37 matches found
Ubuntu: Security Advisory (USN-7341-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Buffer overflow in Heimdal unwrap_des3()
Description The DES for Samba 4.11 and earlier and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated memory when presented with a maliciously small packet. Examples of where Samba can use GSSAPI include the client and...
Sun Java Web Server 7.0 u7 Remote Exploit
No description provided by source. / Sun Java Web Server Exploit Tested on: Sun Java Web Server 7.0 update 7 - XP SP3 Ref: CVE-2010-0361 This vulnerability was identified by Evgeny Legerov Author: Dominic Chell [email protected] Date: 23/01/2010 / include stdafx.h include stdio.h include stdlib....
Mozilla Firefox 3.6 - Integer Overflow Exploit
This exploit leverages WOFF heap corruption due to an integer overflow in Mozilla Firefox versions 3.6, 3.6 Beta 1, 3, 4, and 5, 3.6 RC1 and RC2. include include include include / x90c WOFF 1day exploit MFSA2010-08 WOFF Heap Corruption due to Integer Overflow 1day exploit CVE-ID: CVE-2010-1028 Fu...
ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)
$Id: proftpsreplace.rb 11526 2011-01-09 23:33:53Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
ProFTPd 1.2 < 1.3.0 (Linux) - 'sreplace' Remote Buffer Overflow (Metasploit)
$Id: proftpsreplace.rb 11526 2011-01-09 23:33:53Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...
Sun Java Web Server 7.0 u7 - Remote Overflow
Sun Java Web Server 7.0 u7 - Remote Overflow / Sun Java Web Server Exploit Tested on: Sun Java Web Server 7.0 update 7 - XP SP3 Ref: CVE-2010-0361 This vulnerability was identified by Evgeny Legerov Author: Dominic Chell Date: 23/01/2010 / include "stdafx.h" include include include include includ...
Sun Java System Web Server WebDAV OPTIONS Buffer Overflow
This module exploits a buffer overflow in Sun Java Web Server prior to version 7 Update 8. By sending an "OPTIONS" request with an overly long path, attackers can execute arbitrary code. In order to reach the vulnerable code, the attacker must also specify the path to a directory with WebDAV...
Mozilla Fast-Tracks Fix For Critical Firefox Flaw
Mozilla has fast-tracked a patch for a critical vulnerability affecting its flagship Firefox browser. The patch, which was originally slated for release on March 30, fixes a vulnerability that could allow remote code execution attacks. The flaw was originally released into the VulnDisco exploit...
Debian: Security Advisory (DSA-1107)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1140-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1115)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
helix-1101.txt
/usr/bin/python Remote exploit for the vulnerability in Helix server v11.0.1 as described at http://gleg.net/helix.txt The exploit spawns a shell on TCP port 4444 and connects to it. At the time of overflow we control EAX which is used in a call as follows 00420C64: call dword ptr eax + 4 ECX...
Helix Server 11.0.1 (Windows 2000 SP4) - Remote Heap Overflow
Helix Server 11.0.1 Windows 2000 SP4 - Remote Heap Overflow /usr/bin/python Remote exploit for the vulnerability in Helix server v11.0.1 as described at http://gleg.net/helix.txt The exploit spawns a shell on TCP port 4444 and connects to it. At the time of overflow we control EAX which is used i...
Helix Server 11.0.1 Remote Heap Overflow Exploit (win2k SP4)
Exploit for unknown platform in category remote exploits ============================================================ Helix Server 11.0.1 Remote Heap Overflow Exploit win2k SP4 ============================================================ /usr/bin/python Remote exploit for the vulnerability in Hel...
Helix Server 11.0.1 (Windows 2000 SP4) - Remote Heap Overflow
/usr/bin/python Remote exploit for the vulnerability in Helix server v11.0.1 as described at http://gleg.net/helix.txt The exploit spawns a shell on TCP port 4444 and connects to it. At the time of overflow we control EAX which is used in a call as follows 00420C64: call dword ptr eax + 4 ECX...
kms1.py.txt
Hi, Kerio MailServer 6.3.1 changelog mentions the following bug fix: 'Fixed possible service stop when handling certain LDAP query' It turns out that vdkms6 vulnerability which is a part of VulnDisco since Oct, 2006 has been fixed. Below is a simple proof of concept code for this bug: !/usr/bin/e...
Kerio MailServer 6.2.2 - Remote Denial of Service (PoC)
!/usr/bin/env python kms1.py - Kerio MailServer 6.2.2 preauth remote DoS fixed in Kerio MailServer 6.3.1 Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice an...
F-Prot AntiVirus 4.6.6 - 'ACE' Denial of Service
fprot1.py - trivial proof of concept code for F-Prot 4.6.6 .ACE DoS Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in al...
ProFTPd 1.3.0 - sreplace Remote Stack Overflow (Metasploit)
ProFTPd 1.3.0 - sreplace Remote Stack Overflow Metasploit vdproftpd.pm - Metasploit module for ProFTPD stack overflow Copyright c 2006 Evgeny Legerov Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above...