2384 matches found
Digital Forensics Toolkit: DEFT
DEFT acronym for Digital Evidence & Forensics Toolkit is a distribution made for Computer Forensics, with the purpose of running live on systems without tampering or corrupting devices hard disks, pendrives, etc… connected to the PC where the boot process takes place. The system is based on GNU...
Immunity Canvas: LINUX_PPPOL2TP
Name| linuxpppol2tp ---|--- CVE| CVE-2014-4943 Exploit Pack| CANVAS Description| pppol2tp local root Notes| Repeatability: Single Notes: Exploit for Linux = 3.4.x amd64 and = 3.7.x x86 Tested on + Ubuntu 13.04 / 13.10 / 14.04 x86/amd64 + Fedora 17 amd64 only + Fedora 18/19/20 x86/amd64 Note:...
OpenVAS Manager 4.0 - Authentication Bypass
!/usr/bin/python Exploit Title: OpenVAS Manager 4.0 Authentication Bypass Vulnerability PoC Date: 09/07/2014 Exploit Author: EccE Vendor Homepage: http://www.openvas.org/ Software Link: http://wald.intevation.org/frs/?groupid=29 Version: OpenVAS Manager 4.0 Tested on: Debian GNU/Linux testing...
WSN Links Script 2.3.4 - SQL Injection Vulnerabilitiy
No description provided by source. Exploit Title: WSN Links Script SQL Injection Vulnerabilitiy Google Dork: Powered by WSN Links Date: 1/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: http://scripts.webmastersite.net/wsnlinks Version: All...
Exim <= 4.41 dns_build_reverse Local Exploit PoC
No description provided by source. / This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avoid...
cURL 6.1 - 7.4 - Remote Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax. A vulnerability exists in the version of curl included with Debian GNU/Linux 2.2 and FreeBSD prior to 4.2 release. Note that cURL...
Debian Linux 2.1 httpd Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/318/info The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line: Alias /doc/ /usr/doc/ Boa is also preconfigured th...
cURL 6.1 - 7.4 - Remote Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/1804/info Curl is an open-source utility for sending or receiving files using URL syntax. A vulnerability exists in the version of curl included with Debian GNU/Linux 2.2 and FreeBSD prior to 4.2 release. Note that cURL...
Zend-Framework - Full Info Disclosure
No description provided by source. Exploit Title : Zend-Framework Full Info Disclosure Google Dork : inurl:/application/configs/application.ini Date : 26/11/2013 Exploit Author : Ariel Orellana Vendor Homepage : http://framework.zend.com/ Category : Web applications Tested on : GNU/Linux...
GnuTLS libgnutls Double-free Certificate List Parsing Remote DoS
No description provided by source. Sorry I forgot to write headers in previous mail. Exploit Title: possible ways to exploit CVE-2012-1663 GNUTLS-3.0.13 Google Dork: if relevant we will automatically add these to the GHDB Date: Mar 20, 2013 Exploit Author: Shawn the R0ck Vendor Homepage:...
NewsAdd <= 1.0 - Multiple SQL Injection Vulnerabilities
No description provided by source. Exploit Title: NewsAdd =1.0 Multiple SQL Injection Google Dork: ----------------------------------- Date: 2012/05/29 Author: WhiteCollarGroup Software Link: http://phpbrasil.com/script/3tCyUs1JeL1M/newsadd--mysql Version: 1.0 Tested on: Debian GNU/Linux Develope...
Linux/x86_64 reboot(POWER_OFF) 19 bytes shellcode
No description provided by source. Linux/x8664 rebootPOWEROFF 19 bytes shellcode Date: 2010-04-25 Author: zbt Tested on: x8664 Debian GNU/Linux / ; rebootLINUXREBOOTMAGIC1, LINUXREBOOTMAGIC2, LINUXREBOOTCMDPOWEROFF section .text global start start: mov edx, 0x4321fedc mov esi, 0x28121969 mov edi,...
dotProject 2.1.5 - SQL Injection Vulnerability
No description provided by source. Exploit Title: dotProject 2.1.5 SQL Injection Vulnerability Google Dork: intitle:dotproject Date: 2011-12-09 Author: sherl0ck sherl0ckatalligatorteamdotorg @AlligatorTeam Software Link: http://www.dotproject.net/ Version: 2.1.5 tested Tested on: Debian GNU/Linux...
Linux/x86_64 execve("/bin/sh"); 30 bytes shellcode
No description provided by source. Linux/x8664 execve/bin/sh; 30 bytes shellcode Date: 2010-04-26 Author: zbt Tested on: x8664 Debian GNU/Linux / ; execve/bin/sh, /bin/sh, NULL section .text global start start: xor rdx, rdx mov qword rbx, '//bin/sh' shr rbx, 0x8 push rbx mov rdi, rsp push rax pus...
Posse Softball Director CMS SQL Injection Vulnerabilitiy
No description provided by source. Exploit Title: Posse Sports SQL Injection Vulnerabilitiy Google Dork: Powered By Posse Sports Date: 4/1/2012 Author: H4ckCity Security Team Discovered By: farbodmahini Home: WwW.H4ckCity.Org Software Link: www.possesports.com Version: All Version Category::...
gpEasy <= 1.5RC3 Remote FIle Include Exploit
No description provided by source. Exploit Title: gpEasy = 1.5RC3 Remote FIle Include Exploit Date: 18-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/gpeasy/files/ Version: N/A Tested on: GNU/LINUX Code adminpassword.php :...
JDKChat 1.5 - Remote Integer Overflow PoC
No description provided by source. !/usr/bin/perl Title: JDKChat v1.5 Remote Integer Overflow PoC Summary: JDKChat is a simple C++ chat server for GNU/Linux systems. Users can connect to it through a simple tcp client like telnet. WebSite : http://www.jdkoftinoff.com/ ----------------------------...
RaXnet Cacti 0.5/0.6.x/0.8.x Graph_Image.PHP Remote Command Execution Variant Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14129/info RaXnet Cacti is prone to a remote command execution vulnerability that manifests in the 'graphimage.php' script. The issue is due to a bug in the input filters that leads to a failure in the application to...
Ptag <= 4.0.0 - Multiple RFI Exploit
No description provided by source. Exploit Title: Ptag = 4.0.0 Multiple RFI Exploit Date: 19-12-2009 Author: cr4wl3r Software Link: http://sourceforge.net/projects/ptag/ Version: N/A Tested on: GNU/LINUX Code session.php ?php //Plottable Tagboard Systems Version 4.0.0 - ROLAND //Session handling...
4PSA CMS SQL Injection Vulnerabilities
No description provided by source. Exploit Title: 4PSA CMS SQL Injection Vulnerabilities Google Dork: Communications solution from 4PSA. Date: 2012/02/19 Category : Web Application Author: BHG Security Center Discovered by : Nitrojen90 WebSite:WwW.Black-hg.Org Software Link: http://www.4psa.com/...