remote file include vulnerability [+], received [+], realty [+], realplayer user [+], rad [+], problem [+], portal [+], poll index [+], poll [+], phpmyfaq [+], phpmv [+], phpmoneybooks [+], phpcms [+], php index [+], php files [+], photopost [+], particle [+], parsing [+], page parameter [+], os x [+], open ports [+], open [+], no brainer [+], mymarket [+], mybb [+], mismatch [+], microsoft visio [+], microsoft [+], metasploit [+], member [+], mediawiki [+], media index [+], media [+], mac os x [+], location base [+], lionwiki [+], lan [+], kdpics [+], justvisual [+], joomla [+], jedit [+], isupport [+], intera [+], input validation [+], index structure [+], index pages [+], imedia [+], idevcart [+], iboutique [+], http [+], homap cms [+], granet [+], gmds [+], global event [+], funkgallery [+], freenas [+], flogr [+], fish index [+], fish [+], fellas [+], event [+], esmile [+], emanage [+], eclosion [+], download [+], domain shop [+], domain [+], dokuwiki [+], different [+], dew newphplinks [+], dew [+], d tekweb [+], cve [+], cubecart [+], csrf [+], cross site scripting [+], consulweb [+], com [+], cgi [+], bigthink [+], backuppc [+], atacimo [+], array [+], apple quicktime [+], apple mac os x [+], apple mac os [+], anzeigenmarkt [+], affy [+], admin index [+], addiction [+], activecollab [+], Newbie [+], Area [+], sql injection [+], day [+], cms [+]

• November 26, 2012
• 8:04

  [web applications] - SmartCMS (index.php, idx parameter) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [web applications] - SmartCMS (index.php, idx parameter) SQL Injection Vulnerability

  Tags:  smartcms web index web-applications vulnerability  

• October 30, 2012
• 0:00

  Vuln: Dokuwiki 'index.php' Path Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Dokuwiki 'index.php' Path Disclosure Vulnerability

  Tags:  php index dokuwiki vulnerability disclosure  

• October 25, 2012
• 0:00

  Vuln: phpMyFAQ 'index.php' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyFAQ 'index.php' Cross Site Scripting Vulnerability

  Tags:  phpmyfaq php index vulnerability  

• October 15, 2012
• 17:00

  AsaanCart Multiple Input Validation Remote Attackers Vulnerabilities

   » ‎ SecuriTeam
  This allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to calc.php, (2) chat.php, (3) register.php, or (4) index.php in libs/smarty_ajax/; or the (5) page parameter to libs/smarty_ajax/index.php.

  Tags:  smarty php index page-parameter arbitrary-web input-validation  

• September 05, 2012
• 0:00

  Vuln: Flogr 'index.php' CVE-2012-4336 Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Flogr 'index.php' CVE-2012-4336 Multiple Cross Site Scripting Vulnerabilities

  Tags:  php flogr index cve  

• May 23, 2012
• 14:00

  [webapps / 0day] - AFFY (index.php) Blind Sql Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - AFFY (index.php) Blind Sql Injection Vulnerability

  Tags:  day index affy sql-injection vulnerability  

• April 04, 2012
• 14:00

  [webapps / 0day] - pluck 4.7 CSRF edit index Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - pluck 4.7 CSRF edit index Vulnerability

  Tags:  day csrf index vulnerability  

• March 27, 2012
• 0:00

  Vuln: phpMyVisites 'phpmv2/index.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyVisites 'phpmv2/index.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  php phpmv index  

• March 23, 2012
• 0:00

  Vuln: Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

  Tags:  server null index cyrus-imap cyrus-imap-server service-vulnerability null-pointer  

• March 22, 2012
• 0:00

  Vuln: RETIRED: Joomla! 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  RETIRED: Joomla! 'index.php' SQL Injection Vulnerability

  Tags:  retired index joomla vulnerability  

• 0:00

  Vuln: phpMoneyBooks 'index.php' Multiple Local File Include Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMoneyBooks 'index.php' Multiple Local File Include Vulnerabilities

