psoam-ddxss.txt

--------------------------------------------------------- Portal Name: Power System Of Article Management Version : 3.0 Author : PouyaServer , [email protected] Vulnerability : DD/XSS --------------------------------------------------------- DD:...

Power System Of Article Management 3.0 - File Disclosure / Cross-Site Scripting

--------------------------------------------------------- Portal Name: Power System Of Article Management Version : 3.0 Author : PouyaServer , [email protected] Vulnerability : DD/XSS --------------------------------------------------------- DD:...

OpenJDK UTF-8 decoder accepts non-shortest form sequences (4486841)

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...

Java Runtime UTF-8 Decoder Smuggling Vector

Due to misconfiguration of mailing lists, it was just pointed out this is already public. Apologies to those vendors who have not reacted to Sun's announcements of December 2nd in a timely manner; Mitre ID: CVE-2008-2938 Initial title: Java Runtime UTF-8 Decoding Flaw Actual title: Java Runtime...

Linux/x86 - execve() + ROT-7 Shellcode (Encoder/Decoder) (74 bytes)

Linux/x86 - execve + ROT-7 Shellcode Encoder/Decoder 74 bytes. Shellcode exploit for Linuxx86 platform / ROT-7 Decoder Shellcode - Linux Intel/x86 Author: Stavros Metzidakis / a Python ROT-7 encoder for shellcode execve-stack...

OpenJDK UTF-8 decoder accepts non-shortest form sequences (4486841)

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...

cainabel-overflow.txt

exploit.py print "" print " !R4Q!4N H4CK3R" print "Cain & Abel 4.9.23 rdp file Buffer overflow Exploit" print "By:Encrypt3d.M!nd" print "encrypt3d.blogspot.com" print "" print "Greetz:-=Mizo=-,L!0N,El Mariachi,MiNi SpIder..and all my friends" print "This is exploit for my PoC" print "Tested...

Cain & Abel 4.9.23 (rdp file) Buffer overflow Exploit

Exploit for unknown platform in category local exploits ===================================================== Cain & Abel 4.9.23 rdp file Buffer overflow Exploit ===================================================== exploit.py print "" print " !R4Q!4N H4CK3R" print "Cain & Abel 4.9.23 rdp file...

Cain & Abel <= v4.9.24 .RDP Stack Overflow Exploit

No description provided by source. !/usr/bin/perl Cain & Abel = v4.9.24 .RDP Stack Overflow Exploit Exploit by SkD [email protected] ----------------------------------------------- Nothing much to say about this one. This works on an updated Windows XP SP3. On Vista this exploit is way easier th...

Cain Abel 4.9.24 - .rdp Local Stack Overflow

Cain Abel 4.9.24 - .rdp Local Stack Overflow !/usr/bin/perl Cain & Abel = v4.9.24 .RDP Stack Overflow Exploit Exploit by SkD [email protected] ----------------------------------------------- Nothing much to say about this one. This works on an updated Windows XP SP3. On Vista this exploit is way...

Cain Abel 4.9.23 - .rdp Buffer Overflow (PoC)

Cain Abel 4.9.23 - .rdp Buffer Overflow PoC exploit.py Cain & Abel v4.9.23 rdp file Buffer Overflow PoC other versions may also affected By:Encrypt3d.M!nd encrypt3d.blogspot.com Greetz:-=Mizo=-,L!0N,El Mariachi,MiNi SpIder Description: When Using Remote Desktop Password Decoder in Cain and...

Cain & Abel 4.9.23 (rdp file) Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ================================================= Cain & Abel 4.9.23 rdp file Buffer Overflow PoC ================================================= exploit.py Cain & Abel v4.9.23 rdp file Buffer Overflow PoC other versions may also affected...

Cain & Abel <= v4.9.24 .RDP Stack Overflow Exploit

Exploit for unknown platform in category local exploits ================================================== Cain & Abel = v4.9.24 .RDP Stack Overflow Exploit ================================================== !/usr/bin/perl Cain & Abel = v4.9.24 .RDP Stack Overflow Exploit Exploit by SkD...

bittorrent-overflow.txt

!/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder my $shellcode = windows/exec...

BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder m...

Debian DSA-1649-1 : iceweasel - several vulnerabilities

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer overfl...

DSA-1649-1 iceweasel - several vulnerabilities

Bulletin has no description...

Mac OS X : Flip4Mac < 2.2.1 Unspecified Vulnerability

The remote Mac OS X host is running a version of Flip4Mac that contains an unspecified vulnerability in its decoder. Flip4Mac is an extension that lets users read '.wmv' movie files. By enticing a user on the remote host to read a malformed '.wmv' file, an attacker may be able to execute arbitrar...

USN-645-3: Firefox and xulrunner regression

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

CVE-2008-4069

The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey before 1.1.12 allows remote attackers to read uninitialized memory, and possibly obtain sensitive information in opportunistic circumstances, via a crafted XBM image file...