Stars Attack on Iran Was Early Version of Duqu

A few months after the hysteria around Stuxnet had died down, officials in Iran announced in April that some sensitive systems in the government’s networks had been attacked by a new piece of malware, known then as Stars. It now appears that attack was, in fact, the first appearance of an early...

Cisco Nexus OS Software Command Injection Vulnerability

Cisco Nexus OS contains a vulnerability that could allow an authenticated, local attacker to execute arbitrary commands on a targeted device. The vulnerability is due to improper sanitization of user-supplied values to command line interface commands. An authenticated, local attacker could exploi...

MS11-077 Win32k Null Pointer De-reference Vulnerability POC

Exploit for windows platform in category dos / poc Exploit Title: MS11-077 Win32k Null Pointer De-reference Vulnerability POC Date: 10/19/2011 Author: KiDebug Version: Windows XP SP3 32bit Tested on: Windows XP SP3 32bit CVE : CVE-2011-1985 Exploit Code. Only a single line of code can cause BSOD:...

DivX Plus Web Player - 'file://' Buffer Overflow (PoC)

Exploit Title: DivX Plus Web Player "file://" Buffer Overflow Vulnerability PoC 0day Date: 10/4/2011 Author: Snake Shahriyar.j gmail Version: DivX Plus Web Player dd esp 049ff35c 045e56d4 00000000 03d6c8e3 049ffbfc 049ff36c 045e56d0 04634f9e 001f5980 00000000 049ff37c 001eb9e0 00000000 001c5258...

DivX Plus Web Player "file://" Buffer Overflow Vulnerability PoC

Exploit for windows platform in category dos / poc Exploit Title: DivX Plus Web Player "file://" Buffer Overflow Vulnerability PoC 0day Date: 10/4/2011 Author: Snake Shahriyar.j gmail Version: DivX Plus Web Player dd esp 049ff35c 045e56d4 00000000 03d6c8e3 049ffbfc 049ff36c 045e56d0 04634f9e...

Cytel Studio 9.0.0 - Multiple Vulnerabilities

Luigi Auriemma Application: Cytel Studio: StatXact / LogXact / CrossOver http://www.cytel.com/Software/LogXact.aspx http://www.cytel.com/Software/StatXact.aspx http://www.cytel.com/Software/Crossover.aspx Versions: = 9.0.0 Platforms: Windows Bugs: A strings stack overflow B rows integer overflow ...

Cisco IOS Software Crafted IPv6 over MPLS Denial of Service Vulnerability

Cisco IOS Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS on a targeted device. The vulnerability is due to the processing of IP version 6 IPv6 packets by the vulnerable version of software on an affected device. If an...

WordPress Plugin Tune Library 2.17 - SQL Injection

WordPress Plugin Tune Library 2.17 - SQL Injection Exploit Title: WordPress Tune Library plugin prefix . "tracks where artist != '' and artist like '" .$artistletter . "%' order by artist";...

MyAuth 3 Blind SQL Injection

Exploit Title: MyAuth3 Blind SQL Injection / Root Shell Access 0day exploit Google Dork: allinurl:1881/?console=panel Date: 09/06/2011 Author: Marcio Almeida marcioatalligatorteamdotorg | @marcioalm Version: 3.0 Tested on: Linux EDB-Note: apparently no true exploit is needed to dump system pwd...

WordPress Plugin Community Events 1.2.1 - SQL Injection

Exploit Title: WordPress Community Events plugin getblogprefix . "ceevents where eventid = " . $eventid;...

ACal 2.2.6 Cross Site Scripting

================================================================= =ACal-2.2.6 XSS Vulnerability ================================================================= Exploit Title: ACal-2.2.6 XSS Vulnerability Date: 02.09.2011 Author: T0xic Category: webapps/0day Script url:...

Cerberus FTP Server 4.0.9.8 (REST) Remote BOF and Crash

Exploit for windows platform in category remote exploits 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0...

WordPress Plugin VideoWhisper Video Presentation 1.1 - SQL Injection

WordPress Plugin VideoWhisper Video Presentation 1.1 - SQL Injection Exploit Title: WordPress VideoWhisper Video Presentation plugin 1,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0--%20 e.g.: curl --data "s=-1' AND 1=IF21,BENCHMARK5000000,MD5CHAR115,113,108,109,97,112,0-- "...

WordPress Plugin SearchAutocomplete 1.0.8 - SQL Injection

WordPress Plugin SearchAutocomplete 1.0.8 - SQL Injection Exploit Title: WordPress SearchAutocomplete plugin getresults"SELECT posttitle As name, ID as postid, guid AS url, 1 cnt FROM ".$wpdb-prefix."posts t WHERE poststatus='publish' and posttype='post' OR posttype='page' and postdate NOW and...

XlightFTP Server v3.7.0 Remote Root BOF Exploit

Exploit for windows platform in category remote exploits 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0...

WordPress Plugin File Groups 1.1.2 - SQL Injection

Exploit Title: WordPress File Groups plugin getcol"select guid from wpposts where postparent = $fgid";...

Mozilla Firefox 3.6.16 - OBJECT mChannel Remote Code Execution (DEP Bypass) (Metasploit)

require 'msf/core' class Metasploit3 HttpClients::FF, :uaminver = "3.6.16", :uamaxver = "3.6.16", :osname = OperatingSystems::WINDOWS, :javascript = true, :rank = NormalRanking, def initializeinfo = superupdateinfoinfo, 'Name' = 'Mozilla Firefox 3.6.16 mChannel use after free Exploit',...

Citrix XenApp / XenDesktop XML Service Heap Corruption

No description provided by source. n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2011.002 28-Jul-2011 Vendor: Citrix, http://www.citrix.com Affected Products: XenApp and XenDesktop Affected Version: See the Citrix security bulletin 2 for a list Vulnerability: Heap Corruption in...

XenApp / XenDesktop Buffer Overflow

n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2011.001 28-Jul-2011 Vendor: Citrix, http://www.citrix.com Affected Products: XenApp and XenDesktop Affected Version: See the Citrix security bulletin 2 for a list Vulnerability: Stack-Based Buffer Overflow in Citrix XML Service Risk:...

Citrix XenApp / XenDesktop XML Service Heap Corruption

Exploit for windows platform in category dos / poc Vendor: Citrix, http://www.citrix.com Affected Products: XenApp and XenDesktop Affected Version: See the Citrix security bulletin 2 for a list Vulnerability: Heap Corruption in Citrix XML Service Risk: HIGH Vendor communication: 2011/04/26 Initia...