NetDecision NOCVision Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetDecision NOCVision Server Directory Traversal', 'Description' = %q This module exploits a directory traversal bug in NetDecision's...

Sockso Music Host Server 1.5 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sockso Music Host Server 1.5 Directory Traversal', 'Description' = %q This module exploits a directory traversal bug in Sockso on port 4444. This...

MS12-020 Microsoft Remote Desktop Use-After-Free Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS12-020 Microsoft Remote Desktop Use-After-Free DoS', 'Description' = %q This module exploits the MS12-020 RDP vulnerability originally discover...

auriemma.group Cross Site Scripting vulnerability OBB-3289535

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

GLEG Agora SCADA+ Exploit Pack

OVERVIEW On March 15, 2011, GLEG Ltd. announced the Agora SCADA+ Exploit Pack for Immunity’s CANVAS system. CANVAS is a penetration testing framework that is extensible using CANVAS Exploit Packs. On March 25, 2011, GLEG announced it would be adding exploits for the 35 vulnerabilities released by...

Carel PlantVisor 2.4.4 - Directory Traversal Vulnerability

Exploit for windows platform in category web applications Application: Carel PlantVisor http://www.carel.com/carelcom/web/eng/catalogo/prodottodett.jsp?idprodotto=310 Versions: = 2.4.4 Platforms: Windows Bug: directory traversal Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail...

bomberclone 0.11 Multiple Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/19255/info Bomberclone is prone to remote information-disclosure and denial-of-service vulnerabilities because it fails to properly sanitize user-supplied input. These issues allow remote attackers to access sensitive...

PowerNet Twin Client <= 8.9 (RFSync 1.0.0.1) Crash PoC

No description provided by source. Luigi Auriemma Application: PowerNet Twin Client http://www.honeywellaidc.com/en-US/Pages/Product.aspx?category=Software&cat=HSM&pid=PowerNet%20Twin%20Client Versions: = 8.9 RFSync 1.0.0.1 Platforms: Windows Bug: unexploitable stack overflow Exploitation: remote...

Microsoft Reader <= 2.1.1.3143 NULL Byte Write

No description provided by source. Luigi Auriemma Application: Microsoft Reader http://www.microsoft.com/reader Versions: = 2.1.1.3143 PC version the Origami 2.6.1.7169 version doesn't seem vulnerable the non-PC versions have not been tested Platforms: Windows, Windows Mobile, Tablet PC and UMPC...

Now SMS/MMS Gateway 5.5 - Remote Buffer Overflow Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Now SMS/MMS Gateway v5.5 and others ---------------------------------------- Exploit : Now SMS/MMS Gateway v5.5 Remote Buffer Overflow Exploit Exploit date : 14.04.2008 Exploit writer : Hereti...

Sauerbraten <= 2006_02_28 Multiple BoF/Crash Vulnerabilities Exploit

No description provided by source. / by Luigi Auriemma You NEED Enet for compiling this tool then remember -lenet http://enet.bespin.org / http://enet.cubik.org / include stdio.h include stdlib.h include string.h include time.h include enet/enet.h ifdef WIN32 include winsock.h / Header file used...

Battle Carry <= .005 Socket Termination Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h...

Novell GroupWise Messenger <= 2.1.0 Memory Corruption

No description provided by source. Luigi Auriemma Application: Novell GroupWise Messenger http://www.novell.com/products/groupwise/ Versions: = 2.1.0 Platforms: Windows, Linux, NetWare Bug: memory corruption Exploitation: remote, versus server Date: 16 Feb 2012 found 10 May 2011 Author: Luigi...

OpenMPT <= 1.17.02.43 Multiple Remote Buffer Overflow Exploit PoC

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include stdint.h ifdef WIN32 include winsock.h // htonl else include netinet/in.h endif define VER 0.1 define HEAPOVERSZ 512 define ITPHEAPOVERSZ 150000 define ALLOCSAMPLESZ 39 & 7 + 16 defi...

Cube <= 2005_08_29 Multiple BoF/Crash Vulnerabilities Exploit

No description provided by source. / by Luigi Auriemma You NEED Enet for compiling this tool then remember -lenet http://enet.bespin.org / http://enet.cubik.org / include stdio.h include stdlib.h include string.h include enet/enet.h define VER 0.1 define PORT 28765 define MAXTRANS 5000 define BOF...

HP OpenView Network Node Manager <= 7.53 Multiple Vulnerabilities

No description provided by source. Luigi Auriemma Application: HP OpenView Network Node Manager http://www.openview.hp.com/products/nnm/ Versions: = 7.53 Platforms: Windows tested, Solaris, Linux, HP-UX Bugs: A CGIs directory traversal B Denial of Service in ovalarmsrv C NULL pointer in ovalarmsr...

MailEnable Pro/Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit

No description provided by source. !/usr/bin/perl ================================================================= MailEnable Professional = 3.13 FETCH post-auth buffer overflow ================================================================= Bind Shell POC Exploit for Win2K SP4 pro English Fou...

Siemens SIMATIC WinCC Flexible (Runtime) Multiple Vulnerabilities

No description provided by source. Luigi Auriemma Application: Siemens SIMATIC WinCC flexible Runtime http://www.automation.siemens.com/mcms/human-machine-interface/en/visualization-software/wincc-flexible/wincc-flexible-runtime/Pages/Default.aspx Versions: 2008 SP2 + security patch 1 Platforms:...

NetPanzer <= 0.8 - Remote Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid ch...

AdPlug 2.0 - Multiple Remote File Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18859/info The AdPlug library is affected by multiple remote buffer-overflow vulnerabilities. These issues are due to the library's failure to properly bounds-check user-supplied input before copying it into insufficientl...