Cacti <= 0.8.6i cmd.php popen() Remote Injection Exploit

No description provided by source. ?php printr' -------------------------------------------------------------------------------- Cacti = 0.8.6i cmd.php popen injection by rgod dork: intitle:login to cacti mail: retrog at alice dot it site: http://retrogod.altervista.org...

VLC 0.8.6i MMS Protocol Handling Heap Overflow PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i MMS Protocol Handling Class : Heap Overflow Published : 2008-08-24 Credit : g g orange-bat com - - Details - This can be exploited from remote. User have to open mmst:// li...

VideoLAN VLC Media Player 0.8.6i - Mms Protocol Handling Heap Overflow (PoC)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i MMS Protocol Handling Class : Heap Overflow Published : 2008-08-24 Credit : g g orange-bat com - - Details - This can be exploited from remote. User have to open mmst:// link poiting to server controlled by...

vlcfileparse-overflow.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int iseektablesize = 0, i; . . . / Read the metada...

VLC 0.8.6i tta File Parsing Heap Overflow PoC

No description provided by source. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int...

VideoLAN VLC Media Player 0.8.6i - &#039;.tta&#039; File Parsing Heap Overflow (PoC)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME 1.04489795918367346939 . . . int iseektablesize = 0, i; . . . / Read the metada...

VideoLAN VLC Media Player 0.8.6i - .tta File Parsing Heap Overflow (PoC)

VideoLAN VLC Media Player 0.8.6i - .tta File Parsing Heap Overflow PoC -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap overflow Published : 2008-08-16 Credit : g g orange-bat com - - Details - \modules\demux\tta.c define TTAFRAMETIME...

VLC 0.8.6i tta File Parsing Heap Overflow PoC

Exploit for multiple platform in category dos / poc ============================================= VLC 0.8.6i tta File Parsing Heap Overflow PoC ============================================= -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i Class : Heap...

CVE-2007-3112

graphimage.php in Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphstart or 2 graphend parameter, different vectors than CVE-2007-3113...

Code injection

Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphheight or 2 graphwidth parameter, different vectors than CVE-2007-3112...

Code injection

graphimage.php in Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphstart or 2 graphend parameter, different vectors than CVE-2007-3113...

CVE-2007-3113

Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphheight or 2 graphwidth parameter, different vectors than CVE-2007-3112...

CVE-2007-3112

graphimage.php in Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphstart or 2 graphend parameter, different vectors than CVE-2007-3113...

CVE-2007-3113

Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service CPU consumption via a large value of the 1 graphheight or 2 graphwidth parameter, different vectors than CVE-2007-3112...

CVE-2007-3112

CVE-2007-3112 affects Cacti 0.8.6i and possibly other versions, where remote authenticated users can cause CPU-based denial of service by sending large values for graph_start or graph_end in graph_image.php (different vectors than CVE-2007-3113). The issue relates to input handling in graph rende...

Debian DSA-1250-1 : cacti - missing input sanitising

It was discovered that cacti, a frontend to rrdtool, performs insufficient validation of data passed to the 'cmd' script, which allows SQL injection and the execution of arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

CVE-2006-6799

SQL injection vulnerability in Cacti 0.8.6i and earlier, when registerargcargv is enabled, allows remote attackers to execute arbitrary SQL commands via the 1 second or 2 third arguments to cmd.php. NOTE: this issue can be leveraged to execute arbitrary commands since the SQL query results are...

Cacti 0.8.6i - &#039;cmd.php?popen()&#039; Remote Injection

126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n"; $exa.="\r\n"; return $exa."\r\n".$result; $proxyregex = '\b\d1,3.\d1,3.\d...

Cacti <= 0.8.6i cmd.php popen() Remote Injection Exploit

Exploit for unknown platform in category web applications ======================================================== Cacti 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".deche...