Apache mod_gzip (with debug_mode) <= 1.2.26.1a Remote Exploit

Exploit for linux platform in category remote exploits ============================================================= Apache modgzip with debugmode = 1.2.26.1a Remote Exploit ============================================================= / \ exploit code for modgzip with debugmode = 1.2.26.1a / ...

Apache mod_gzip (with debug_mode) 1.2.26.1a - Remote Overflow

Apache modgzip with debugmode 1.2.26.1a - Remote Overflow / \ exploit code for modgzip with debugmode include includ...

Microsoft FrontPage Server Extensions - &#039;fp30reg.dll&#039; (MS03-051)

/ Frontpage fp30reg.dll Overflow MS03-051 discovered by Brett Moore Exploit by Adik netmaniac hotmail kg Binds persistent command shell on port 9999 Tested on Windows 2000 Professional SP3 English version fp30reg.dll ver 4.0.2.5526 - 13/Nov/2003 - / include include include pragma commentlib,"ws23...

Microsoft Windows XP/2000 - Workstation Service Overflow (MS03-049)

/ Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link mpr.lib ... I will not improve this public version, do not bothe...

WMAPM 3.1 - Local Privilege Escalation

WMAPM 3.1 - Local Privilege Escalation source: https://www.securityfocus.com/bid/8995/info wmapm has been reported prone to a local privilege escalation vulnerability. The vulnerability has been conjectured to result from a lack of relative path usage while the vulnerable dock app is invoking a...

telecondex.pl

Hello, Here my Exploit for Bug: http://securityfocus.com/archive/1/342785 : Greetings, Blade. Code for TelCondex-Dos.pl: !/usr/local/bin/perl TelCondex WebServer: Buffer overflow ------------------------------------ Vendor: TelCondex SimpleWebservertc.SimpleWebServer Version: 2.12.30210 Build 328...

[NT] MERCUR Mail Server Control-Service Vulnerability &#40;Exploit&#41;

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Symantec Norton Internet Security 2003 6.0.4.34 - Error Message Cross-Site Scripting

Symantec Norton Internet Security 2003 6.0.4.34 - Error Message Cross-Site Scripting source: https://www.securityfocus.com/bid/8904/info It has been reported that Symantec Norton Internet Security is prone to a cross-site scripting vulnerability. The issue is reported to exist when the software...

MS Exchange 2000 XEXCH50 Heap Overflow PoC (MS03-046)

No description provided by source. !/usr/bin/perl -w ms03-046.pl - hdm metasploit com This vulnerability allows a remote unauthenticated user to overwrite big chunks of the heap used by the inetinfo.exe process. Reliably exploiting this bug is non-trivial; even though the entire buffer is binary...

Coreutils 4.5.x - LS Width Argument Integer Overflow

source: https://www.securityfocus.com/bid/8875/info Coreutils 'ls' has been reported prone to an integer overflow vulnerability. The issue reportedly presents itself when handling width and column display command line arguments. It has been reported that excessive values passed as a width argumen...

gaimexploit.txt

It has come to my attention that people have actually used this example code for a gaim plugin: AIM::register"Festival TTS", "0.0.1", "goodbye", ""; AIM::print"Perl Says", "Loaded Festival TTS"; AIM::command"idle", "60000" if $pro ne "Offline"; AIM::addeventhandler"eventimrecv", "synthesize"; sub...

Apache Tomcat 4.0.x - Non-HTTP Request Denial of Service

source: https://www.securityfocus.com/bid/8824/info Apache Tomcat 4 has been reported prone to a remotely triggered denial-of-service vulnerability when handling undisclosed non-HTTP request types. When certain non-HTTP request types are handled by the Tomcat HTTP connector, the Tomcat server wil...

[Full-Disclosure] Gaim festival plugin exploit

It has come to my attention that people have actually used this example code for a gaim plugin: AIM::register"Festival TTS", "0.0.1", "goodbye", ""; AIM::print"Perl Says", "Loaded Festival TTS"; AIM::command"idle", "60000" if $pro ne "Offline"; AIM::addeventhandler"eventimrecv", "synthesize"; sub...

Microsoft Internet Explorer 6 - Absolute Position Block Denial of Service

source: https://www.securityfocus.com/bid/8758/info A problem has been reported in Microsoft Internet Explorer when absolute positioning is used. Because of this, it may be possible to deny service to users of the browser. This issue may be due to memory corruption, however, it is known not at th...

Microsoft Internet Explorer 6 - Absolute Position Block Denial of Service

Microsoft Internet Explorer 6 - Absolute Position Block Denial of Service source: https://www.securityfocus.com/bid/8758/info A problem has been reported in Microsoft Internet Explorer when absolute positioning is used. Because of this, it may be possible to deny service to users of the browser...

BRSwebweaver.txt

=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: BRS WebWeaver: Anonymous Surfing product: BRS WebWeaver 1.06 vendor: http://www.brswebweaver.com risk: high date: 09/24/2k3 discovered by: euronymous /F0KP advisory urls: http://f0kp.iplus.ru/bz/027en http://f0kp.iplus.ru/bz/027ru contact...

[EXPL] Rational Clearcase Exploit Code Released

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

[Full-Disclosure] MyServer 0.4.3 Denial Of Service

SP Research Labs Advisory x06 --------------------------------- www.security-protocols.com MyServer 0.4.3 Denial of Service --------------------------------- Download it here: http://myserverweb.sourceforge.net Date Released - 09/08/2003 ------------------------------------ Product Description fr...

Microsoft Internet Explorer 5/6 - Browser Popup Window Object Type Validation

source: https://www.securityfocus.com/bid/8556/info Internet Explorer does not properly handle object types, when rendering malicious popup windows. This may result in the possibility of the execution of malicious software. The problem occurs when Internet Explorer receives a response from the...

Directory Traversal in SITEBUILDER - v1.4

Directory Traversal in SITEBUILDER - v1.4 With this Code you can view the /etc/passwd You need a Account. htmlbodypcenter bMein 31337 Exploit :-P/bbr form action="http://targethost.com/cgi-bin/sbcgi/sitebuilder.cgi" method=POST input type="hidden" name="username" value="targetuser" input...