121 matches found
OpenSIS 'modname' - PHP Code Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...
LBL traceroute 1.4 a5 Heap Corruption Vulnerability (3)
No description provided by source. source: http://www.securityfocus.com/bid/1739/info Traceroute is a well-known network diagnostic tool used for analyzing the path on a network between two hosts. On unix systems, traceroute is typically installed setuid root because of its use of raw sockets...
Cogent DataHub Command Injection
This module exploits an injection vulnerability in Cogent DataHub prior to 7.3.5. The vulnerability exists in the GetPermissions.asp page, which makes insecure use of the datahubcommand function with user controlled data, allowing execution of arbitrary datahub commands and scripts. This module h...
ABB MicroSCADA Wserver Multiple Buffer Overflows
Multiple Buffer Overflow vulnerabilities have been reported in the Wserver component of ABB MicroSCADA. The vulnerabilities are due to the copying of user controlled data to stack-based buffers without size verification. A remote attacker can exploit this issue by sending a specially crafted...
XSS Vulnerability in simple_format helper
There is a vulnerability in the simpleformat helper in Ruby on Rails. The simpleformat helper converts user supplied text into html text which is intended to be safe for display. A change made to the implementation of this helper means that any user provided HTML attributes will not be escaped...
Apache OpenJPA code execution
User-controlled data it stored in local executable file...
ZoneMinder Video Server - packageControl Command Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ZoneMinder Video...
SugarCRM unserialize() PHP Code Execution
This module exploits a php unserialize vulnerability in SugarCRM 'SugarCRM unserialize PHP Code Execution', 'Description' = %q This module exploits a php unserialize vulnerability in SugarCRM = 6.3.1 which could be abused to allow authenticated SugarCRM users to execute arbitrary code with the...
KeyHelp ActiveX LaunchTriPane Remote Code Execution
Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...
ZEN Load Balancer Filelog Command Execution
Exploit for linux platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
Winamp MAKI Buffer Overflow
This module exploits a stack based buffer overflow in Winamp 5.55. The flaw exists in the genff.dll and occurs while parsing a specially crafted MAKI file, where memmove is used in an insecure way with user controlled data. To exploit the vulnerability the attacker must convince the victim to...
SugarCRM 6.3.1 unserialize() PHP Code Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'SugarCRM %q This module exploits a ph...
Oracle Java MixerSequencer.nAddControllerEventCallback Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists because Java does not...
GLSA-200804-30 : KDE start_kdeinit: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200804-30 KDE startkdeinit: Multiple vulnerabilities Vulnerabilities have been reported in the processing of user-controlled data by startkdeinit, which is setuid root by default. Impact : A local attacker could possibly execute...
KDE start_kdeinit: Multiple vulnerabilities
Background KDE is a feature-rich graphical desktop environment for Linux and Unix-like operating systems. startkdeinit is a wrapper for kdeinit. Description Vulnerabilities have been reported in the processing of user-controlled data by startkdeinit, which is setuid root by default. Impact A loca...
opera -- multiple vulnerabilities
iDefense reports: The vulnerability specifically exists due to Opera improperly processing a JPEG DHT marker. The DHT marker is used to define a Huffman Table which is used for decoding the image data. An invalid number of index bytes in the DHT marker will trigger a heap overflow with partially...
Squid 2.5.x3.x - NTLM Buffer Overflow (Metasploit)
Squid 2.5.x3.x - NTLM Buffer Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...
DSA-371 perl - cross-site scripting
Bulletin has no description...
LBL Traceroute 1.4 a5 - Heap Corruption (2)
LBL Traceroute 1.4 a5 - Heap Corruption 2 // source: https://www.securityfocus.com/bid/1739/info Traceroute is a well-known network diagnostic tool used for analyzing the path on a network between two hosts. On unix systems, traceroute is typically installed setuid root because of its use of raw...
LBL Traceroute 1.4 a5 - Heap Corruption (1)
LBL Traceroute 1.4 a5 - Heap Corruption 1 // source: https://www.securityfocus.com/bid/1739/info Traceroute is a well-known network diagnostic tool used for analyzing the path on a network between two hosts. On unix systems, traceroute is typically installed setuid root because of its use of raw...