CVE-2005-1992

Overview The XMLRPC server in utils.rb for the ruby library libruby 1.8 sets an invalid default value that prevents "security protection" using handlers, which allows remote attackers to execute arbitrary commands. Remediation There is no fixed version for ruby. References - Blade.nagaokaut.ac.jp...

Apple Cocoa applications vulnerable to denial of service via malformed TIFF image

Overview Apple Mac OS X applications using the Cocoa environment may quit due to an unhandled exception in TIFF image handling routines. Description Mac OS X applications may take advantage of the Cocoa programming environment, which is described by Apple as "an object-oriented application...

HP-UX FTPD 1.1.214.4 - REST Remote Brute Force

HP-UX FTPD 1.1.214.4 - REST Remote Brute Force / Author: phased /str0ke / include include include include include include include int main int argc, char argv int sock, rc; long int i; struct sockaddrin saddr; struct hostent h; char buf256; printf"DMhpux FTPd - REST bug brute forcer\n"; printf"by...

Golden FTP Server Pro 2.52 - Remote Buffer Overflow (3)

/ \ golden ftp 2.52.0.0 remote r00t exploit / \ remote r00t exploit binds 4444 port on remote machine. / tested on: winxp sp0 rus \ / simple stack overflow in golden ftpd. \ if retaddr isn't right, ftpd will crash, and admin will be in big shit / 'coz ftpd won't start later ; \ / code to be...

Golden FTP Server Pro 2.52 Remote Buffer Overflow Exploit (3rd)

No description provided by source. / \ golden ftp 2.52.0.0 remote r00t exploit / \ remote r00t exploit binds 4444 port on remote machine. / tested on: winxp sp0 rus \ / simple stack overflow in golden ftpd. \ if retaddr isn't right, ftpd will crash, and admin will be in big shit / 'coz ftpd won't...

phpBB <= 2.0.12 Change User Rights Authentication Bypass (c code)

No description provided by source. / Paisterist's code was nice but heres mil's version. precompiled: http://www.milw0rm.com/sploits/897.rar Usage: bcc32 897.cpp and place the exe in your firefox profile dir. Usually C:\Documents and Settings\Application...

Microsoft Windows XP - Local Denial of Service

source: https://www.securityfocus.com/bid/12870/info It is reported that Microsoft Windows XP Service Pack 1 is prone to a local denial of service vulnerability. The issue is reported to manifest when a raw IP over IP socket is created and data is transferred over the newly created socket. It is...

MS Windows XP/2003 Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc =================================================== MS Windows XP/2003 Remote Denial of Service Exploit =================================================== / Added Line 1 - BSDSOURCE!!!! /str0ke / define BSDSOURCE include include include include...

WebConnect 6.4.4 - 6.5 Directory Traversal and Denial of Service Exploit

Exploit for multiple platform in category dos / poc ======================================================================== WebConnect 6.4.4 - 6.5 Directory Traversal and Denial of Service Exploit ======================================================================== WebConnect version 6.4.4 -...

Important: Red Hat Security Advisory: perl security update

Updated Perl packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team Perl is a high-level programming language commonly used for system administration utilities...

Mailman Detection

The remote host is running Mailman, an open source, Python-based mailing list management package. This script was written by George A. Theall, . GPLv2 include"compat.inc"; if description scriptid16338; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...

[NEWS] PRADO 'page' Parameter Allows Code Execution

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Webmin 1.5 - Web Brute Force (CGI)

Webmin 1.5 - Web Brute Force CGI !/usr/bin/perl use CGI qw:standard; use IO::Socket; $CGI::HEADERSONCE = 1; $CGI = new CGI; $atak = $CGI-param"atak"; $host = $CGI-param"host"; $wlist = $CGI-param"wlist"; $cmd = $CGI-param"cmd"; print $CGI-header-type='text/html',-charset='windows-1254'; print...

SOLDNER Secret Wars <= 30830 Denial of Service Exploit

No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h include time.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h...

firstclass.txt

/ http://secunia.com/advisories/13415 written by dila released on 11.12.04 compile with ms vc++ remember to link with winsock / define WIN32LEANANDMEAN include "windows.h" define IDDMAIN 101 define IDIMAIN 103 define IDCSERV 1000 define IDCSOCKS 1002 define IDHALT 1004 // Next default values for...

Linux Kernel 2.4.28/2.6.9 - Memory Leak Local Denial of Service

/ memory leak Copyright Georgi Guninski Cannot be used in vulnerability databases like securityfocus and mitre / include include include include include include include include include include int mainint ac,char av struct msghdr msghdr; struct iovec iovector10; int i,s,j,ma; struct sockaddrin...

Linux Kernel <= 2.6.9 <= 2.4.28 ip_options_get Local Overflow

No description provided by source. / int overflow in ipoptionsget Copyright Georgi Guninski Cannot be used in vulnerability databases like securityfocus and mitre / include unistd.h include stdlib.h include stdio.h include errno.h include ctype.h include string.h include sys/types.h include...

Linux Kernel 2.4.22-282.6.9 - igmp.c Local Denial of Service

Linux Kernel 2.4.22-282.6.9 - igmp.c Local Denial of Service / Linux igmp.c local DoS Warning: this code will crash your machine! gcc -O2 mreqfck.c -o mreqfck Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND...

Linux Kernel (<= 2.6.9 2.4.22-28) (igmp.c) Local Denial of Service Exploit

No description provided by source. / Linux igmp.c local DoS Warning: this code will crash your machine! gcc -O2 mreqfck.c -o mreqfck Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING...

Linux Kernel 2.4.28/2.6.9 - 'scm_send Local' Denial of Service

/ Linux kernel 2.4 & 2.6 scmsend DoS Warning! this code will hang your machine gcc -O2 scmbang.c -o scmbang Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING, PRINTING, DISTRIBUTION,...