SolarFTP 2.0 - Multiple Commands Denial of Service Vulnerability

No description provided by source. !/usr/bin/python Exploit Title: SolarFTP 2.0 Multiple Commands Denial of Service Vulnerability Date: 12/17/2010 Author: modpr0be Software Link: http://www.solarftp.com/files/solarftps-setup.exe Vulnerable version: 2.0 Tested on: Windows XP SP2, Windows XP SP3 CV...

Adobe Shockwave Director tSAC - Chunk Memory Corruption

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : Adobe Shockwave Director tSAC Chunk memory corruption Version : dirapi.dll 11.5.7 Analysis : http://www.abysssec.com Vendor...

BlazeDVD Pro Player 6.1 - Stack Based Buffer Overflow Jump ESP

No description provided by source. Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Tested on: Windows...

KenWard's Zipper 1.400 - Buffer Overflow - Method 2

No description provided by source. !/usr/bin/python KenWard's Zipper v1.400 File Name Buffer Overflow Coded by sinn3r x90.sinneratgmaild0tcom Tested on: Windows XP SP3 ENG Reference: http://www.exploit-db.com/exploits/11834 Big thanks to mrme, and corelanc0d3r. greetz to all the friends at Corela...

RealPlayer - FLV Parsing Integer Overflow

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : RealPlayer FLV Parsing Multiple Integer Overflow Version : RealPlayer SP 1.1.4 Analysis : http://www.abysssec.com Vendor :...

IrfanView TIFF Image Processing Buffer Overflow Vulnerability

No description provided by source. Application: IrfanView TIFF Image Processing Buffer Overflow Vulnerability Platforms: Windows Exploitation: Remote code execution Secunia Number: SA47065 PRL: 2011-10 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/...

Quicktech SQL Injection Vulnerability

No description provided by source. + Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql...

[oss-security] OpenFiler - Arbitrary Code Execution & Stored XSS

hi, Multiple vulnerabilities were discovered in the latest version of OpenFiler appliance, 2.99.1 as reported herehttps://forums.openfiler.com/index.php?/topic/6720-arbitrary-code-execution-stored-xss-vulnerability-in-openfiler-latest-version-2991/, here http://www.exploit-db.com/exploits/33247 a...

EFS Easy Chat Server 3.1 - Remote Stack Buffer Overflow

Exploit-DB Note: The offset to SEH is influenced by the installation path of the program. For this specific exploit to work, easy chat must be installed to: 'C:\Program Files\EFS Software\Easy Chat Server' Exploit Title: Easy Chat Server 3.1 stack buffer overflow Date: 9 May 2014 Exploit Author:...

McAfee Asset Manager Multiple Vulnerabilities

McAfee Asset Manager is prone to directory traversal and SQL injection vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MS14-012 Internet Explorer CMarkup Use-After-Free

mxmlc.exe AsXploit.as -o AsXploit.swf E-DB Note: http://www.exploit-db.com/sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d = Numberdword.toString16; while d.length 8 d = '0' + d; return unescape'%u' + d.substr4, 8 + '%u' + d.substr0, 4; function eXpl v...

Microsoft Internet Explorer 10 - CMarkup Use-After-Free (MS14-012)

mxmlc.exe AsXploit.as -o AsXploit.swf Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d = Numberdword.toString16; while d.length 8 d = '0' + d; return unescape'%u...

Microsoft Internet Explorer 10 - CMarkup Use-After-Free (MS14-012)

Microsoft Internet Explorer 10 - CMarkup Use-After-Free MS14-012 mxmlc.exe AsXploit.as -o AsXploit.swf Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/32851-AsXploit.as -- var garr = ; var arrLen = 0x250; function dword2datadword var d =...

Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability - Linux

Adobe Reader is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP

Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Tested on: Windows XP service pack 2 en my $file=...

Adobe Reader 'Download Manager' Privilege Escalation Vulnerability - Mac OS X

Adobe Reader is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

plexusCMS 0.5 - Cross-Site Scripting Remote Shell Credentials Leak

plexusCMS 0.5 - Cross-Site Scripting Remote Shell Credentials Leak Exploit Title: plexusCMS 0.5 XSS Remote Shell Exploit Google Dork: allinurl: plx-storage Date: 22.02.2013 Exploit Author: neglomaniac Vendor Homepage: http://plexus-cms.org/ Version: 0.5 --- FILES backdoor.php simple commend execu...

Pompem - Exploit Finder

Pompem is an open source tool, which is designed to automate the search for exploits in major databases. Developed in Python, has a system of advanced search, thus facilitating the work of pentesters and ethical hackers. In its current version, performs searches in databases: Exploit-db, 1337day,...

MP3Info 0.8.5a - Local Buffer Overflow (SEH)

Exploit Title: mp3info SEH exploit Date: 18 March 2014 Exploit Author: Ayman Sagy Vendor Homepage: http://ibiblio.org/mp3info/ Software Link: https://www.exploit-db.com/apps/cb7b619a10a40aaac2113b87bb2b2ea2-mp3info-0.8.5a.tgz Version: MP3Info 0.8.5 Tested on: Windows 7 Ultimate 64 and 32 bit CVE ...

Re: Medium severity flaw in BlackBerry QNX Neutrino RTOS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Nth Dimension Security Advisory NDSA20140311 Date: 11th March 2014 Author: Tim Brown mailto:[email protected] URL: http://www.nth-dimension.org.uk/ / http://www.machine.org.uk/ Product: QNX Neutrino RTOS 6.5.0...