46 matches found
EUVD-2003-0144
Malware in sbrugna...
EUVD-2003-0227
Malware in sbrugna...
Microsoft SQL Server sp_replwritetovarbin Memory Corruption
No description provided by source. $Id: ms09004spreplwritetovarbin.rb 11631 2011-01-24 19:37:58Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing a...
Lyris ListManager MSDE Weak sa Password
No description provided by source. $Id: lyrislistmanagerweakpass.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...
Microsoft SQL Server 7.0/2000,MSDE Named Pipe Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8274/info Microsoft SQL Server and the Microsoft Data Engine have been reported prone to a denial of service attack. Any local or remote user, who can authenticate and is part of the Everyone Group, may trigger a denial o...
Microsoft MSDE Long TCP Request Buffer Overflow - Ver2 (CVE-2002-1123)
A buffer overflow vulnerability has been reported in Microsoft MSDE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft SQL Server - sp_replwritetovarbin Memory Corruption (MS09-004) (Metasploit)
$Id: ms09004spreplwritetovarbin.rb 11631 2011-01-24 19:37:58Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Lyris ListManager - MSDE Weak sa Password (Metasploit)
$Id: lyrislistmanagerweakpass.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
MS09-004 Microsoft SQL Server sp_replwritetovarbin Memory Corruption
A heap-based buffer overflow can occur when calling the undocumented "spreplwritetovarbin" extended stored procedure. This vulnerability affects all versions of Microsoft SQL Server 2000 and 2005, Windows Internal Database, and Microsoft Desktop Engine MSDE without the updates supplied in MS09-00...
Microsoft SQL Server Hello Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft SQ...
Lyris ListManager MSDE Weak sa Password
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Lyris...
Lyris ListManager MSDE Weak sa Password
This module exploits a weak password vulnerability in the Lyris ListManager MSDE install. During installation, the 'sa' account password is set to 'lminstall'. Once the install completes, it is set to 'lyris' followed by the process ID of the installer. This module brute forces all possible proce...
Ipswitch WhatsUp Web Interface SQL Injection (CVE-2005-1250)
WhatsUp Professional 2005 is a network monitoring and resource management solution. WhatsUp Professional uses a relational database to store the information about user accounts and network devices that are monitored by the application. The relational databases supported by WhatsUp Professional ar...
Microsoft SQL Server Generic Query
This module will allow for simple SQL statements to be executed against a MSSQL/MSDE instance given the appropriate credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL...
Microsoft SQL Server Memory Page Reuse Information Disclosure Vulnerability
Description Microsoft SQL Server is prone to an information-disclosure vulnerability caused by a memory-reallocation flaw. An attacker with operator access may leverage this issue to obtain potentially sensitive information that could aid in further attacks. Technologies Affected Microsoft Data...
Microsoft SQL Server Distributed Management Objects BoF Exploit
No description provided by source. !-- + title: Microsoft SQL Server Distributed Management Objects Buffer Overflow + Critical: Critical remote + Impact: MS Internet Explorer 6 - Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000...
Microsoft SQL Server - Distributed Management Objects Buffer Overflow
Microsoft SQL Server - Distributed Management Objects Buffer Overflow Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000 SQLDMO.dll version 2000.80.760.0 + Reference & Thanks : code by rgod http://www.milw0rm.com/exploits/4379 code by...
Microsoft SQL Server - Distributed Management Objects Buffer Overflow
Code Execute + Tested Operating System: Windows XP SP2 KR, Windows 2000 Pro SP4 KR + Tested Software: MSDE 2000 SQLDMO.dll version 2000.80.760.0 + Reference & Thanks : code by rgod http://www.milw0rm.com/exploits/4379 code by Trirat Puttaraksa http://www.milw0rm.com/exploits/2426 + Author: 96sysi...
HP Mercury Quality Center 9.0 build 9.1.0.4352 SQL Execution Exploit
No description provided by source. !/usr/bin/perl HP Mercury Quality Center runQuery exploit. Run whatever SQL you want on there db - without SQL injection. Problem is client can do "RunQuery" command os we write program to do this. Client can lots other things it should not also! The backend...
[Full-disclosure] HP Mercury Quality Center Any SQL execution
Vendor: HP Product: Mercury Quality Center Version: 9.0 build 9.1.0.4352 Vendor Informed: No HP Mercury Quality Center is test management product for companys to do software testing and quality insurance. HP Mercury Quality Center has additional guest command on server which allows any user who...