TANne 0.6.17 Session Manager SysLog Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6553/info TANne is a freely available, open source session management package. It is available for Unix and Linux operating systems. Due to programming error, it may be possible to exploit a format string vulnerability. A...

Python 1.5/1.6/2.0/2.1.x Pickle Class Constructor Arbitrary Code Execution

No description provided by source. source: http://www.securityfocus.com/bid/5257/info Python is an open source, object oriented programming language. The Python Pickle module is provided to convert object variables into a serialized form pickling, and later recover the data back into an object...

Virtual Programming VP-ASP Shoperror Script 4/5 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10534/info A vulnerability exists in the software that may allow a remote user to launch cross-site scripting attacks. The problem is reported to exist due to improper sanitizing of user-supplied data in the 'shoperror.as...

Personal File Share 1.0 DoS

No description provided by source. !/usr/bin/python Exploit Title: Personal File Share 1.0 DoS Date: 2nd April 2013 Exploit Author: npn Vendor Homepage: http://www.srplab.com/ Software Link: http://download.cnet.com/Personal-File-Share/3000-185064-75893424.html Version: 1.0 Tested on: Windows XP...

PHP Captcha Security Images DoS Vulnerability

No description provided by source. Exploit Title: CaptchaSecurityImages.php Denial Of Service Author: cp77fk4r | empty0pageSHIFT+2gmail.com | www.DigitalWhisper.co.il Software Link: http://www.white-hat-web-design.co.uk/articles/php-captcha.php Denial Of Service OWASP: The Denial of Service DoS...

Virtual Programming VP-ASP 4.00/5.00 shopsearch.asp SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9133/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...

Virtual Programming VP-ASP 4.00/5.00 shopdisplayproducts.asp SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9134/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...

Virtual Programming VP-ASP 4/5 shopdisplayproducts.asp Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9164/info A vulnerability has been reported to exist in VP-ASP software that may allow a remote user to launch cross-site scripting attacks. A remote attacker may exploit this issue to potentially execute HTML or script...

SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...

Wireshark 1.2.5 LWRES getaddrbyname BOF - calc.exe

No description provided by source. !/usr/bin/env python Wireshark 1.2.5 LWRES getaddrbyname stack-based buffer overflow Discovered by babi Reference: http://www.exploit-db.com/exploits/11288 Exploit Dev by Nullthreat & Pure|Hate import socket, sys try: host = sys.argv1 except: print usage: +...

DataLynx suGuard 1.0 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/186/info A vulnerability exists within the DataLynx's suGuard program which allows a local attacker to gain administrative privilege by exploiting poor use of the /tmp directory and poor programming. !/bin/sh sgrun exploi...

WzdFTPD <= 8.0 - Remote Denial of Service Exploit

No description provided by source. !/usr/bin/env python WzdFTPD Denial of Service = 8.0 wzdftpddos.py by Jose Miguel Esparza 2007-01-19 S21sec labs import sys,socket user = guest passw = guest if lensys.argv != 3: sys.exitUsage: + sys.argv0 + targethost targetport\n target = sys.argv1 targetPort ...

CDRTools CDRecord 1.11/2.0 Devname Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported that by harnessing an...

SAMBA 2.0.7 SWAT Symlink Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1872/info The Samba software suite is a collection of programs that implements the SMB protocol for unix systems, allowing you to serve files and printers to Windows, NT, OS/2 and DOS clients. This protocol is sometimes...

Virtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8159/info It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexd.asp script contained in the software. As a result, it may be possible for remote attackers to embed SQL commands...

AVerCaster Pro RS3400 Web Server Directory Traversal

No description provided by source. Exploit Title: AVerCaster Pro RS3400 web server directory traversal Date: 2012-10-06 Exploit Author: Patrick Saladino Vendor Homepage: http://www.avermedia.com/product/ProductDetail.aspx?Id=560 Version: v.3.1.20 Tested on: Not relevant CVE : none yet Hello, I ju...

Scientific Image DataBase <= 0.41 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use strict; use warnings; use LWP::UserAgent; Download: http://sidb.sourceforge.net/ Dork: Scientific Image DataBase This exploit retrives the admin username/password via blind mysql injection. print INFO; heredocs is ugly.. so is my INFO ;...

ARM Bindshell port 0x1337

No description provided by source. / Title: arm-bind-listen Brief: Bind a shell to port 0x1337 on any local address and wait for connections Author: Daniel Godas-Lopez gmail account dgodas / / socdes = socketAFINET, SOCKSTREAM, IPPROTOTCP; / mov %r0, $2 / AFINET / mov %r1, $1 / SOCKSTREAM / mov...

[SECURITY] Fedora 20 Update: python-2.7.5-13.fc20

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

Internet Explorer Developer Channel - Early Access to Next-Generation Features For Developers

In an effort to create more open and accessible atmosphere between the Internet Explorer team and the Web development community, Microsoft today announced the launch of The Developer Channel for Internet Explorer. Internet Explorer Developer Channel is a fully-functioning browser designed to...