966 matches found
BaoFeng Storm - '.m3u' File Processing Buffer Overflow
!/usr/bin/env python Title: BaoFeng Storm M3U File Processing Buffer Overflow Exploit CNVD-ID: CNVD-2010-00752 Author: Lufeng Li and Qingshan Li of Neusoft Corporation Download: www.baofeng.com Test: Put m3u file in roote.g. c:/ d:/,and open this m3u file Platform: Windows XPSP3 Chinese Simplifie...
NIBE heat pump - Local File Inclusion
NIBE heat pump - Local File Inclusion !/usr/bin/python import socket,sys,os,base64 NIBE heat pump LFI exploit Written by Jelmer de Hen Published at http://h.ackack.net/?p=302 Special thanks to Fredrik Nordberg Almroth and Mathias Karlsson for obtaining this information http://h.ackack.net/?p=274...
vBulletin (Cyb - Advanced Forum Statistics) - 'misc.php' Denial of Service
Exploit Title: vBulletin "Cyb - Advanced Forum Statistics" DOS Date: 10-4-2010 Author: Andhra Hackers Software Link: Version: Web Application Tested on: Apcahe/Unix CVE : if exists Code : PHP crashes existed from a long time back and there were several issues which were a reason for that. 1PHP pa...
TopDownloads MP3 Player 1.0 - .m3u Crash
TopDownloads MP3 Player 1.0 - .m3u Crash !/usr/bin/env python MP3 player 1.0 Local Crash Author: l3D Software Link: http://files.brothersoft.com/mp3audio/players/td-mp3.exe Site: http://xraysecurity.blogspot.com IRC: irc://irc.nix.co.il Email: [email protected] bad=open'crash.mp3', 'w'...
Easy FTP Server 1.7.0.2 Buffer Overflow
Exploit Title: Easy FTP Server 1.7.0.2 Remote BoF Date: 20/02/2010 Author: athleet Software Link: http://cdnetworks-us-2.dl.sourceforge.net/project/easyftpsvr/easyftpsvr/1.7.0.2-en/easyftpsvr-1.7.0.2.zip Version: 1.7.0.2 Tested on: XP SP3 Eng CVE : None Code : Below !/usr/bin/python import socket...
Mandriva Security Advisory MDVSA-2009:232-1 (libsamplerate)
The remote host is missing an update to libsamplerate announced via advisory MDVSA-2009:232-1. OpenVAS Vulnerability Test $Id: mdksa20092321.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:232-1 libsamplerate Authors: Thomas Reinke Copyright: Copyrig...
Mandriva Security Advisory MDVSA-2009:232-1 (libsamplerate)
The remote host is missing an update to libsamplerate announced via advisory MDVSA-2009:232-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only O...
Blender 2.49b - .blend Remote Command Execution
Blender 2.49b - .blend Remote Command Execution An attacker can exploit this issue by enticing an unsuspecting victim to open a specially crafted '.blend' file. The following proof of concept demonstrates this issue: . Open the "Text Editor" Panel. . Right click on the canvas and select "New"...
Code execution with blender files
.blend files may contain python code with automatic execution...
Mandrake Security Advisory MDVSA-2009:232 (libsamplerate)
The remote host is missing an update to libsamplerate announced via advisory MDVSA-2009:232. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Mandrake Security Advisory MDVSA-2009:232 (libsamplerate)
The remote host is missing an update to libsamplerate announced via advisory MDVSA-2009:232. OpenVAS Vulnerability Test $Id: mdksa2009232.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:232 libsamplerate Authors: Thomas Reinke Copyright: Copyright c...
CVE-2008-6954
The web interface CobblerWeb in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules...
Code injection
The web interface CobblerWeb in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules...
CVE-2008-6954
The web interface CobblerWeb in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules...
Code injection
Unspecified vulnerability in Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol...
CVE-2009-0668
Unspecified vulnerability in Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol...
PYSEC-2009-8
Unspecified vulnerability in Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol...
CVE-2009-0668
Unspecified vulnerability in Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to execute arbitrary Python code via vectors involving the ZEO network protocol...
CVE-2009-0668
Removed by vendor...
Pirch IRC 98 Client (response) Remote BOF Exploit (SEH)
Exploit for windows platform in category remote exploits ======================================================= Pirch IRC 98 Client response Remote BOF Exploit SEH ======================================================= !/usr/bin/python Usage : python pirch.py | || | / \ | | | | | | | | | - | | ...