Network Time Protocol Package Remote Message Loop Denial of Service Vulnerability

The Network Time Protocol NTP package contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. The vulnerability is due to an error in handling certain malformed messages. An unauthenticated, remote attacker could send a malicious N...

MS to Patch Critical IE Zero-Day Flaw

Just two weeks after the release of exploit code for a critical remotely exploitable security hole in its Internet Explorer browser, Microsoft says a fix will be included in this month’s batch of Patch Tuesday updates. Microsoft has already issued an advisory to confirm the severity of the issue,...

Researchers Say IE Exploit Code 'Unreliable'

Researchers have released code that can compromise Microsoft’s Internet Explorer browser, but the software is not as reliable as first thought. Read the full article. Computerworld...

Microsoft Acknowledges IE7 Flaw

Microsoft has acknowledged a new unpatched vulnerability in Internet Explorer 6 and 7, and said that the company is investigating methods for fixing the flaw. The company said that although there is public exploit code available for the vulnerability, it has not seen any evidence of ongoing attac...

MS Confirms Windows 7 DoS Flaw

On the heels of last week’s release of exploit code for a crippling denial-of-service vulnerability in Windows 7 and Windows Server 2008 R2, Microsoft has issued a security advisory to confirm the issue and offer pre-patch mitigations. The flaw, in the Microsoft Server Message Block SMB Protocol...

Alteon OS BBI (Nortell) - Cross-Site Scripting / Cross-Site Request Forgery

Exploit Title: Alteon OS BBI Nortell - Multiple Vulnerabilities Date: 16 Nov 09 Author: Sintsov Alexey Software Link: downoad link if available Version: Date: Mon, 16 Nov 2009 14:01:04 +0300 Digital Security Research Group DSecRG Advisory http://dsecrg.com/pages/vul/show.php?id=161 Various XSS an...

Linux Kernel 2.4.1 < 2.4.37 / 2.6.1 < 2.6.32-rc5 - 'pipe.c' Local Privilege Escalation (3)

This is a PoC based off the PoC release by Earl Chew Updated by Brian Peters Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability PoC by Matthew Bergin Bugtraq ID: 36901 E-DB Note: Exploit Update v2 https://github.com/offensive-security/exploitdb/pull/82/files import os import time impo...

Millenium MP3 Studio 2.0 - mpf Local Buffer Overflow

Millenium MP3 Studio 2.0 - mpf Local Buffer Overflow + Vulnerability : .mpf File Local Stack Overflow Exploit SEH + Product : Millenium MP3 Studio + Versions affected : v2.0 + Download : http://www.software112.com/products/mp3-millennium+download.html + Method : seh + Tested on : Windows XP SP2/S...

FreeBSD 7.2 VFS/devfs race condition exploit

Exploit for unknown platform in category local exploits ============================================ FreeBSD 7.2 VFS/devfs race condition exploit ============================================ Title: FreeBSD 7.2 VFS/devfs race condition exploit CVE-ID: OSVDB-ID: Author: Przemyslaw Frasunek Publishe...

From Gimmiv to Conficker: MS08-067 Under The Microscope

GENEVA — The critical MS08-067 vulnerability used by the Conficker worm to build a powerful botnet continues to be a lucrative security hole for cybercriminals. During a presentation at the Virus Bulletin 2009 conference here, a trio of Microsoft researchers dissected the malware attacks linked t...

Audio Workstation - .pls Local Buffer Overflow (SEH)

Audio Workstation - .pls Local Buffer Overflow SEH !/usr/bin/perl =gnk ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX BOF Exploit

Exploit for windows platform in category remote exploits ============================================================ Quiksoft EasyMail 6.0.3.0 imap connect ActiveX BOF Exploit ============================================================ !-- I - TITLE Security advisory: Quiksoft EasyMail 6.0.3.0...

Quiksoft EasyMail 6 (AddAttachment) Remote Buffer Overflow Exploit

html head !-- -- Quiksoft EasyMail 6 AddAttachment Remote Buffer Overflow Exploit -- -- Its old and the latest version doesn't support this method. -- I was bored and a similar post sparked my interest. -- -- Advisory: http://www.bmgsec.com.au/advisory/48/ -- -- Written by: -- bmgsec bmgsec at...

PaoBacheca 2.1 Cross Site Scripting

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || PaoBacheca 2.1 Remote URI XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://zenas.org Greetings : Mizoz, Zuka, str0ke,...

BigAnt Server 2.50 - GET Universal Remote Buffer Overflow (SEH)

!/usr/bin/python by hack4love BigAnt Server version 2.50 SEH Overwrite Universal discovered by Blake http://www.milw0rm.com/exploits/9673 Tested on Windows XP SP2 gratez to Blake use bigant.py 192.168.1.12 6660 import socket, sys if lensys.argv!= 3: print "\n Usage: %s \n" % sys.argv0 sys.exit0...

Aurora CMS 1.0.2 - 'install.plugin.php' Remote File Inclusion

--------------------------------------------------------------------------------------------------------------- Aurora Content Management System Enterprise Edition install.plugin.php = Remote File Include Vulnerability...

Windows Vista/7 SMB2.0 Negotiate Protocol Request Remote BSOD Vuln

Exploit for unknown platform in category dos / poc ================================================================== Windows Vista/7 SMB2.0 Negotiate Protocol Request Remote BSOD Vuln ================================================================== =============================================...

Audacity 1.2 Buffer Overflow

!/usr/bin/env python Audacity print " + Creating eviL .gro file..." buff = "\x44" 174 buff += "\xEB\x08\x90\x90" buff += "\x22\x23\x17\x01" buff += "\x90" 4 buff += "\x66\x81\xCA\xFF\x0F\x42\x52\x6A\x02\x58\xCD\x2E\x3C\x05\x5A\x74\xEF\xB8" "\x57\x30\x30\x54" this is the egg...

RM Downloader Stack Overflow

!/usr/bin/perl + Bug : RM Downloader .Ram/.Smi/ .pls/ .smil/ .wax/ .wpl File Local Stack Overflow + Author : theEdit0r + Greetz to all my friends + Tested on: Windows XP Pro SP2 + Big thnx: Expl0iters.ir Anti-security.ir 0012F920 |00168370 ASCII "AAAA" 0012F924 |41410004 0012F928 |41414141 0012F9...

IsolSoft Support Center 2.5 (RFI/LFI/XSS) Multiples Vulnerabilities

Exploit for unknown platform in category web applications =================================================================== IsolSoft Support Center 2.5 RFI/LFI/XSS Multiples Vulnerabilities =================================================================== / IsolSoft Support Center 2.5...