188 matches found
OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)
Multiple unspecified vulnerabilities in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allow remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...
IP Power 9258+ Authentication Bypass
Exploit for windows platform in category remote exploits | | | | | | | | \ | | | \ | | | \ | | | | | | | | | | | / | / | |,|||/ |,|||,| | \ \ \ | | \ | | | | / / ./ ,||| | |Teach, Learn, Party|Teach, Learn, Party|Teach, Learn, Party| irc.efnet.net unallocatedspace --=+Multiple Remote...
FestOS <= 2.3c TinyBrowser File Upload Code Execution (meta)
Exploit for php platform in category remote exploits...
Metasploit Framework 3.7.0 Released !
Metasploit Framework 3.7.0 Released ! The Metasploit team has spent the last two months focused on one of the least-visible, but most important pieces of the Metasploit Framework; the session backend. Metasploit 3.7 represents a complete overhaul of how sessions are tracked within the framework a...
Metasploit Framework v3.5.2 latest version download !
Our favourite exploitation framework – The Metasploit Framework has been updated! We now have Metasploit Framework version 3.5.2! "The Metasploit Framework is a penetration testing toolkit, exploit development platform, and research tool. The framework includes hundreds of working remote exploits...
Researcher Finds Scores of Web Browser Holes
A prominent security researcher has published the results of application tests on prominent Web browsers that he claims has uncovered scores of new, previously unknown security holes. Michal Zalewski is a Poland-based security researcher for Google. In a post on January 1, Zalewski used a blog po...
Amoeba CMS 1.01 Shell Upload / SQL Injection
!/usr/bin/python """ Amoeba CMS v1.01 multiple remote vulnerabilities: Vendor: http://www.amoebacms.com/ Found by: mrme Contact date: 20/12/2010 2:37pm EST SQL Injection: ============= There is quite a few instances of pre/post auth SQL Injection in the web application. In one particular SQLi the...
UltraVintage SQL Injection
======================================================= UltraVintage Exploit database separated by exploit 3 3 type local, remote, DoS, etc. 3 7 7 1 + Site : 1337db.com 1 3 + Support e-mail : submitat1337db.com 3 3 3 7 7 1 I'm KnocKout 1337 Member from 1337 DataBase 1 3 3 3 3...
Barracuda Networks Launches Bug Bounty Program for Security Products
Barracuda Networks announced on Tuesday that it will pay over $3,100 to anyone who can hack into its security products. This bug bounty program is the first of its kind from a pure-play security vendor. “This initiative reflects our commitment to our customers and the security community at large,...
Barracuda Networks Launches Bug Bounty Program
Following the lead of Mozilla and Google, Barracuda Networks is launching a bug bounty program that will pay out cash rewards for vulnerabilities found in the company’s own products. The move by Barracuda, a maker of mail security and data protection products, is the first such bug bounty program...
Imageview <= 6.x Multiple Remote Vulnerabilities
Exploit for php platform in category web applications ================================================ Imageview = 6.x Multiple Remote Vulnerabilities ================================================ || || | || o,7 || . o7 || 4||| ow, : / /...
RSP MP3 Player OCX 3.2 ActiveX Buffer Overflow
Exploit for windows platform in category remote exploits...
MiniWebsvr 0.0.10 - Directory Traversal Listing
MiniWebsvr 0.0.10 - Directory Traversal Listing miniwebsvr v0.0.10 Directory Traversal/Listing Exploits Found By: DrIDE Date: May 12, 2010 Download: http://sourceforge.net/projects/miniwebsvr/ Tested on: Windows 7 - Description - miniwebsvr v0.0.10 is a Windows based HTTP server. This is the late...
NovaStor NovaNet <= 13.0 issues
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 All - many of the following were inexplicably fixed in the latest version NovaBACKUP Network 13.0, but still, a 2.5 year run isn't too bad... http://digit-labs.org/files/exploits/novanet-own-lnx.c - - linux remote root = 12.0...
linux/x86 if(read(fd buf 512)<=2) _exit(1) else buf()
No description provided by source. / h3ll-core.c by Charles Stevenson [email protected] I made this as a chunk you can paste in to make modular remote exploits. I use it as a first stage payload when I desire to follow up with a real large payload of goodness. This actually is a bit larger than...
PYSEC-2009-18
The pygresql module 3.8.1 and 4.0 for Python does not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings...
PYSEC-2009-18
The pygresql module 3.8.1 and 4.0 for Python does not properly support the PQescapeStringConn function, which might allow remote attackers to leverage escaping issues involving multibyte character encodings...
HP LaserJet printers - Multiple Stored XSS vulnerabilities
Exploit for unknown platform in category remote exploits ========================================================== HP LaserJet printers - Multiple Stored XSS vulnerabilities ========================================================== Title: HP LaserJet printers - Multiple Stored XSS vulnerabiliti...
BRS Webweaver 1.33 - '/Scripts' Access Restriction Bypass
Name : BSR Webweaver Version 1.33 /Scripts access restriction bypass vulnerbility Author : Usman Saeed Company : Xc0re Security Reasearch Group Date : 15/09/09 Homepage : http://www.xc0re.net Download Page : http://www.brswebweaver.com/downloads.html Attack type : Remote Patch Status : Unpatched...
Wireshark: Denial of service
Background Wireshark is a versatile network protocol analyzer. Description Multiple vulnerabilities were discovered in Wireshark: A buffer overflow in the IPMI dissector related to an array index error CVE-2009-2559. Multiple unspecified vulnerabilities in the Bluetooth L2CAP, RADIUS, and MIOP...