Apache Tomcat < 6.0.18 - 'utf8' Directory Traversal

/Apache Tomcat include include include include include include include include include include define EXPLOIT "GET /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd HTTP/1.0\n\n" define RCVBUFSIZE 9999 define tester "root:x" void cls char esc = 27; printf"%c%s",esc,"2J"; printf"%c%s",esc,"1;1H";...

McAfee Remediation Client ActiveX Control Buffer Overflow

This module exploits a stack buffer overflow in McAfee Remediation Agent 4.5.0.41. When sending an overly long string to the DeleteSnapshot method of enginecom.dll 3.7.0.9 an attacker may be able to execute arbitrary code. This control is not marked safe for scripting, so choose your attack vecto...

Discuz! moderation.inc.php 数据库'注射'漏洞

在文件include/moderation.inc.php里代码: $threadlist = $loglist = array; if$tids = implodeids$moderate $query = $db-query"SELECT FROM $tableprethreads WHERE tid IN $tids AND fid='$fid' AND displayorder='0' AND digest='0' LIMIT $tpp"; while$thread = $db-fetcharray$query ... $threadlist$thread'tid' =...

CVE-2008-2936

creationtimestamp| type| source ---|---|--- 2008-08-31 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6337...

CVE-2008-4082

creationtimestamp| type| source ---|---|--- 2008-08-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6332...

CVE-2008-0964

creationtimestamp| type| source ---|---|--- 2008-08-29 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6328...

CVE-2008-3879

creationtimestamp| type| source ---|---|--- 2008-08-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6319...

CVE-2008-3925

creationtimestamp| type| source ---|---|--- 2008-08-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6313...

CVE-2008-4054

creationtimestamp| type| source ---|---|--- 2008-08-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6310...

CVE-2008-3859

creationtimestamp| type| source ---|---|--- 2008-08-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6314...

CVE-2008-4051

creationtimestamp| type| source ---|---|--- 2008-08-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32297...

CVE-2008-3851

creationtimestamp| type| source ---|---|--- 2008-08-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6300...

vlcmms-overflow.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VLC 0.8.6i MMS Protocol Handling Class : Heap Overflow Published : 2008-08-24 Credit : g g orange-bat com - - Details - This can be exploited from remote. User have to open mmst:// link poiting to server controlled by...

CVE-2008-3790

creationtimestamp| type| source ---|---|--- 2008-08-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32292...

CVE-2008-3794

creationtimestamp| type| source ---|---|--- 2008-08-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6293...

CVE-2008-3776

creationtimestamp| type| source ---|---|--- 2008-08-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32286...

CVE-2008-4156

creationtimestamp| type| source ---|---|--- 2008-08-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6284...

CVE-2008-3480

creationtimestamp| type| source ---|---|--- 2008-08-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6278...

CVE-2008-4101

creationtimestamp| type| source ---|---|--- 2008-08-19 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/32289...

VMware Workstation 6.5.1 - hcmon.sys 6.0.0.45731 Local Denial of Service

VMware Workstation 6.5.1 - hcmon.sys 6.0.0.45731 Local Denial of Service -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - Orange Bat advisory - Name : VMWare Workstation hcmon.sys 6.0.0.45731 Class : DoS Published : 2008-08-17 Credit : g g orange-bat com - - Details - Fails to sanitize pointers...