Immunity Canvas: GROUPWISE_WEBACCESS

Name| groupwisewebaccess ---|--- CVE| CVE-2007-2171 Exploit Pack| CANVAS Description| Novell GroupWise WebAccess Base64 Decoding Stack Overflow Notes| CVE Name: CVE-2007-2171 VENDOR: Novell VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-07-015.html CV...

Remote file inclusion

PHP remote file inclusion vulnerability in admin/adminalbumotf.php in the MX Smartor Full Album Pack FAP 2.0 RC1 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2007-2189

PHP remote file inclusion vulnerability in admin/adminalbumotf.php in the MX Smartor Full Album Pack FAP 2.0 RC1 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2007-2189

PHP remote file inclusion vulnerability in admin/adminalbumotf.php in the MX Smartor Full Album Pack FAP 2.0 RC1 module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbbrootpath parameter...

CVE-2007-2189

CVE-2007-2189 corresponds to a PHP remote file inclusion vulnerability in the MX Smartor Full Album Pack (FAP) 2.0 RC1 module for mxBB. The flaw resides in admin/admin_album_otf.php and allows remote attackers to execute arbitrary PHP code via a URL supplied to the phpbb_root_path parameter. Mult...

Lotus Domino IMAP CRAM-MD5 authentication buffer overflow

Added: 04/23/2007 CVE: CVE-2007-1675 BID: 23172 OSVDB: 34091 Background IBM Lotus Domino is a messaging and collaboration solution for multiple platforms. Problem A buffer overflow vulnerability in the CRAM-MD5 authentication function in the Lotus Domino IMAP service allows remote attackers to...

DSquare Exploit Pack: D2SEC_KRB5_TELNETD

Name| d2seckrb5telnetd ---|--- CVE| CVE-2007-0956 Exploit Pack| D2ExploitPack Description| MIT Krb5 telnetd vulnerability Notes|...

PT-2007-2635 · Microsoft · Windows 2000 Sp4 +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows 2000 SP4 Description: A local elevation of privilege issue exists in the TrueType Fonts rasterizer due to its handling of defective or modified font types. This could allow a logged-on user to gain privileges via crafted...

IrfanView 3.99 (.ANI File) Local Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ======================================================== IrfanView 3.99 .ANI File Local Buffer Overflow Exploit ======================================================== / IrfanView 3.99 .ANI File Buffer Overflow IrfanView is vulnerable to a...

Immunity Canvas: ANI_CURSOR

Name| anicursor ---|--- CVE| CVE-2007-0038 Exploit Pack| CANVAS Description| Windows Animated Cursor Overflow MS07-017 Notes| References: http://www.determina.com/security.research/vulnerabilities/ani-header.html CVE Name: CVE-2007-0038 VENDOR: Microsoft MSADV: MS07-017 VersionsAffected:...

Immunity Canvas: DOMINO_CRAM

Name| dominocram ---|--- CVE| CVE-2007-1675 Exploit Pack| CANVAS Description| Lotus Domino IMAP4 Server CRAM-MD5 Stack Overflow Notes| CVE Name: CVE-2007-1675 VENDOR: IBM VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-07-011.html CVE Url:...

Immunity Canvas: PHILEX_INCLUDE

Name| philexinclude ---|--- CVE| CVE-2007-1697 Exploit Pack| CANVAS Description| Philex 0.2.3 = Remote File Include Notes| CVSS: 10.0 Repeatability: Infinite VENDOR: Philex CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1697 CVE Name: CVE-2007-1697...

PHP < 4.4.5/5.2.1 - '_SESSION unset()' Local Overflow

?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP Project // // C Copyright 2007 Stefan...

WarFTP 1.65 - 'USER' Remote Buffer Overflow

include include include define VULNSERVER "WAR-FTPD 1.65" define VULNCMD "\x55\x53\x45\x52\x20" define ZERO '\x00' define NOP '\x90' define VULNBUFF 485 define BUFFREAD 128 define PORT 21 define LENJMPESP 4 / WARFTP - VERSION 1.65 WarFTP Username Stack-Based Buffer-Overflow Vulnerability...

Immunity Canvas: MERCURIMAPSUBSCRIBE

Name| MercurImapSubscribe ---|--- CVE| CVE-2007-1579 Exploit Pack| CANVAS Description| Mercur Imap SUBSCRIBE stack overflow Notes| CVE Name: CVE-2007-1579 VENDOR: Mercur CVE Url: https://vulners.com/cve/CVE-2007-1579 CVSS: 10.0...

Immunity Canvas: DFBLOG4_EXEC

Name| dfblog4exec ---|--- CVE| CVE-2007-1525 Exploit Pack| CANVAS Description| Dayfox Blog4 exec Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Ninja Designs CVE Url: https://vulners.com/cve/CVE-2007-1525 CVE Name: CVE-2007-1525...

DSquare Exploit Pack: D2SEC_MOD_JK

Name| d2secmodjk ---|--- CVE| CVE-2007-0774 Exploit Pack| D2ExploitPack Description| Apache Tomcat JK Web Server Connector Stack Overflow Vulnerability Notes|...

DSquare Exploit Pack: D2SEC_SQLITEMANAGER

Name| d2secsqlitemanager ---|--- CVE| CVE-2007-1232 Exploit Pack| D2ExploitPack Description| SQLiteManager Local File Include Vulnerability Notes|...

CVE-2007-1087

IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 does not properly terminate certain input strings, which allows local users to execute arbitrary code via unspecified environment variables that trigger a heap-based buffer overflow...

CVE-2007-1087

CVE-2007-1087 : IBM DB2 8.x before 8.1 FixPak 15 and 9.1 before Fix Pack 2 is vulnerable to a heap-based buffer overflow caused by improper termination of certain input strings. The flaw can be triggered by unspecified environment variables, enabling a local attacker to execute arbitrary code. Pr...