6033 matches found
CVE-2009-0606
The linkimage function in linker/linker.c in the dynamic linker in Bionic in Open Handset Alliance Android 1.0 on the T-Mobile G1 phone does not properly handle file descriptors 0, 1, and 2 for a setgid program, which allows local users to create arbitrary files owned by certain groups, possibly ...
InselPhoto 1.1 Persistent XSS Vulnerability
Exploit for unknown platform in category web applications =========================================== InselPhoto 1.1 Persistent XSS Vulnerability =========================================== Software: InselPhoto v1.1 Persistent XSS Vulnerability Discovered by: Paul Hand aka rAWjAW For this...
Design/Logic Flaw
Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the...
Turn off XP protection. Replace explorer. exe-vulnerability warning-the black bar safety net
Author: open Source: open's blog In the even of a VPC on the test. No more test. Even not call the dllcache directory. You like it Quote: Turn off XP protection. 替换 explorer.exe Copyright C 2 0 0 8 bbs.secdst.net program Project1; uses Windows,TlHelp32; function LowerCaseconst S: string: string;...
Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit
No description provided by source. // /Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user java/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using java procedures / // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT:...
Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit
No description provided by source. // /Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit/ /grant DBA and create new OS user using scheduller/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using scheduler/ // /tested on oracle 10.1.0.5.0/ // // / Date of Public...
Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit
// /Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user advanced extproc/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using advanced extproc method/ // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT: January 6, 2009 / /...
Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit
// /Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user java/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using java procedures / // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT: January 6, 2009 / / Written by: Alexand...
Oracle 10g - SYS.LT.COMPRESSWORKSPACETREE SQL Injection (1)
Oracle 10g - SYS.LT.COMPRESSWORKSPACETREE SQL Injection 1 // /Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit/ /grant DBA and create new OS user using scheduller/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using scheduler/ // /tested on oracle 10.1.0.5.0/ /...
Oracle 10g - SYS.LT.REMOVEWORKSPACE SQL Injection
Oracle 10g - SYS.LT.REMOVEWORKSPACE SQL Injection // /Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user advanced extproc/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using advanced extproc method/ // /tested on oracle 10.1.0.5.0/ /...
Oracle 10g - SYS.LT.MERGEWORKSPACE SQL Injection
// /Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user java/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using java procedures / // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT: January 6, 2009 / / Written by: Alexand...
Oracle 10g - SYS.LT.REMOVEWORKSPACE SQL Injection
// /Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit/ /grant DBA and create new OS user advanced extproc/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using advanced extproc method/ // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT: January 6, 2009 / /...
Oracle 10g - 'SYS.LT.COMPRESSWORKSPACETREE' SQL Injection (1)
// /Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit/ /grant DBA and create new OS user using scheduller/ // /exploit grant DBA to scott/ /and execute OS command "net user"/ /using scheduler/ // /tested on oracle 10.1.0.5.0/ // // / Date of Public EXPLOIT: January 6, 2009 / / Written...
Social Groupie File Upload Vulnerability
|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...
Social Groupie - create_album.php Arbitrary File Upload
Social Groupie - createalbum.php Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | |...
Social Groupie - 'create_album.php' Arbitrary File Upload
|| || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ Kings of injection | | // | | |...
phpAddEdit 1.3 (editform) Local File Inclusion Vulnerability
No description provided by source. phpaddedit-1.3 LFI Author: nuclear script:http://sourceforge.net/projects/phpaddedit/ vuln:http://target.com/addedit-render.php?editform=../../../../../../../etc/passwd%00 vulnerable code: if !$formname && $GET"editform" $formname = $GET"editform"; ... if...
MySQL privilege escalation
It's possible to specify file of different database in CREATE TABLE...
Oracle数据库服务器CREATE ANY DIRECTORY权限提升漏洞
BUGTRAQ ID: 31738 Oracle是大型的商用数据库系统。 Oracle数据库中存在严重的权限提升漏洞,拥有CREATE ANY DIRECTORY权限的低权限用户可以通过UTLDIR用已知的二进制口令文件直接覆盖隐藏的口令文件获得SYSDBA权限。 Oracle Database 11g Oracle Database 10.2 Oracle Database 10.1 Oracle ------ 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.oracle.com --note windows add...
Oracle Database Server 'CREATE ANY DIRECTORY'特权提升漏洞
BUGTRAQ ID: 31738 CNCAN ID:CNCAN-2008101405 Oracle Database Server是一款大型企业级的数据库服务程序。 Oracle Database Server 'CREATE ANY DIRECTORY'用户特权相关处理存在问题,远程攻击者可以利用漏洞获得SYSDBA特权权限。 通过UTLDIR使用已知两进制密码文件可直接覆盖隐藏的两进制文件,而使拥有CREATE ANY DIRECTORY低权限的用户获得SYSDBA特权。 目前如下链接进行了一定程度的分析目前不能连接:...