flash-plugin: crash and potential arbitrary code execution (APSB11-12)

Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-0619, CVE-2011-0620, and...

W-Techno Shell Upload

========================================== w-techno Remote File Upload Vulnerability ========================================== + Info + + Exploit Title: w-techno Remote File Upload Vulnerability + Author : Net.Edit0r + Discovered By: 3H34N + E-mail : [email protected] and...

DBSite - SQL Injection

!/usr/bin/env python -- coding: utf-8 -- -------------------------------------------------------- Exploit Title: DBSite Remote SQL Injection Vulnerability Date: 13/10/2010 Author: GodOfPain Version: 1.0 Tested on: Linux --------------------------------------------------------...

flash-plugin: security bulletin APSB10-26

Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors...

flash-plugin: security bulletin APSB10-26

Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service memory corruption via unknown vectors, a different vulnerability...

tomcat: missing fix for CVE-2009-0781

Cross-site scripting XSS vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via the time parameter,...

Broadcom Wireless Driver Probe Response SSID Overflow

Broadcom Wireless Driver Probe Response SSID Overflow. CVE-2006-5882. Remote exploit for hardware platform $Id: broadcomwifissid.rb 9669 2010-07-03 03:13:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

linux/x86 chmod("/etc/shadow", 0777) shellcode 29 bytes

Exploit for linux/x86 platform in category shellcode ======================================================= linux/x86 chmod"/etc/shadow", 0777 shellcode 29 bytes ======================================================= include include / by Magnefikko 20.04.2010 email protected promhyl.oz.pl...

linux/x86 - DoS-Badger-Game shellcode 6 bytes

Exploit for linux/x86 platform in category shellcode ============================================= linux/x86 - DoS-Badger-Game shellcode 6 bytes ============================================= include include / by Magnefikko 14.04.2010 email protected promhyl.oz.pl Subgroup: PRekambr Name: 6 bytes...

linux/x86 - chmod("/etc/shadow", 0666) shellcode 36 bytes

Exploit for linux/x86 platform in category shellcode ========================================================= linux/x86 - chmod"/etc/shadow", 0666 shellcode 36 bytes ========================================================= include include / by Magnefikko 14.04.2010 email protected promhyl.oz.pl...

linux/x86 - execve("/bin/sh") shellcode 25 bytes

Exploit for linux/x86 platform in category shellcode ================================================ linux/x86 - execve"/bin/sh" shellcode 25 bytes ================================================ include include / by Magnefikko 14.04.2010 email protected promhyl.oz.pl Subgroup: PRekambr Name: 2...

UoW IMAPd Server - LSUB Buffer Overflow (Metasploit)

$Id: imapuwlsub.rb 8932 2010-03-26 19:00:23Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

On the php local includes-vulnerability warning-the black bar safety net

Would have thought it struck gold with a black brother after the Exchange found can only be applied to the Win32 platform, so this BUG might of the storm reduced, the basic not much harm, because in the WIN32 platform using PHP too. include $GETfile.”. php”; Previously we used a%0 0 to cut off, n...

linux/x86 append "/etc/passwd" & exit() 107 bytes

No description provided by source. view source print? / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby adding a password-less root account with login name "toor" Platform: linux/x86 Size: 107 bytes Author: $andman / / 08049054 start: 8049054: eb 38...

linux/x86 append "/etc/passwd" & exit() 107 bytes

Exploit for linux/x86 platform in category shellcode ================================================= linux/x86 append "/etc/passwd" & exit 107 bytes ================================================= / appendpasswd.c Payload: Adds the string: toor::0:0:t00r:/root:/bin/bash to /etc/passwd thereby...

linux/x86 unlink/etc/passwd & exit 35 bytes

linux/x86 unlink/etc/passwd & exit 35 bytes. Shellcode exploit for linux platform Title: linux/x86 unlink/etc/passwd & exit 35 bytes Date: 2009-12-24 Author: sandman, n4mdn4s 4T gmail D0T com Tested on: linux/Fedora 12 Code : / unlinkpasswd.c Platform: linux/x86 Size: 35 bytes Author: $andman /...

Mozilla Firefox临时文件下载可预测路径名漏洞

CVE ID: CVE-2009-3274 Firefox是一款流行的开源WEB浏览器。 运行在Linux平台上的Firefox对从“下载”窗口所选择的文件使用了可预测的/tmp路径名，本地用户可以在下载之前在/tmp位置放置文件来替换下载文件，之后用户可能受骗打开已被替换了的文件。 Mozilla Firefox 3.6 a1 Mozilla Firefox 3.5.2 厂商补丁： Mozilla ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.mozilla.org/...

linux/x86 setreuid(geteuid(),geteuid()),execve("/bin/sh",0,0) 34 bytes

Exploit for linux/x86 platform in category shellcode ====================================================================== linux/x86 setreuidgeteuid,geteuid,execve"/bin/sh",0,0 34 bytes ====================================================================== / linux/x86...

Core Security Technologies Advisory 2009.0114

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ HTTP Response Splitting vulnerability in Sun Delegated Administrator 1. Advisory Information Title: HTTP Response Splitting vulnerability in Sun Delegated Administrat...

Sun xVM VirtualBox 2.02.1 - Local Privilege Escalation

Sun xVM VirtualBox 2.02.1 - Local Privilege Escalation source: https://www.securityfocus.com/bid/34080/info Sun xVM VirtualBox is prone to a local privilege-escalation vulnerability. An attacker can exploit this vulnerability to run arbitrary code with superuser privileges. The following versions...