Security - Ravens PHP Scripts

Ravens PHP Scripts: Security

Yahoo! Messenger YVerInfo.dll ActiveX Control Buffer Overflow

Posted on Friday, August 31, 2007 @ 08:56:23 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA26579

VERIFY ADVISORY: http://secunia.com/advisories/26579/

CRITICAL: Highly critical

IMPACT: DoS, System access

WHERE: >From remote

SOFTWARE: Yahoo! Messenger 8.x - http://secunia.com/product/12122/

DESCRIPTION: A vulnerability has been reported in Yahoo! Messenger, which can be exploited by malicious people to compromise a user's system. Read More...

.htaccess Password Generator

Posted on Thursday, August 30, 2007 @ 00:34:13 CDT in Security
by Raven

southern writes:
Use this tool to generate all the necessary codes needed to password protect a directory or selects files within it on your site via .htaccess. It encrypts the desired passwords, then outputs the corresponding codes to put inside your .htaccess and .htpasswd files.
dynamicdrive

ClamAV Multiple Denial of Service Vulnerabilities

Posted on Thursday, August 23, 2007 @ 19:34:11 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA26530

VERIFY ADVISORY: http://secunia.com/advisories/26530/

CRITICAL: Moderately critical

IMPACT: DoS

WHERE: >From remote

SOFTWARE: Clam AntiVirus (clamav) 0.x - http://secunia.com/product/2538/

DESCRIPTION: Some vulnerabilities have been reported in ClamAV, which can potentially be exploited by malicious people to cause a DoS (Denial of Service). The vulnerabilities are reported in versions prior to 0.91.2.
Read More...

Joomla SimpleFAQ Component aid SQL Injection

Posted on Thursday, August 23, 2007 @ 19:30:02 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA26556

VERIFY ADVISORY: http://secunia.com/advisories/26556/

CRITICAL: Moderately critical

IMPACT: Manipulation of data, Exposure of sensitive information

WHERE: >From remote

SOFTWARE: SimpleFAQ 2.x (component for Joomla) - http://secunia.com/product/15426/

DESCRIPTION: k1tk4t has discovered a vulnerability in the SimpleFAQ component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
Read More...

PhpHostBot svr_rootscript File Inclusion

Posted on Thursday, August 09, 2007 @ 20:08:59 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA26356

VERIFY ADVISORY: http://secunia.com/advisories/26356/

CRITICAL: Highly critical

IMPACT: Exposure of system information, Exposure of sensitive information, System access

WHERE: >From remote

SOFTWARE: PhpHostBot 1.x - http://secunia.com/product/11107/

DESCRIPTION: M. Hasran Addahroni has reported a vulnerability in PhpHostBot, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Read More...

Microsoft Windows URI Handling Command Execution Vulnerability

Posted on Thursday, July 26, 2007 @ 19:01:18 CDT in Security
by raven

SECUNIA ADVISORY ID: SA26201

VERIFY ADVISORY: http://secunia.com/advisories/26201/

CRITICAL: Highly critical

IMPACT: System access

WHERE: >From remote

OPERATING SYSTEM:
Microsoft Windows XP Professional - http://secunia.com/product/22/
Microsoft Windows XP Home Edition - http://secunia.com/product/16/
Microsoft Windows Server 2003 Datacenter Edition - http://secunia.com/product/1175/
Microsoft Windows Server 2003 Enterprise Edition - http://secunia.com/product/1174/
Microsoft Windows Server 2003 Standard Edition - http://secunia.com/product/1173/
Microsoft Windows Server 2003 Web Edition - http://secunia.com/product/1176/

SOFTWARE: Microsoft Internet Explorer 7.x - http://secunia.com/product/12366/

DESCRIPTION: A vulnerability has been discovered in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. Successful exploitation requires that Internet Explorer 7 is installed on the system.
Read More...

Yahoo! Messenger YVerInfo.dll ActiveX Control Buffer Overflow

.htaccess Password Generator

ClamAV Multiple Denial of Service Vulnerabilities

Joomla SimpleFAQ Component aid SQL Injection

PhpHostBot svr_rootscript File Inclusion

Microsoft Windows URI Handling Command Execution Vulnerability

Site Info

Site Navigation

Partners

Recommended Sites

Old Articles

Yahoo! Messenger YVerInfo.dll ActiveX Control Buffer Overflow

.htaccess Password Generator

ClamAV Multiple Denial of Service Vulnerabilities

Joomla SimpleFAQ Component *aid* SQL Injection

PhpHostBot *svr_rootscript* File Inclusion

Microsoft Windows URI Handling Command Execution Vulnerability

Site Info

Site Navigation

Partners

Recommended Sites

Old Articles

Joomla SimpleFAQ Component aid SQL Injection

PhpHostBot svr_rootscript File Inclusion