  Tags:  phpmoneybooks php index  

• February 21, 2012
• 0:00

  Vuln: BackupPC 'index.cgi' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  BackupPC 'index.cgi' Cross Site Scripting Vulnerability

  Tags:  backuppc cgi index vulnerability  

• December 02, 2011
• 0:00

  Vuln: Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

  Tags:  server null index cyrus-imap cyrus-imap-server service-vulnerability null-pointer  

• December 01, 2011
• 0:00

  Vuln: Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Cyrus IMAP Server 'index_get_ids()' NULL Pointer Dereference Denial Of Service Vulnerability

  Tags:  server null index cyrus-imap cyrus-imap-server service-vulnerability null-pointer  

• November 01, 2011
• 0:00

  Vuln: Domain Shop 'index.php' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Domain Shop 'index.php' Cross Site Scripting Vulnerability

  Tags:  shop domain index domain-shop shop-index vulnerability  

• September 09, 2011
• 21:00

  [webapps / 0day] - F3 Designs (index.php) Blind Sql Injection

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - F3 Designs (index.php) Blind Sql Injection

  Tags:  day php index sql-injection  

• July 26, 2011
• 21:00

  [webapps / 0day] - SmartCMS (index.php) Blind Sql Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - SmartCMS (index.php) Blind Sql Injection Vulnerability

  Tags:  smartcms day index sql-injection vulnerability  

• 8:00

  Bugtraq: Zones Web Solution (index.php?manufacturers_id) Remote SQL injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Zones Web Solution (index.php?manufacturers_id) Remote SQL injection Vulnerability

  Tags:  solution web index solution-index sql-injection web-solution  

• July 06, 2011
• 21:00

  [webapps / 0day] - Emanage1.5.2 (index.php) sql Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Emanage1.5.2 (index.php) sql Injection Vulnerability

  Tags:  day emanage index vulnerability  

• June 30, 2011
• 21:00

  [webapps / 0day] - 4rad (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - 4rad (index.php) SQL Injection Vulnerability

  Tags:  rad day index vulnerability  

• June 13, 2011
• 0:00

  Vuln: Webmin 'useradmin/index.cgi' Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Webmin 'useradmin/index.cgi' Local Privilege Escalation Vulnerability

  Tags:  useradmin webmin index privilege-escalation-vulnerability local-privilege-escalation  

• June 12, 2011
• 21:00

  [webapps / 0day] - Technofact (index/detail) => SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Technofact (index/detail) => SQL Injection Vulnerability

  Tags:  day index technofact vulnerability  

• May 24, 2011
• 0:00

  Vuln: Webmin 'useradmin/index.cgi' Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Webmin 'useradmin/index.cgi' Local Privilege Escalation Vulnerability

  Tags:  useradmin webmin index privilege-escalation-vulnerability local-privilege-escalation  

• May 21, 2011
• 21:00

  [webapps / 0day] - werkform (index.php)

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - werkform (index.php)

  Tags:  werkform day index  

• April 27, 2011
• 21:00

  [webapps / 0day] - MipStudio (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - MipStudio (index.php) SQL Injection Vulnerability

  Tags:  day mipstudio index vulnerability  

• 14:00

  [webapps / 0day] - MipStudio (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - MipStudio (index.php) SQL Injection Vulnerability

  Tags:  day mipstudio index vulnerability  

• April 06, 2011
• 0:00

  Vuln: TextPattern 'index.php' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  TextPattern 'index.php' Cross Site Scripting Vulnerability

  Tags:  textpattern php index vulnerability  

• April 02, 2011
• 14:00

  [webapps / 0day] - Anzeigenmarkt 2011 (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Anzeigenmarkt 2011 (index.php) SQL Injection Vulnerability

  Tags:  day anzeigenmarkt index vulnerability  

• March 24, 2011
• 0:00

  Vuln: Social Media 'index.php' Local File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Social Media 'index.php' Local File Include Vulnerability

