HAVP sockethandler.cpp客户端连接拒绝服务漏洞

BUGTRAQ ID: 30697 CVECAN ID: CVE-2008-3688 HAVP（HTTP Antivirus Proxy）是ClamAV杀毒扫描器的代理。 HAVP的sockethandler.cpp文件没有正确地处理客户端请求，如果客户端通过squid三明治模式的HAVP连接到没有响应的服务器的话，HAVP就会一直读取没有响应的服务器直到RECVTIMEOUT，通常为2分钟。之后HAVP会重新尝试一个循环，而由于未初始化的变量，这个循环为死循环。 仅在使用父代理且父代理为不需解析的数字IP地址时才会出现这个漏洞。 Christian Hilgers HAVP 0.88...

webmail-passwordleak.txt

Name : Horde & Roundcube password leak vulnerability Author : Xc0re Security Reasearch Group Homepage : http://www.xc0re.net Description : Webmail clients such as Horde & Round Cube leak their username and password in a fashion that with every post request they also send a base64 encoded...

joomlaez-sql.txt

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

Joomla! Component EZ Store Remote - Blind SQL Injection

!/usr/bin/perl Note:Sometimes you have to change the regexp to viewcategory/catid,".$cid." use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component EZ Store Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print "...

Pligg <= 9.9.0 Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl -w use LWP::UserAgent; use MIME::Base64; use Digest::MD5 qwmd5hex; use Getopt::Std; getopts'h:', %args; print "\n"; print " Pligg = 9.9 Remote Code Execution Exploit \n"; print "\n"; dork = "Powered By Pligg" + "Legal: License and Source" Proxy...

Pligg <= 9.9.0 Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================ Pligg new; $http-agent'Mozilla/5.0 Windows; U; Windows NT 5.1; en-US; rv:1.9.0.1 Gecko/2008070208 Firefox/3.0.1'; $http-envproxy; cookiejar; my $host = $args'h' || usage; Host flag. Specify the...

HRS Multi - &#039;key&#039; Blind SQL Injection

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " Viva IslaMe Viva IslaMe \n"; print " HRS Multi Blind SQL Injection Exploit \n"; print " picturepicbv.asp key \n"; print " Author: Mr.SQL \n"; print " EMAIL : [email protected] \n"; print " \n"; print " -::...

Joomla! Component n-forms 1.01 - Blind SQL Injection

Joomla! Component n-forms 1.01 - Blind SQL Injection !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Mambot Component n-forms Blind SQL Injection Exploit \n"; print " Author:The Moorish :D \n"; print "...

Comparison Engine Power 1.0 - Blind SQL Injection

Comparison Engine Power 1.0 - Blind SQL Injection !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " VIVA ISLAME VIVA ISLAME \n"; print " VIVA ISLAME VIVA ISLAME \n"; print " \n"; print " Comparison Engine Power 1.0 Blind SQL Injection Exploit \n"; print " \n";...

joomlajooblog-sql.txt

!/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV1 print " \n"; print " \n"; print " Joomla Component JooBlog Blind SQL Injection Exploit \n"; print " Author:His0k4 ALGERIAN HaCkeR \n"; print " \n"; print " Conctact: His0k4.hlmatgamil.com \n"; print " Greetz: All friends & muslims...

FTP Server No Command Accepted (possible backdoor/proxy)

The remote server advertises itself as an FTP server, but it does not accept valid commands, which indicates that it may be a backdoor or a proxy. Further FTP tests on this port will be disabled to avoid false alerts. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...

FTP Server Any Command Accepted (possible backdoor/proxy)

The remote server advertises itself as being a FTP server, but it accepts any command, which indicates that it may be a backdoor or a proxy. Further FTP tests on this port will be disabled to avoid false alerts. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid32373;...

squid security update

CentOS Errata and Security Advisory CESA-2008:0214-01 Updated squid packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance...

squid security update

CentOS Errata and Security Advisory CESA-2008:0214 Updated squid packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance prox...

phptournois-exec.txt

Date: 04-06-08 - Remote Code Execution - Remote File Upload When testing if we are admin, phpTournois checks if $grade'a'=='a'. But when we are not loggued in, this var is not defined. So, using registerglobals, we can define it and let the CMS think we are authentificated. Using configuration zo...

Moderate: Red Hat Security Advisory: squid security update

Updated squid packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1, 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy caching server for Web clients, supporting FTP,...

phpTournois G4 - Arbitrary File Upload Code Execution

phpTournois G4 - Arbitrary File Upload Code Execution Date: 04-06-08 - Remote Code Execution - Remote File Upload When testing if we are admin, phpTournois checks if $grade'a'=='a'. But when we are not loggued in, this var is not defined. So, using registerglobals, we can define it and let the CM...

Webwasher content fitler DoS

Proxy hangs on URL parsing...

Nuked-Klan &lt;= 1.7.6 Multiple Vulnerabilities Exploit

?php / Name: Nuked-Klan = 1.7.6 Multiple Vulnerabilities Exploit Credits: Charles "real" F. charlesfolathotmail.fr URL: http://realn.free.fr/releases/46556 Date: 04-01-08 - Remote Code Execution - Remote File Upload - Admin Hash Extraction Remote Code Exec vulnerability used in this exploit was...

Website traffic deception and hung it to the newbie section-Vulnerability warning-the black bar safety net

Recently, I received some netizens Complain, saying that using a proxy IP visit the web site, always out of the blue to jump to another site, when removing a proxy IP, access to the site has returned to normal. And some even more, use a proxy IP when visiting a website, computers often poisoning...