Mercora IMRadio <= 4.0.0.0 - Local Password Disclosure Exploit

No description provided by source. /================================================================ Mercora IMRadio 4.0.0.0 password disclosure local exploit by Kozan Discovered & Coded by: Kozan Credits to ATmaCA Web: www.spyinstructors.com Mail: [email protected] ===== Application...

DelphiTurk FTP 1.0 - Passwords to Local Users Exploit

No description provided by source. / DelphiTurk FTP v1.0 Local Exploit by Kozan Application: DelphiTurk FTP v1.0 Procuder: Delphiturk.com and Delphikitabi.com Vulnerable Description: DelphiTurk FTP v1.0 passwords to local users. Coded by: Kozan Web : www.netmagister.com Web2: www.spyinstructors.c...

DelphiTurk CodeBank 3.1 - Local Username and Password Disclosure

No description provided by source. / DelphiTurk CodeBank Local Exploit Application: DelphiTurk CodeBank 3.1 and previous versions Procuder: Delphiturk.com Vulnerable Description: Delhiturk CodeBank discloses username and password to local users. Coded by: Kozan Web: www.netmagister.com Mail:...

Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c)

No description provided by source. / k-rad3.c - linux 2.6.11 and below CPL 0 kernel local exploit v3 Discovered and original exploit coded Jan 2005 by sd [email protected] Modified 2005/9 by alert7 [email protected] XFOCUS Security Team http://www.xfocus.org gcc -o k-rad3 k-rad3.c -static -O2 test...

Solaris 8/9/10 - fifofs I_PEEK Local Kernel Memory Leak Exploit

No description provided by source. / $Id: raptorpeek.c,v 1.1 2007/10/18 08:09:02 raptor Exp $ raptorpeek.c - Solaris fifofs IPEEK kernel memory leak Copyright c 2007 Marco Ivaldi [email protected] Lame integer signedness error in FIFO filesystems named pipes on Sun Solaris 8 through 10 allow...

Grep < 2.11 Integer Overflow Crash PoC

No description provided by source. Grep 2.11 is vulnerable to int overflow exploitation. http://lists.gnu.org/archive/html/bug-grep/2012-03/msg00007.html Although it is patched in the recent Grep, This update has not been pushed to the Ubuntu repos, or the Redhat repos, leaving 99% of those OS'sa...

IRCnet IRCD 2.10 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8817/info IRCnet IRCD has been reported prone to a buffer overflow vulnerability that may be exploited by local users. This issue may be exploited to crash the affected server. Although unconfirmed, due to the nature of...

DelphiTurk e-Posta 1.0 - Local Exploit

No description provided by source. / DelphiTurk e-Posta v1.0 Local Exploit by Kozan Application: DelphiTurk e-Posta v1.0 Procuder: Delphiturk.com Vulnerable Description: DelphiTurk e-Posta v1.0 discloses passwords to local users. Coded by: Kozan Credits to ATmaCA Web : www.netmagister.com Web2:...

SendLink 1.5 - Local Password Disclosure Exploit

No description provided by source. / SendLink v1.5 Local Exploit by Kozan Application: SendLink v1.5 Vendor:Computer Knacks http://www.computerknacks.com/ Vulnerable Description: SendLink v1.5 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA Web :...

Winace UnAce 2.2 Command Line Argument Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/9002/info UnAce has been reported to be prone to a buffer overflow vulnerability. The issue presents itself when UnAce handles ace filenames that are of excessive length. When this filename is passed to the UnAce utility ...

Notepad++ Plugin Notepad# 1.5 - Local Exploit

No description provided by source. Exploit Title: Notepad++ - Notepad plugin local exploit Google Dork: Date: 2013-12-01 Exploit Author: Sun Junwen Vendor Homepage: http://notepad-plus-plus.org/ Software Link: http://notepad-plus-plus.org/download/ Version: Notepad ++ 6.3.2 with Notepad plugin 1....

Majordomo 1.89/1.90 lists Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2310/info Majordomo is a perl-based Internet e-mail list server. Versions prior to 1.91 are vulnerable to an attack whereby specially crafted e-mail headers are incorrectly processed, yielding the ability to execute...

TP-Link TL-SC3171 IP Cameras - Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras 1. Advisory Information Title: Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras Advisory ID: CORE-2013-0618 Advisory URL:...

PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...

dislocate 1.3 - Local i386 Exploit

No description provided by source. / MasterSecuritY www.mastersecurity.fr dislocate.c - Local i386 exploit in v1.3 Secure Locate v2.3 Copyright C 2000 Michel MaXX Kaempf [email protected] Updated versions of this exploit and the corresponding advisory will be made available at:...

Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux)

No description provided by source. !/bin/sh tested and working /str0ke Linux Qpopper poppassd latest version local r00t exploit by kcope August 2005 Confidential - Keep Private! POPPASSDPATH=/usr/local/bin/poppassd echo echo Linux Qpopper poppassd latest version local r00t exploit by kcope echo...

Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit

No description provided by source. / hoagieudpsendmsg.c LOCAL LINUX KERNEL ROOT EXPLOIT 2.6.19 - CVE-2009-2698 udpsendmsg bug exploit via output callback function used in dstentry / rtable Bug reported by Tavis Ormandy and Julien Tinnes of the Google Security Team Tested with Debian Etch r0 $ cat...

Linux Kernel 2.4/2.6 - sock_sendpage() ring0 Root Exploit (Simple Version)

No description provided by source. / 0x82-CVE-2009-2692 Linux kernel 2.4/2.6 32bit socksendpage local ring0 root exploit simple ver Tested RedHat Linux 9.0, Fedora core 411, Whitebox 4, CentOS 4.x. -- Discovered by Tavis Ormandy and Julien Tinnes of the Google Security Team. spender and venglin's...

CVE-2014-0012

CVE-2014-0012 affects Jinja2 2.7.2: FileSystemBytecodeCache does not securely create temporary directories, allowing a local user to gain privileges by pre-creating a temp directory with that user’s UID. The issue exists due to an incomplete prior fix for CVE-2014-1402. Several connected advisori...

CVE-2014-0135

CVE-2014-0135 affects Kafo before 0.3.17 and 0.4.x before 0.5.2 (as used by Foreman). The issue is that default_values.yaml is world-readable, allowing local users to read passwords and other sensitive information. Remediation is to upgrade Kafo to 0.3.17+ or 0.4.x to 0.5.2+ (where fixed). If not...