  Tags:  social media index media-index vulnerability  

• March 02, 2011
• 11:00

  Bugtraq: VidiScript (index.php) Cross Site Scripting

   » ‎ SecurityFocus Vulnerabilities
  VidiScript (index.php) Cross Site Scripting

  Tags:  php vidiscript index  

• February 21, 2011
• 0:00

  Vuln: JAKCMS 'admin/index.php' Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  JAKCMS 'admin/index.php' Multiple SQL Injection Vulnerabilities

  Tags:  php admin index admin-index sql-injection  

• February 10, 2011
• 0:00

  Vuln: QuickPHP 'index.php' Remote Source Code Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  QuickPHP 'index.php' Remote Source Code Disclosure Vulnerability

  Tags:  php quickphp index vulnerability source-code disclosure  

• February 07, 2011
• 14:00

  [webapps / 0day] - MyMarket 1.71 (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - MyMarket 1.71 (index.php) SQL Injection Vulnerability

  Tags:  mymarket day index vulnerability  

• February 06, 2011
• 14:00

  [webapps / 0day] - Dew-NewPHPLinks v.2.1b (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - Dew-NewPHPLinks v.2.1b (index.php) SQL Injection Vulnerability

  Tags:  dew day index dew-newphplinks vulnerability  

• January 31, 2011
• 0:00

  Vuln: RW::Download Index.PHP Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  RW::Download Index.PHP Multiple SQL Injection Vulnerabilities

  Tags:  download php index sql-injection  

• January 29, 2011
• 14:00

  [webapps / 0day] - RW-Download v4.0.6 (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  [webapps / 0day] - RW-Download v4.0.6 (index.php) SQL Injection Vulnerability

  Tags:  day rw-download index vulnerability  

• January 25, 2011
• 0:00

  Vuln: PHPCMS 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PHPCMS 'index.php' SQL Injection Vulnerability

  Tags:  phpcms php index vulnerability  

• January 03, 2011
• 0:00

  Vuln: Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  git index gitweb  

• December 30, 2010
• 0:00

  Vuln: QuickPHP 'index.php' Remote Source Code Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  QuickPHP 'index.php' Remote Source Code Disclosure Vulnerability

  Tags:  php quickphp index vulnerability source-code disclosure  

• December 24, 2010
• 0:00

  Vuln: iDevSpot iDevCart 'index.php' Multiple Local File Include Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  iDevSpot iDevCart 'index.php' Multiple Local File Include Vulnerabilities

  Tags:  idevcart idevspot index  

• December 23, 2010
• 0:00

  Vuln: Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  git index gitweb  

• December 22, 2010
• 18:06

  Apple OS X ATSServer CFF CharStrings INDEX Sign Mismatch Vulnerability

   » ‎ SecuriTeam
  The Apple Type Services is prone to memory corruption due a sign mismatch vulnerability when handling the last offset value of the CharStrings INDEX structure.

  -

  Make your website safer. Use external penetration testing service. First report ready in one hour!

  Tags:  sign charstrings index apple-os x-atsserver apple-os-x memory-corruption index-structure  

• December 21, 2010
• 0:00

  Vuln: FreeNAS 'index.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  FreeNAS 'index.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  php index freenas  

• 0:00

  Vuln: Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Git gitweb 'index.php' Multiple Cross Site Scripting Vulnerabilities

  Tags:  git index gitweb  

• November 19, 2010
• 0:00

  Vuln: Apple Mac OS X ATSServer CFF 'CharStrings' Index Sign Mismatch Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Apple Mac OS X ATSServer CFF 'CharStrings' Index Sign Mismatch Remote Code Execution Vulnerability

  Tags:  cff charstrings index x-atsserver apple-mac-os apple-mac-os-x mac-os-x  

• November 09, 2010
• 8:01

  Bugtraq: [CORE-2010-0825] Apple OS X ATSServer CFF CharStrings INDEX Sign Mismatch

   » ‎ SecurityFocus Vulnerabilities
  [CORE-2010-0825] Apple OS X ATSServer CFF CharStrings INDEX Sign Mismatch

