Remote file inclusion

PHP remote file inclusion vulnerability in libraries/grabglobals.lib.php in ComVironment 4.0 allows remote attackers to execute arbitrary PHP code via a URL in the incdir parameter...

MS Internet Explorer VML Download and Execute Exploit (MS07-004)

No description provided by source. c pang0 // www.tcbilisim.org bug found3d by LifeAsaGeek thx = o.g. / chaos / sakkure / stansar / xoron MS07-004 VML integer overflow exploit $html = "laz.html";...

Microsoft Internet Explorer - VML Download and Execute (MS07-004)

Microsoft Internet Explorer - VML Download and Execute MS07-004 c pang0 // www.tcbilisim.org bug found3d by LifeAsaGeek thx = o.g. / chaos / sakkure / stansar / xoron MS07-004 VML integer overflow exploit $html = "laz.html"; print "c pang0 // www.tcbilisim.org\nbug found3d by LifeAsaGeek\nMS07-00...

Indexu 5.05.3 - Sendmail.php Multiple Cross-Site Scripting Vulnerabilities

Indexu 5.05.3 - Sendmail.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

ovidentia-rfi.txt

includeonce $babInstallPath."utilit/mailincl.php";includeonce $babInstallPath."utilit/afincl.php"; includeonce $babInstallPath."utilit/topincl.php"; includeonce $babInstallPath."utilit/artincl.php";includeonce $babInstallPath."utilit/vacincl.php"; includeonce $babInstallPath."utilit/evtincl.php";...

CVE-2006-6919

Firefox Sage extension 1.3.8 and earlier allows remote attackers to execute arbitrary Javascript in the local context via an RSS feed with an img tag containing the script followed by an extra trailing "", which Sage modifies to close the img element before the malicious script...

Kerberos administration daemon fails to properly initialize function pointers

Overview The Kerberos administration daemon fails to properly initialize pointers. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service. Description A vulnerability exists in the way the Kerberos administration daemon handles...

Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit

Exploit for unknown platform in category remote exploits ================================================================== Rediff Bol Downloader ActiveX Control Execute Local File Exploit ================================================================== rboldwn.url = "file://C:/WINNT/Notepad.ex...

Rediff Bol Downloader - ActiveX Control Execute Local File

Rediff Bol Downloader - ActiveX Control Execute Local File rboldwn.url = "file://C:/WINNT/Notepad.exe" rboldwn.fontsize = 14 rboldwn.barcolor = EE4E00 rboldwn.start = "start" milw0rm.com 2006-12-31...

CVE-2006-6754

CVE-2006-6754 involves multiple SQL injection vulnerabilities in Ixprim 1.2. An attacker can remotely execute arbitrary SQL commands via the story_id parameter to ixm_ixpnews.php and other vectors. The available sources consistently name Ixprim 1.2 and these vectors but do not provide a patched f...

NOD32 Anti-Virus多个文件解析漏洞

NOD32 Anti-Virus是一款流行的反病毒软件。 NOD32 Anti-Virus处理多个文件存在问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 当处理畸形.chm文件时，可导致除零错误而使应用程序崩溃。特殊构建的.doc文件，可导致整数溢出而以应用程序进程权限执行任意指令。 目前没有详细漏洞细节提供。 Eset Software NOD32 Antivirus 可参考如下安全公告获得补丁信息： http://eset.com/support/updates.php?pageno=63...

solaris/sparc download and execute 278 bytes

No description provided by source. / black-dl-exec-SOLARIS.c MIPS 278:bytes Dowloads a binary from host given named 'evil-dl' to '/tmp/ff' then executes. 11.21.6 Russell Sanford [email protected] gcc -lnsl black-dl-exec-SOLARIS.c -o bdes / include sys/socket.h include netinet/in.h include...

CVE-2006-6661

Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the 1 f, 2 newmessage, 3 newusername, 4 adminuser, and ...

CVE-2006-6596

HyperAccess 8.4 allows user-assisted remote attackers to execute arbitrary vbscript and commands via a session HAW file, which can be automatically opened using Internet Explorer...

CVE-2006-6593

PHP remote file inclusion vulnerability in zufallscodepart.php in AMAZONIA MOD for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2006-6516

CVE-2006-6516 affects KDPics 1.16 and earlier, where PHP remote file inclusion via user-supplied URLs leads to arbitrary PHP code execution. Reported vectors include (1) the page parameter to index.php3 and (2) the lib_path parameter to authenticate.inc.php3 or lib/exifer/exif.php. Impact is part...

CVE-2006-6232

CVE-2006-6232 describes a PHP remote file inclusion vulnerability in DreamAccount 3.1, affecting admin/index.php via a URL in the path parameter. The underlying issue is a RFI in the path handling, allowing an attacker to execute arbitrary PHP code on the server. Documented impact is partial conf...

GLSA-200611-18 : TIN: Multiple buffer overflows

The remote host is affected by the vulnerability described in GLSA-200611-18 TIN: Multiple buffer overflows Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflo...

CVE-2006-6121

CVE-2006-6121 affects the Acer LunchApp.APlunch ActiveX control (LunchApp.ocx) shipped with notebooks. The Run() method allows an attacker to execute arbitrary commands on a vulnerable system when a page hosts the control, enabling remote code execution with the user’s privileges. Public document...

Oracle <= 9i / 10g (read/write/execute) Exploitation Suite

Exploit for multiple platform in category remote exploits ========================================================== Oracle -- -- This is an exploitation suite for Oracle written in Java. Use it to -- read/write files and execute OS commands with the privileges of the -- RDBMS, if you have the...