1393 matches found
LILDBI Shell Upload Vulnerability
No description provided by source. Exploit Title: LILDBI Shell Upload Vulnerability Date: 23.07.2010 Author: EraGoN Software Link: http://productos.bvsalud.org/product.php?id=lildbi-web?=en Version: 1.2 Tested on: Ubuntu Linux - WinXP sp2/sp3 Dark Hackers Team Dork : allinurl:/lildbi/ POC : The...
Fat Player Media Player 0.6b0 Buffer Overflow
No description provided by source. $Id: fatplayerwav.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
World in Conflict 1.008 - NULL Pointer Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29888/info World in Conflict is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker could exploit this issue to crash the affected application,...
Xine-Lib 0.9/1 Remote Client-Side Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11969/info It is reported that the xine media library is affected by a remote buffer overflow vulnerability. This issue can allow a remote attacker to gain unauthorized access to a vulnerable computer. The overflow...
ezb systems ultraiso 8.0.1392 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17724/info Reportedly, an attacker can carry out attacks using directory-traversal strings. These issues occur when the application processes malicious archives. A successful attack can allow the attacker to place...
Online Job Board (Auth Bypass) SQL Injection Vulnerability
No description provided by source. '/ -.- --------------------oOO------OOo----------------------------- | Online Job Board Auth Bypass SQL Injection Vulnerability | | works only with magicquotesgpc = off | ---------------------------------------------------------------- ! Discovered: cr4wl3r...
Microsoft Windows SeImpersonatePrivilege - Local Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28833/info Microsoft Windows is prone to a privilege-escalation vulnerability. Successful exploits may allow authenticated users to elevate their privileges to NetworkService. This allows attackers to execute code with...
Raven Software Soldier Of Fortune 2 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11735/info It is reported that Soldier of Fortune 2 is susceptible to a buffer overflow vulnerability. This issue is due to a failure of the application to perform sufficient bounds checking on user-supplied input prior t...
Microsoft Excel - HFPicture Record Parsing Memory Corruption (0day)
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | day 23 0day binary anlysis | | | | || / \ || | | | || ||// \/|/ ''' Title : Microsoft Excel HFPicture Record Parsing Memory Corruption 0day Version : Excel 2002 SP3 Analysis :...
XLReader 0.9 - Remote Client-Side Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11970/info A remote, client-side buffer overflow vulnerability affects xlreader. This issue is due to a failure of the application to properly validate the length of user-supplied strings prior to copying them into static...
BlazeVideo HDTV Player 6.6 Professional (Direct Retn)
No description provided by source. Exploit Title: BlazeVideo HDTV Player 6.6 Professional Direct Retn Date: 11-25-2012 Exploit Author: Nezim @nezimlufni Vendor Homepage: http://www.blazevideo.com/ Version: BlazeVideo HDTV Player 6.6 Professional Tested on: Windows XP SP3 Reference :...
Open and Compact FTPd Pre-Authentication Crash (PoC)
No description provided by source. Title: Open & Compact FTPd Pre-Authentication Crash PoC Found by: loneferret Hat's off to dookie2000ca Date Found: 07/02/2010 Software link: https://sourceforge.net/projects/open-ftpd/ Tested on: Windows XP SP2/SP3 Professional Nod to the Exploit-DB Team It's...
w-cms 2.01 - Multiple Vulnerabilities
No description provided by source. Exploit Title: W-Cms Multiple Vulnerability Date: 2012-01-09 Author: th3.g4m30v3r Site:http://w-cms.info/ Software Link: http://code.google.com/p/wcms/ Dork: intext:Powered by w-CMS Version : 2.01 Tested on: Window 7 Yogesh Kashyap, shubneet goel, w4rl0ck.d0wn,...
Pragma Systems InterAccess TelnetD Server 4.0 Build 4 Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/995/info The Pragma Systems InterAccess TelnetID Server 4.0 Build 4 has an unchecked buffer in the code that handles login commands. Arbitrary code is capable of being executed on the InterAccess TelnetD Server if a strin...
bcoos 1.0.10 /myalbum/ratephoto.php lid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/26629/info The 'bcoos' program is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. These...
Microsoft Windows Kernel Intel x64 SYSRET PoC
No description provided by source. Source: http://packetstormsecurity.org/files/115908/sysret.rar This is proof of concept code that demonstrates the Microsoft Windows kernel Intel/x64 SYSRET vulnerability as described in MS12-042. The shellcode disables code signing and will grant NT SYSTEM...
TeamHelpdesk Customer Web Service (CWS) 8.3.5 & Technician Web Access (TWA) 8.3.5 - Remote User Credential Dump
No description provided by source. Exploit Title: Team Helpdesk Customer Web Service CWS Remote User Credential Dump exploit Exploit Title: Team Helpdesk Technician Web Access TWA Remote User Credential Dump exploit Date: May 5, 2014 Exploit Author: bhamb [email protected] Vendor Homepage:...
Windows RSH daemon <= 1.8 - Remote Buffer Overflow Exploit
No description provided by source. Windows RSH daemon = 1.8 Remote Buffer Overflow Exploit Exploit-DB mirror: http://www.exploit-db.com/sploits/2008-prdelka-vs-MS-rshd.tar.gz milw0rm.com 2008-01-21...
Wietse Venema Rpcbind Replacement 2.1 - Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1893/info A remote root vulnerability exists in certain versions of rpcbind portmapper. RPC Remote Procedure Call allows a program to request a service from a program located in another computer in a network without...
Microsoft Windows 98SE User32.DLL Icon Handling Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13791/info The Microsoft 'user32.dll' library is prone to a denial of service vulnerability. The issue manifests when the library handles icon .ico files containing large size values. Reports indicate that this issue exis...