NetDecision NOCVision Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetDecision NOCVision Server Directory Traversal', 'Description' = %q This module exploits a directory traversal bug in NetDecision's...

Sockso Music Host Server 1.5 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sockso Music Host Server 1.5 Directory Traversal', 'Description' = %q This module exploits a directory traversal bug in Sockso on port 4444. This...

MS12-020 Microsoft Remote Desktop Use-After-Free Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS12-020 Microsoft Remote Desktop Use-After-Free DoS', 'Description' = %q This module exploits the MS12-020 RDP vulnerability originally discover...

auriemma.group Cross Site Scripting vulnerability OBB-3289535

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

GLEG Agora SCADA+ Exploit Pack

OVERVIEW On March 15, 2011, GLEG Ltd. announced the Agora SCADA+ Exploit Pack for Immunity’s CANVAS system. CANVAS is a penetration testing framework that is extensible using CANVAS Exploit Packs. On March 25, 2011, GLEG announced it would be adding exploits for the 35 vulnerabilities released by...

Carel PlantVisor 2.4.4 - Directory Traversal Vulnerability

Exploit for windows platform in category web applications Application: Carel PlantVisor http://www.carel.com/carelcom/web/eng/catalogo/prodottodett.jsp?idprodotto=310 Versions: = 2.4.4 Platforms: Windows Bug: directory traversal Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail...

MailEnable Pro/Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit

No description provided by source. !/usr/bin/perl ================================================================= MailEnable Professional = 3.13 FETCH post-auth buffer overflow ================================================================= Bind Shell POC Exploit for Win2K SP4 pro English Fou...

DATAC RealWin SCADA 1.06 - Buffer Overflow Exploit

No description provided by source. Exploit Title: RealWin SCADA System SEH Overwrite Date: 10-27-10 Author: Blake Software Link: http://www.realflex.com/products/realwin/realwin.php Version: 1.06 Tested on: Windows XP SP3 running in VMware Workstation rfx import socket, sys if lensys.argv!= 3:...

S.T.A.L.K.E.R. 1.0.06 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29723/info S.T.A.L.K.E.R. game servers are prone to a remote denial-of-service vulnerability because the software fails to handle exceptional conditions when processing user nicknames. Successfully exploiting this issue...

OPC Systems.NET <= 4.00.0048 Denial of Service

No description provided by source. Luigi Auriemma Application: OPC Systems.NET http://www.opcsystems.com/opcsystemsnet.htm Versions: = 4.00.0048 Platforms: Windows Bug: Denial of Service Exploitation: remote Date: 10 Oct 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

Painkiller <= 1.35 in-game cd-key alpha-numeric Buffer Overflow Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h / Painkiller packet's password encoder/decoder 0.1 by Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org INTRODUCTION ============ When you want to...

Pro-face Pro-Server EX WinGP PC Runtime Multiple Vulnerabilities

No description provided by source. Luigi Auriemma Application: Pro-face Pro-Server EX WinGP PC Runtime http://www.profaceamerica.com/cms/resourcelibrary/products/9e3c2a7965a27592/index.html Versions: ProServr = 1.30.000 PCRuntime = 3.1.00 Platforms: Windows Bug: A Find Node invalid memory access ...

bomberclone 0.11 Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/19255/info Bomberclone is prone to remote information-disclosure and denial-of-service vulnerabilities because it fails to properly sanitize user-supplied input. These issues allow remote attackers to access sensitive...

DATAC RealWin SCADA Server 2.0 (Build 6.1.8.10) - SCPC_INITIALIZE Buffer Overflow

No description provided by source. $Id: realwinscpcinitialize.rb 11180 2010-11-30 20:19:18Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

Samsung NET-i viewer Multiple ActiveX BackupToAvi() Remote Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

id3lib ID3 Tags Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26945/info The 'id3lib' library is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application or to crash the...

Xpand Rally <= 1.0.0.0 (Server/Clients) Crash Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / inserted winerr.h /str0ke / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h /...

Alien Arena 2006 Gold Edition <= 5.00 Multiple Vulnerabilities Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include stdarg.h include sys/stat.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the...

Sterling Trader <= 7.0.2 Integer Overflow

No description provided by source. Luigi Auriemma Application: Sterling Trader http://www.sterlingtrader.com/TradingPlatforms/tradingplatforms2.html Versions: = 7.0.2 Platforms: Windows Bug: integer overflow Exploitation: remote Date: 25 Sep 2011 Author: Luigi Auriemma e-mail: [email protected]...

Microsoft WINS Service <= 5.2.3790.4520 Memory Corruption

No description provided by source. Luigi Auriemma Application: Microsoft WINS service http://www.microsoft.com Versions: = 5.2.3790.4520 Platforms: Windows Bug: arbitrary memory corruption Exploitation: remote, versus server Date: found 21 Oct 2010 patched 10 May 2011 advisory 13 Sep 2011 Author:...