Multiple local command injection web vulnerabilities are detected in the mobile SimpleTransfer Photo 2.2.1 iOS app (Apple - iPad|iPhone).
Wireless Photo Access 1.0.10 iOS is prone to multiple vulnerabilities including arbitrary file upload, cross-site scripting and remote code execution vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in the context of an arbitrary code execution vulnerability. An attacker can exploit these issues to upload arbitrary files, execute arbitrary script code in the context of the affected site, steal cookie-based authentication credentials, and perform unauthorized actions. This may aid in launching further attacks.
Multiple web vulnerabilities in Wireless Disk PRO v2.3 iOS allow remote attackers to execute arbitrary code or bypass authentication via a crafted request.
The Ajax Availability Calendar 3.X.X script is vulnerable to SQL Injection, Reflected XSS, and Full Path Disclosure vulnerabilities. The SQL Injection vulnerability allows an attacker to execute arbitrary SQL commands through the 'id_item' parameter, leading to unauthorized access to the database. The Reflected XSS vulnerability allows an attacker to inject malicious scripts into the 'id_item' parameter, potentially leading to the execution of arbitrary code in the victim's browser. The Full Path Disclosure vulnerability allows an attacker to obtain the full path of the script, which may aid in further attacks.
This exploit code is a Proof of Concept (PoC) that causes Windows Media Player 11.0.0 to crash when handling a .wav file. The exploit is written in perl and is created by Asesino04.
This program logs into a CISCO router and tries a list of passwords looking for the enable one. It works in password-only CISCO as well as login-pass ones and has been successfully tested on many 2600 and a few 12008 routers. The program's concept is quite simple, bruteforcing a router for gaining enable access. This program has not been seen before.
An attacker can supply excessive data to the 'MDSYS.MD2.SDO_CODE_SIZE' procedure, resulting in overflowing a destination buffer. This can be leveraged to execute arbitrary code and gain 'SYSDBA' privileges.
A local file overwrite vulnerability affects SGI IRIX. This issue is due to a failure of the affected utility to drop privileges prior to carrying out critical functionality. An attacker may leverage this issue to cause the affected utility to write data to any file on the affected computer with superuser privileges. Although unconfirmed, it is possible that this issue may be leveraged for privilege escalation.
RUMBA is reported prone to multiple buffer overflow vulnerabilities. Theses issues are reported to manifest when RTO and WPA profiles are loaded by the software. Ultimately it is conjectured that this issue may be exploited by a remote attacker to execute arbitrary attacker-supplied code in the context of the vulnerable software.
The application fails to properly sanitize user-supplied input, leading to cross-site scripting and SQL injection vulnerabilities. The cross-site scripting vulnerabilities affect the 'content.asp' script, while the SQL injection vulnerability affects the 'ad_click.asp' script.
Services By CQR