Inside the PlayStation 3 Exploit

The recent attack on the PlayStation 3 hypervisor has gotten a tremendous amount of attention, but there has not been much in the way of detailed analysis of the actual exploit itself. However, a prominent cryptographer and security researcher has looked at the exploit and found that it is a...

Emergency IE Patch Coming on January 21

This is just a quick heads-up that the emergency security patch for Microsoft’s Internet Explorer will be released tomorrow January 21, 2009. The update, rated critical for all versions of IE, will cover a remote code execution flaw that has already been used in targeted attacks against U.S...

C99Shell 1.0 Cross Site Scripting

============================================================================================ | Title : !C99Shell v.1.0 pre-release build 16! Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com/vb | Script Home :...

Microsoft: Emergency IE Patch Coming

Microsoft has started dropping broad hints that an emergency patch for Internet Explorer will be released very soon to counter targeted attacks and the publication of exploit code for a “browse and you’re owned” vulnerability in its flagship Web browser. UPDATE: Here is the official confirmation...

Muziic Player 2.0 - .mp3 Local Denial of Service

Muziic Player 2.0 - .mp3 Local Denial of Service Exploit Title: Muziic Player .mp3 Local Denial of Service DoS Download : http://download.cnet.com/3001-204-10910117.html?spi=e0c701df9e16242fca1997f71350aba0 Author: Red-D3v1L sh0otz fly t0 : r1z , D3v1L-Fuck3r, SarBooT511 , Sas-Terr0risT , AnGeL25...

OtsTurntables Free 1.00.047 SEH Overwrite

Exploit Title: OtsTurntables Free v1.00.047 SEH Overwrite POC Date: 14-01-2010 Author: Darkb0x Software Link: http://www.otsturntables.com/download-otsturntables-free/ Version: 1.00.047 Tested on: Windows Vista Ultimate English exploit code print "\n\nBy Darkb0x\n" ; print "Home Page :\n" ; print...

Foxit Reader 4.1.1 Stack Overflow Exploit

Exploit for windows platform in category local exploits ========================================= Foxit Reader 4.1.1 Stack Overflow Exploit ========================================= Exploit Title : Foxit 4.1.1 Date : 13/11/2010 Author : Sud0 Software Link :...

Sub Station Alpha 4.08 - '.rt' Local Buffer Overflow (PoC)

/Sub Station Alpha v4.08 .rt file local buffer overflow poc by fl0 fl0w/ include include define FIL3 "testfile.rt" char header= "\x3C\x77\x69\x6E\x64\x6F\x77\x20\x68\x65\x69\x67\x68\x74\x3D\x22\x32\x35\x30\x22\x20\x77\x69\x64\x74\x68\x3D\x22\x33\x30"...

Mac OS X Proof of Concept Exploit Code Released

Proof of concept exploit code was posted by a security researcher demonstrating a vulnerability in versions 10.5 and 10.6 of Apple’s Mac OS X operating system. Read the full article. Dark Reading...

CU Village CMS Site 1.0 - print_view Blind SQL Injection

CU Village CMS Site 1.0 - printview Blind SQL Injection +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2010 | \ | | / / / \ /\ / ||\ \ ||/ \ R.I.P MichaelJackson !!!!!...

ttplayer 5.6Beta3 Dos POC

No description provided by source. Exploit Title: ttplayer=5.6Beta3 Dos POC Date: 2010-01-06 Author: t-bag YDteam. Software Link: http://ttplayer.qianqian.com Version: 5.6Beta3 Tested on: win7 and win2003 Code : !/usr/bin/python f t-bag crash = "ETM3U\n"+'QQ\1.'+"x41" 81 try: file =...

TPO Duyuru Insecure Cookie Handling

Discovered by : Septemb0x + Script Name : TPO Duyuru Scripti + Download Script : http://phpexplorer.com/Goster/980 + Bug Description : Can be accessed without password Exploit Code : javascript:document.cookie = "kullanici=; path=/"; Enter to http://target/path/duyuruyonetim.php + Greetz :...

VirtualDJ Trial v6.0.6 "New Year Edition" m3u Exploit (0day)

No description provided by source. /VirtualDJ Trial v6.0.6 "New Year Edition" PC 0day This is a poc for the latest VJ by fl0 fl0w Author: fl0 fl0w Tested on: Windows xp sp2 Code : exploit code/ includestdio.h includewindows.h includestring.h includegetopt.h includeunistd.h /----prototypes---/ int...

VirtualDJ Trial 6.0.6 New Year Edition - .m3u Local Overflow

VirtualDJ Trial 6.0.6 New Year Edition - .m3u Local Overflow /VirtualDJ Trial v6.0.6 "New Year Edition" PC 0day This is a poc for the latest VJ by fl0 fl0w Author: fl0 fl0w Tested on: Windows xp sp2 Code : exploit code/ include include include include include /----prototypes---/ int fileCreatecha...

VirtualDJ Trial v6.0.6 "New Year Edition" m3u Exploit (0day)

Exploit for unknown platform in category dos / poc ============================================================ VirtualDJ Trial v6.0.6 "New Year Edition" m3u Exploit 0day ============================================================ Title: VirtualDJ Trial v6.0.6 "New Year Edition" m3u Exploit 0day...

VirtualDJ Trial 6.0.6 'New Year Edition' - '.m3u' Local Overflow

/VirtualDJ Trial v6.0.6 "New Year Edition" PC 0day This is a poc for the latest VJ by fl0 fl0w Author: fl0 fl0w Tested on: Windows xp sp2 Code : exploit code/ include include include include include /----prototypes---/ int fileCreatechar; int bufferWrite; int cpychar,char; char path;...

Switch Sound File Converter .mpga BOF DOS

Exploit for unknown platform in category dos / poc ========================================= Switch Sound File Converter .mpga BOF DOS ========================================= Title: Switch Sound File Converter .mpga BOF DOS CVE-ID: OSVDB-ID: Author: Jacky Published: 2010-01-01 Verified: yes vie...

I-Rater Basic Shell Upload

======================================================================================== | Title : I-RATER Basic Shell Upload Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | Web Site :...

ASP Simple Blog 3.0 - Arbitrary File Upload

======================================================================================== | Title : ASP Simple Blog version 3.0 Upload shell Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID ...

Webring - Cross-Site Scripting

======================================================================================== | Title : webring Cross Site Scripting Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | | EDB-ID : 10675 | |...