Foxit Reader 2.0 (PDF) Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ======================================================= Foxit Reader 2.0 PDF Remote Denial of Service Exploit ======================================================= / Created Friday, April 20 2007 Moderator of http://igniteds.net Foxit Reader 2....

Microsoft Windows - GDI Privilege Escalation (MS07-017) (2)

/ GDI Local Elevation of Privilege Vulnerability Exploit MS07-017 Coded by Lionel d'Hauenens http://www.labo-asso.com Development: ------------ Dev-C++ 4.9.9.2 Linked with /lib/libgdi32.a References: ----------- http://www.microsoft.com/technet/security/bulletin/MS07-017.mspx...

WarFTP 1.65 (USER) Remote Buffer Overlow Exploit (multiple targets)

Exploit for unknown platform in category remote exploits =================================================================== WarFTP 1.65 USER Remote Buffer Overlow Exploit multiple targets =================================================================== include include include define VULNSERVE...

Plash sandbox protection bypass

It's possible to execute any command via /dev/tty device...

CVE-2007-1400

Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl...

CVE-2007-1400

Plash permits sandboxed processes to open /dev/tty, which allows local users to escape sandbox restrictions and execute arbitrary commands by sending characters to a shell process on the same termimal via the TIOCSTI ioctl...

CVE-2007-1400

Plash allows sandboxed processes to open /dev/tty via TIOCSTI, enabling local users to escape sandbox restrictions and send characters to a shell process on the same terminal to execute arbitrary commands. This CVE (CVE-2007-1400) is documented with a local-privilege/escalation impact and does no...

Code injection

inc/filebrowser/browser.php in deV!Lz Clanportal DZCP 1.4.5 and earlier allows remote attackers to obtain MySQL data via the inc/mysql.php value of the file parameter...

CVE-2007-1167

CVE-2007-1167 affects deV!L`z Clanportal (DZCP) prior to or including 1.4.5. The issue resides in inc/filebrowser/browser.php, where an attacker can trigger information disclosure by using the inc/mysql.php value of the file parameter, allowing remote retrieval of MySQL data. This is a remote, un...

deV!Lz Clanportal [DZCP] <= 1.4.5 Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ====================================================================== deV!Lz Clanportal DZCP = 1.4.5 Remote File Disclosure Vulnerability ====================================================================== DZCP Devilz Clanportal = 1.4....

DZCP (deV!L_z Clanportal) 1.4.5 - Remote File Disclosure

DZCP deV!Lz Clanportal 1.4.5 - Remote File Disclosure DZCP Devilz Clanportal = 1.4.5 Mysql Data viewable Found by: Kiba Solution: Install security Fix! Exploit: http://SITE/PATH/inc/filebrowser/browser.php?file=inc/mysql.php Example:...

DZCP (deV!L`z Clanportal) 1.4.5 - Remote File Disclosure

DZCP Devilz Clanportal = 1.4.5 Mysql Data viewable Found by: Kiba Solution: Install security Fix! Exploit: http://SITE/PATH/inc/filebrowser/browser.php?file=inc/mysql.php Example: http://www.example.com/dzcp/inc/filebrowser/browser.php?file=inc/mysql.php milw0rm.com 2007-02-21...

CVE-2006-7019

phpwcms 1.2.5-DEV and earlier, and 1.1 before RC4, allows remote attackers to execute arbitrary code via crafted arguments to the 1 textevento and 2 emaileventonomeevento parameters to phpwcmscodesnippets/mailfileform.php and sampleextphp/mailfileform.php, which is processed by the renderPHPcode...

Advanced Poll <= 2.0.5-dev Remote Code Execution Exploit

Exploit for unknown platform in category web applications ======================================================== Advanced Poll = 2.0.5-dev textfile RCE. date: 30/07/06 PHCKSEC c 2001-2006. Hey, what a mad world! use strict; use warnings; use LWP::UserAgent; use MD5; args: http://url/apollpath c...

Exploits Dev-C++ 4.9.9.2 Stack Overflow

No description provided by source. !/usr/bin/env python print "--------------------------------------------------------------" print "Dev-C++ 4.9.9.2 Stack Overflow" print "url: http://www.bloodshed.net/" print "author: shinnai" print "mail: shinnaiatautisticidotorg" print "site:...

Bloodshed Dev-C++ buffer overflow

Buffer overflow on oversized string in .cpp file...

Bloodshed Dev-C++ CPP源文件缓冲区溢出漏洞

Bloodshed Dev-C++是一款C++ 开发工具。 Bloodshed Dev-C++处理CPP文件存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 构建恶意CPP文件，诱使用户打开可触发此漏洞。 Bloodshed Software Dev-C++ 4.9.9 .2 目前没有解决方案提供,请关注以下链接： http://www.bloodshed.net/dev/devcpp.html !/usr/bin/env python print...

Stack overflow

Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long line in a .cpp file...

CVE-2007-0643

Stack-based buffer overflow in Bloodshed Dev-C++ 4.9.9.2 allows user-assisted remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a long line in a .cpp file...

CVE-2007-0643

CVE-2007-0643 affects Bloodshed Dev-C++ 4.9.9.2. It is a stack-based buffer overflow triggered by a long line in a .cpp file, allowing user-assisted remote attackers to cause a denial of service and potentially execute arbitrary code. No remediation details are provided in the supplied documents....