contentnow 1.30 (local/upload/delete) Multiple Vulnerabilities

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! ContentNow 1.30 Local File Include & Arbitrary File Upload/Delete Vulnerabilities Software: ContentNow 1.30 Vulnerabilities Vendor: http://www.contentnow.mf4k.de/ Released: 2006/11/13 Discovered By: r0ut3r writ3r at g...

torrentflux <= 2.2 (create/exec/delete) Multiple Vulnerabilities

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! TorrentFlux 2.2 Arbitrary File Creation/Overwrite/Deletion & Command Execution Vulnerablities Software: TorrentFlux 2.2 Vendor: http://www.torrentflux.com/ Released: 2006/11/15...

CoolPlayer 2.19 - (Skin File) Local Buffer Overflow Exploit

No description provided by source. / CoolPlayer 2.19 Skin File Local Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/43/ Test box: WinXP Pro SP2 English Code reference is in skin.c, lines 464 - 480 Written and discovered by: r0ut3r writ3r at gmail.com / www.bmgsec.com.au /...

FreeSSHd 1.2.1 (rename) Remote Buffer Overflow Exploit (SEH)

No description provided by source. FreeSSHd 1.2.1 rename Remote Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/45/ Original: http://www.bmgsec.com.au/advisory/32/ Related : http://www.bmgsec.com.au/advisory/42/ Test box: WinXP Pro SP2 English Exploit code for a vulnerability ...

W3C Amaya 10.1 Web Browser - &#039;id&#039; Remote Stack Overflow (PoC)

W3C Amaya 10.1 Web Browser Amaya id Remote Stack Overflow Vulnerability Written and discovered by: r0ut3r writ3r at gmail.com / www.bmgsec.com.au Advisory: http://www.bmgsec.com.au/advisory/41/ ------------------------------------------------------ Shellcode notes: The application fails to...

VeryPDF PDFView - OCX ActiveX OpenPDF Heap Overflow (PoC)

Sub Boom buff = String1006, "A" target.OpenPDF buff, 1, 1 End Sub milw0rm.com 2008-11-15...

IntelliTamper 2.07 - imgsrc Remote Buffer Overflow

IntelliTamper 2.07 - imgsrc Remote Buffer Overflow / IntelliTamper 2.07 imgsrc Remote Buffer Overflow Expoit Discovered & Written by r0ut3r writ3r at gmail.com Many Thanks to Luigi Auriemma http://aluigi.org Greets to shinnai http://www.shinnai.net and Guido Landi IntelliTamper contains a remote...

IntelliTamper 2.0.7 (html parser) Remote Buffer Overflow Exploit (c)

No description provided by source. / IntelliTamper 2.0.7 html parser Remote Buffer Overflow Just a C version of Guido Landi's discovery. Written by r0ut3r writ3r at gmail.com kit:/home/r0ut3r/publichtml gcc -o intell intell.c kit:/home/r0ut3r/publichtml ./intell + Building payload + Success writi...

IntelliTamper 2.0.7 - HTML Parser Remote Buffer Overflow (C)

IntelliTamper 2.0.7 - HTML Parser Remote Buffer Overflow C / IntelliTamper 2.0.7 html parser Remote Buffer Overflow Just a C version of Guido Landi's discovery. Written by r0ut3r writ3r at gmail.com kit:/home/r0ut3r/publichtml gcc -o intell intell.c kit:/home/r0ut3r/publichtml ./intell + Building...

IntelliTamper 2.0.7 - HTML Parser Remote Buffer Overflow

/ IntelliTamper 2.0.7 html parser Remote Buffer Overflow Just a C version of Guido Landi's discovery. Written by r0ut3r writ3r at gmail.com kit:/home/r0ut3r/publichtml gcc -o intell intell.c kit:/home/r0ut3r/publichtml ./intell + Building payload + Success writing to index.html...

Document Imaging SDK 10.95 ActiveX Buffer Overflow PoC

No description provided by source. !-- Document Imaging SDK Buffer Overflow Vulnerability DoS Proof of concept Author: r0ut3r Mail : writ3r at gmail.com ----------------------------- -Tested on WinXP Pro SP2 Version: 10.95 Vendor : Black Ice Software Price : $999 File : biimgfrm.ocx CLSID:...

Xpression News 1.0.1 (archives.php) Remote File Disclosure Exploit

Exploit for unknown platform in category web applications ================================================================== Xpression News 1.0.1 archives.php Remote File Disclosure Exploit ================================================================== r0ut3r Presents... Another r0ut3r...

Xpression News 1.0.1 (archives.php) Remote File Disclosure Exploit

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com XNews Remote File Disclosure Exploit Software: Xnews 1.0.1 Vendor: http://xpression.hogsmeade-village.com/ Released: 2007/01/28 Discovered & Exploit By: r0ut3r writ3...

Xpression News 1.0.1 - archives.php Remote File Disclosure

Xpression News 1.0.1 - archives.php Remote File Disclosure r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com XNews Remote File Disclosure Exploit Software: Xnews 1.0.1 Vendor: http://xpression.hogsmeade-village.com/ Released: 2007/01/28 Discovered & Exploit By: r0ut3r writ3r at...

Xpression News 1.0.1 - &#039;archives.php&#039; Remote File Disclosure

r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com XNews Remote File Disclosure Exploit Software: Xnews 1.0.1 Vendor: http://xpression.hogsmeade-village.com/ Released: 2007/01/28 Discovered & Exploit By: r0ut3r writ3r at gmail.com...

votepro40-exec.txt

r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com Vote-Pro Code Injection 0day Exploit Software: Vote-Pro 4.0 Vendor: http://www.vote-pro.com/ Released: 2007/01/23 Discovered & Exploit By: r0ut3r writ3r at gmail.com Note: The information provided in this document is for Vote-Pro...

Vote-Pro 4.0 - poll_frame.php?poll_id Remote Code Execution

Vote-Pro 4.0 - pollframe.php?pollid Remote Code Execution r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com Vote-Pro Code Injection 0day Exploit Software: Vote-Pro 4.0 Vendor: http://www.vote-pro.com/ Released: 2007/01/23 Discovered & Exploit By: r0ut3r writ3r at gmail.com...

Vote-Pro 4.0 (poll_frame.php poll_id) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =================================================================== Vote-Pro 4.0 pollframe.php pollid Remote Code Execution Exploit =================================================================== r0ut3r Presents... Another r0ut3r...

Vote-Pro 4.0 - &#039;poll_frame.php?poll_id&#039; Remote Code Execution

r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com Vote-Pro Code Injection 0day Exploit Software: Vote-Pro 4.0 Vendor: http://www.vote-pro.com/ Released: 2007/01/23 Discovered & Exploit By: r0ut3r writ3r at gmail.com...

TorrentFlux 2.2 - &#039;maketorrent.php&#039; Remote Command Execution

The variable announce in maketorrent.php is not sanitised before being used. The announce variable goes through various stages throughout the script, then it is passed as a into an exec function. This occurs in the middle of the string which is passed to the exec function. Therefore it is possibl...