  Tags:  cff charstrings index apple-os x-atsserver apple-os-x mismatch os-x  

• October 18, 2010
• 0:00

  Vuln: iDevSpot iSupport 'index.php' Local File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  iDevSpot iSupport 'index.php' Local File Include Vulnerability

  Tags:  isupport idevspot index vulnerability  

• October 15, 2010
• 20:00

  ZDI-10-209.txt

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 10-209 - This vulnerability allows attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when parsing a RealMedia .IVR file containing malformed sample data. The application utilizes a index in this data stream for seeking into a list of objects. Due to the lack of constraints on this index, one can seek to an arbitrary object located in memory which will lead to code execution under the context of the currently logged in user.

  Tags:  vulnerability index user realplayer-user target zero-day  

• October 04, 2010
• 0:00

  Vuln: WebAsyst Shop-Script 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  WebAsyst Shop-Script 'index.php' SQL Injection Vulnerability

  Tags:  webasyst index script script-index vulnerability  

• October 01, 2010
• 0:00

  Vuln: Particle Wiki Index.PHP SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Particle Wiki Index.PHP SQL Injection Vulnerability

  Tags:  particle wiki index vulnerability  

• September 20, 2010
• 0:00

  Vuln: Wowd 'index.html' Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wowd 'index.html' Multiple Cross Site Scripting Vulnerabilities

  Tags:  html index wowd  

• 0:00

  Vuln: Dream Poll 'index.php' Cross-Site Scripting and SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Dream Poll 'index.php' Cross-Site Scripting and SQL Injection Vulnerabilities

  Tags:  php poll index poll-index cross-site-scripting  

• September 15, 2010
• 0:00

  Vuln: In-Portal CMS 'index.php' Local File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  In-Portal CMS 'index.php' Local File Include Vulnerability

  Tags:  portal index cms vulnerability  

• September 12, 2010
• 19:00

  MDVSA-2010-178.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-178 - Multiple cross-site scripting vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to inject arbitrary web script or HTML via the BASE parameter, or the ega_1 parameter. Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the onglet_bis parameter. Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02.3 allow remote attackers to execute arbitrary SQL commands via multiple inventory fields to the search form, reachable through index.php; or the Software name field to the All softwares search form, reachable through index.php. This upgrade provides ocsinventory 1.02.3 which is not vulnerable for these security issues.

  Tags:  inventory php index arbitrary-web sql-commands web-script  

• 19:00

  MDVSA-2010-178.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-178 - Multiple cross-site scripting vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to inject arbitrary web script or HTML via the BASE parameter, or the ega_1 parameter. Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the onglet_bis parameter. Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02.3 allow remote attackers to execute arbitrary SQL commands via multiple inventory fields to the search form, reachable through index.php; or the Software name field to the All softwares search form, reachable through index.php. This upgrade provides ocsinventory 1.02.3 which is not vulnerable for these security issues.

  Tags:  inventory php index arbitrary-web sql-commands web-script  

• September 04, 2010
• 16:47

  Grabbing Index Pages Of Webservers

   » ‎ Carnal0wnage
  Grabbing the index pages of web servers seems like a no brainer and something every pentester is going to perform on a test. The problem I ran into is how do you get this info once your inside and using meterpreter as your pivot into the network.
  
  Your current options are to port forward to each host or set up a route via your meterpreter session and run some sort of auxiliary module. You can tcp port scan and find open ports or use the http_version module to see server version but you don't get a feel for whats actually on the site.
  
  I opted to write something that would scan a range, perform a HTTP GET of / on the ip, then take the resulting body from the response, which should be html, and save it to a file to look at afterwards.
  
