2330 matches found
SGI IRIX 3/4/5/6,OpenLinux 1.0/1.1 routed traceon Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2658/info routed is a daemon used to dynamically update network routing tables. Certain operating systems including IRIX 3.x up to 6.4 inclusive, Caldera OpenLinux 1.0 and 1.1 contain a routed version which allows attacke...
vuBB <= 0.2 (Cookie) Final Remote SQL Injection Exploit (mq=off)
No description provided by source. !/usr/bin/perl print q ---------------------------------------------------------------------- vuBB =0.2 Final Remote SQL Injection cookies Exploit exploit discovered and coded by KingOfSKa https://contropotere.netsons.org...
Microsoft Office Word 2010 Crash PoC
No description provided by source. Title : Microsoft Office Word 2010 Stack Overflow Version : Microsoft Office professional Plus 2010 Date : 2012-10-23 Vendor : http://office.microsoft.com Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 ENG Bug : ----...
FreeBSD <= 6.4 Netgraph Local Privledge Escalation Exploit
No description provided by source. / FreeBSD = 6.4-RELEASE Netgraph Exploit by zx2c4 This is an exploit for CVE-2008-5736, the FreeBSD protosw and loosely based on Don Bailey's 2008 exploit - http://www.exploit-db.com/exploits/7581/ . The thing with Don's exploit is that it relies on having a kno...
CGIScript.net csPassword.CGI 1.0 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4887/info CGIScript.net provides various webmaster related tools and is maintained by Mike Barone and Andy Angrick. A vulnerability has been reported in the csPassword.cgi script developed by CGIScript.net that discloses...
WinVNC Web Server <= 3.3.3r7 - GET Overflow
No description provided by source. $Id: winvnchttpget.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...
Private Wire Gateway Buffer Overflow
No description provided by source. $Id: privatewiregateway.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
Microsoft Windows 2000 / NT 4.0 Process Handle Local Privilege Elevation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4287/info A vulnerability in Microsoft Windows 2000 and NT 4 could allow a user to gain SYSTEM-level privileges on the local host. The debugging subsystem, which is available to all users, may be used to create duplicate...
IDA Pro 6.3 Crash PoC
No description provided by source. / IDA Pro 6.3 crash due an internal error ELF anti-debugging/reversing patcher Published @ IOActive Labs Research blog: http://blog.ioactive.com/2012/12/striking-back-gdb-and-ida-debuggers.html - nitr0us http://twitter.com/nitr0usmx Tested under: IDA Pro Starter...
Mocha LPD 1.9 - Remote Buffer Overflow DoS PoC
No description provided by source. !/usr/bin/python Mocha LPD v1.9 Remote Heap Overflow Exploit ol skool 'write 4' whoops, I said it was a DoS. My bad. btw yes, I know its 2010 :0 CVE: 2010-1687 tested on XP sp1 use anti debugging to see it work - !hidedebug zwqueryinformationprocess call trace:...
IRCnet IRCD 2.10 Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8817/info IRCnet IRCD has been reported prone to a buffer overflow vulnerability that may be exploited by local users. This issue may be exploited to crash the affected server. Although unconfirmed, due to the nature of...
Notepad++ 5.4.5 - Local .C/CPP Stack Buffer Overflow PoC (0day)
No description provided by source. / 0dayNotepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow POC by fl0 fl0w / / LATEST FIXES Notepad++ v5.4.5 fixed bugs from v5.4.4 : 1. Fix plugins shortcuts not working bug. 2. Fix the tooltip on toolbar display bug for the plugins icons. 3. Fix a crash that was...
Motorola SB5101 Hax0rware Rajko HTTPD Remote Exploit PoC
No description provided by source. !/usr/bin/perl Motorola SB5101 Hax0rware Rajko HttpD Remote Exploit PoC Author: Dillon Beresford Date: 6/6/2010 Vendor: SBHacker & Motorola Software Link: http://www.sbhacker.net/forum/index.php Tested on Hax0rware 1.1 R30, R32 and R39 Description: Motorola SB51...
Sendmail 8.11/8.12 Debugger Arbitrary Code Execution Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/3163/info An input validation error exists in Sendmail's debugging functionality. The problem is the result of the use of signed integers in the program's tTflag function, which is responsible for processing arguments...
gdb (GNU debugger) <= 7.5.1NULL Pointer Dereference
No description provided by source. / gdb GNU debugger = 7.5.1 crash due a NULL pointer dereference ELF anti-debugging/reversing patcher Published @ IOActive Labs Research blog: http://blog.ioactive.com/2012/12/striking-back-gdb-and-ida-debuggers.html - nitr0us http://twitter.com/nitr0usmx Tested...
HTML Email Creator & Sender 2.3 - Local Buffer Overflow PoC (SEH)
No description provided by source. /0day HTML Email Creator & Sender v2.3 Local Buffer OverflowSeh Poc Debugging info Seh handler is overwriten , the offset is at 60 bytes in our buffer so you have to build your buffer as follows: PONTER TO NEXT SEH-------SEH HANDLER----NOP------SHELLCODE | | | |...
Array Networks vAPV and vxAG Private Key Privelege Escalation Code Execution
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::EXE def...
AIC Audio Player 1.4.1.587 Local Crash PoC
No description provided by source. !/usr/bin/python Title: AIC Audio Player 1.4.1.587 Local Crash PoC Date: 01-26-2010 Author: b0telh0 Link: http://www.aic-media.com/Download/SetupAICAudioPlayer.exe Tested on: Windows XP SP3 I couldn't even debug it. There's some anti-debugging protection... Trie...
PHPNuke 4.x/5.x SQL_Debug Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3906/info PHPNuke is a website creation/maintenance tool. It is can be back-ended by a number of database products such as MySQL, PostgreSQL, mSQL, Interbase, Sybase, etc. The sqllayer.php script contains a debugging...
Winzip 15.0 WZFLDVW.OCX Text Property Denial of Service
No description provided by source. Exploit Title: Winzip WZFLDVW.OCX text property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website : http://www.darkmasters.co.cc/ Twitter :...