2391 matches found
IPSwitch IMail 8.13 (DELETE) Remote Stack Overflow Exploit
Exploit for unknown platform in category remote exploits ========================================================== IPSwitch IMail 8.13 DELETE Remote Stack Overflow Exploit ========================================================== !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts...
IPSwitch IMail 8.13 - DELETE Remote Stack Overflow
IPSwitch IMail 8.13 - DELETE Remote Stack Overflow !/usr/bin/perl -w IPSwitch-IMail-8.13-DELETE Discovered by : Muts Coded by : Zatlander WWW.WHITEHAT.CO.IL Plain vanilla stack overflow in the DELETE command Restrictions: - Need valid authentication credentials - Input buffer only allows characte...
D-Link DCS-900 Camera Remote IP Address Changer Exploit
No description provided by source. / dlinkdown.c - miscname.com change ip address on all dlink dcs-900 cameras on the local network without authentication dlink dcs-900 ip cameras use a broadcast/listen method of configuration ... rather than a static ip addr out of the box, it listens for a...
SUSE-SA:2003:0008: imp
The remote host is missing the patch for the advisory SUSE-SA:2003:0008 imp. IMP is a well known PHP-based web-mail system. Some SQL-injection vulnerabilities were found in IMP 2.x that allow an attacker to access the underlying database. No authentication is needed to exploit this bug. An attack...
HP Web Jetadmin 7.5.2456 - Printer Firmware Update Script Arbitrary File Upload
HP Web Jetadmin 7.5.2456 - Printer Firmware Update Script Arbitrary File Upload source: https://www.securityfocus.com/bid/9971/info HP Web Jetadmin is prone to an issue which may permit remote users to upload arbitrary files to the management server. This issue exists in the printer firmware upda...
Microsoft SQL Server 7.0/2000 / MSDE - Named Pipe Denial of Service (MS03-031)
source: https://www.securityfocus.com/bid/8274/info Microsoft SQL Server and the Microsoft Data Engine have been reported prone to a denial of service attack. Any local or remote user, who can authenticate and is part of the Everyone Group, may trigger a denial of service condition in an affected...
Microsoft Windows XP/2000/NT 4.0 - Locator Service Buffer Overflow
source: https://www.securityfocus.com/bid/6666/info It has been reported that the Microsoft Windows Locator service is affected by a remotely exploitable buffer overflow vulnerability. The condition is due to a memory copy of RPC arguments received from remote clients into a local buffer. This...
Mollensoft Software Enceladus Server Suite 3.9 - 'FTP' Buffer Overflow
source: https://www.securityfocus.com/bid/6345/info Enceladus Server Suite is prone to a remotely exploitable buffer overflow vulnerability. It is possible to trigger this condition by supplying an overly long value for several FTP commands. To exploit this issue, the attacker must be able to...
PVote 1.0/1.5 - Unauthorized Administrative Password Change
source: https://www.securityfocus.com/bid/4541/info PVote is a web voting system written in PHP. It will run on most Unix and Linux variants as well as Microsoft Windows operating systems. It is possible to change the administrative password by submitting a malicious web request containing the...
Microsoft Site Server 3.0 - Cross-Site Scripting
Microsoft Site Server 3.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/3999/info Microsoft Site Server is designed to run on Microsoft Windows NT Server platforms. It provides a means for users on a corporate intranet to share, publish, and find information. Site Server Commer...
Multiple FTPD glob Command Arbitrary Command Execution
The FTPD glob vulnerability manifests itself in handling the glob command. The problem is not a typical buffer overflow or format string vulnerability, but a combination of two bugs - an implementation of the glob command that does not properly return an error condition when interpreting the stri...