MailEnable Professional/Enterprise <= 2.37 Denial of Service Exploit

No description provided by source. !/usr/bin/perl maildisable-v7.pl Mail Enable Professional/Enterprise v2.32-7 win32 by mu-b - Wed Feb 14 2007 - Tested on: Mail Enable Professional v2.37 win32 use Getopt::Std; getopts't:', %arg; use Socket; use MIME::Base64; my $target; if defined$arg't' $target...

MyBB Member.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14684/info MyBB is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. Successful exploitation could result in a compromise of the...

Simple PHP Blog <= 0.4.0 - Multiple Remote Exploits

No description provided by source. !/usr/bin/perl -w =============================================================================== Title: sphpblogvulns.pl Written by: Kenneth F. Belva, CISSP Franklin Technologies Unlimited, Inc. http://www.ftusecurity.com Date: August 25, 2005 Version: 0.1...

Novell NetIQ Privileged User Manager 2.3.1 ldapagnt.dll ldapagnt_eval() Perl Code Evaluation RCE

No description provided by source. Novell NetIQ Privileged User Manager 2.3.1 ldapagnt.dll ldapagnteval Perl Code Evaluation RCE pre auth/SYSTEM Tested against: Microsoft Windows 2003 r2 sp2 download url: http://download.novell.com/index.jsp search Privileged User Manager file tested:...

Generation Terrorists Designs & Concepts Sojourn 2.0 File Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1052/info Any file that the webserver has read access to can be read on a server running the Sojourn search engine. The Sojourn software includes the ability to organize a website into categories. These categories can the...

Halloween Linux 4.0,RedHat Linux 6.1/6.2 imwheel Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/1060/info A vulnerability exists in the 'imwheel' package for Linux. This package is known to be vulnerable to a buffer overrun in its handling of the HOME environment variable. By supplying a sufficiently long string...

AKoff MIDI Player 1.00 - Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl AKoff MIDI Player 1.00 Buffer Overflow Exploit By cr4wl3r cr4wl3r\x40linuxmail\x2Eorg gr33tz: str0ke, opt!x hacker, xoron, EA ngel, zvtral, Hmei7, mywisdom, cyberlog, irvian, and all my friend thanks: milw0rm, darkc0de, exploit-db, inj3ct0r,...

TPTEST <= 3.1.7 Stack Buffer Overflow PoC

No description provided by source. !/usr/local/bin/perl TPTEST = 3.1.7 maby also 5.0.2? tptest.sourceforge.net stackbased buffer overflow poc in server client can also be exploit author: ffwd use IO::Socket;$host,$port=@ARGV; $rem=IO::Socket::INET-newProto=tcp,PeerAddr=$host,PeerPort=$port;...

My Gaming Ladder Combo System <= 7.0 - Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=28 Usage: ladder.pl host path cmd Dork: Ladder Scripts by http://www.mygamingladder.com...

AWStats (6.0-6.2) configdir Remote Command Execution Exploit (c code)

No description provided by source. / AwStats exploit by Thunder, [email protected] This exploit makes use of the remote command execution bug discovered in AwStats ver 6.2 and below. The bug resides in the awstats.pl perl script. The script does not sanitise correctly the user input for the...

IP Reg <= 0.4 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl ----------------------------------------------- IP Reg = 0.4 Blind SQL Injection Exploit Discovered By StAkeR - StAkeRathotmaildotit Discovered On 03/10/2008 ----------------------------------------------- Download...

PHPSelect Submit-A-Link HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17348/info Submit-A-Link is prone to an HTML-injection vulnerability. The script fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code woul...

LPRNG html2ps 1.0 - Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6079/info A vulnerability has been discovered in the html2ps filter which is included in the lprng print system. It has been reported that it is possible for a remote attacker to execute arbitrary commands. The attacker...

BL4 SMTP Server < 0.1.5 - Remote Buffer Overflow PoC

No description provided by source. !/usr/bin/perl use IO::Socket; use Socket; my$socket = ; if$ARGV 1 | $ARGV 2 usage if$ARGV 2 $prt = $ARGV1 else $prt = 25 ; $adr = $ARGV0; $prt = $ARGV1; $socket = IO::Socket::INET-newProto=tcp, PeerAddr=$adr, PeerPort=$prt, Reuse=1 or die Error: cant connect to...

WFTPD Server GUI 3.21 Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9908/info WFTPD server front end GUI has been reported to be prone to a denial of service. The issue is reported to present itself if a user who is logged into the affected service issues an FTP request with a large...

Lizardware CMS <= 0.6.0 - Blind SQL Injection Exploit

漏洞类型： 输入验证错误 漏洞文件： /administrator/index.php 漏洞成因： 在index.php 中，未对用户输入进行过滤从而导致注入 参考： http://www.securityfocus.com/bid/32898/solution !/usr/bin/perl -w Lizardware CMS = 0.6.0 Blind SQL Injection Exploit by athos - stakerathotmaildotit http://sourceforge.net/projects/lizardwarecms/ use strict; use...

LHA 1.x Multiple extract_one Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10354/info LHA has been reported prone to multiple vulnerabilities that may allow a malicious archive to execute arbitrary code or corrupt arbitrary files when the archive is operated on. These issues are triggered in the...

Microburst uDirectory 2.0 - Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2884/info uDirectory is an online directory and listing management system. An input validation error exists in uDirectory that may allow remote users to execute arbitrary commands on a host running the software...

Cisco CBOS 2.x Broadband Operating System TCP/IP Stack Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4815/info Cisco Broadband Operating System CBOS is the operating system used on Cisco 600 series routers. When the CBOS TCP/IP stack is forced to process a high number of unusually large packets, it will consume all memor...

Password Door 8.4 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33634/info Password Door is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the...