Microsoft Excel - Code Execution

Microsoft Excel - Code Execution // This is an easy compilation version by phar include include /--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description:...

Microsoft Excel - Code Execution

// This is an easy compilation version by phar include include /--------------------------------------------------------------------- Microsoft Excel Remote Code Execution Proof Of Concept. Tested against : Excel 2000 on Win XP SP1 , and Win2000 SP4 Description: Microsoft Excel is prone to a remo...

CVE-2006-3019

Multiple PHP remote file inclusion vulnerabilities in phpCMS 1.2.1pl2 allow remote attackers to execute arbitrary PHP code via a URL in the PHPCMSINCLUDEPATH parameter to files in parser/include/ including 1 class.parserphpcms.php, 2 class.sessionphpcms.php, 3 class.editphpcms.php, 4...

Round Cube Webmail 0.1 -20051021 - Full Path Disclosure

source: https://www.securityfocus.com/bid/15920/info Round Cube will reportedly reveal its installation path in an error message output to the client. The filesystem layout can be sensitive information that is useful in other attacks against the target server. The trigger for this behavior is not...

Multi-Format Shellcode Encoding Tool - Beta v2.0 (w32)

Exploit for generator platform in category shellcode ====================================================== Multi-Format Shellcode Encoding Tool - Beta v2.0 w32 ====================================================== / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a...

Multi-Format Shellcode Encoding Tool - Beta v2.0 (w32)

No description provided by source. / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a variety of formats. .SP dSS" ,sS" Copyright C 2003-2005 by Berend-Jan Wever dS' Sb ,sY" [email protected] .SP dSSP' sSSSSSSP http://spaces.msn.com/members/berendjanwever iS: Thi...

Multi-Format Shellcode Encoding Tool - Beta 2.0 w32

Multi-Format Shellcode Encoding Tool - Beta v2.0 w32. Shellcode exploit for generator platform / ,sSSSis ,sSSSs, Beta v2.0 w32. iS" dP dY" ,SP Encodes binary data to/from a variety of formats. .SP dSS" ,sS" Copyright C 2003-2005 by Berend-Jan Wever dS' Sb ,sY" .SP dSSP' sSSSSSSP...

Snort <= 2.4.2 Back Orifice Parsing Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits ================================================================== Snort $Id: THCsnortbo.c,v 1.1 2005/10/24 11:38:59 thccvs Exp $ / / DETAILS The bug is in sppbo.c, BoGetDirection function static int BoGetDirectionPacket p, char pktdata uint3...

Snort 2.4.2 - Back Orifice Parsing Remote Buffer Overflow

/ THCsnortbo 0.3 - Snort BackOrifice PING exploit by [email protected] THC PUBLIC SOURCE MATERIALS Bug was found by Internet Security Systems http://xforce.iss.net/xforce/alerts/id/207 v0.3 - removed/cleaned up info for public release v0.2 - details added, minor changes v0.1 - first release Greetz to al...

FreeBSD : Cyrus IMAPd -- PARTIAL command out of bounds memory corruption (114d70f3-3d16-11d9-8818-008088034841)

Due to a bug within the argument parser of the partial command an argument like 'bodyp' will be wrongly detected as 'body.peek'. Because of this the bufferposition gets increased by 10 instead of 5 and could therefore point outside the allocated memory buffer for the rest of the parsing process. ...

phpbbquoteflaw.txt

Affected Software: phpBB 2.x tested on 2.0.4 and 2.0.8, untested on later versions Vulnerability: flaw in code handling the quoting of posts. Severity: Low Discovered by: Matt Benenati +Details+ ========= This flaw could allow a malicious user to alter the alignment and layout of any posts in the...

Cyrus IMAPd -- PARTIAL command out of bounds memory corruption

Due to a bug within the argument parser of the partial command an argument like "bodyp" will be wrongly detected as "body.peek". Because of this the bufferposition gets increased by 10 instead of 5 and could therefore point outside the allocated memory buffer for the rest of the parsing process. ...

Remote CVS 1.11.15 - error_prog_name Arbitrary Code Execution

Remote CVS 1.11.15 - errorprogname Arbitrary Code Execution / Remote CVS = 1.11.15 exploit for the errorprogname double free vuln. by Gyan Chawdhary, [email protected] Vulnerability Description: The Vulnerability lies in the serveargumentx function. The Argumentx command parameter is used to...

Remote CVS <= 1.11.15 (error_prog_name) Remote Exploit

Exploit for linux platform in category remote exploits ====================================================== Remote CVS = 1.11.15 errorprogname Remote Exploit ====================================================== Remote CVS = 1.11.15 exploit for the errorprogname double free vuln. by Gyan...

PaX 2.6 Kernel Patch - Denial of Service

PaX 2.6 Kernel Patch - Denial of Service / source: https://www.securityfocus.com/bid/10264/info PaX for 2.6 series Linux kernels has been reported prone to a local denial of service vulnerability. The issue is reported to present itself when PaX Address Space Layout Randomization Layout ASLR is...

CVE-2004-1983

The archgetunmappedarea function in mmap.c in the PaX patches for Linux kernel 2.6, when Address Space Layout Randomization ASLR is enabled, allows local users to cause a denial of service infinite loop via unknown attack vectors...

xfstt 1.21.4 - Memory Disclosure

xfstt 1.21.4 - Memory Disclosure source: https://www.securityfocus.com/bid/8255/info xfstt is reported to be prone to an unspecified memory disclosure vulnerability. This issue can be triggered by remote attackers to cause a denial of service. The server may also return details about the memory...

xfstt 1.2/1.4 - Memory Disclosure

source: https://www.securityfocus.com/bid/8255/info xfstt is reported to be prone to an unspecified memory disclosure vulnerability. This issue can be triggered by remote attackers to cause a denial of service. The server may also return details about the memory layout of the underlying system wh...

PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/6406/info Multiple path disclosure vulnerabilities have been discovered in PHP-Nuke. This issue occurs when requesting a PHP script that shouldn't be accessed directly. Exploiting this issue will cause the target server to disclose sensitive information...

PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities

PHP-Nuke 6.0 - Multiple Full Path Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/6406/info Multiple path disclosure vulnerabilities have been discovered in PHP-Nuke. This issue occurs when requesting a PHP script that shouldn't be accessed directly. Exploiting this issue wil...