SolarFTP 2.0 - Multiple Commands Denial of Service Vulnerability

No description provided by source. !/usr/bin/python Exploit Title: SolarFTP 2.0 Multiple Commands Denial of Service Vulnerability Date: 12/17/2010 Author: modpr0be Software Link: http://www.solarftp.com/files/solarftps-setup.exe Vulnerable version: 2.0 Tested on: Windows XP SP2, Windows XP SP3 CV...

Adobe Shockwave Director tSAC - Chunk Memory Corruption

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : Adobe Shockwave Director tSAC Chunk memory corruption Version : dirapi.dll 11.5.7 Analysis : http://www.abysssec.com Vendor...

Microsoft Windows Graphics Rendering Engine Multiple Memory Corruption Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16167/info Microsoft Windows WMF graphics-rendering engine is affected by multiple memory-corruption vulnerabilities. These issues affect the 'ExtCreateRegion' and 'ExtEscape' functions. These problems present themselves...

BlazeDVD Pro Player 6.1 - Stack Based Buffer Overflow Jump ESP

No description provided by source. Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Tested on: Windows...

Linux Kernel 2.6.x - Ext4 'move extents' ioctl Local Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37277/info Linux kernel is prone to a local privilege-escalation vulnerability because the software fails to verify access permissions. Exploits may allow attackers to execute arbitrary code with kernel-level privileges a...

RealPlayer - FLV Parsing Integer Overflow

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : RealPlayer FLV Parsing Multiple Integer Overflow Version : RealPlayer SP 1.1.4 Analysis : http://www.abysssec.com Vendor :...

IrfanView TIFF Image Processing Buffer Overflow Vulnerability

No description provided by source. Application: IrfanView TIFF Image Processing Buffer Overflow Vulnerability Platforms: Windows Exploitation: Remote code execution Secunia Number: SA47065 PRL: 2011-10 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/...

Quicktech SQL Injection Vulnerability

No description provided by source. + Exploit Title : Quicktech Sql Injection Vulnerability + Author : eXeSoul + Contact : [email protected] + Date : 02-03-2011 + category: Web Apps SQli + HomePage : www.indishell.in + Version : all + Tested on : windows/linux + Vulnerability Style : PHP Sql...

World in Conflict 1.0.1 Typecheck Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35751/info World in Conflict is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions. An attacker could exploit this issue to crash the affected application,...

Spaw Editor 1.0 & 2.0 - Remote File Upload

No description provided by source. Tilte: Spaw Editor v1.0 & 2.0 Remote File Upload . Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software ...............: Spaw Editor v1 & v2 Impact..................: Remote Site Software .............

VideoDB <= 2.2.1 (pdf.php) Remote File Include Exploit

1.漏洞分析 php define'FPDF', $config'pdfmodule';//这里可控 define'FPDFFONTPATH', FPDF.'/font/'; requireonce FPDF.'/fpdf.php'; //这里包含漏洞 requireonce './core/functions.php'; requireonce './engines/engines.php'; requireonce './core/VariableStream.class.php'; .... 2.漏洞利用...

AKoff MIDI Player 1.00 - Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl AKoff MIDI Player 1.00 Buffer Overflow Exploit By cr4wl3r cr4wl3r\x40linuxmail\x2Eorg gr33tz: str0ke, opt!x hacker, xoron, EA ngel, zvtral, Hmei7, mywisdom, cyberlog, irvian, and all my friend thanks: milw0rm, darkc0de, exploit-db, inj3ct0r,...

MS Windows ASN.1 - Remote Exploit (MS04-007)

No description provided by source. Microsoft ASN.1 remote exploit for CVE-2005-1935 // MS04-007 Solar Eclipse solareclipse at phreedom dot org http://www.exploit-db.com/sploits/12262006-killbill.tar.gz milw0rm.com 2004-03-26...

Magneto ICMP ActiveX 4.0.0.20 - ICMPSendEchoRequest Remote Code Execute

No description provided by source. Magneto ICMP ActiveX v4.0.0.20 ICMPSendEchoRequest Remote Code Execute Date: 2011-5-27 Discovered by: boahat vendor: http://www.magnetosoft.com/ Download: http://www.magnetosoft.com/downloads/skicmpsetup.exe SKIcmp.ocx Function ICMPSendEchoRequest ByVal...

ALLPlayer 5.6.2 (.m3u) - Local Buffer Overflow (SEH/Unicode)

No description provided by source. !/usr/bin/perl Exploit Title: ALLPlayer 5.6.2 .m3u - SEH Buffer Overflow Unicode Date: 10-22-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: ALLPlayer 5.6.2 Software Link: http://www.allplayer.org/download/allplayer Version: 5.6.2...

TVT TD-2308SS-B DVR - Directory Traversal Vulnerability

No description provided by source. Exploit Title: TVT TD-2308SS-B DVR directory traversal Shodan Dork: Cross Web Server Date: 01 Dec 2013 Disclosure date: 10 Sep 2013 Exploit Author: Cesar Neira Vendor Homepage: http://en.tvt.net.cn/ Affected Firmware Versions: 3.1.43.B 3.1.43.P 3.1.6.P-1.0.2.1-0...

GTA SA-MP server.cfg - Local Buffer Overflow Vulnerability

No description provided by source. GTA SA-MP server.cfg Local Buffer Overflow Vulnerability 0day Date: 9-26-11 Author: SilentDream Software Link: http://team.sa-mp.com/files/samp03csvrR2-2win32.zip Tested on: XP SP3, Windows 7 Thanks to: corelanc0d3r & team, Metasploit, Exploit-db. No PPRs found...

S.T.A.L.K.E.R. Clear Sky 1.0010 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35762/info S.T.A.L.K.E.R. Clear Sky is prone to a remote denial-of-service vulnerability because the software fails to handle exceptional conditions when processing user nicknames. Successfully exploiting this issue allow...

Rakkarsoft RakNet 2.33 Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13862/info Rakkarsoft RakNet is affected by a remote denial of service vulnerability. Reportedly, the vulnerability presents itself when the library handles an empty UDP packet. RakNet 2.33 and prior versions released...

Ability Mail Server 2013 - Password Reset CSRF from Stored XSS (Web UI)

No description provided by source. On one machine Windows Server 2003, install a new instance of AMS with these configurations 1. Primary Domain: hack.local 2. Enable the WebMail Service 3. Domain Name: hack.local 4. Add a User and set Password. In this case I created a user named, victim, with a...