178 matches found
VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability
VUPlayer is a freeware multi-format audio player for windows. Copy of the Vendor Homepage: http://vuplayer.com/vuplayer.php Technical Details & Description: ================================ The classic buffer overflow vulnerability is located in the software VUPlayer an attacker can manipulate th...
Picosmos Shows v1.6.0 - Stack Overflow Vulnerability
Document Title: =============== Picosmos Shows v1.6.0 - Stack Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1936 Release Date: ============= 2016-09-05 Vulnerability Laboratory ID VL-ID: ==================================== 1936...
Encaps PHP/Flash Gallery 2.3.22s Database DoS
Hi guys, ref: http://www.milw00rm.com/exploits/5179 !/usr/bin/perl -w Title : Encaps PHP/Flash Gallery 2.3.22s Database Puffing Up Exploit Vendor : http://www.encaps.net Download : http://sourceforge.net/projects/encapsnet/files/ Author : ZoRLu / [email protected] Website : milw00rm.com /...
MemHT Portal <= 3.9.0 - Remote Create Shell Exploit
No description provided by source. !/usr/bin/perl MemHT Portal = 3.9.0 Perl exploit discovered & written by Ams ax330d doggy gmail dot com DESCRIPTION: Script /inc/incstatistics.php accepts unfiltered $COOKIE's, $COOKIE'statsres' which later goes to MySQL request. So we are able to make sql...
FSD 2.052/3.000 sysuser.cc sysuser::exechelp Function HELP Command Remote Overflow
No description provided by source. source: http://www.securityfocus.com/bid/25883/info FSD is prone to multiple remote buffer-overflow vulnerabilities because the application fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit these issues to execute arbitrary...
Netscape Enterprise Server 4.1 HTTP Method Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6792/info It has been reported that iPlanet Web Server and Netscape Enterprise Server are prone to a remotely exploitable buffer overflow condition. This is due to insufficient bounds checking when handling HTTP requests...
phpauctionsystem (xss/sql) Multiple Vulnerabilities
No description provided by source. PHPAuctionSystem Author:x0r Email:[email protected] Cms:PhpAuctionSystemvnew Cmsprice:$59.99 Demo:http://www.phpauctions.info/demo/ BugIn:\profile.phpBlind\Normal Sql Injection ExploitBlind: profile.php?userid=29%20and%20substring@@version,1,1=5--...
ASX to MP3 Converter 3.0.0.100 - Local Stack Overflow PoC
No description provided by source. !/usr/bin/perl ASX to MP3 Converter Version 3.0.0.100 Local Stack Overflow POC Exploited By mat EAX 00000001 ECX 41414141 EDX 00D30000 EBX 00333ED8 ESP 000F6C90 EBP 000FBFB4 ESI 77C2FCE0 msvcrt.77C2FCE0 EDI 00006619 EIP 41414141 my $ex=http://.\x41 x 26121;...
British National Corpus SARA 0 Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10984/info sarad is reported prone to a buffer overflow vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. A remote attacker can trigger the overflow condition by supplying a...
creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
No description provided by source. !/usr/bin/perl creLoaded = 6.15 HTMLAREA automated perl exploit hacked up by kaneda [email protected] Rather simple exploit, but still an exploit nonetheless. Attempts to upload php script and utilise that to execute commands, and show off a fake shell. C...
G. Wilford man 2.3.10 Symlink Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/305/info The man command created a temporary file under /tmp with a predictable name and is willing to follow symbolic links. This may allow malicious local users to create arbitrarily named files. zsoelim1 is a utility...
War FTP Daemon 1.8 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12384/info War FTP Daemon is reported prone to a remote denial of service vulnerability. This issue arises because the application fails to handle exceptional conditions in a proper manner. War FTP Daemon 1.82.00-RC9 is...
DeluxeBB <= 1.3 Private Info Disclosure
No description provided by source. ====================================================================== DeluxeBB new; $bro-agent"Mozilla/5.0 Windows; U; Windows NT 5.1; es-ES; rv:1.8.1.14 Gecko/20080404 Firefox/2.0.0.14"; $bro-defaultheader"Cookie" = "membercookie=$membercookie;...
SX Design sipd 0.1.2 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9198/info It has been reported that sipd may be prone to a vulnerability that may allow a remote attacker to cause a denial of service condition in the software. The problem is reported to exist in the gethostbynamer...
Lynx <= 2.8.6dev.13 Remote Buffer Overflow Exploit (PoC)
No description provided by source. !/usr/bin/perl -- lynx-nntp-server by Ulf Harnhammar in 2005 I hereby place this program in the public domain. use strict; use IO::Socket; $main::port = 119; $main::timeout = 5; SUBROUTINES sub mysend$$ my $file = shift; my $str = shift; print $file $str\n; prin...
MauryCMS <= 0.53.2 - Remote Shell Upload Exploit
No description provided by source. !/usr/bin/perl =about MauryCMS = 0.53.2 Remote Shell Upload Exploit ---------------------------------------------- by athos - stakerathotmaildotit download on http://cms.maury91.org thnx Osirys =cut use strict; use warnings; use LWP::UserAgent; my...
PHPKit 1.6.1 Popup.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20911/info PHPKIT is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...
yourplace <= 1.0.2 - Multiple Vulnerabilities + rce exploit
No description provided by source. START 0x01 Informations: Script : YourPlace 0.5 beta 1 Download : http://www.hotscripts.com/jump.php?listingid=80545&jumptype=1 Vulnerability : DB Disclosure / Arbitrary Data Saving RCE EXPLOIT / Arbitrary File Upload / PHPInfo Disclosure / User Change Account...
Interaction SIP Proxy 3.0 - Remote Heap Corruption Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16001/info Interaction SIP Proxy is susceptible to a remote denial of service vulnerability. This issue is due to a failure of the application to properly bounds check user-supplied input data, resulting in a heap memory...
Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow
Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow !/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage:...