126 matches found
HackPwn: nine Yang smart soymilk crack the details of the analysis-vulnerability warning-the black bar safety net
Nine male DJ08B-D667SG soymilk is a smart milk machine, you can configure the WIFI connection to the Internet, the user can through the“nine Yang cloud appliances”mobile app for soymilk for remote control, remote turn on, turn off the milk machine and other functions. While in 2 0 1 5 HackPwn,...
Excavations and the use of ntpd vulnerability-vulnerability warning-the black bar safety net
0x01 description A few months ago, I decided to start doing fuzzing it. I chose the Network Time Protocol the Network Time Protocol, NTP is the reference implementation of ntpd as my first target, because I have NTP some of the background knowledge, while this Protocol seems very simple, can be...
A number of courier company website was traced to memory vulnerability hack 2 0 seconds to crack the database-vulnerability warning-the black bar safety net
“The birth of a child, to buy milk SMS; bought a house, the decoration of SMS is endless; buy a new car, the insurance company of the SMS is overwhelming.” Yesterday, CCTV exposure together with violations of the privacy of others the information security of the case, adding that these spam...
VLC 2.1.2 - (.asf file) Crash PoC
No description provided by source. !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and affects all...
Rising OpenSSL(CVE-2 0 1 4-0 1 6 0)vulnerability analysis report-vulnerability warning-the black bar safety net
1. CVE-2 0 1 4-0 1 6 0 vulnerability background 2 0 1 4 年 4 月 7, OpenSSL released a security Bulletin, in the OpenSSL1. 0. 1 version there is a serious VulnerabilityCVE-2 0 1 4-0 1 6 to 0. OpenSSL Heartbleed module there is a BUG, the problem exists in the ssl/dlboth. c file in the heartbeat...
VideoLAN VLC Media Player 2.1.2 - .asf Crash (PoC)
VideoLAN VLC Media Player 2.1.2 - .asf Crash PoC !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and...
VLC 2.1.2 (.asf) - Crash PoC
Exploit for multiple platform in category dos / poc !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 an...
Online payment logic vulnerabilities summary-vulnerability warning-the black bar safety net
0×0 0 background description With Internet users increasingly accustomed to Online Shopping, there has been more and more e-Commerce sites, the online trading platform. Which certainly relates to the online payment process, and there is also a lot of logic. Since this involves money, if poorly...
QQ input state of vulnerability, let your friends die in the gentle greeting-vulnerability warning-the black bar safety net
Another year of spring, is the old man I haven't come to the BLOG inside. something. Remember last year's early fall back to the old place, a value of the taken place, to hold out something to the place. The discovery of this vulnerability after the really ruthless himself did not add a twist to...
MySQL and SQL field truncated vulnerability-vulnerability warning-the black bar safety net
The current Web developers certainly have a lot of people did not notice the author mentioned these two issues. The first problem is that, MySQL by default has a configuration parameters maxpacketsize, this parameter is used to limit the MySQL client and the MySQL server end of the data...
Microsoft Windows头MDL碎片远程代码执行漏洞(MS10-009)
BUGTRAQ ID: 38062 CVE ID: CVE-2010-0240 Microsoft Windows是微软发布的非常流行的操作系统。 当运行自定义网络驱动时Windows TCP/IP栈没有正确的处理UDP数据包碎片上的特制封装安全负载(ESP),远程攻击者可以通过发送特制报文导致执行任意代码。成功利用这个漏洞要求 Windows所安装的自定义网络驱动将UDP头拆分为多个MDL。 Microsoft Windows Vista SP2 Microsoft Windows Vista SP1 Microsoft Windows Vista Microsoft Windows...
PHP and ASP upload vulnerability exploit-vulnerability warning-the black bar safety net
1 pass exploit the principles just for the form format of the upload of asp and php scripts ncnetcat For the submission packet the dos interface to run under: nc-vv www.. com 8 01.txt -vv: echo 8 0: the www port 1.txt: is your data packet to be transmitted use of more methods, please check this...
Oracle RDBMS TNS Data packet DoS
NGSSoftware Insight Security Research Advisory Name: Oracle RDBMS Data packet DoS Systems Affected: Oracle 8.1.7.4, 10g Release 2 and 1, Oracle 9 Severity: High Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Reported: 23rd June 2006 Date of Public Advisory: 17t...
CVE-2007-5506
The Core RDBMS component in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote attackers to cause a denial of service CPU consumption via a crafted type 6 Data packet, aka DB20...
CVE-2007-5506
The Core RDBMS component in Oracle Database 9.0.1.5+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote attackers to cause a denial of service CPU consumption via a crafted type 6 Data packet, aka DB20...
pjblog upload vulnerability-vulnerability warning-the black bar safety net
First of all have pjblog the super administrator accounteven is to take their blog to the test Log in, post a new log, pass an asp horse, and the extension to get rid of that pjblog seemingly didn't do the file header check, remember address Then login the backend, the recovery database before...
PHP and ASP upload vulnerability explore-exploit warning-the black bar safety net
1 pass exploit the principles just for the form format of the upload of asp and php scripts ncnetcat For the submission packet the dos interface to run under: nc-vv www.. com 8 01.txt -vv: echo 8 0: the www port 1.txt: is your data packet to be transmitted use of more methods, please check this...
NetPanzer game DoS
Server enters to endless loop on the packet with zero data...
Forged Cookies online movies free to watch-vulnerability warning-the black bar safety net
Today, the network of movie sites a lot, but many are for a fee, rarely there will be a free“lunch”waiting for everyone to go enjoy. But now many movie sites registered ordinary members, if not renewed, the remaining money will be for $ 0, This is simply not be able to watch movies, even if you a...
CVE-2006-0049
gpg in GnuPG before 1.4.2.2 does not properly verify non-detached signatures, which allows attackers to inject unsigned data via a data packet that is not associated with a control packet, which causes the check for concatenated signatures to report that the signature is valid, a different...