  Looks like this when it runs...
  
  msf auxiliary(http_index_grabber) > set RHOSTS carnal0wnage.com/24
  RHOSTS => carnal0wnage.com/24
  msf auxiliary(http_index_grabber) > run
  [+] Received a HTTP 200...Logging to file: /home/cg/.msf3/logs/auxiliary/http_index_grabber/209.20.85.4_20100904.4426.html
  [+] Received a HTTP 200...Logging to file: /home/cg/.msf3/logs/auxiliary/http_index_grabber/209.20.85.5_20100904.4429.html
  [*] Received 301 to http://drumsti.cc/ for 209.20.85.10:80/
  [-] Received 403 for 209.20.85.8:80/
  [+] Received a HTTP 200...Logging to file: /home/cg/.msf3/logs/auxiliary/http_index_grabber/209.20.85.12_20100904.4432.html
  ...
  [*] Received 302 to http://209.20.85.57/apache2-default/ for 209.20.85.57:80/ [+] Received a HTTP 200...Logging to file: /home/cg/.msf3/logs/auxiliary/http_index_grabber/209.20.85.56_20100904.4503.html
  [*] Received 302 to http://209.20.85.51/session/new for 209.20.85.51:80/
  
  you can then check out the folder with the results
  
  
  code is here:
  http://carnal0wnage.googlecode.com/svn/trunk/msf3/modules/auxiliary/admin/random/http_index_grabber.rb

  Tags:  received http index open-ports no-brainer index-pages metasploit  

• September 03, 2010
• 14:32

  Global Event Source (index.php) Blind Sql Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Global Event Source (index.php) Blind Sql Injection Vulnerability

  Tags:  event index source source-index global-event sql-injection  

• August 18, 2010
• 15:48

  Flex-Com (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Flex-Com (index.php) Blind SQL Injection Vulnerability

  Tags:  php com index sql-injection vulnerability  

• August 15, 2010
• 5:46

  MYBB 1.6 (admin/index.php) XSS Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  MYBB 1.6 (admin/index.php) XSS Vulnerabilities

  Tags:  mybb admin index vulnerabilities  

• August 09, 2010
• 0:00

  Vuln: RETIRED: KDPics 'index.php3' Remote File Include Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  RETIRED: KDPics 'index.php3' Remote File Include Vulnerability

  Tags:  retired index kdpics remote-file-include-vulnerability  

• August 08, 2010
• 17:10

  Eclosion (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Eclosion (index.php) Blind SQL Injection Vulnerability

  Tags:  eclosion php index sql-injection vulnerability  

• August 03, 2010
• 0:00

  Vuln: PhotoPost PHP 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PhotoPost PHP 'index.php' SQL Injection Vulnerability

  Tags:  photopost php index php-index vulnerability  

• July 24, 2010
• 1:00

  sNews (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  sNews (index.php) SQL Injection Vulnerability

  Tags:  php sql index vulnerability  

• July 20, 2010
• 1:00

  GMDS CMS (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  GMDS CMS (index.php) SQL Injection Vulnerability

  Tags:  gmds index cms vulnerability  

• 0:00

  Vuln: PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

  Tags:  function index postgresql privilege-escalation-vulnerability index-function local-privilege-escalation  

• July 18, 2010
• 1:00

  Different Web (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Different Web (index.php) SQL Injection Vulnerability

  Tags:  different web index web-index vulnerability  

• July 15, 2010
• 0:00

  Vuln: Koobi 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Koobi 'index.php' SQL Injection Vulnerability

  Tags:  koobi php index vulnerability  

• July 14, 2010
• 1:00

  D-Tekweb (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  D-Tekweb (index.php) SQL Injection Vulnerability

  Tags:  d-tekweb php index vulnerability  

• July 13, 2010
• 1:00

  BigThink XT (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  BigThink XT (index.php) SQL Injection Vulnerability

  Tags:  php bigthink index vulnerability  

• July 12, 2010
• 1:00

  Sardus (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Sardus (index.php) Blind SQL Injection Vulnerability

  Tags:  sardus php index sql-injection vulnerability  

• 1:00

  Granet (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Granet (index.php) Blind SQL Injection Vulnerability

  Tags:  granet php index sql-injection vulnerability  

• 1:00

  Koobi CMS (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Koobi CMS (index.php) SQL Injection Vulnerability

