219 matches found
SNMP Community Login Scanner
This module logs in to SNMP devices using common community names. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/communitystringcollection' require 'metasploit/framework/loginscanner/snm...
Open Source MySQL Injection: sqlsus
sqlsus is an open source MySQL injection and takeover tool, written in perl. Via a command line interface, you can retrieve the databases structure, inject your own SQL queries even complex ones, download files from the web server, crawl the website for writable directories, upload and control a...
Extreme GPU Bruteforcer
Extreme GPU Bruteforcer is a professional solution for the recovery of passwords from hashes using GPU. The software supports hashes of the following types: MySQL, MySQL5, DESUnix, MD4, MD5, MD5Unix, MD5APR, MD5phpBB3, MD5WordPress, LM, NTLM, SHA-1 and many others. On modern graphics cards from...
DarkComet-RAT v4.0 Fix1 Released - Fully Cryptable
DarkComet-RAT v4.0 Fix1 Released - Fully Cryptable DarkComet-RAT v4.0 Change log - DarkComet-RAT is now compiled on Delphi XE instead of Delphi 2010. - Synthax highlighter added in remote keylogger. - Multithreading is now more efficient, no more freezing, using a new powerfull and stable...
DarkComet-RAT v4.0 Fix1 Released - Fully Cryptable
DarkComet-RAT v4.0 Fix1 Released - Fully Cryptable DarkComet-RAT v4.0 Change log - DarkComet-RAT is now compiled on Delphi XE instead of Delphi 2010. - Synthax highlighter added in remote keylogger. - Multithreading is now more efficient, no more freezing, using a new powerfull and stable...
ArpON 2.2 released - ARP handler inspection !
ArpON 2.2 released - ARP handler inspection ! ArpON ARP handler inspection is a portable handler daemon that make ARP secure in order to avoid the Man In The Middle MITM through ARP Spoofing/Poisoning attacks. It detects and blocks also derived attacks by it for more complex attacks, as: DHCP...
OpenSSL TLS extension parsing race condition
Multiple race conditions in ssl/t1lib.c in OpenSSL 0.9.8f through 0.9.8o, 1.0.0, and 1.0.0a, when multi-threading and internal caching are enabled on a TLS server, might allow remote attackers to execute arbitrary code via client data that triggers a heap-based buffer overflow, related to 1 the T...
httpd: request header information leak
The apreadrequest function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain...
httpd: request header information leak
The apreadrequest function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain...
Home Web Server <= r1.7.1 (build 147) Gui Thread-Memory Corruption
No description provided by source. Home Web Server =r1.7.1 build 147 "Gui Thread-Memory Corruption Exploit." By: Aodrulez. Homepage : http://downstairs.dnsalias.net/homewebserver.html Product Released : 22.4.2009/21:16:58 Description: This web server when fed with 1006 bytes of chr0x0d,with the...
Home Web Server r1.7.1 Memory Corruption
Home Web Server =r1.7.1 build 147 "Gui Thread-Memory Corruption Exploit." By: Aodrulez. Homepage : http://downstairs.dnsalias.net/homewebserver.html Product Released : 22.4.2009/21:16:58 Description: This web server when fed with 1006 bytes of chr0x0d,with the html "GET" parameter,the Server's...
Home Web Server r1.7.1 (build 147) - GUI Thread-Memory Corruption
Home Web Server r1.7.1 build 147 - GUI Thread-Memory Corruption Home Web Server =r1.7.1 build 147 "Gui Thread-Memory Corruption Exploit." By: Aodrulez. Homepage : http://downstairs.dnsalias.net/homewebserver.html Product Released : 22.4.2009/21:16:58 Description: This web server when fed with 100...
Home Web Server <= r1.7.1 (build 147) Gui Thread-Memory Corruption
Exploit for unknown platform in category dos / poc ================================================================== Home Web Server = r1.7.1 build 147 Gui Thread-Memory Corruption ================================================================== Home Web Server =r1.7.1 build 147 "Gui...
Home Web Server r1.7.1 (build 147) - GUI Thread-Memory Corruption
Home Web Server =r1.7.1 build 147 "Gui Thread-Memory Corruption Exploit." By: Aodrulez. Homepage : http://downstairs.dnsalias.net/homewebserver.html Product Released : 22.4.2009/21:16:58 Description: This web server when fed with 1006 bytes of chr0x0d,with the html "GET" parameter,the Server's...
[SECURITY] Fedora 7 Update: balsa-2.3.17-2.fc7
Balsa is a GNOME email client which supports mbox, maildir, and mh local mailboxes, and IMAP4 and POP3 remote mailboxes. Email can be sent via sendmail or SMTP. Optional multithreading support allows for non-intrusive retrieval and sending of mail. A finished GUI similar to that of the Eudora ema...
kernel -- information disclosure when using HTT
Problem description and impact When running on processors supporting Hyper-Threading Technology, it is possible for a malicious thread to monitor the execution of another thread. Information may be disclosed to local users, allowing in many cases for privilege escalation. For example, on a...
MS Internet Explorer DHTML Object Memory Corruption Exploit
Exploit for unknown platform in category remote exploits =========================================================== MS Internet Explorer DHTML Object Memory Corruption Exploit =========================================================== This program is free software; you can redistribute it and/o...
Microsoft Internet Explorer - DHTML Object Memory Corruption
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2, 1991 as published by the Free Software Foundation. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implie...
AdvServer DoS
Title: AdvServer DoS Date: 21.06.02 Author: elab http://elaboration.8bit.co.uk Software: AdvServer Platform: Win32 Tested: Version 1.030000 Vendor: WWW: http://gamecheats.ws Contacted on: 30 May 02 Via: [email protected] && website Response: Within 2 days WARNING: This advisory has NOTHING to do...