Adobe Flash Reader - Live Malware

Adobe Flash Reader - Live Malware Exploit-DB Note - Live POC originally found at http://qoop.org/security/poc/cve-2010-1297/ File is malicious! Taken from the wild! Beware! To decrypt the file: openssl aes-256-cbc -d -a -in adobe-0day-2010-1297.tar.enc -out adobe-0day-2010-1297.tar Password is...

Joomla! Component BF Quiz 1.3.0 - SQL Injection (1)

Joomla! Component BF Quiz 1.3.0 - SQL Injection 1 Exploit Title: Joomla Component BF Quiz SQL Injection Vulnerability Date: 29th May 2010 Author: Valentin Category: webapps/0day Version: 1.3.0 Tested on: Debian, Apache2, MySQL 5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

Joomla Component com_activehelper_livehelp XSS Vulnerabilities

Exploit for php platform in category web applications ============================================================== Joomla Component comactivehelperlivehelp XSS Vulnerabilities ============================================================== :::::::::::::::::::::::::::::::::::::: 0x1...

CVE-2010-1997

creationtimestamp| type| source ---|---|--- 2010-05-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33976...

CVE-2010-1033

creationtimestamp| type| source ---|---|--- 2010-04-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/12302...

Microsoft Windows XP2000 - Help File Relative Path Remote Command Execution

Microsoft Windows XP2000 - Help File Relative Path Remote Command Execution source: https://www.securityfocus.com/bid/38661/info Microsoft Windows is prone to a remote command-execution vulnerability because it opens help files from unsafe locations. An attacker could exploit this issue by entici...

J. River Media Jukebox 12 - .mp3 Remote Heap Buffer Overflow

J. River Media Jukebox 12 - .mp3 Remote Heap Buffer Overflow source: https://www.securityfocus.com/bid/38566/info J. River Media Jukebox is prone to a remote heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attacker...

EFS Easy Chat Server Buffer Overflow

$Id: caigatewaydebug.rb 6568 2009-05-19 13:20:32Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

EFS Easy Chat Server - Universal Buffer Overflow (SEH) (Metasploit)

$Id: caigatewaydebug.rb 6568 2009-05-19 13:20:32Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

Trend Micro Web-Deployment - ActiveX Remote Execution

Exploit Title: TrendMicro Web-Deployment ActiveX Remote Exec 0day POC Date: 2010.01.17 Author: superli Software Link: http://www.trendmicro.com Version: 8.0 Tested on: xpsp3 ie6 Download: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/11173.zip...

Foxit Reader - COM Objects Memory Corruption Remote Code Execution

Foxit Reader - COM Objects Memory Corruption Remote Code Execution Bugtraq ID: 36673 Published: Oct 14 2009 12:00AM Updated: Nov 19 2009 03:25PM Credit: mrx Vulnerable: Foxit Reader 3.1.1 Build 0928 Foxit Foxit Reader 3.0.2009 1301 Foxit Foxit Reader 3.0 Build 1817 Foxit Foxit Reader 3.0 Build 15...

Mozilla Firefox 3.5.3 SeaMonkey 1.1.17 - libpr0n .GIF Parser Heap Buffer Overflow

Mozilla Firefox 3.5.3 SeaMonkey 1.1.17 - libpr0n .GIF Parser Heap Buffer Overflow source: https://www.securityfocus.com/bid/36855/info Mozilla Firefox and SeaMonkey are prone to a heap-based buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code and to cause...

Enlightenment - Linux Null PTR Dereference Framework

Enlightenment - Linux Null PTR Dereference Framework / enlightenment 200909092307 To create your own exploit module for enlightenment, just name it expwhatever.c It will be auto-compiled by the runexploits.sh script and thrown into the list of loaded exploit modules Each module must have the...

Linux Kernel 2.x (Android) - sock_sendpage() Local Privilege Escalation

Linux Kernel 2.x Android - socksendpage Local Privilege Escalation Source for exploiting CVE-2009-2692 on Android; Hole is closed in Android kernels released August 2009 or later. http://zenthought.org/content/file/android-root-2009-08-16-source Exploit-DB Mirror:...

CVE-2009-3224

creationtimestamp| type| source ---|---|--- 2009-07-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9270...

Adobe Acrobat Reader 8.1.2 < 9.0 - 'getIcon()' Memory Corruption

Affected Version : Acrobat Reader 8.1.2 - 9.0 Vendor Patch : http://www.adobe.com/support/security/bulletins/apsb09-04.html Tested On : XP SP2 / SP3 from ZDI : http://www.zerodayinitiative.com/advisories/ZDI-09-014/ This vulnerability allows remote attackers to execute arbitrary code on vulnerabl...

CVE-2009-1446

creationtimestamp| type| source ---|---|--- 2009-04-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8514...

CVE-2009-5114

creationtimestamp| type| source ---|---|--- 2009-04-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36994...

PostgreSQL 8.28.38.4 - UDF for Command Execution

PostgreSQL 8.28.38.4 - UDF for Command Execution PostgreSQL UDF for command execution 1 http://bernardodamele.blogspot.com/2009/01/command-execution-with-postgresql-udf.html 2 https://svn.sqlmap.org/sqlmap/trunk/sqlmap/extra/postgresqludfsys/libpostgresqludfsys0.0.1.tar.gz mirror:...

CVE-2009-0495

creationtimestamp| type| source ---|---|--- 2009-01-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7743...