  Tags:  koobi index cms vulnerability  

• July 07, 2010
• 1:00

  Zylone IT (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Zylone IT (index.php) Blind SQL Injection Vulnerability

  Tags:  php zylone index sql-injection vulnerability  

• 1:00

  Open Realty (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Open Realty (index.php) SQL Injection Vulnerability

  Tags:  realty index open vulnerability  

• 1:00

  Zylone IT (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Zylone IT (index.php) Blind SQL Injection Vulnerability

  Tags:  php zylone index sql-injection vulnerability  

• July 06, 2010
• 1:00

  Addiction (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Addiction (index.php) SQL Injection Vulnerability

  Tags:  addiction php index vulnerability  

• July 02, 2010
• 1:00

  Consulweb (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Consulweb (index.php) Blind SQL Injection Vulnerability

  Tags:  consulweb php index sql-injection vulnerability  

• July 01, 2010
• 1:00

  InteRa CMS (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  InteRa CMS (index.php) Blind SQL Injection Vulnerability

  Tags:  intera index cms sql-injection vulnerability  

• 0:00

  Vuln: FunkGallery 'index.php' Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  FunkGallery 'index.php' Cross Site Scripting Vulnerability

  Tags:  funkgallery php index vulnerability  

• June 26, 2010
• 1:00

  Zaki CMS (index.php) XSS Vulnerabilities

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Zaki CMS (index.php) XSS Vulnerabilities

  Tags:  xss php index zaki-cms zaki vulnerabilities  

• 1:00

  WAFER (index.php) Blind SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  WAFER (index.php) Blind SQL Injection Vulnerability

  Tags:  wafer php index sql-injection vulnerability  

• June 25, 2010
• 0:00

  Vuln: activeCollab 'index.php' Multiple Local File Include Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  activeCollab 'index.php' Multiple Local File Include Vulnerabilities

  Tags:  activecollab php index  

• June 24, 2010
• 1:00

  Software Index (XSS HTML) Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Software Index (XSS HTML) Vulnerability

  Tags:  xss index Software software-index vulnerability  

• 1:00

  Software Index (Remote File Upload) Exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Software Index (Remote File Upload) Exploit

  Tags:  remote index Software software-index  

• 1:00

  Software Index (Remote File Upload) Exploit

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Software Index (Remote File Upload) Exploit

  Tags:  remote index Software software-index  

• June 16, 2010
• 23:02

  softwareindex-shell.txt

   » ‎ Packet Storm Security Recent Files
  Software Index suffers from a remote shell upload vulnerability.

  Tags:  txt index Software remote-shell software-index vulnerability  

• 23:01

  softwareindex-xss.txt

   » ‎ Packet Storm Security Exploits
  Software Index suffers from a cross site scripting vulnerability.

  Tags:  txt index Software txt-software software-index vulnerability  

• 23:01

  softwareindex-shell.txt

   » ‎ Packet Storm Security Exploits
  Software Index suffers from a remote shell upload vulnerability.

  Tags:  txt index Software remote-shell software-index vulnerability  

• June 03, 2010
• 22:00

  secunia-tomatocmseight.txt

   » ‎ Packet Storm Security Recent Files
  Secunia Research has discovered some vulnerabilities in TomatoCMS, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the keyword and article-id parameters to index.php/admin/news/article/list, the keyword parameter to index.php/admin/multimedia/set/list, the keyword and fileId parameters to index.php/admin/multimedia/file/list, and the name , email , and address parameters to index.php/admin/ad/client/list is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in the users browser in context of the affected site.

  Tags:  php admin index keyword-parameter arbitrary-html script-code  

• 22:00

  secunia-tomatocmseight.txt

   » ‎ Packet Storm Security Advisories
  Secunia Research has discovered some vulnerabilities in TomatoCMS, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the keyword and article-id parameters to index.php/admin/news/article/list, the keyword parameter to index.php/admin/multimedia/set/list, the keyword and fileId parameters to index.php/admin/multimedia/file/list, and the name , email , and address parameters to index.php/admin/ad/client/list is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in the users browser in context of the affected site.

