CuteNews1.4.1.txt

CuteNews 1.4.1 Arbitrary file inclusion / remote code execution exploit software: site: http://cutephp.com/ description: "Cute news is a powerful and easy for using news management system that use flat files to store its database. It supports comments, archives, search function, image uploading,...

Mozilla Firefox view-source:javascript url Code Execution Exploit

Exploit for multiple platform in category remote exploits ================================================================= Mozilla Firefox view-source:javascript url Code Execution Exploit ================================================================= Firelinking 2 - Proof-of-Concept by mikx...

CVE-2004-1094

Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using 1 a .rjs skin file in RealPlayer 10 through RealPlayer 10.5 6.0.12.1053, RealOne Playe...

Important: Red Hat Security Advisory: php security update

Updated php packages that fix various security issues are now available. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP server. Stefan Esser discovered a flaw when memorylimit configuration setting is enabled in versions of PHP 4 before 4.3.8. If a remote attacker...

IBM Lotus Notes 6.06.5 - Multiple Java Applet Vulnerabilities

IBM Lotus Notes 6.06.5 - Multiple Java Applet Vulnerabilities source: https://www.securityfocus.com/bid/10704/info IBM Lotus Notes is affected by three vulnerabilities concerning Java applets. An attacker can exploit these issues to disclose potentially sensitive information, cause a web browser ...

Mac OS X Multiple Vulnerabilities (Security Update 2003-12-19)

The remote host is missing Security Update 2003-12-19. This security update includes the following components : - AFP Server - cd9600.util - Directory Services - fetchmail - fsusage - rsync - System Initialization For MacOS X 10.3, it also includes : - ASN.1 Decoding for PKI This update contains...

FreeBSD : SA-04:10.cvs

The remote host is running a version of FreeBSD which contains a heap overflow in the cvs pserver code. This flaw may be used by an attacker to execute arbitrary code on the remote host, provided that it's running a cvs pserver. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

New "Clean" IE Remote Compromise

tested OS:Win2k3,CN version IE: with MS03-048 installed. OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview By combining several vulnerabilities in Internet Explorer, an attacker can execute his EXE file on victim's system. "Clean" means: there is no old...

Exchange XEXCH50 Remote Buffer Overflow

The remote mail server appears to be running a version of the Microsoft Exchange SMTP service that is vulnerable to a flaw in the XEXCH50 extended verb. This flaw can be used to completely crash Exchange 5.5 or to execute arbitrary code on Exchange 2000. This script was written by H D Moore See t...

Maelstrom Server 3.0.x - Argument Buffer Overflow (3)

Maelstrom Server 3.0.x - Argument Buffer Overflow 3 // source: https://www.securityfocus.com/bid/7630/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it ...

Apple Mac OSX 10.2.4 - DirectoryService PATH Local Privilege Escalation

Apple Mac OSX 10.2.4 - DirectoryService PATH Local Privilege Escalation / OS X include include include int mainint argc, char argv char ORIGPATH; int temp; if argc 2 if geteuid == 0 printf"euid is root.\n"; setuid0; execl"/bin/bash", "bash", NULL; strcpyORIGPATH, getenv"PATH"; printf"Original pat...

File 3.x - Local Stack Overflow Code Execution (1)

File 3.x - Local Stack Overflow Code Execution 1 // source: https://www.securityfocus.com/bid/7008/info It has been reported that a stack overflow exists in the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to execute code ...

Hotfoon Dialer 4.0 - Buffer Overflow (PoC)

Hotfoon Dialer 4.0 - Buffer Overflow PoC source: https://www.securityfocus.com/bid/6156/info A buffer overflow vulnerability has been reported for the Hotfoon dialer. The vulnerability exists in a text input field for dialing telephone numbers. Reportedly, Hotfoon4.exe does not adequately perform...

Using the backbutton in IE is dangerous

---..---..---..---..---..---..---..---..---..---..---..---..---- Title: Using the backbutton in IE is dangerous. Date: 2002-04-15 Software: At least Internet Explorer 6.0. Tested env: Windows 2000 pro, XP. Rating: Medium because user interaction is needed. Impact: Read cookies/local files and...

LCDProc 0.4 - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/1131/info A vulnerability exists in the server portion of version 0.4 of the LCDProc package. Several remote buffer overflows exist that could allow a remote attacker to corrupt memory and execute arbitrary code. As listed in the Bugtraq posting...

Netscape Enterprise Server 3.6 SP2FastTrack Server 2.0.1 - GET

Netscape Enterprise Server 3.6 SP2FastTrack Server 2.0.1 - GET source: https://www.securityfocus.com/bid/1024/info A GET request containing over 4080 characters will cause the httpd.exe process to crash within Netscape Enterprise Server 3.6, resulting in a Dr. Watson error. Arbitrary code can be...

nftp-bof.txt

Date: Mon, 16 Nov 1998 18:02:43 -0700 Reply-To: Eric Wanner Sender: Bugtraq List From: Eric Wanner Subject: nftp vulnerability fwd Content-Type:MULTIPART/MIXED; nftp is a shareware ftp program available at ftp://crydee.sai.msu.su/pub/comp/software/asv/nftp/ that is becoming more and more widely...