TLS - Renegotiation

!/usr/bin/env python RedTeam Pentesting GmbH [email protected] http://www.redteam-pentesting.de PoC exploit for the TLS renegotiation vulnerability CVE-2009-3555 License ------- CC-BY-SA http://creativecommons.org/licenses/by-sa/3.0/ Timeline -------- 2009-12-21 initial public release...

Symantec ConsoleUtilities - ActiveX Buffer Overflow (Metasploit)

Use it only for education or ethical pentesting! The author accepts no liability for damage caused by this tool. require 'msf/core' class Metasploit3 'Symantec ConsoleUtilities ActiveX Control Buffer Overflow', 'Description' = %q This module exploits a stack overflow in Symantecs ConsoleUtilities...

Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit

No description provided by source. !/bin/bash Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability 1-day exploit for CVE-2009-1977 and CVE-2009-1978 PoC script successfully tested on: Oracle Secure Backup Server 10.3.0.1.0win32release MS Windows...

Oracle Secure Backup Server Bypass / Command Injection

!/bin/bash Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability 1-day exploit for CVE-2009-1977 and CVE-2009-1978 PoC script successfully tested on: Oracle Secure Backup Server 10.3.0.1.0win32release MS Windows Professional XP SP3 In August 2009,...

Oracle Secure Backup Server 10.3.0.1.0 - Authentication Bypass / Remote Code Injection

!/bin/bash Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability 1-day exploit for CVE-2009-1977 and CVE-2009-1978 PoC script successfully tested on: Oracle Secure Backup Server 10.3.0.1.0win32release MS Windows Professional XP SP3 In August 2009,...

Oracle Secure Backup Server 10.3.0.1.0 - Authentication Bypass Remote Code Injection

Oracle Secure Backup Server 10.3.0.1.0 - Authentication Bypass Remote Code Injection !/bin/bash Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability 1-day exploit for CVE-2009-1977 and CVE-2009-1978 PoC script successfully tested on: Oracle Secure...

Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit

Exploit for windows platform in category remote exploits ============================================================== Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit ============================================================== !/bin/bash Oracle Secure Backup Administration Serv...

Researchers Releasing Tool to Break Into Oracle Databases

From CNet News.com Elinor Mills During their presentation at the Black Hat and Defcon hacker conferences next week in Las Vegas, security experts will release a tool that can be used to break into Oracle databases. Chris Gates and Mario Ceballos will present Oracle Pentesting Methodology and give...

IceWarp WebMail Email View XSS

Advisory: IceWarp WebMail Server: Cross Site Scripting in Email View During a penetration test, RedTeam Pentesting discovered that the IceWarp WebMail Server is prone to Cross Site Scripting attacks in its email view. This enables attackers to send emails with embedded JavaScript code, for exampl...

IceWarp WebMail SQL Injection

Advisory: IceWarp WebMail Server: SQL Injection in Groupware Component During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in the IceWarp WebMail Server. Attackers that are in control of a user account for the web-based email and groupware components are able to execut...

[RT-SA-2009-002] IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader

Advisory: IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader During a penetration test, RedTeam Pentesting discovered that the IceWarp WebMail Server is prone to user-assisted Cross Site Scripting attacks in its RSS feed reader. If attackers control or compromise an RSS...

IceWarp WebMail RSS Feed XSS

Advisory: IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader During a penetration test, RedTeam Pentesting discovered that the IceWarp WebMail Server is prone to user-assisted Cross Site Scripting attacks in its RSS feed reader. If attackers control or compromise an RSS...

Trend micro - IWSVA/IWSS - Authorization module password leak

There is possbile get username and password from "Proxy-Authorization" header, which is not correctly removed when authorization header sends WMP. Requirements: - IWSVA/IWSS basic authorization on - Client is using WMP 8-11 as video player - Standalone proxy if upstream proxy is used,...

Alcatel OmniPCX Office 210/061.1 Remote Command Execution Vuln

Exploit for cgi platform in category web applications ============================================================== Alcatel OmniPCX Office 210/061.1 Remote Command Execution Vuln ============================================================== Digital Security Research Group DSecRG Advisory...

rt-sa-2008-002.txt

Advisory: SQL-Injections in Mapbender During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in Mapbender. A remote attacker is able to execute arbitrary SQL commands and therefore can get e.g. valid usernames and password hashes of the Mapbender users. Details =======...

rt-sa-2008-001.txt

Advisory: Remote Command Execution in Mapbender During a penetration test RedTeam Pentesting discovered a remote command execution vulnerability in Mapbender. An unauthorized user can create arbitrary PHP-files on the Mapbender webserver, which can later be executed. Details ======= Product:...

Mapbender 2.4.4 (gaz) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================== Mapbender 2.4.4 gaz Remote SQL Injection Vulnerability ======================================================== Advisory: SQL-Injections in Mapbender During a penetration test RedTea...

Mapbender 2.4.4 (gaz) Remote SQL Injection Vulnerability

No description provided by source. Advisory: SQL-Injections in Mapbender During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in Mapbender. A remote attacker is able to execute arbitrary SQL commands and therefore can get e.g. valid usernames and password hashes of the...

[Full-disclosure] Advisory: SQL-Injections in Mapbender

Advisory: SQL-Injections in Mapbender During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in Mapbender. A remote attacker is able to execute arbitrary SQL commands and therefore can get e.g. valid usernames and password hashes of the Mapbender users. Details =======...

Mapbender <= 2.4.4 (mapFiler.php) Remote Code Execution Vulnerability

Exploit for unknown platform in category web applications ===================================================================== Mapbender = 2.4.4 mapFiler.php Remote Code Execution Vulnerability ===================================================================== Advisory: Remote Command Executi...