  Tags:  php admin index keyword-parameter arbitrary-html script-code  

• 1:00

  Member ID The Fish Index PHP SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Member ID The Fish Index PHP SQL Injection Vulnerability

  Tags:  fish index member fish-index vulnerability  

• 0:00

  Vuln: PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

  Tags:  function index postgresql privilege-escalation-vulnerability index-function local-privilege-escalation  

• June 01, 2010
• 1:00

  Mediawiki (index.php) HTML Injection & unknown vulnerability issue

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Mediawiki (index.php) HTML Injection & unknown vulnerability issue

  Tags:  mediawiki php index vulnerability  

• May 25, 2010
• 1:00

  Simpel Side (index2.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Simpel Side (index2.php) SQL Injection Vulnerability

  Tags:  simpel side index sql-injection vulnerability  

• May 20, 2010
• 1:00

  IMEDIA (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  IMEDIA (index.php) SQL Injection Vulnerability

  Tags:  imedia php index vulnerability  

• May 19, 2010
• 0:00

  Vuln: PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

  Tags:  function index postgresql privilege-escalation-vulnerability index-function local-privilege-escalation  

• May 05, 2010
• 0:00

  Vuln: SmartCMS 'index.php' Multiple SQL Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  SmartCMS 'index.php' Multiple SQL Injection Vulnerabilities

  Tags:  smartcms php index sql-injection  

• May 04, 2010
• 11:29

  Bugtraq: Re: Puntal (index.php) Remote File Inclusion Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Re: Puntal (index.php) Remote File Inclusion Vulnerabilities

  Tags:  php remote index inclusion  

• May 03, 2010
• 14:00

  Bugtraq: RE: Puntal (index.php) Remote File Inclusion Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  RE: Puntal (index.php) Remote File Inclusion Vulnerabilities

  Tags:  php remote index inclusion  

• 13:00

  Bugtraq: Puntal (index.php) Remote File Inclusion Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Puntal (index.php) Remote File Inclusion Vulnerabilities

  Tags:  php remote index inclusion  

• April 15, 2010
• 0:00

  Vuln: PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

  Tags:  function index postgresql privilege-escalation-vulnerability index-function local-privilege-escalation  

• April 14, 2010
• 0:00

  Vuln: Microsoft Visio Index Calculation Memory Corruption Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Microsoft Visio Index Calculation Memory Corruption Remote Code Execution Vulnerability

  Tags:  microsoft index visio microsoft-visio memory-corruption code-execution  

• April 09, 2010
• 15:06

  Bugtraq: ZDI-10-068: Apple QuickTime H.263 Array Index Parsing Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  ZDI-10-068: Apple QuickTime H.263 Array Index Parsing Remote Code Execution Vulnerability

  Tags:  parsing array index apple-quicktime array-index code-execution  

• 1:00

  jEdit (index.php?page) Local File Inclusion Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  jEdit (index.php?page) Local File Inclusion Vulnerability

  Tags:  jedit php index vulnerability inclusion  

• April 05, 2010
• 1:00

  LionWiki 3.X (index.php) Shell Upload Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  LionWiki 3.X (index.php) Shell Upload Vulnerability

  Tags:  lionwiki php index vulnerability shell  

• March 31, 2010
• 0:00

  Vuln: SuperNews 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  SuperNews 'index.php' SQL Injection Vulnerability

  Tags:  supernews php index vulnerability  

• 0:00

  Vuln: iBoutique 'index.php' SQL Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  iBoutique 'index.php' SQL Injection Vulnerability

  Tags:  iboutique php index vulnerability  

• March 26, 2010
• 11:41

  SuperNews (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  SuperNews (index.php) SQL Injection Vulnerability

  Tags:  supernews php index vulnerability  

• March 25, 2010
• 6:51

  justVisual 2.0 (index.php)

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  justVisual 2.0 (index.php)

