461 matches found
Red Faction 1.20 - Server Reply Remote Buffer Overflow (PoC)
Red Faction 1.20 - Server Reply Remote Buffer Overflow PoC / by Luigi Auriemma UNIX & WIN VERSION / include include include ifdef WIN32 include include "winerr.h" define close closesocket else include include include include include endif define VER "0.1" define BUFFSZ 2048 define PORT 7755 defin...
NIPrint LPD-LPR Print Server <= 4.10 Remote Exploit
Exploit for unknown platform in category remote exploits =================================================== NIPrint LPD-LPR Print Server include else include include include include include include include include endif include // JMP ESP ADDRESS in Win XP 5.1.2600 define RET 0x77F5801c define...
Microsoft Windows XP20002003 - Message Queuing Service Heap Overflow
Microsoft Windows XP20002003 - Message Queuing Service Heap Overflow source: https://www.securityfocus.com/bid/8783/info It has been reported that the Microsoft Message Queuing service is prone to a heap overflow. The Symantec DeepSight analyst team is currently analyzing proof-of-concept exploit...
Microsoft Windows - 'RPC DCOM' Remote Buffer Overflow
include include include include include include pragma commentlib,"ws232" unsigned char bindstr= 0x05,0x00,0x0B,0x03,0x10,0x00,0x00,0x00,0x48,0x00,0x00,0x00,0x7F,0x00,0x00,0x00, 0xD0,0x16,0xD0,0x16,0x00,0x00,0x00,0x00,0x01,0x00,0x00,0x00,0x01,0x00,0x01,0x00,...
TW-WebServer 1.0 - Denial of Service (1)
source: https://www.securityfocus.com/bid/7368/info It has been reported that TW-WebServer is prone to a denial of service vulnerability. Reportedly when an excessive quantity of data is sent to the TW-Webserver as part of a malicious HTTP GET request the server will fail. Although unconfirmed, d...
[LSD] Technical analysis of the remote sendmail vulnerability
Hello, We have done some brief analysis of the potential remote Sendmail vulnerability that has been reported lately. Below you can read about our findings with regard to this isse. We reserve the right not to be correct in whatever we write below. This is mainly due to the fact that we did not...
iDEFENSE Security Advisory 10.24.02: Directory Traversal in SolarWinds TFTP Server
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.24.02: http://www.idefense.com/advisory/10.24.02.txt Directory Traversal in SolarWinds TFTP Server October 24, 2002 I. BACKGROUND The SolarWinds TFTP Server has the ability to send and receive multiple files concurrently...
GroupWise Padlock Speculative Info
---------------------- GroupWise Padlock Info ---------------------- History ------- Novell was notified by someone around the 6th of August about a security flaw in GroupWise that apparently allowed basically anyone with access to the GroupWise server to do "bad stuff". August 14th brought the...
Дырка в analog (logfile analysis program)
Переполнение буфера при разборе переменных...
A Stateful Inspection of FireWall-1
A Stateful Inspection of FireWall-1 Thomas Lopatic, John McDonald TUV data protect GmbH tl,[email protected] Dug Song Center for Information Technology Integration University of Michigan [email protected] 1 Introduction -------------- At the Black Hat Briefings 2000, we presented an analysis of...
Nessus Server Detection
A Nessus daemon is listening on the remote port." "Note: This plugin only attempts to log in to the remote device to detect the version, if valid Nessus credentials are configured. TRUSTED...
CVE-2018-18182
...
CVE-2020-26362
...
CVE-2025-48745
Roundcube Webmail is affected by CVE-2025-49113: an authenticated attacker can exploit PHP object deserialization via the unvalidated _from URL parameter in program/actions/settings/upload.php to achieve remote code execution. Vulnerable versions include Roundcube before 1.5.10 and 1.6.x before 1...
CVE-2020-12515
...
CVE-2018-4807
...
CVE-2024-7880
...
CVE-2011-0705
...
CVE-2022-43585
...
CVE-2025-3269
...