Lucene search
K

2315 matches found

Packet Storm
Packet Storm
added 2010/06/12 12:0 a.m.17 views

Solarwindws TFTP Server 10.4.0.13 Denial Of Service

!/usr/bin/python print "\n" print " Nullthreat Network" print " Solarwinds TFTP Server Ver. 10.4.0.13" print " Elliott "Nullthreat" Cutright" print " [email protected]" print "" print "\n" Summary: An long Write Request 1000 A's will cause SolarWinds TFTP Server to crash. Tested on:...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2010/05/06 12:0 a.m.30 views

Ziepod+ 1.0 Cross Application Scripting

!/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2010/04/16 6:48 p.m.13 views

Cisco Plugs Critical Secure Desktop ActiveX Hole

The Cisco Secure Desktop contains a vulnerable ActiveX control that could allow an attacker to execute arbitrary code with the privileges of the user who is currently logged into the affected system, according to a warning from the networking vendor. The company issued a patch alongside a warning...

2.8AI score
Exploits0References2
Exploit DB
Exploit DB
added 2010/04/06 12:0 a.m.40 views

McAfee Email Gateway (formerly IronMail) - Internal Information Disclosure

Advisory Name: Internal Information Disclosure in McAfee Email Gateway formerly IronMail Vulnerability Class: Information Disclosure Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected Platforms: FreeBSD 6.2 / Apache-Coyote 1.1 Local / Remote: Local...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/04/06 12:0 a.m.31 views

McAfee Email Gateway (formerly IronMail) - Local Privilege Escalation

McAfee Email Gateway formerly IronMail - Local Privilege Escalation Advisory Name: Local Privilege Escalation in McAfee Email Gateway formerly IronMail Vulnerability Class: Local Privilege Escalation Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/12/28 12:0 a.m.44 views

M.J.M. Quick Player 1.2 - Local Stack Buffer Overflow

Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M. Quick Player Versions affected : 1.2...

7.4AI score
Exploits0
myhack58
myhack58
added 2009/12/03 12:0 a.m.22 views

OpenX <= 2.8.1 execute arbitrary PHP code-exploits warning-the black bar safety net

Test method: OpenX adserver version 2.8.1 and lower is vulnerable to remote code execution. To be exploited, this vulnerability requires banner / file upload permissions, such as granted to the 'advertiser' and 'administrator' roles. This vulnerability is caused by the insecure file upload...

Exploits0
securityvulns
securityvulns
added 2009/11/05 12:0 a.m.49 views

NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow

Security Advisory NSOADV-2009-001 Title: Symantec ConsoleUtilities ActiveX Control Buffer Overflow Severity: Critical Advisory ID: NSOADV-2009-001 Found Date: 09.09.2009 Date Reported: 15.09.2009 Release Date: 02.11.2009 Author: Nikolas Sotiriu Mail: nso-research at sotiriu.de URL:...

9.3CVSS6.7AI score0.45435EPSS
Exploits16
ThreatPost
ThreatPost
added 2009/10/30 1:53 p.m.57 views

Microsoft Cleans Up Bugs After Biggest Patch Release

After releasing its largest-ever group of security patches two weeks ago, Microsoft has done a little cleaning up. Over the past few days, the company has re-released two security updates and issued a workaround for a Windows CryptoAPI patch that caused Microsoft’s own instant-messaging server to...

9.3CVSS1.1AI score0.99945EPSS
Exploits33References2
0day.today
0day.today
added 2009/10/08 12:0 a.m.23 views

DreamPoll 3.1 Vulnerabilities

Exploit for unknown platform in category web applications ============================= DreamPoll 3.1 Vulnerabilities ============================= During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/10/08 12:0 a.m.11 views

DreamPoll 3.1 - SQL Injection

DreamPoll 3.1 - SQL Injection During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2009/09/22 12:0 a.m.64 views

Linux Kernel get_random_int函数不充分随机数漏洞

Linux kernel 2.6.x CVE ID: CVE-2009-3238 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的drivers/char/random.c文件中的getrandomint函数所生成的随机数随机性不够,攻击者可以相对容易的预测返回值,绕过基于随机化的保护机制。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

7.8CVSS0.1AI score0.01632EPSS
Exploits2
securityvulns
securityvulns
added 2009/09/15 12:0 a.m.36 views

Local privilege escalation vulnerability in Protector Plus Antivirus &#40;Proland Software&#41;

ShineShadow Security Report 15092009-09 TITLE Local privilege escalation vulnerability in Protector Plus antivirus software BACKGROUND Protector Plus range of antivirus products are known the world over for their efficiency and reliability. Protector Plus Antivirus Software is available for Windo...

3.2AI score
Exploits0
0day.today
0day.today
added 2009/09/10 12:0 a.m.17 views

KSP 2009R2 (m3u) Universal Local Buffer Overflow Exploit (SEH)

Exploit for unknown platform in category local exploits ============================================================== KSP 2009R2 m3u Universal Local Buffer Overflow Exploit SEH ============================================================== !/usr/bin/python Found By :: HACK4LOVE KSP 2009R2 m3u...

6.8AI score
Exploits0
0day.today
0day.today
added 2009/08/18 12:0 a.m.13 views

Traidnt UP 2.0 Remote SQL Injection Exploit

Exploit for unknown platform in category web applications =========================================== Traidnt UP 2.0 Remote SQL Injection Exploit =========================================== !/usr/bin/ruby ============================================= Traidnt UP v2.0 Exploit SQL Injection...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/06/30 12:0 a.m.14 views

Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ======================================================== Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability ======================================================== --:remote file include:-- --------------------------------- script:J...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/06/26 12:0 a.m.36 views

PHP Address Book 4.0.x SQL Injection

-------------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.X-- -------------------------------------------------------------------- CMS INFORMATION: --WEB: http://sourceforge.net/projects/php-addressbook/ --DOWNLOAD:...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2009/06/22 12:0 a.m.31 views

FretsWeb 1.2 &#40;name&#41; Remote Blind SQL Injection Exploit

!/usr/bin/python || || || ----------------------------------------- == -- ----------- ---------------------------- ------------------/ VIVA SPAIN!... GANAREMOS EL MUNDIAL!...o.O PROUD TO BE SPANIS...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2009/06/17 12:0 a.m.25 views

FretsWeb 1.2 - name Blind SQL Injection

FretsWeb 1.2 - name Blind SQL Injection !/usr/bin/python || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ VIVA SPAIN!... GANAREMOS EL MUNDIAL!...o.O PROUD TO BE SPANISH!...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/01 12:0 a.m.45 views

Online Grades &amp; Attendance 3.2.6 - Multiple SQL Injections

|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTIPLE SQL...

7AI score
Exploits0
Rows per page
Query Builder