  Tags:  justvisual php index  

• March 24, 2010
• 7:59

  CMS By SoftnSolv (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  CMS By SoftnSolv (index.php) SQL Injection Vulnerability

  Tags:  softnsolv index cms vulnerability  

• March 23, 2010
• 10:14

  CMS Openpage (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  CMS Openpage (index.php) SQL Injection Vulnerability

  Tags:  openpage index cms vulnerability  

• 10:00

  Zephyrus CMS (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Zephyrus CMS (index.php) SQL Injection Vulnerability

  Tags:  php sql index zephyrus-cms zephyrus vulnerability cms  

• 8:39

  Zephyrus CMS (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Zephyrus CMS (index.php) SQL Injection Vulnerability

  Tags:  php sql index zephyrus-cms zephyrus vulnerability cms  

• March 22, 2010
• 7:04

  CMS Openpage (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  CMS Openpage (index.php) SQL Injection Vulnerability

  Tags:  openpage index cms vulnerability  

• March 12, 2010
• 11:00

  HoMaP-CMS 0.1 (index.php go) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  HoMaP-CMS 0.1 (index.php go) SQL Injection Vulnerability

  Tags:  homap-cms php index vulnerability cms  

• March 08, 2010
• 0:00

  Vuln: PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability

  Tags:  function index postgresql privilege-escalation-vulnerability index-function local-privilege-escalation  

• March 06, 2010
• 13:00

  VirtueMart (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  VirtueMart (index.php) SQL Injection Vulnerability

  Tags:  virtuemart php index vulnerability  

• February 26, 2010
• 13:00

  AtACimo RC2 (index.php) XSS Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  AtACimo RC2 (index.php) XSS Vulnerability

  Tags:  php atacimo index vulnerability  

• February 20, 2010
• 11:00

  MDVSA-2010-034-2.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-034 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.

  Tags:  kernel index linux mandriva-linux linux-kernel array-index  

• February 17, 2010
• 21:00

  CubeCart (index.php) Sql Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  CubeCart (index.php) Sql Injection Vulnerability

  Tags:  cubecart php index vulnerability  

• February 10, 2010
• 9:00

  eSmile Script (index.php) SQL Injection Vulnerability

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  eSmile Script (index.php) SQL Injection Vulnerability

  Tags:  index esmile script script-index vulnerability  

• February 08, 2010
• 18:00

  MDVSA-2010-034.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-034 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. Additionally, the Linux kernel was updated to the stable release 2.6.27.45.

  Tags:  kernel index linux mandriva-linux linux-kernel array-index  

• 18:00

  MDVSA-2010-034.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-034 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. Additionally, the Linux kernel was updated to the stable release 2.6.27.45.

  Tags:  kernel index linux mandriva-linux linux-kernel array-index  

• February 03, 2010
• 9:16

  Where is index.html?!

   » ‎ remote-exploit & backtrack
  I'm trying to check out some pages to spoof on a LAN and have one little problem:
  I've checked in /var/www/ and cannot find the index.html file. LOL...big problem.
  
  Okay, so I have three folders in this location: base, squid-reports, and unicornscan. There are two .php files in these folders named index but no html files.
  
  Please fellas, comment and help me find it!

  Tags:  problem html index lan location-base php-files fellas Newbie Area  

• February 01, 2010
• 18:01

  MDVSA-2010-030.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-030 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. An issue was discovered in 2.6.32.x kernels, which sets unsecure permission for devtmpfs file system by default. Additionally, it was added support for Atheros AR2427 Wireless Network Adapter.

  Tags:  kernel index linux wireless-network-adapter mandriva-linux linux-kernel  

• 18:00

  MDVSA-2010-030.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-030 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request. The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read. An issue was discovered in 2.6.32.x kernels, which sets unsecure permission for devtmpfs file system by default. Additionally, it was added support for Atheros AR2427 Wireless Network Adapter.

  Tags:  kernel index linux wireless-network-adapter mandriva-linux linux-kernel