D.O.S due to wrong scaling factor

Lines of code Vulnerability details Impact The cNote token which is a fork of the CToken contract has a scaling method used to handle the exchange rate between CToken and the underlying token. This method helps scale the exchange rate because solidity doesn't handle fixed-point decimals. The...

Arbitrary file delete/D.O.S on Puppet Master

Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. dot dot in a...

Zhone GPON 2520 R4.0.2.566b - Crash PoC

Exploit for hardware platform in category dos / poc from httplib2 import Http from urllib import urlencode import sys,time main function if name == "main": iflensys.argv != 2: print '' print ' GPON Zhone R4.0.2.566b D.O.S.' print ' Tested on' print ' GPON Zhone 2520' print ' Hardware: 0040-48-02'...

Zhone GPON 2520 R4.0.2.566b - Crash (PoC)

Zhone GPON 2520 R4.0.2.566b - Crash PoC from httplib2 import Http from urllib import urlencode import sys,time main function if name == "main": iflensys.argv != 2: print '' print ' GPON Zhone R4.0.2.566b D.O.S.' print ' Tested on' print ' GPON Zhone 2520' print ' Hardware: 0040-48-02' print '...

Zhone GPON 2520 R4.0.2.566b - Crash (PoC)

from httplib2 import Http from urllib import urlencode import sys,time main function if name == "main": iflensys.argv != 2: print '' print ' GPON Zhone R4.0.2.566b D.O.S.' print ' Tested on' print ' GPON Zhone 2520' print ' Hardware: 0040-48-02' print ' Software: R4.0.2.566b' print ' ' print '...

Opolis.eu Secure Mail Blind SQL Injection / XSS / CSRF / DoS

========================================================================================================================================================================= OPOLIS.EU SECURE MAIL Blind SQLInjection / Cross site scripting / CSRF / Apacche httpd Remote D.O.S /PHP hangs on parsing...

Kingsoft AntiVirus 2011 SP5.2 KisKrnl.sys <= 2011.1.13.89 Local Kernel Mode D.O.S Exploit(3 lines of code)

Kingsoft AntiVirus 2011 SP5.2 KisKrnl.sys = 2011.1.13.89 Local Kernel Mode D.O.S Exploit Date: 2011-1-16 Author: MJ0011 Version: KingSoft AntiVirus 2011 SP5.2 with KisKrnl.sys =2011.1.13.89 Tested on: Windows XP SP3 DETAILS: KisKrnl.sys hook the kernel function KiFastCallEntry , but is not...

Kingsoft AntiVirus 2011 SP5.2 Denial Of Service

Kingsoft AntiVirus 2011 SP5.2 KisKrnl.sys = 2011.1.13.89 Local Kernel Mode D.O.S Exploit Date: 2011-1-16 Author: MJ0011 Software Link: http://cd001.www.duba.net/duba/install/2011/once/KAV110114DOWN913.exe Version: KingSoft AntiVirus 2011 SP5.2 with KisKrnl.sys =2011.1.13.89 Tested on: Windows XP...

CAL-20070912-1 Multiple vendor produce handling AVI file vulnerabilities

CAL-20070912-1 Multiple vendor produce handling AVI file vulnerabilities Code Audit Labs http://www.vulnhunt.com Code Audit for some popular media player and discovered some vulnerabilities. one heap overflow was discovered in MPlayer. one heap overflow and one integer overflow were discovered in...

Shutdown unprotected Oracle TNS Listener via Oracle Discoverer Servlet [AS01]

Shutdown unprotected Oracle TNS Listener via Oracle Discoverer Servlet AS01 Name Shutdown unprotected Oracle TNS Listener via Oracle Discoverer Servlet 6085705 AS01 Systems Affected Oracle Discoverer Servlet Severity Low Risk Category Remote D.o.S. Vendor URL http://www.oracle.com/ Author Alexand...

Network Security Series knowledge of CGI exploits collection on-vulnerability warning-the black bar safety net

Following the collection and collation of some of the famous CGI vulnerability and provided some security recommendations and solutions, if the server of the presence of these vulnerabilities not patched, then, each vulnerability is likely will fill the intruder utilization, increase Server been...

Microsoft IIS - HTTP Request Denial of Service (1)

/ Microsoft IIS 5.1 Remote D.o.S Exploit by Kozan Application: Microsoft IIS Internet Information Server Vendor: Microsoft - http://www.microsoft.com/ Discovered by: Inge Henriksen Exploit Coded by: Kozan Credits to ATmaCA, Inge Henriksen Web: www.spyinstructors.com Mail: [email protected]...

MS Windows IIS Malformed HTTP Request Denial of Service Exploit (c)

Exploit for unknown platform in category dos / poc =================================================================== MS Windows IIS Malformed HTTP Request Denial of Service Exploit c =================================================================== / Microsoft IIS 5.1 Remote D.o.S Exploit by...

xarayaDOS.txt

Xaraya = 1.0.0 RC4 D.O.S / file corruption software: site: http://www.xaraya.com description: "Xaraya 1.0 Core is an Open Source web application framework written in PHP" vulnerable code in create function in xarMLSXML2PHPBackend.php: i you can create an empty dir, in some cases this leads to...

Xaraya <= 1.0.0 RC4 D.O.S / file corruption

Xaraya = 1.0.0 RC4 D.O.S / file corruption software: site: http://www.xaraya.com description: "Xaraya 1.0 Core is an Open Source web application framework written in PHP" vulnerable code in create function in xarMLSXML2PHPBackend.php: i you can create an empty dir, in some cases this leads to...

Walla TeleSite Multiple Vulnerabilities

Application: Walla TeleSite Vendors: http://www.walla.co.il Versions: 3.0 and perior Platforms: Windows ISAPI, a few vulnerabilities apply Linux too Bug: Multiple Vulnerabilities Exploitation: Remote with browser Date: 13 Nov 2005 Author: Rafi Nahum, Pokerface e-mail: [email protected] web: N...

DOS@XitamiHTTPd

Application: Xitami Web Server Vendors: http://www.xitami.com/xiopen25.zip Version: v2.5c1 Platforms: Windows Bug: D.O.S Date: 2004-07-15 Author: CoolICE e-mail: CoolICEChina.com ================ Content: ---------------- TestCode: @echo off...

DOS@Orenosv

DOSOrenosvHTTPd.bat @echo on :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::: :Application: Orenosv Server :Vendors: http://home.comcast.net/makataoka/orenosv060.zip :Version: =0.6.0 :Platforms: Windows :Bug: D.O.S :Date: 2004-06-02 :Author: CoolICE :E-mail: CoolICEChina.com...

Qt temporary files race condition in Knoppix 3.1

Qt libaries works with KDE. Knoppix 3.1 comes with KDE3. A default installation on hard disk of this live CD linux distribution with the SSHD daemon running may allow a serious D.o.S. attack and potential root compromise. I've found a race condition in knoppix 3.1 live CD. I've confirmed it on 2...

(WSS-Advisories-02003) PHPBB BBcode Process Vulnerability

WSS-Advisories-02003 PHPBB BBcode Process Vulnerability Release infomation ------------------ Release Date: 2001-4-4 Author: By Whitecell Security SystemsWSS tombkeeper [email protected] alert7 [email protected] Homepage: http://www.whitecell.org/ Impact: -------- WSS has found a...