339 matches found
Post Exploitation - Getting username and password in the Lotus Sametime 8.5.1
Exploit Title: Post Exploitation - Getting username and password in the Lotus Sametime 8.5.1 Google Dork: n/a Date: 18/02/2014 Exploit Author: Adriano Marcio Monteiro [email protected] Vendor Homepage: http://www.ibm.com/us/en/ Software Link:...
Lotus Sametime 8.5.1 - Password Disclosure
Exploit Title: Post Exploitation - Getting username and password in the Lotus Sametime 8.5.1 Google Dork: n/a Date: 18/02/2014 Exploit Author: Adriano Marcio Monteiro Vendor Homepage: http://www.ibm.com/us/en/ Software Link: http://www-01.ibm.com/support/docview.wss?uid=swg24027054 Version: 8.5.1...
[Weevely v1.1] Stealth tiny PHP web shell
Weevely is a stealth PHP web shell that provides a telnet-like console. It is an essential tool for web application post exploitation , and can be used as stealth backdoor or as a web shell to manage legit web accounts, even free hosted ones. Weevely is currently included in Backtrack and Backbox...
程氏舞曲CMSPHP3.0储存型xss与后台任意文件写入漏洞
简要描述: 插入 构造的js 可 getshell 详细说明: user/space.php?ac=edit&op=zl 修改 签名处,没有 任何过滤。xss产生 后台 看了下 可以写任意格式文件。。 抓包。。 POST /admin/skins/skins.php?ac=xgmb&op=go&path=../../skins/index/html/ HTTP/1.1 Accept: text/html, application/xhtml+xml, / Referer:...
Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation
This Metasploit module abuses a command injection on the clearkeys.pl perl script, installed with the Sophos Web Protection Appliance, to escalate privileges from the "spiderman" user to "root". This Metasploit module is useful for post exploitation of vulnerabilities on the Sophos Web Protection...
ZPanel zsudo Local Privilege Escalation
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...
[Weevely] PHP Stealth Tiny Web Shell
Weevely is a stealth PHP web shell that provides a telnet-like console. It is an essential tool for web application post exploitation, and can be used as stealth backdoor or as a web shell to manage legit web accounts, even free hosted ones. Weevely is currently included in Backtrack and Backbox...
Windows NetLM Downgrade Attack
This module changes the system LmCompatibilityLevel registry value to enable sending LM challenge hashes and initiates a SMB connection to the host specified in the SMBHOST module option. If an SMB server is listening, it will receive the NetLM hashes for the session user. This module requires...
Increased Exploitation in Web Content Management Systems
US-CERT is aware of recent increases in the exploitation of known vulnerabilities in web content management systems CMSs such as Wordpress and Joomla. Compromised CMS installations can be used to host malicious content. US-CERT recommends that users and administrators ensure that their CMS...
Metasploit pcap_log Privlege Escalation
Exploit for windows platform in category local exploits ================ 0A29-12-2 : Metasploit 'pcaplog' plugin privilege escalation vulnerability Author: 0a29406d9794e4f9b30b3c5d6702c708 twitter.com/0a29 - 0a29.blogspot.com - GMail 0a2940 ================ Description: ================ Metasploi...
Metasploit Framework 4.2.0 : IPv6, VMware, and Tons of Modules!
Metasploit Framework 4.2.0 : IPv6, VMware, and Tons of Modules! Since last release in October, Metasploit added 54 new exploits, 66 new auxiliary modules, 43 new post-exploitation modules, and 18 new payloads. Metasploit 4.2 now ships with thirteen brand new payloads, all added to support opening...
SecurityTube Metasploit Framework Expert Certification Launched !
SecurityTube Metasploit Framework Expert Certification Launched ! Not so long ago, we had posted the launch of the SecurityTube Wi-Fi Security Expert SWSE program. The certification has been a success and it has students from over 25+ countries from around the world. The SecurityTube Metasploit...
Derbycon 2011 Videos talks
Derbycon 2011 Videos Talks The idea behind DerbyCon was developed by Dave Kennedy ReL1K, Martin Bos PureHate, and Adrian Crenshaw Irongeek. Their motivation stemmed from a desire to see more of the old-style talks and events of the conventions of the past. DerbyCon was hosted by some specialized...
Armitage 07.12.11 - Updated Version
Armitage 07.12.11 - Updated Version Armitage is a graphical cyber attack management tool for Metasploit that visualizes your targets, recommends exploits, and exposes the advanced capabilities of the framework. Armitage aims to make Metasploit usable for security practitioners who understand...
Metasploit Framework 3.6.0 Released !
In coordination with Metasploit Express and Metasploit Pro, version 3.6 of the Metasploit Framework is now available. Hot on the heels of 3.5.2, this release comes with 8 new exploits and 12 new auxiliaries. A whopping 10 of those new auxiliary modules are Chris John Riley's foray into SAP, givin...
IBM Lotus 6.x HTTP Response Splitting Vulnerability
========================================= Yaniv Miron aka "Lament" Advisory March 12, 2010 IBM Lotus 6.x HTTP Response Splitting Vulnerability ========================================= ===================== I. BACKGROUND ===================== IBM Lotus Software delivers robust collaboration...
Immunity Canvas: IMAIL_RCPTOVERFLOW
Name| imailrcptoverflow ---|--- CVE| CVE-2006-4379 Exploit Pack| CANVAS Description| IMail SMTPD32 Stack Overflow Notes| CVE Name: CVE-2006-4379 VENDOR: IPSwitch Post-exploitaion: Post-exploitation requires stoping and starting the IMail SMTP Server Service From a different process use...
Linksys PSUS4 PrintServer - POST Denial of Service
Linksys PSUS4 PrintServer - POST Denial of Service source: https://www.securityfocus.com/bid/12443/info Linksys PSUS4 PrintServer is reported prone to a remote denial of service vulnerability while handling certain HTTP POST requests received on TCP port 80. An attacker may exploit this condition...
phpWebSite 0.8.3 - News Message HTML Injection
source: https://www.securityfocus.com/bid/5802/info Problems with phpWebSite could make it possible to execute arbitrary script code in a vulnerable client. phpWebSite does not sufficiently filter potentially malicious HTML code from news posts. As a result, when a user views a news posting that...