phpBB <= 2.0.12 Change User Rights Authentication Bypass (c code)

Exploit for unknown platform in category web applications ================================================================= phpBB include include //Taken from VeNoMouS's love cow code char searchandreplace char text, char find, char replace char found,newtext; int...

Linux Kernel 2.4.x2.6.x - uselib() Local Privilege Escalation (3)

Linux Kernel 2.4.x2.6.x - uselib Local Privilege Escalation 3 / pwned.c - linux 2.4 and 2.6 sysuselib local root exploit. PRIVATE. it's not the best one, the ldt approach is definitively better. discovered may 2004. no longer private because lorian/cliph/ihaquer can lick my balls. c 2004 sd...

PlatinumFTP 1.0.18 - Multiple Remote Denial of Service Vulnerabilities

!/usr/bin/perl pftpdos-ai1.pl - Remote DoS against PlatinumFTP 10.1.18 Details:http://seclists.org/lists/bugtraq/2005/Mar/0222.html If you don't get the server down try to change/play a little bit with the Timeout ports at securityforest dot com | greetings to muts, barabas, s|33py, revised and a...

X.org: libXpm vulnerability

Background libXpm is a pixmap manipulation library for the X Window System, included in X.org. Description Chris Gilbert has discovered potentially exploitable buffer overflow cases in libXpm that weren't fixed in previous libXpm versions. Impact A carefully-crafted XPM file could crash X.org,...

UBBCentral UBB.Threads 6.0 - Printthread.php SQL Injection

UBBCentral UBB.Threads 6.0 - Printthread.php SQL Injection // source: https://www.securityfocus.com/bid/13253/info It is reported that UBB.threads is prone to an SQL injection vulnerability. The SQL injection vulnerability is reported to affect the 'printthread.php' script. UBB.threads 6.0 is...

UBBCentral UBB.Threads 6.0 - &#039;Printthread.php&#039; SQL Injection

// source: https://www.securityfocus.com/bid/13253/info It is reported that UBB.threads is prone to an SQL injection vulnerability. The SQL injection vulnerability is reported to affect the 'printthread.php' script. UBB.threads 6.0 is reported prone to this issue. It is likely that other versions...

MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow

Exploit for unknown platform in category remote exploits ============================================================= MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow ============================================================= / The exploit will create a .CSS file that should be...

Microsoft Internet Explorer - &#039;mshtml.dll&#039; CSS Parsing Buffer Overflow

/ Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will trigger the buffer overflow. / //Exploit Code: include include include...

PHP Form Mail Script &lt;= 2.3 arbitrary file inclusion exploit exploit

badroot security PHP Form Mail Script = 2.3 arbitrary file inclusion POC exploit =- Description -= A simple POC exploit for PHP Form Mail Script = 2.3 arbitrary file inclusion vulnerability discovered by Filip Groszynski. =- Exploit -= !/usr/bin/python Form Mail Script FS remote file inclusion...

Linux Kernel 2.6.x - &#039;SYS_EPoll_Wait&#039; Local Integer Overflow / Local Privilege Escalation (1)

/ EDB Note: Updated exploit can be found here; https://www.exploit-db.com/exploits/25203/ source: https://www.securityfocus.com/bid/12763/info A Local integer overflow vulnerability affects the Linux kernel. This issue is due to a failure of the affected kernel to properly handle user-supplied si...

paNews 2.0b4 - Remote Admin Creation SQL Injection

/ paNews v2.0b4 silePNEWSxpl This exploit utilize SQL injection for create a new user with admin privileges on paNews software system. References: packetstormsecurity.org/0503-exploits/panews.txt coded by: Silentium of Anacron Group Italy date: 04/03/2005 e-mail: anacrongroupitalyatautisticidotor...

paNews 2.0b4 - Remote Admin Creation SQL Injection

paNews 2.0b4 - Remote Admin Creation SQL Injection / paNews v2.0b4 silePNEWSxpl This exploit utilize SQL injection for create a new user with admin privileges on paNews software system. References: packetstormsecurity.org/0503-exploits/panews.txt coded by: Silentium of Anacron Group Italy date:...

RealNetworks RealPlayer 10 - &#039;.smil&#039; Local Buffer Overflow

/ RealPlayer .smil file buffer overflow Coded by nolimit@CiSO & Buzzdee greets to COREiSO & news & flare & class101 & ESI & RVL & everyone else I forget This uses a seh overwrite method, which takes advantage of the SEH being placed in multiple locations over the different OS's. Because of this, ...

Microsoft Windows XP2003 - Remote Denial of Service

Microsoft Windows XP2003 - Remote Denial of Service / Added Line 1 - BSDSOURCE!!!! /str0ke / define BSDSOURCE include include include include include include include include include include include / Windows Server 2003 and XP SP2 remote DoS exploit Tested under OpenBSD 3.6 at WinXP SP 2 Vuln by...

MS Windows XP/2003 Remote Denial of Service Exploit

No description provided by source. / Added Line 1 - BSDSOURCE!!!! /str0ke / define BSDSOURCE include stdio.h include ctype.h include sys/socket.h include netinet/in.h include netinet/insystm.h include netinet/ip.h include netinet/tcp.h include sysexits.h include stdlib.h include unistd.h include...

Stadtaus.Com PHP Form Mail Script 2.3 - Remote File Inclusion

source: https://www.securityfocus.com/bid/12735/info PHP Form Mail Script is prone to remote file include vulnerability. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate...

ProjectBB 0.4.5.1 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/12710/info ProjectBB is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to the application failing to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a...

Einstein 1.01 - Local Password Disclosure (ASM)

; Nothing Special other than the program doesnt encode the user/pass in the registry. ; Einstein v1.01 - http://www.Bfriendly.com some crappy file school sharing program ; made because i think C is overkill for these types of local exploits, ; shit we can does this in vbs/bat too if ya want...

Einstein 1.01 - Local Password Disclosure

Einstein 1.01 - Local Password Disclosure / Einstein v1.01 Local Password Disclosure Exploit by Kozan Application: Einstein v1.01 and previous versions Procuder: Bfriendly.com Vulnerable Description: Einstein v1.01 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA...

BadBlue 2.55 - Web Server Remote Buffer Overflow

BadBlue 2.55 - Web Server Remote Buffer Overflow / Badblue 2.55 Web Server remote buffer overflow Version: BadBlue Personal Edition v2.55 Date: Dec. 9, 2004 Tested under Windows 2000 Professional SP3/SP4 Spanish Windows 2000 Server SP4 Spanish Windows XP SP1 Spanish Credits: Andres Tarasco ataras...