Pirelli Discus DRG A125g - Local Password Disclosure

Pirelli Discus DRG A125g - Local Password Disclosure !/usr/bin/perl Author: Sebastián Magof Hardware: pirelli discus DRG A125g Vulnerable file: wlbasic.html Bug: Wifi Password Disclosure Type: Local / ±lpha "" usage:perl exploit.pl use LWP::UserAgent; use HTTP::Request; begin print "\n\n\n";...

RealNetworks RealPlayer Denial of Service Vulnerability - July13 (Windows)

This host is installed with RealPlayer which is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbrealplayerdosvulnjul13win.nasl 6093 2017-05-10 09:03:18Z teissa $ RealNetworks RealPlayer Denial of Service Vulnerability - July13 Windows Authors: Arun Kallavi Copyright:...

RealNetworks RealPlayer Denial of Service Vulnerability (Jul 2013) - Windows

RealPlayer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Firefox 17.0.1 Crash Proof Of Concept

Exploit Title: Firefox 17.0.1 Crash PoC Date: 13.12.2012 Exploit Author: limb0 Software Link: http://www.mozilla.org/en-US/ Version: 17.0.1 Tested on: Linux +-------------------------------------------------------------+ Instruction 1.Create a new .html/.htm file and copy paste this code in...

RIM BlackBerry PlayBook information leakage

Local HTML file can send any data outside...

DropBox iOS / Android App File Theft

DropBox version 1.4.6 on iOS, 2.0.1 on Android, and Google Drive version 1.0.1 on iOS suffer from a file theft vulnerability due to allowing arbitrary javascript to be executed inside of the privileged file zone. 1 Introduction ================================================ Recently, I discover...

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in Maxthon Browser 1.6.7.35 and 2.5.15 allow local users to gain privileges via a Trojan horse 1 RSRC32.dll or 2 dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .html file. NOTE: the provenance of this...

FCKeditor exploit summary-vulnerability warning-the black bar safety net

Fckeditor exploit summary View Editor Version FCKeditor/whatsnew.html ------------------------------------------------------------- 2. Version 2.2 version Apache+linux environments in the upload files back plus a. Breakthrough! Test passed...

Authentication flaw

The web interface on the SMC SMC8024L2 switch allows remote attackers to bypass authentication and obtain administrative access via a direct request to a .html file under 1 status/, 2 system/, 3 ports/, 4 trunks/, 5 vlans/, 6 qos/, 7 rstp/, 8 dot1x/, 9 security/, 10 igmps/, or 11 snmp/...

Directory traversal

1 AlbumTab.py, 2 ArtistTab.py, 3 LinksTab.py, and 4 LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory...

Safari On iOS Denial Of Service

/PoC for Safari crash discovered by Alberto Ortega @a0rtega, [email protected] http://www.livehacking.com/category/vulnerability/apple-vulnerability/ This PoC written by Larry W. Cashdollar http://vapid.dhs.org @lcashdol This PoC creates an html file to be served out by a normal webserver. It...

FlashPeak SlimBrowser 6.0.1.38 Denial Of Service

Title: FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability Software : FlashPeak SlimBrowser Software Version : 6.0.1.38 Vendor: FlashPeak Inc.www.flashpeak.com/ Vulnerability Published : 2012-05-16 Vulnerability Update Time : Status : Impact : MediumCVSS2 Base : 5.0,...

Zenturi ProgramChecker ActiveX Components ActiveX Controls Buffer Overflows (CVE-2007-2987)

Multiple buffer overflow vulnerabilities have been reported in Zenturi ProgramChecker. The vulnerabilities are due to a data validation failure, resulting in a buffer overflow. A remote attacker may exploit these vulnerabilities by enticing a target user to open a specially crafted HTML file...

Microsoft Internet Explorer Telnet URI Handler Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a vulnerability that lets attackers execute arbitrary remote code. An attacker can exploit this issue by enticing a legitimate user to use a vulnerable version of the application to access an HTML file from a network share location that contains...

HTML file type attachments are automatically rendered in IE.

h1. Steps to reproduce Create following HTML file and upload to any of Confluence page. code alert"Cookie: " + document.cookie; code Open the file on Internet Explorer 7. Then, you will see the javascript in that HTML file executed automatically. Issue happens with IE9,8,7 with Confluence 3.5...

HTML file type attachments are automatically rendered in IE.

h1. Steps to reproduce Create following HTML file and upload to any of Confluence page. code alert"Cookie: " + document.cookie; code Open the file on Internet Explorer 7. Then, you will see the javascript in that HTML file executed automatically. Issue happens with IE9,8,7 with Confluence 3.5...

Internet Explorer JavaScript Opener Object Information Disclosure (MS11-018; CVE-2011-1245)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which may allow the attacker to view data from a Web page in another Internet...

Internet Explorer Object Lifetime Management Memory Corruption (MS11-018; CVE-2011-1345)

A remote code execution vulnerability has been reported in Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary commands. The...

eXPert PDF Batch Creator v7 Denial of Service Exploit

Exploit for windows platform in category dos / poc !/usr/bin/perl Title : eXPert PDF Batch Creator v7 Denial of Service Exploit Author : KedAns-Dz E-mail : email protected Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Blocked...

eXPert PDF Editor 7.0.880.0 Crash Exploit

!/usr/bin/perl Title : eXPert PDF Batch Creator v7 Denial of Service Exploit Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : Windows Impact : Blocked 'vsbatch2pdf.exe' When Generate Tested on : Windows ...