Cross site scripting

Cross-site scripting XSS vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2010-3993

HP Insight Control Server Migration for Windows (HP) is affected by CVE-2010-3993 and is vulnerable prior to version 6.2. The HP security bulletin and CVSS data describe a remote vulnerability that could lead to unauthorized access and data modification, with base score 6.4 (MEDIUM). Mitigation: ...

D-Link DCC Protocol Security Bypass

The remote D-link Click 'n Connect Daemon does not implement any authentication and therefore allows remote attackers to view configuration and control server functions via the affected service. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid47606; scriptversion"1.6"...

CVE-2010-1557

HP Insight Control Server Migration contains a cross-site scripting (XSS) vulnerability in versions prior to 6.0. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The affected product appears in multiple sources as HP Insight Control Server Migrati...

Researchers Discover New ACH Banker Trojan

Malware hunters at SecureWorks have intercepted a new banker Trojan being used by cyber-criminals to steal financial credentials from banks in the U.S. The Trojan, dubbed “Bugat,” targets Automated Clearing House ACH and wire transfer transactions by small- and mid-sized business in the U.S., muc...

iPhone Worm Was Simple, Yet Effective, Analysis Shows

The iKee worm that was infecting jailbroken iPhones last month was a simple, yet effective, piece of software that shows how easy it might be for an attacker to create a fairly large, functioning botnet comprising mobile devices, an analysis of the worm shows. Researchers at SRI International’s...

Free Download Manager Remote Control Server Header Buffer Overflow (CVE-2009-0183)

Free Download Manager is an open source free download accelerator and manager software distributed under GPL license. It includes various features and components, such as upload manager, Flash video download, Remote Control Server, BitTorrent support, smart file management, a powerful scheduler a...

Free Download Manager Remote Control Server Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Free Download...

Inside the URLZone Trojan Network

Security researchers tracking the URL Zone malware/botnet have stumbled upon a new tactic being used by cyber-criminals to hide information on the money mules being used to transfer stolen funds from compromised online bank accounts. URLZone, which targets computer users in Western Europe, is a...

Free Download Manager 2.5/3.0 (Control Server) Remote BOF Exploit

No description provided by source. !/usr/bin/python Usage : fdm.py victimeip Bug : Free Download Manager 2.5/3.0 Control Server Remote BOF Exploit Fix : update Founder : Praveen Darshanam Tested on : Xp sp3 en Exploited by : His0k4 Greetings : All friends & muslims HaCkErs DZ import sys, socket...

Free Download Manager 2.53.0 - Control Server Remote Buffer Overflow

Free Download Manager 2.53.0 - Control Server Remote Buffer Overflow !/usr/bin/python Usage : fdm.py victimeip Bug : Free Download Manager 2.5/3.0 Control Server Remote BOF Exploit Fix : update Founder : Praveen Darshanam Tested on : Xp sp3 en Exploited by : His0k4 Greetings : All friends & musli...

Free Download Manager 2.5/3.0 - Control Server Remote Buffer Overflow

!/usr/bin/python Usage : fdm.py victimeip Bug : Free Download Manager 2.5/3.0 Control Server Remote BOF Exploit Fix : update Founder : Praveen Darshanam Tested on : Xp sp3 en Exploited by : His0k4 Greetings : All friends & muslims HaCkErs DZ import sys, socket import base64 from time import host ...

A Zeus botnet self-destructs

From The H Security According to information which only recently came to light, in early April a botnet consisting of an estimated 100,000 PCs apparently destroyed itself – as its control server send out a command that made Windows inoperable. The botnet was based on the Zeus rsa.com botnet tool...

Free Download Manager多个远程安全漏洞

CVECAN ID: CVE-2009-0183,CVE-2009-0184 Free Download Manager是一种强大易用而且免费的网络下载管理及加速软件。 Free Download Manager的实现上存在多个远程安全漏洞，远程攻击者可能利用此漏洞控制运行了FDM的用户系统。 Free Download Manager处理torrent文件中的文件名、注释、URL等字串时存在堆或栈缓冲区溢出，攻击者可能通过诱使用户处理恶意的torrent文件触发漏洞控制用户系统。FDM的Remote Control...

Free Download Manager 2.5/3.0 (Authorization) Stack BOF PoC

No description provided by source. !usr/bin/perl -w Stack-based buffer overflow in Remote Control Server in Free Download Manager FDM 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request. Refer:...

Free Download Manager Remote Control Server HTTP Authorization buffer overflow

Added: 02/04/2009 CVE: CVE-2009-0183 BID: 33554 OSVDB: 51745 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability in the Free Download Manager Remote Control Server allows remote attackers to execute arbitrary commands...

Free Download Manager 2.5/3.0 (Authorization) Stack BOF PoC

Exploit for unknown platform in category dos / poc =========================================================== Free Download Manager 2.5/3.0 Authorization Stack BOF PoC =========================================================== !usr/bin/perl -w Stack-based buffer overflow in Remote Control Serve...

Free Download Manager Remote Control Server HTTP Authorization buffer overflow

Added: 02/04/2009 CVE: CVE-2009-0183 BID: 33554 OSVDB: 51745 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability in the Free Download Manager Remote Control Server allows remote attackers to execute arbitrary commands...

Free Download Manager Remote Control Server HTTP Authorization buffer overflow

Added: 02/04/2009 CVE: CVE-2009-0183 BID: 33554 OSVDB: 51745 Background Free Download Manager is a download accelerator and manager for Windows systems. Problem A buffer overflow vulnerability in the Free Download Manager Remote Control Server allows remote attackers to execute arbitrary commands...

Preemptive Protection against Free Download Manager Remote Control Server

A buffer overflow vulnerability was reported in Free Download Manager, a free download accelerator and manager. The vulnerability is caused due to a boundary error in the Remote Control Server when processing "Authorization" headers in HTTP requests. This issue can be triggered via an HTTP reques...