RaXnet Cacti 0.5/0.6.x/0.8.x Graph_Image.PHP Remote Command Execution Variant Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14129/info RaXnet Cacti is prone to a remote command execution vulnerability that manifests in the 'graphimage.php' script. The issue is due to a bug in the input filters that leads to a failure in the application to...

VideoLAN VLC Media Player 0.8.6d SSA Parsing Double Sh311 - Universal

!/usr/bin/python VLC 0.8.6d Double Sh311 Universal Exploit CVE-2007-6681 Vulnerability Discovered by Michal Luczaj Coded by Muris Kurgas aka j0rgan http://www.jorgan.users.cg.yu/ and Matteo Memelli aka ryujin http://www.be4mind.com - http://www.gray-world.net WE CODED IT JUST FOR FUN ; Cheers to...

VLC 0.8.6d httpd_FileCallBack Remote Format String Exploit

No description provided by source. / Epibite // bite since 1442 pown meme ta mamie / / Advisory from Luigi Auriemma CVE-2007-6682 / format string in VideoLAN VLC 0.8.6d Description : Format string vulnerability in the httpdFileCallBack...

vlc-format.txt

/ Epibite // bite since 1442 pown meme ta mamie / / Advisory from Luigi Auriemma CVE-2007-6682 / format string in VideoLAN VLC 0.8.6d Description : Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary cod...

DEBIAN-CVE-2008-0984

The MP4 demuxer mp4.c for VLC media player 0.8.6d and earlier, as used in Miro Player 1.1 and earlier, allows remote attackers to overwrite arbitrary memory and execute arbitrary code via a malformed MP4 file...

CVE-2007-6683

The browser plugin in VideoLAN VLC 0.8.6d allows remote attackers to overwrite arbitrary files via 1 the :demuxdump-file option in a filename in a playlist, or 2 a EXTVLCOPT statement in an MP3 file, possibly an argument injection vulnerability...

Format string

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...

CVE-2007-6684

The RTSP module in VideoLAN VLC 0.8.6d allows remote attackers to cause a denial of service crash via a request without a Transport parameter, which triggers a NULL pointer dereference...

CVE-2007-6682

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...

Cacti 0.8.6d - Remote Command Execution

Cacti 0.8.6d - Remote Command Execution Note: This exploit contains backdoor shell code that is not located on this server. /str0ke !/usr/bin/perl Remote Command Execution Exploit for Cacti http://www.example.com/cacti/graphimage.php?localgraphid=validvalue&graphstart=%0acommand%0a Patch: downloa...