21 matches found
Ubuntu: Security Advisory (USN-193-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SIDVault 2.0e Crash
!/usr/bin/python $ ./ldap.py SIDVault 2.0e Vista Remote Crash Vulnerability sidvault.exe Tested on Vista Home premium SP1 Windows XP ,SP1,SP2,SP3 Coded by:asheesh anaconda Discovery: Joxean Koret Group DarkShinners import sys import socket addr = "\x33\xbf\x96\x7c" healthpacket = '\x41'4095 + add...
SIDVault 2.0e Vista Remote Crash Vulnerability (sidvault.exe)
Exploit for unknown platform in category remote exploits ============================================================= SIDVault 2.0e Vista Remote Crash Vulnerability sidvault.exe =============================================================...
Oracle Secure Backup 10g Remote Code Execution
Oracle Secure Backup 10g Remote Code Execution ============================================== Product Description =================== Oracle Secure Backup is a centralized tape backup management software providing secure data protection for heterogeneous file systems and the Oracle Database...
Oracle TimesTen Remote Format String PoC
Exploit for multiple platform in category dos / poc ======================================== Oracle TimesTen Remote Format String PoC ======================================== !/usr/bin/python """ Oracle TimesTen Remote Format String Fixed in Oracle CPU Jan 2009 Copyright c Joxean Koret 2009 """...
Oracle Secure Backup 10g - 'exec_qr()' Command Injection
Oracle Secure Backup 10g Remote Code Execution ============================================== Product Description =================== Oracle Secure Backup is a centralized tape backup management software providing secure data protection for heterogeneous file systems and the Oracle Database...
iDefense Security Advisory 10.14.08: Sun Java Web Proxy Server FTP Resource Handling Heap-Based Buffer Overflow
iDefense Security Advisory 10.09.08 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 09, 2008 I. BACKGROUND Sun Microsystems Inc's Java System is a collection of server applications bundled together. One such server application included is the Web Proxy Server. This software implements...
Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit
Exploit for multiple platform in category dos / poc =========================================================== Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit =========================================================== !/usr/bin/python """ Oracle Internet Directory 10.1.4...
Oracle Internet Directory 10.1.4 - Remote Denial of Service
Oracle Internet Directory 10.1.4 - Remote Denial of Service !/usr/bin/python """ Oracle Internet Directory 10.1.4 preauthentication Denial Of Service NOTES: Under 32 bits platforms it crashes immediately. Under 64 bits it may take even hours. Sometimes you need 2 shoots to crash OID completely. T...
iDefense Security Advisory 04.15.08: Oracle Application Express Privilege Escalation Vulnerability
iDefense Security Advisory 04.15.08 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 15, 2008 I. BACKGROUND Oracle Application Express Oracle APEX, formerly called HTML DB, is a rapid web application development tool for the Oracle database. For more information about Oracle Application...
Debian: Security Advisory (DSA-847-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability
ZDI-07-058: Oracle E-Business Suite SQL Injection Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-058.html October 16, 2007 -- CVE ID: CVE-2007-5766 -- Affected Vendor: Oracle -- Affected Products: E-Business Suite 11 E-Business Suite 12 -- TippingPointTM IPS Customer Protection:...
iDefense Security Advisory 05.08.07: Microsoft Exchange Server 2000 IMAP Literal Processing DoS Vulnerability
Microsoft Exchange Server 2000 IMAP Literal Processing DoS Vulnerability iDefense Security Advisory 05.08.07 http://labs.idefense.com/intelligence/vulnerabilities/ May 08, 2007 I. BACKGROUND Microsoft Exchange Server 2000 is a messaging product developed by Microsoft, part of the Windows Server...
Oracle 10g - SYS.KUPW$WORKER.MAIN PL SQL Injection
Oracle 10g - SYS.KUPW$WORKER.MAIN PL SQL Injection / Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean Koret Privileges needed: - CREATE SESSION - CREATE PROCEDURE / select from userroleprivs ; CREATE OR REPLACE FUNCTION F1 RETURN NUMBER AUTHID CURRENTUSER IS PRAGMA...
Oracle 10g - SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL / SQL Injection
/ Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean Koret Privileges needed: - CREATE SESSION Max. Length 97. Very, very cool / select from userroleprivs ; DECLARE SEQUENCEOWNER VARCHAR2200; SEQUENCENAME VARCHAR2200; vuserid number; vcommands VARCHAR232767; NEWVALUE NUMBER; BEGIN SELEC...
HP Printers FTP Server Denial Of Service
HP FTP Printer Server Denial Of Service --------------------------------------- Author: Joxean Koret Date: 2006 Location: Basque Country Affected Software ----------------- Vendor: Hewlett Packard Description: HP Printers FTP Server Denial Of Service Description ----------- A problem exists in...
Hewlett-Packard (HP) FTP Print Server 2.4.5 - Buffer Overflow (PoC)
Hewlett-Packard HP FTP Print Server 2.4.5 - Buffer Overflow PoC !/usr/bin/python import sys from ftplib import FTP print "Hewlett-Packard FTP Print Server Version 2.4.5 Buffer Overflow POC" print "Copyright c Joxean Koret" print if lensys.argv == 1: print "Usage: %s " % sys.argv0 sys.exit0 target...
Debian DSA-916-1 : inkscape - buffer overflow
Several vulnerabilities have been discovered in Inkscape, a vector-based drawing program. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-3737 Joxean Koret discovered a buffer overflow in the SVG parsing routines that can lead to the execution of...
[SA19511] KGB Archiver Directory Traversal Vulnerability
TITLE: KGB Archiver Directory Traversal Vulnerability SECUNIA ADVISORY ID: SA19511 VERIFY ADVISORY: http://secunia.com/advisories/19511/ CRITICAL: Less critical IMPACT: System access WHERE: From remote SOFTWARE: KGB Archiver 1.x http://secunia.com/product/7033/ DESCRIPTION: A vulnerability has be...
Ubuntu 5.04 : dia vulnerability (USN-193-1)
Joxean Koret discovered that the SVG import plugin did not properly sanitise data read from an SVG file. By tricking an user into opening a specially crafted SVG file, an attacker could exploit this to execute arbitrary code with the privileges of the user. Note that Tenable Network Security has...