Cain & Abel 4.9.25 (Cisco IOS-MD5) Local Buffer Overflow Exploit

No description provided by source. !perl -w Simple overflow for Cain & Abel v4.9.25 and below? This script will output a file; import this file as a config file under Cracker - Cisco IOS-MD5 Hashes If Cain crashes but calc.exe isn't run, change $eip to reflect your system. send9 /at/ chiseclabs.c...

QuoteBook Configuration File Disclosure

-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

CVE-2008-5313

mailscanner 4.68.8 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the 1 f-prot-autoupdate, 2 clamav-autoupdate, 3 avast-autoupdate, and 4 f-prot-6-autoupdate scripts in /etc/MailScanner/autoupdate/;...

DEBIAN-CVE-2008-4953

firehol in firehol 1.256 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/.firehol-tmp--- and 2 /tmp/firehol.conf temporary files. NOTE: the vendor disputes this vulnerability, stating that an attack "would require an attacker to create 1073741824PID-RANGE symlinks...

Important: Red Hat Security Advisory: lynx security update

An updated lynx package that corrects two security issues is now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Lynx is a text-based Web browser. An arbitrary command execution flaw was...

BuzzyWall 1.3.1 (download id) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ================================================================== BuzzyWall 1.3.1 download id Remote File Disclosure Vulnerability ==================================================================...

CVE-2008-3646

The Postfix configuration file in Mac OS X 10.5.5 causes Postfix to be network-accessible when mail is sent from a local command-line tool, which allows remote attackers to send mail to local Mac OS X users...

OLIB 7 WebView 2.5.1.1 (infile) Local File Inclusion Vulnerability

No description provided by source. Security Advisory for 'OLIB 7 Webview' This software is apart of Moodle. Software - OLIB 7 WebView v2.5.1.1 Exploit - LFI Severity - High Author - ZeN website - http://dusecurity.com/ Date - 2nd October 2008 DUSecurity Team / DarkCode Exploit...

Gentoo Security Advisory GLSA 200411-15 (OpenSSL)

The remote host is missing updates announced in advisory GLSA 200411-15. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Epic Games Unreal Tournament 3 UT3 WebAdmin目录遍历漏洞

BUGTRAQ ID: 31272 CNCAN ID：CNCAN-2008092305 Unreal Tournament 3 UT3是一款基于Unreal引擎的游戏程序，包含内部WEB服务程序。 Unreal Tournament 3 UT3包含的管理员接口不正确过滤用户输入，远程攻击者可以利用漏洞以WEB权限查看web root外的文件内容。 提交类似如下的请求，可绕过WEB ROOT限制，以WEB权限查看系统文件内容： GET /images/../../UTGame/Config/UTGame.INI HTTP/1.0 Host: localhost Epic Games UT3...

barcodegen 2.0.0 - Local File Inclusion

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl barcodegen = 2.0.0 Local File Inclusion Vulnerability Script: "Barcode Generator 1D" Script site: http://www.barcodephp.com/...

Fedora 8 : libHX-1.23-1.fc8 / pam_mount-0.47-1.fc8 (2008-7973)

A security flaw in the pammount's handling of user defined volumes using the 'luserconf' option has been fixed in this update. The vulnerability allowed users to arbitrarily mount filesystems at arbitrary locations. More details about this vulnerability can be found in the announcement message se...

GNU Coreutils pam_succeed_if PAM模块本地绕过认证漏洞

BUGTRAQ ID: 30363 CVECAN ID: CVE-2008-1946 GNU核心工具（Coreutils）是GNU操作系统所使用的基本文件、shell和文本操控工具。 Coreutils软件包没有对su命令正确地使用配置文件中的pamsucceedif可插拔认证模块（PAM），如果运行su的用户知道目标帐号的口令的话，任何本地用户都可以使用这个命令更改锁定的或过期的用户帐号。 GNU Coreutils 5.2.1 RedHat ------ RedHat已经为此发布了一个安全公告（RHSA-2008:0780-01）以及相应补丁:...

BakBone NetVault 6.x/7.x Local Stack Buffer Overflow Exploit

No description provided by source. / for more informations class101.org/netv-locsbof.pdf / include stdio.h include string.h ifdef WIN32 include "winsock2.h" pragma commentlib, "ws232" else include sys/socket.h include sys/types.h include netinet/in.h include netinet/insystm.h include netinet/ip.h...

Pivot t参数目录遍历漏洞

BUGTRAQ ID: 30012 Pivot是一款基于WEB的帮助用户维护动态站点的工具。 Pivot的search.php文件没有正确过滤对t参数输入的便返回用于显示文件： ... // Set the template for the tags page if !isset$PivotVars't' || empty$PivotVars't' if isset$Weblogs$Currentweblog'extratemplate' && $Weblogs$Currentweblog'extratemplate'!="" $template =...

Pivot 1.40.5 - Dreamwind 'load_template()' Credentials Disclosure

?php / Pivot 1.40.5 'Dreamwind' loadtemplate credentials disclosure exploit by Nine:Situations:Group::bookoo our site: http://retrogod.altervista.org/ software site: http://www.pivotlog.net/ Google dork: "by Pivot - 1.40.5" +'Dreadwind' -pivotlog.net vulnerability: search.php - lines 98-109: ... ...

Design/Logic Flaw

Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware...

CMS from Scratch <= 1.1.3 (fckeditor) Remote Shell Upload Exploit

No description provided by source. ?php / ----------------------------------------------------------------- CMS from Scratch = 1.1.3 fckeditor Remote Shell Upload Exploit ----------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.1.:...

Dragoon 0.1 - root Remote File Inclusion

Dragoon 0.1 - root Remote File Inclusion -========================================== ViVa YeMeN ====================================- Name : Dragoon 0.1 Remote File Include Vulnerabilitiy Download From : http://sourceforge.net/project/showfiles.php?groupid=118780 Found By : RoMaNcYxHaCkEr...

Access Restriction Bypass

Overview Affected versions of this package are vulnerable to Access Restriction Bypass. OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshdconfig ForceCommand directive by modifying the .ssh/rc session file. Remediation There is no fixed version for openssh...