vsftpd 2.3.2 - Denial of Service

include include include include include include include / This is code of http://cxib.net/stuff/vspoc232.c PoC CVE-2011-0762 vsftpd Remote Denial of Service Affected: 2.3.2 Fix: 2.3.4 Author: Maksymilian Arciemowicz Use: ./vspoc232 127.0.0.1 21 user pass 1 or read...

Android 1.x / 2.x Local Root Exploit

/ android 1.x/2.x the real youdev feat. init local root exploit. C 2009/2010 by The Android Exploid Crew. Copy from sdcard to /sqlitestmtjournals/exploid, chmod 0755 and run. Or use /data/local/tmp if available thx to ioerror! It is important to to use /sqlitestmtjournals directory if available...

Google Urchin 5.7.03 - Local File Inclusion

Google Urchin 5.7.03 - Local File Inclusion Summary: Google Urchin is vulnerable to a Local File Include LFI vulnerability that allows arbitrary reading of files. Confirmed in version 5.7.03 running on Linux. Issue may exist in other versions as well. Analysis: During normal usage, Google Urchin...

ASP.NET Padding Oracle Vulnerability (MS10-070)

Exploit for windows platform in category remote exploits =============================================== ASP.NET Padding Oracle Vulnerability MS10-070 =============================================== Source: http://blog.mindedsecurity.com/2010/10/breaking-net-encryption-with-or-without.html...

Symantec Ams Intel Alert Handler Service - Design Flaw

Symantec Ams Intel Alert Handler Service - Design Flaw // Remote command execution at System level without authentication // Advisory:https://www.foofus.net/?pageid=149 // Exploit Title: Symantec AMS Intel Alert Handler service Design Flaw // Date: 07/28/10 // Author: Spider // Software Link:...

Symantec AMS Intel Alert Handler Command Execution

// Remote command execution at System level without authentication // Advisory:https://www.foofus.net/?pageid=149 // Exploit Title: Symantec AMS Intel Alert Handler service Design Flaw // Date: 07/28/10 // Author: Spider // Software Link: http://www.foofus.net/spider/code/ams-cmd.cpp.txt // Teste...

Adobe InDesign CS3 INDD File Handling Buffer Overflow

!/usr/bin/perl Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability Vendor: Adobe Systems Inc. Product Web Page: http://www.adobe.com Version tested: CS3 10.0 Summary: Adobe® InDesign® CS3 software provides precise control over typography and built-in creative tools for designing,...

Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability

No description provided by source. !/usr/bin/perl Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability Vendor: Adobe Systems Inc. Product Web Page: http://www.adobe.com Version tested: CS3 10.0 Summary: Adobe® InDesign® CS3 software provides precise control over typography and...

Adobe InDesign CS3 - .INDD Handling Buffer Overflow

Adobe InDesign CS3 - .INDD Handling Buffer Overflow !/usr/bin/perl Adobe InDesign CS3 INDD File Handling Buffer Overflow Vulnerability Vendor: Adobe Systems Inc. Product Web Page: http://www.adobe.com Version tested: CS3 10.0 Summary: Adobe® InDesign® CS3 software provides precise control over...

Dolphin 2.0 - '.elf' Local Denial of Service

Site: http://www.nullbyte.org.il Dolphin 2.0 is vulnerable to local denial of service attack. When we try to open a file by 'OpenCTRL+O' that contains 9999 chars 'A', so dolphin should crash. PoC / Code: $buffer = strrepeat'A', 99999; Create 9999 chars'A'.. iffileputcontents'crash.elf', $buffer...

Multiple D-Link Routers Authentication Bypass Vulnerability

Exploit for unknown platform in category web applications =========================================================== Multiple D-Link Routers Authentication Bypass Vulnerability =========================================================== Multiple D-­Link routers suffer from insecure...

Microsoft Internet Explorer 'findText()' Unicode解析拒绝服务漏洞

Bugraq ID: 35799 CNCAN ID：CNCAN-2009072503 Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer存在'findText' Unicode解析错误，远程攻击者可以利用漏洞使应用程序崩溃。 'findText'方法在处理特殊构建的包含unicode字符的参数时存在问题，构建恶意WEB页，诱使用户解析，可导致浏览器崩溃。 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7.0 厂商解决方案...

MS Internet Explorer 7/8 findText Unicode Parsing Crash Exploit

No description provided by source. meta http-equiv="Context-Type" content="text/html; charset=US-ASCII" !-- Contact:[email protected],[email protected] Title: MS Internet Explorer findText Unicode Parsing error Vulnerability mshtml.dll Bug discovered: Hong10 PoC code: AmesianX & Hong10 Critical:...

Microsoft Internet Explorer Unicode Crash

IE findText crash Hit the button after ie7/8 crash.. function docrash var o1=document.createElement"input"; o1.type="text"; //or password o1.id="powerhacker"; o1.value="AAAA"; document.body.appendChildo1; var r= o1.createTextRange;...

Microsoft Internet Explorer 78 - findText Unicode Parsing Crash

Microsoft Internet Explorer 78 - findText Unicode Parsing Crash IE findText crash Hit the button after ie7/8 crash.. function docrash var o1=document.createElement"input"; o1.type="text"; //or password o1.id="powerhacker"; o1.value="AAAA"; document.body.appendChildo1; var r= o1.createTextRange;...

Microsoft Internet Explorer 7/8 - findText Unicode Parsing Crash

IE findText crash Hit the button after ie7/8 crash.. function docrash var o1=document.createElement"input"; o1.type="text"; //or password o1.id="powerhacker"; o1.value="AAAA"; document.body.appendChildo1; var r= o1.createTextRange;...

phpMyBlockchecker 1.0.0055 Insecure Cookie

phpMyBlockchecker 1.0.0055 Insecure Cookie Handling Vulnerability + Discovered By SirGod + http://insecurity-ro.org + http://h4cky0u.org + Download Script : http://sourceforge.net/project/showfiles.php?groupid=116966&packageid=152150&releaseid=326884 + Insecure Cookie Handling - Vulnerable code...

Winamp 5.551 MAKI Parsing Integer Overflow PoC

No description provided by source. / Winamp 5.551 MAKI Parsing Integer Overflow Vulnerability This is just a simple poc code to show how to exploit the recent MAKI file parsing vulnerability. Tested on :Vista sp1 and Xpsp3 Release Date :May 22 2009 Venders web site :http://www.winamp.com/ Version...

XBMC 8.10 (takescreenshot) Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/env python ''' Xbmc takescreenshot request remote buffer overflow 8.10 !!! Tested:Win xp sp2 eng Vendor url:http://xbmc.org/ Release date:April the 1st 2009 versions affected: Linux windows tested other versions are also possibly affected...

XBMC 8.10 (get tag from file name) Remote Buffer Overflow Exploit

Exploit for windows platform in category remote exploits ================================================================= XBMC 8.10 get tag from file name Remote Buffer Overflow Exploit ================================================================= !/usr/bin/env python ''' Xbmc get tag from...