Personal File Share 1.0 DoS

No description provided by source. !/usr/bin/python Exploit Title: Personal File Share 1.0 DoS Date: 2nd April 2013 Exploit Author: npn Vendor Homepage: http://www.srplab.com/ Software Link: http://download.cnet.com/Personal-File-Share/3000-185064-75893424.html Version: 1.0 Tested on: Windows XP...

PHP Captcha Security Images DoS Vulnerability

No description provided by source. Exploit Title: CaptchaSecurityImages.php Denial Of Service Author: cp77fk4r | empty0pageSHIFT+2gmail.com | www.DigitalWhisper.co.il Software Link: http://www.white-hat-web-design.co.uk/articles/php-captcha.php Denial Of Service OWASP: The Denial of Service DoS...

Virtual Programming VP-ASP 4.00/5.00 shopsearch.asp SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9133/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...

Virtual Programming VP-ASP 4.00/5.00 shopdisplayproducts.asp SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9134/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...

Virtual Programming VP-ASP 4/5 shopdisplayproducts.asp Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9164/info A vulnerability has been reported to exist in VP-ASP software that may allow a remote user to launch cross-site scripting attacks. A remote attacker may exploit this issue to potentially execute HTML or script...

SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...

Wireshark 1.2.5 LWRES getaddrbyname BOF - calc.exe

No description provided by source. !/usr/bin/env python Wireshark 1.2.5 LWRES getaddrbyname stack-based buffer overflow Discovered by babi Reference: http://www.exploit-db.com/exploits/11288 Exploit Dev by Nullthreat & Pure|Hate import socket, sys try: host = sys.argv1 except: print usage: +...

DataLynx suGuard 1.0 Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/186/info A vulnerability exists within the DataLynx's suGuard program which allows a local attacker to gain administrative privilege by exploiting poor use of the /tmp directory and poor programming. !/bin/sh sgrun exploi...

WzdFTPD <= 8.0 - Remote Denial of Service Exploit

No description provided by source. !/usr/bin/env python WzdFTPD Denial of Service = 8.0 wzdftpddos.py by Jose Miguel Esparza 2007-01-19 S21sec labs import sys,socket user = guest passw = guest if lensys.argv != 3: sys.exitUsage: + sys.argv0 + targethost targetport\n target = sys.argv1 targetPort ...

CDRTools CDRecord 1.11/2.0 Devname Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7565/info CDRecord has been reported prone to a format string vulnerability. The issue presents itself due to a programming error that occurs when calling a printf-like function. It has been reported that by harnessing an...

SAMBA 2.0.7 SWAT Symlink Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1872/info The Samba software suite is a collection of programs that implements the SMB protocol for unix systems, allowing you to serve files and printers to Windows, NT, OS/2 and DOS clients. This protocol is sometimes...

Virtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/8159/info It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexd.asp script contained in the software. As a result, it may be possible for remote attackers to embed SQL commands...

Scientific Image DataBase <= 0.41 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl use strict; use warnings; use LWP::UserAgent; Download: http://sidb.sourceforge.net/ Dork: Scientific Image DataBase This exploit retrives the admin username/password via blind mysql injection. print INFO; heredocs is ugly.. so is my INFO ;...

ARM Bindshell port 0x1337

No description provided by source. / Title: arm-bind-listen Brief: Bind a shell to port 0x1337 on any local address and wait for connections Author: Daniel Godas-Lopez gmail account dgodas / / socdes = socketAFINET, SOCKSTREAM, IPPROTOTCP; / mov %r0, $2 / AFINET / mov %r1, $1 / SOCKSTREAM / mov...

AVerCaster Pro RS3400 Web Server Directory Traversal

No description provided by source. Exploit Title: AVerCaster Pro RS3400 web server directory traversal Date: 2012-10-06 Exploit Author: Patrick Saladino Vendor Homepage: http://www.avermedia.com/product/ProductDetail.aspx?Id=560 Version: v.3.1.20 Tested on: Not relevant CVE : none yet Hello, I ju...

[SECURITY] Fedora 20 Update: python-2.7.5-13.fc20

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

Internet Explorer Developer Channel - Early Access to Next-Generation Features For Developers

In an effort to create more open and accessible atmosphere between the Internet Explorer team and the Web development community, Microsoft today announced the launch of The Developer Channel for Internet Explorer. Internet Explorer Developer Channel is a fully-functioning browser designed to...

Apple's New Swift Programming Language for iOS And OS X Apps. Goodbye Objective-C

The development of self own languages has become emblematic of the hot new trend in business as every big Internet service provider is now developing their own and unique programming languages. Two months ago, Facebook released its modern programming language called 'HACK', which is specially...

FreeBSD Security Advisory FreeBSD-SA-14:11.sendmail

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:11.sendmail Security Advisory The FreeBSD Project Topic: sendmail improper close-on-exec flag handling Category: contrib Module: sendmail Announced: 2014-06-...

FreeBSD -- sendmail improper close-on-exec flag handling

Problem Description: There is a programming error in sendmail8 that prevented open file descriptors have close-on-exec properly set. Consequently a subprocess will be able to access all open files that the parent process have open. Impact: A local user who can execute their own program for mail...