DAFFTIN Password Keeper 1.0.0.15 POC

Exploit for windows platform in category dos / poc Exploit Title: DAFFTIN Password Keeper 1.0.0.15 Date: 01/04/2010 Author: Richard leahy Software Link: http://www.soft32.com/download222389.html Version: 1.0.0.15 Platform Tested on: Windows Xp Sp3 & Sp2 code !/usr/bin/env ruby test = "A" 800000...

Optimal Archive 1.38 - '.zip' File (SEH) (PoC)

!/usr/bin/python Title: Optimal Archive 1.38 .zip 0day SEH PoC Author: TecR0c - http://tecninja.net/blog & http://twitter.com/TecR0c Found by: TecR0c Download: http://www.optimalaccess.com/oadownload.php?version=oarchive.exe Platform: Windows XP sp3 En Advisory:...

Low: Red Hat Security Advisory: brltty security and bug fix update

Updated brltty packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

jdwp-version NSE Script

Detects the Java Debug Wire Protocol. This protocol is used by Java programs to be debugged via the network. It should not be open to the public Internet, as it does not provide any security against malicious attackers who can inject their own bytecode into the debugged process. Documentation for...

SilverStripe CMS Running in Development Mode

The SilverStripe CMS install hosted on the remote web server appears to be running in development mode. When running in development mode, debugging tools are accessible without authentication, which could enable an attacker to gain sensitive information relating to the application. %NASLMINLEVEL...

SilverStripe debug_profile Parameter Information Disclosure

The SilverStripe CMS install hosted on the remote web server is affected by an information disclosure vulnerability because it fails to properly handle the 'debugprofile' parameter of the 'sapphire/main.php' script when running in live mode. An attacker, exploiting this flaw, can gain sensitive...

[SECURITY] Fedora 11 Update: monodevelop-2.0-9.fc11

This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...

Microsoft ISAPI W3Who Library Buffer Overflow (CVE-2004-1134)

The W3Who dynamically linked library DLL, when used in the context of an IIS HTTP server, provides various information about the current HTTP client, as well as the current running environment. It is included with the Internet Services Application Programming Interface ISAPI and is meant to be us...

IE Aurora vulnerability of the principles of the quest-bug warning-the black bar safety net

Details: http://bbs.xfocusx.com/thread-7873-1-1.html by:xuanyuan small Cong The present article refer to the following article: 1http://www.geoffchappell.com/viewer.htm?doc=notes/security/aurora/index.htm 2http://securitylabs.websense.com/content/Blogs/3530.aspx...

SAP BusinessObjects 'HappyAxis2.jsp' Information Disclosure

The SAP BusinessObjects installation on the remote web server is leaking information via '/BusinessProcessBI/axis2-web/HappyAxis.jsp'. This page contains debugging information such as local file paths, operating system version, and Java version. A remote attacker could use this information to mou...

AIC Audio Player 1.4.1.587 - Local Crash (PoC)

AIC Audio Player 1.4.1.587 - Local Crash PoC !/usr/bin/python Title: AIC Audio Player 1.4.1.587 Local Crash PoC Date: 01-26-2010 Author: b0telh0 Link: http://www.aic-media.com/Download/SetupAICAudioPlayer.exe Tested on: Windows XP SP3 I couldn't even debug it. There's some anti-debugging...

AIC Audio Player 1.4.1.587 Local Crash PoC

Exploit for unknown platform in category local exploits ========================================== AIC Audio Player 1.4.1.587 Local Crash PoC ========================================== !/usr/bin/python Title: AIC Audio Player 1.4.1.587 Local Crash PoC Author: b0telh0 Link:...

Safari 4.0.4 Crash Proof Of Concept

The following piece of javascript will crash Safari nicely when triggered using one of the methods described below. With my limited knowledge I am unable to tell if it's exploitable or not. I therefore turn it over to "the internet". tested on Safari 4.0.4, Win XP Pro SP3...

Safari 4.0.4 Crash

No description provided by source. The following piece of javascript will crash Safari nicely when triggered using one \ of the methods described below. With my limited knowledge I am unable to tell if \ it's exploitable or not. I therefore turn it over to "the internet". tested on \ Safari 4.0.4...

Mandriva Update for apache-conf MDVA-2010:011 (apache-conf)

Check for the Version of apache-conf OpenVAS Vulnerability Test Mandriva Update for apache-conf MDVA-2010:011 apache-conf Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Mandriva Update for apache-conf MDVA-2010:011 (apache-conf)

Check for the Version of apache-conf OpenVAS Vulnerability Test Mandriva Update for apache-conf MDVA-2010:011 apache-conf Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

[SECURITY] Fedora 11 Update: monodevelop-2.0-8.fc11

This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...

Juniper SSL-VPN IVE JuniperSetupDLL.dll ActiveX Control Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Juniper...

[SECURITY] Fedora 11 Update: monodevelop-2.0-6.fc11

This package provides MonoDevelop, a full-featured IDE for Mono with syntax colouring, code completion, debugging, project management and support for C sharp, Visual Basic.NET, Java, Boo, Nemerle and MSIL...

Achievo 1.3.4 Remote File Inclusion

No description provided by source. Achievo 1.3.4debugger.php Remote File Include Vulnerability Author : M3NW5 Homepage : http://www.indonesiancoder.com contach : [email protected] Location : INDONESIA Achievo 1.3.4 Information Vendor : http://www.achievo.org/ Scripts :...