JPEGView 1.0.29 - Crash (PoC)

JPEGView 1.0.29 - Crash PoC Title: JPEGView - Image Viewer and Editor RCE POC Date: 18 November'13 Author: Debasish Mandal https://twitter.com/debasishm89 Version: JPEGView v1.0.29 Download Link : http://sourceforge.net/projects/jpegview/ Vendor Patch : Patched in version v1.0.30 Issue Ticket :...

nMap Vulnerability Scanner: Vulscan

Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified product. The data is looked up in an offline version scip VulDB. Version 2.0 of Nmap NSE Vulscan is...

MikroTik RouterOS - sshd (ROSSSH) Remote Heap Corruption

MikroTik RouterOS - sshd ROSSSH Remote Heap Corruption During an audit the Mikrotik RouterOS sshd ROSSSH has been identified to have a remote previous to authentication heap corruption in its sshd component. Exploitation of this vulnerability will allow full access to the router device. This...

Winamp 5.63 - 'winamp.ini' Local Overflow

Exploit Title: winampevilskin.py Date: 25 August 2013 Exploit Author: Ayman Sagy Vendor Homepage: http://www.winamp.com/ Version: 5.63 Tested on: Windows XP Professional SP3 Version 2002 CVE : 2013-4694 Ayman Sagy August 2013 This is an exploit for Bug 1 described in...

Wordpress wp-FileManager Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application...

WordPress Plugin wp-FileManager - Arbitrary File Download

WordPress Plugin wp-FileManager - Arbitrary File Download Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web...

Cam2pc 4.6.2 - .BMP Image Processing Integer Overflow

Cam2pc 4.6.2 - .BMP Image Processing Integer Overflow Application: Cam2pc BMP Image Processing Integer Overflow Vulnerability Platforms: Windows Vendor : http://www.nabocorp.co Versions : The vulnerability is confirmed in version 4.6.2 Freeware Edition Other versions may also be affected. Date :...

Microsoft Internet Explorer 8 - Fixed Col Span ID (Full ASLR + DEP Bypass) (MS12-037)

Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP Bypass MS12-037 function strtointstr return str.charCodeAt10x10000 + str.charCodeAt0; var free = "EEEE"; while free.length 500 free +=...

Foxit Reader除零拒绝服务漏洞

BUGTRAQ ID: 55734 Foxit Reader是一款小型的PDF文档查看器和打印程序。 Foxit Reader 5.4.3.0920及其他版本处理PDF文档时存在拒绝服务漏洞，可允许远程攻击者使受影响应用崩溃。 0 Foxit Reader 厂商补丁： Foxit ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.foxitsoft.com/wac/serverintro.php Title : Foxit Reader suffers from Division By Zero Versio...

Foxit Reader 5.4.3.0920 - Crash (PoC)

Foxit Reader 5.4.3.0920 - Crash PoC Title : Foxit Reader suffers from Division By Zero Version : 5.4.3.0920 Date : 2012-09-28 Vendor : http://www.foxitsoftware.com/ Impact : Med/High Contact : coolkaveh at rocketmail.com Twitter : @coolkaveh tested : XP SP3 Bug : ---- division by zero vulnerabili...

Vice City Multiplayer Server 0.3z R2 - Remote Code Execution

/ Exploit Title: Vice City Multiplayer remote code execution Server Date: 22/08/2012 Exploit Author: Sasuke78200 Benjaa Toufik Software Link: http://www.vicecitymultiplayer.com/downloads/03zr2/server0.3zr2pawnwinupdated2.zip Version: 0.3z R2 Tested on: Windows XP SP3, Windows 7 Ultimate SP1,...

Apple QuickTime - QuickTime.util.QTByteObject Initialization Security Checks Bypass

Apple QuickTime - QuickTime.util.QTByteObject Initialization Security Checks Bypass / c SECURITY EXPLORATIONS 2012 poland / / http://www.security-explorations.com / / Apple QuickTime Java extensions / / quicktime.util.QTByteObject initialization security checks bypass / In order to test the POC...

PBBoard 2.1.4 - Local File Inclusion

PBBoard 2.1.4 - Local File Inclusion Exploit Title: PBBoard 2.1.4 Local File Inclusion Software Link: http://www.pbboard.com/PBBoardv2.1.4.zip Author: n4ss1m Date: 25-05-2012 Tested on: win/linux Home : www.Sec4ever.com Exploit-DB note: Need to be logged in, at the very least, as a standard user ...

[CVE-2012-1002] OpenConf <= 4.11 (author/edit.php) Blind SQL Injection Vulnerability

-------------------------------------------------------------------- OpenConf = 4.11 author/edit.php Blind SQL Injection Vulnerability -------------------------------------------------------------------- author...............: Egidio Romano aka EgiX mail.................: n0b0d13satgmaildotcom...

PHP Agenda 2.2.8 SQL injection Vulnerability

Exploit for php platform in category web applications Title:Simple PHP Agenda 2.2.8 SQLi Vulnerability Version: php-agenda 2.2.8 Author/Found by: loneferret Manifacturer/Software link: http://sourceforge.net/projects/php-agenda/files/latest/download Other vulnerability:...

Adobe Photoshop 12.1 - .tiff Parsing Use-After-Free

Adobe Photoshop 12.1 - .tiff Parsing Use-After-Free Application: Adobe Photoshop 12.1 Tiff Parsing Use-After-Free Platforms: Windows PRL: 2012-07 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

Sockso < 1.5.1 Directory Traversal Vulnerability - Active Check

Sockso is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-1224

creationtimestamp| type| source ---|---|--- 2012-02-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36870...

Pragyan CMS v 3.0 remote file disclosure-vulnerability warning-the black bar safety net

Title: Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG. M4n Download address http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 The location of the defect download.lib.php line 1 6 index.php line 2 3 4 $GET'fileget' Test http://www.xxx.com /Pragyan/?...

CVE-2012-6643

creationtimestamp| type| source ---|---|--- 2012-01-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36531 2012-01-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36532...