Embedthis Appweb 3.0b.2-4 - Remote Buffer Overflow (PoC)

Embedthis Appweb 3.0b.2-4 - Remote Buffer Overflow PoC / Embedthis Appweb Remote Stack Buffer Overflow Poc Embedthis Appweb Debugging Info ------------------------------- ASM INSTRUCTIONS ---------------- 100076CD 8B0A MOV ECX,DWORD PTR DS:EDX 100076CF 8B50 10 MOV EDX,DWORD PTR DS:EAX+10 100076D2...

CentOS Update for mysql CESA-2007:1155 centos4 x86_64

Check for the Version of mysql OpenVAS Vulnerability Test CentOS Update for mysql CESA-2007:1155 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Fedora Update for rsyslog FEDORA-2008-11538

Check for the Version of rsyslog OpenVAS Vulnerability Test Fedora Update for rsyslog FEDORA-2008-11538 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[SECURITY] Fedora 10 Update: rsyslog-3.21.9-1.fc10

Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MyS QL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is quite compatible to stock syskl ogd and can be used as a drop-in replacement. Its advanced...

[SECURITY] Fedora 9 Update: rsyslog-3.20.2-2.fc9

Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MyS QL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is quite compatible to stock syskl ogd and can be used as a drop-in replacement. Its advanced...

RHEL 5 : kernel (RHSA-2008:1017)

Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any...

EvansFTP - 'EvansFTP.ocx' Remote Buffer Overflow (PoC)

EvansFTP EvansFTP.ocx Remote Buffer Overflow PoC + Application : EvansFTP ActiveX + CompanyName : Evans Programming + Description : Multi-threaded asynchronus Active-X FTP Control + Lib GUID : DA3C77F4-8701-11D4-908B-00010268221D + Exploit : Remote BoF PoC + Author : Bl@ckbe@rD //...

pnscan (NASL wrapper)

This plugin runs pnscan to find open ports. Pnscan is a lite multi-threaded port scanner. OpenVAS Vulnerability Test NASL wrapper around pnscan portscanner Author: Vlatko Kosturjak This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...

pnscan (NASL wrapper)

This plugin runs pnscan to find open ports. Pnscan is a lite multi-threaded port scanner. SPDX-FileCopyrightText: 2008 Vlatko Kosturjak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-lat...

[SECURITY] Fedora 8 Update: clamav-0.92.1-1.fc8

Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...

RHEL 4 / 5 : mysql (RHSA-2007:1155)

Updated mysql packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server...

SMF 1.1.3 Extremely fast Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total Bypass of SMF's SQL...

smf-blind.txt

SMF is a very hardened php application. If anyone wants an example of some interesting PHP security SMF is a good place to look. Even after being able to injection SQL I had to take another step and bypass some difficult filters found in the dbquery function. Ultimately i was able to do so. This...

smf-sql.txt

!/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total Bypass of SMF's SQL Injection filter. I submitted a...

Simple Machines Forum (SMF) 1.1.3 - Blind SQL Injection

!/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total Bypass of SMF's SQL Injection filter. I submitted a...

Simple Machines Forum (SMF) 1.1.3 - Blind SQL Injection

Simple Machines Forum SMF 1.1.3 - Blind SQL Injection !/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total...

Simple Machines Forum 1.1.3 Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl Written By Michael Brooks contact: th3dotr00katgmaildotcom SMF 1.1.3 Extremely fast Blind SQL Injection Exploit! -Binary Search -Multi-Threaded -NO benchmark's Two SQL Injection flaws. Works with magicquotesgpc=On or Off. Total Bypass of SMF's SQL...

CVE-2007-2844

PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access...

CVE-2005-1125

Race condition in libsafe 2.0.16 and earlier, when running in multi-threaded applications, allows attackers to bypass libsafe protection and exploit other vulnerabilities before the libsafedie function call is completed...

DSA-719-1 prozilla - format string problems

Bulletin has no description...