Cisco SA 500 Series Security Appliances Web Management Interface SQL Injection Vulnerability

Cisco SA 500 Series Security Appliances firmware contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary SQL code on a system. The vulnerability is due to improper validation of user-supplied input to the Cisco SA 500 Security Appliance web-based...

Symantec Backup Exec 12.5 - Man In The Middle

Exploit Title: Symantec Backup Exec MiTM Attack Date: 27/05/2011 Author: Nibin Software Link: http://www.symantec.com/business/products/family.jsp?familyid=backupexec Version: - Symantec Backup Exec for Windows Servers versions 11.0, 12.0, and 12.5 - Symantec Backup Exec 2010 versions 13.0 and 13...

PHP 5.3.6 Buffer Overflow PoC (ROP) CVE-2011-1938

No description provided by source. ?php / Jonathan Salwan - @shellstorm http://shell-storm.org 2011-06-04 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1938 Stack-based buffer overflow in the socketconnect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow...

Donar Player 2.8.0 - Denial of Service

Title : Donar Player 2.8.0 Denial of Service Software link : http://www.donarzone.com/downloads/donar-player-setup-free.exe , http://www.donarzone.com/donar-player Version : 2.8.0 Tested on : Windows XP SP3 English Date : 3/07/2011 Author : X-h4ck Website : http://www.pirate.al , PirateAL Crew...

Technote 7.2 - Blind SQL Injection

Technote 7.2 - Blind SQL Injection Exploit Title: technote blind sql injection Google Dork: inurl:/technote7/board.php?board= Date: 2011.06.11 Author: BlueH4G http://blueh4g.org Software Link: http://www.technote.co.kr/php/technote1/board.php?board=consult&command=skininsert&exe=insertdownshop...

Cisco IOS Real-time Transport Protocol Packet Processing Denial of Service Vulnerability

Cisco IOS Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on a targeted device. The vulnerability is due to errors in processing malformed packets. An unauthenticated, remote attacker could exploit the vulnerability...

Cisco RVS4000 and WRVS4400N Gigabit Security Routers Firmware SSL Key Disclosure Vulnerability

The firmware of Cisco RVS4000 4-port Gigabit Security Routers and WRVS4400N Wireless-N Gigabit Security Routers contains a vulnerability that could allow an unauthenticated, remote attacker to access sensitive information from a targeted device. The vulnerability is due to improper security...

Cisco Unified Operations Manager Multiple Cross-Site Scripting Vulnerabilities

Cisco Unified Operations Manager contains multiple cross-site scripting vulnerabilities that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient validation of user-supplied input to certain scripts that make up the...

CiscoWorks Common Services Framework Help Servlet Cross-Site Scripting Vulnerability

CiscoWorks Common Services contains a cross-site scripting vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of malformed user input supplied via URL parameters to the affected application. A...

Cisco Unified Operations Manager Common Services Device Center Cross-Site Scripting Vulnerability

Cisco Unified Operations Manager contains a cross-site scripting vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user input supplied to the Common Services Device Center component used b...

Sonique 1.96 - '.m3u' Local Buffer Overflow

Application: Sonique BOF EIP Overwrite Version: 1.96 Author: Securityxxxpert Date Submitted: May 17, 2011 Download Link: http://www.tucows.com/preview/193562 Tested on: Windows XP SP3 EIP Overwritten: 239 Bytes Pita Bytes: 0x00 0x83 0x88 0x93 Notes: Not universal, find your own offsets if not SP3...

Sonique 1.96 - .m3u Local Buffer Overflow

Sonique 1.96 - .m3u Local Buffer Overflow Application: Sonique BOF EIP Overwrite Version: 1.96 Author: Securityxxxpert Date Submitted: May 17, 2011 Download Link: http://www.tucows.com/preview/193562 Tested on: Windows XP SP3 EIP Overwritten: 239 Bytes Pita Bytes: 0x00 0x83 0x88 0x93 Notes: Not...

BlueVoda Website Builder v.11 (.bvp) Stack Buffer Overflow

Exploit for windows platform in category local exploits 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

OpenMyZip V0.1 .ZIP File Buffer Overflow Vulnerability

Exploit for windows platform in category local exploits !/usr/bin/perl +Exploit Title: OpenMyZip V0.1 .ZIP File Buffer Overflow Vulnerability +Date: 02\05\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/OpenMyZip/3000-22504-10657274.html +Version: v0.1 +Tested On: WIN-XP SP3...

Cisco Unified Communications Manager Potential SQL Injection Vulnerability

Cisco Unified Communications Manager contains a vulnerability that could allow an unauthenticated, remote attacker to conduct SQL injection on a vulnerable system. The vulnerability is in a JavaServer Pages JSP script due to insufficient checks on user-supplied input. An unauthenticated, remote...

phpwcms 1.4.7 Cross Site Request Forgery

Exploit Title: phpwcms v1.4.7 XSRF VulnerabilityAdd Admin User + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : Web Apps XSRF + Dork : intext:"phpwcms Copyright" + Download Link : http://phpwcms.googlecode.com/files/phpwcmsr412.zip + PHPCMS Official website :...

Concave Yaya article system injection vulnerability analysis-vulnerability warning-the black bar safety net

Article author:small ice Last night in the penetration of a local University website time to find a sub-Station is using the concave Yaya news publishing system, at the time in Internet for a under the about the system vulnerabilities but did not find anything, so they own out of the sleeve 4. 7A...

Adobe Flash Player < 10.1.53.64 - Action Script Type Confusion (ASLR + DEP Bypass)

Source: http://www.abysssec.com/blog/2011/04/exploiting-adobe-flash-player-on-windows-7/ Adobe Flash player Action script type confusion exploit DEP+ASLR bypass advisory text : Here is another reliable windows 7 exploit . the main method used for exploitation is based on Haifei-li presentation at...

FreeBSD : krb5 -- MITKRB5-SA-2011-001, kpropd denial of service (64f24a1e-66cf-11e0-9deb-f345f3aa24f0)

An advisory published by the MIT Kerberos team says : The MIT krb5 KDC database propagation daemon kpropd is vulnerable to a denial-of-service attack triggered by invalid network input. If a kpropd worker process receives invalid input that causes it to exit with an abnormal status, it can cause...

Analysis of the New Adobe Flash Attacks

When Adobe warned customers earlier this week about a newly discovered vulnerability in the Flash Player software, company officials said that there were already attacks underway against the bug. Those attacks are using malicious Flash files buried in Word documents and Microsoft’s security...