1763 matches found
KNet Web Server 1.04c - Buffer Overflow (Denial of Service) (PoC)
/ -=--------------------ADVISORY-------------------=- -= =- -= Knet / include include include include include include void he...
[Full-Disclosure] SD Server 4.0.70 Directory Traversal Bug
..:x0n3-h4ck Italian Security Team:.. /Advisories / Application: SD Server Url Vendor: http://www.gdsoftware.dk/ Version: = 4.0.70 Platforms: Windows Bug: Directory Traversal Exploitation: Remote Author: CorryL Email Author: [email protected] Url Author: www.x0n3-h4ck.org Description The SD Serv...
[Full-Disclosure] Limited buffer-overflow in Painkiller 1.35
Luigi Auriemma Application: Painkiller http://www.painkillergame.com Versions: = 1.35 Platforms: Windows Bug: limited buffer-overflow Exploitation: remote, versus server in-game Date: 02 Feb 2005 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1 Introduction ...
Gallery134.txt
Application: Gallery Vendors: http://gallery.sourceforge.net Versions: v1.3.4-pl1, v1.4.4-pl2, 2.0 Alpha Platforms: Windows Bug: Cross Site Scripting Vulnerability Exploitation: Remote With Browser Date: 17 Jan 2005 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website:...
Socket unreacheable in Amp II engine
Luigi Auriemma Application: Amp II 3D engine http://www.4drulers.com/amp.html Versions: any version since there is no patch available Games: Gore: Ultimate Soldier = 1.50 ... possibly others ... Platforms: Windows Bug: socket unreacheable Exploitation: remote, versus server Date: 06 Jan 2005...
[Full-Disclosure] WinHKI - LHA File Incorrect Filename Handeling Leads to Crash/Underflow
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: LHA File Incorrect Filename Handeling Leads to Crash/Underflow Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website:...
[Full-Disclosure] WinHKI - BH File Directory Transversal
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: BH File Directory Transversal Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1 Introduction 2 Bu...
[Full-Disclosure] WinHKI - ARC File Extraction of 1KB to 1.56GB
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: ARC File Extraction of 1KB to 1.56GB Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1 Introducti...
winaceHKI.txt
Application: WinAce, WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: ZIP File Directory Transversal Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1...
[Full-Disclosure] WinAce - GZIP File Directory Transversal
Application: WinAce Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: GZIP File Directory Transversal Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1 Introduction 2...
[Full-Disclosure] WinHKI BH File Incorrect Filename Handeling Leads to 100 CPU%
Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: BH File Incorrect Filename Handeling Leads to 100 CPU Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website:...
[Full-Disclosure] WinAce & WinHKI - ZIP File Directory Transversal
Application: WinAce, WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: ZIP File Directory Transversal Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1...
Socket termination, format string and XSS in Soldner Secret Wars 30830
Luigi Auriemma Application: SLDNER - Secret Wars http://www.secretwars.net Versions: = 30830 Platforms: Windows Bugs: A silent socket termination B in-game format string C in-game cross site scripting versus admin Exploitation: remote, versus server B and C are in-game bugs Date: 04 Jan 2005...
SOLDNER Secret Wars <= 30830 Denial of Service Exploit
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h...
Socket unreacheable in the Lithtech engine (new protocol)
Luigi Auriemma Application: Lithtech engine new network protocol http://www.lithtech.com Games: Contract Jack = 1.1 No one lives forever 2 = 1.3 Tron 2.0 = 1.042 ... others? Platforms: Windows and Mac Bug: socket unreacheable Exploitation: remote, versus server Date: 13 December 2004 Author: Luig...
Broadcast memory corruption in Soldier of Fortune II 1.03
Luigi Auriemma Application: Soldier of Fortune II http://sof2.ravensoft.com Versions: = 1.03 gold Platforms: Windows, Linux and MacOS Bug: memory corruption Exploitation: remote, versus server and clients broadcast Date: 23 November 2004 Author: Luigi Auriemma e-mail: [email protected] web:...
Multiple vulnerabilities in Hired Team: Trial (Shine engine)
Luigi Auriemma Application: Hired Team: Trial http://eng.nmg.ru/rubrs.asp?rubrid=165 and probably also the Shine engine on which it is based http://www.3dengine.ru/index.asp?id=4 Versions: Hired Team = 2.0 / 2.200 since this is the only game based on the Shine engine and I have received no reply...
Resources consumption in 602 Lan Suite 2004.0.04.0909
Luigi Auriemma Application: 602 Lan Suite http://www.software602.com/products/ls/ Versions: = 2004.0.04.0909 Platforms: Windows Bugs: A resources consumption through webmail B sockets consuption through telnet proxy loop Exploitation: remote Date: 06 November 2004 Author: Luigi Auriemma e-mail:...
In-game format string bug in the Lithtech engine
Luigi Auriemma Application: Lithtech engine http://www.lithtech.com Games: Alien vs Predator 2 = 1.0.9.6 Blood 2 = 2.1 Contract Jack = 1.1 Global Operations = 2.0/2.1 Kiss Psycho Circus = 1.13 Legends of Might and Magic = 1.1 No one lives forever = 1.004 No one lives forever 2 = 1.3 Purge Jihad =...
yak212.txt
Luigi Auriemma Application: Yak! http://www.digicraft.com.au/yak/ Versions: = 2.1.2 Platforms: Windows Bug: directory traversal upload Exploitation: remote Date: 15 October 2004 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1 Introduction 2 Bug 3 The Code ...