Researcher Says 5 Million Machines Exposing RDP Service Online

With exploit code for the MS12-020 RDP vulnerability available in various places, the question now becomes, if a worm or large-scale attack appears, how big is the target base? As it turns out, it’s pretty big. As in, five million machines big. Dan Kaminsky, a network security researcher, last we...

Cisco Unified Communications Manager Device Registration SQL Injection Vulnerability

Cisco Unified Communications Manager contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary commands in a database underlying the affected application. The vulnerability is due to improper sanitization of input in device registration requests. An...

Novell Groupwise Messenger 2.1.0 - Memory Corruption

Luigi Auriemma Application: Novell GroupWise Messenger http://www.novell.com/products/groupwise/ Versions: NMAPARM1 allows to corrupt the heap memory: 0042BCD9 |. 8B0B MOV ECX,DWORD PTR DS:EBX ; 3 0042BCDB |. 8B55 FC MOV EDX,DWORD PTR SS:EBP-4 ; 3 0042BCDE...

GAzie <= 5.20 Cross Site Request Forgery

Exploit for php platform in category web applications ======================================== GAzie Date: 5/02/2012 Site: http://www.giudinvx.altervista.org/ -------------------------------------------------------- @Application Info: Multicompany finance application written in PHP using a MySql...

GAzie 5.20 - Cross-Site Request Forgery

GAzie 5.20 - Cross-Site Request Forgery ======================================== GAzie Date: 5/02/2012 Site: http://www.giudinvx.altervista.org/ -------------------------------------------------------- @Application Info: Multicompany finance application written in PHP using a MySql database backe...

Ongoing Targeted Attack Campaign Going After Defense, Aerospace Industries

Researchers have identified a strain of malware that’s being used in a string of targeted attacks against defense contractors, government agencies and other organizations by leveraging exploits against zero-day vulnerabilities. The attacks may have been going on since 2009 in some form and the...

Mempodipper - Linux Local Root for &gt;=2.6.39, 32-bit and 64-bit

No description provided by source. Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c Blog post about it is here: http://blog.zx2c4.com/749 Exploit Title: Mempodipper - Linux Local Root for =2.6.39, 32-bit and 64-bit Date: Jan 21, 2012 Author: zx2c4 Tested on: Gentoo,...

Attackers Reused Adobe Reader Exploit Code From 2009 In Extremely Targeted Hacks

The targeted attack that exploited a previously unknown vulnerability in Adobe’s Reader application last month was extremely focused on defense industrial base firms, and affected just a handful of systems, according to a company spokesman. Fewer than 20 machines, spread across a number of firms ...

Linux Kernel 2.6.39 3.2.2 (x86x64) - Mempodipper Local Privilege Escalation (2)

Linux Kernel 2.6.39 3.2.2 x86x64 - Mempodipper Local Privilege Escalation 2 / Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c Blog post about it is here: http://blog.zx2c4.com/749 / / Mempodipper by zx2c4 Linux Local Root Exploit Rather than put my write up here, per...

Linux Kernel 2.6.39 &lt; 3.2.2 (x86/x64) - &#039;Mempodipper&#039; Local Privilege Escalation (2)

/ Exploit code is here: http://git.zx2c4.com/CVE-2012-0056/plain/mempodipper.c Blog post about it is here: http://blog.zx2c4.com/749 / / Mempodipper by zx2c4 Linux Local Root Exploit Rather than put my write up here, per usual, this time I've put it in a rather lengthy blog post:...

Exploit Code Released for ASP.NET Flaw

A few days after MIcrosoft released a patch to fix a vulnerability in ASP.NET that could enable a denial-of-service attack, someone has released exploit code for the vulnerability. The proof-of-concept exploit code was posted to the Full Disclosure mailing list and is available for download from...

Microsoft Office 2003 Home/Pro Buffer Overflow

!/usr/bin/python Note from the Exploit-DB team: This might be the same bug as: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms10087rtfpfragmentsbof.rb ----------------------------------------------------------------------------------- Exploit:...

FreeSSHd Remote Denial of Service

Exploit for windows platform in category dos / poc import sys, socket, binascii print "\n" print "----------------------------------------------------------------" print "| FreeSSHd, Remote Denial of Service |" print "| Level, Smash the Stack |" print...

FCMS_2. 7. 2 cms and earlier multiple CSRF flaws and fixes-vulnerability warning-the black bar safety net

Download address:http://sourceforge. net/projects/fam-connections/files/Family%20Connections/2.7.2/FCMS2. 7. 2. zip/download Author: Ahmed Elhady Mohamed Affects versions: 2.7.2 Test platform: windows XP Sp2 En Overview This vulnerability allows a malicious hacker to change password of a user and...

FCMS CMS 2.7.2 - Multiple Cross-Site Request Forgery Vulnerabilities

FCMS CMS 2.7.2 - Multiple Cross-Site Request Forgery Vulnerabilities FCMS2.7.2 cms and earlier multiple CSRF Vulnerability =================================================================================== Exploit Title: FCMS2.7.2 cms multiple CSRF Vulnerability Download link...

PEC php calendars script SQL Injection

Exploit for php platform in category web applications ==================================================== php calendars script SQL Injection ==================================================== calendars script SQL Injection Author: Mr.MLL Published: 2011-12-3 Download Exploit Code Download N/A...

Five Star Review v5.1 SQL Injection (recommend.php)

Exploit for php platform in category web applications Exploit Title: Five Star Review Remote SQL Injection recommend.php Script Page : http://www.review-script.com Date: 5-12-2011 Version: Versions below v5.1 Author : EthicalPractice Tested on: Firefox 8.0, Palemoon 8.0, Internet Explorer 9 -...

StoryBoard Quick 6 - Local Stack Buffer Overflow (Metasploit)

StoryBoard Quick 6 - Local Stack Buffer Overflow Metasploit NameLStoryBoard Quick 6 Stack Buffer Overflow Vendor Website:http://www.powerproduction.com/ Date Released:29/11/2011 Affected Software: StoryBoard Quick 6 potentially also StoryBoard Artist and StoryBoard Studio Researcher: Nick Freeman...

Duqu Attackers Using Word Docs As Attack Vector

As the analysis of the Duqu malware continues to evolve, the picture that’s emerging is becoming more and more intriguing. The latest bits of evidence uncovered show that not only do the attackers create custom files for each individual attack, there is evidence indicating that they might have be...

Remember the vulnerability analysis for the first time-the vulnerability warning-the black bar safety net

Just getting started in heroic and wretched kk under the guidance of the analysis of the first vulnerability program, today writing from scratch process. The vulnerability program is in ahttp://www.exploit-db.com/exploits/17854/to download, this site provides not only the vulnerability of the...