2315 matches found
Solarwindws TFTP Server 10.4.0.13 Denial Of Service
!/usr/bin/python print "\n" print " Nullthreat Network" print " Solarwinds TFTP Server Ver. 10.4.0.13" print " Elliott "Nullthreat" Cutright" print " [email protected]" print "" print "\n" Summary: An long Write Request 1000 A's will cause SolarWinds TFTP Server to crash. Tested on:...
Ziepod+ 1.0 Cross Application Scripting
!/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...
Cisco Plugs Critical Secure Desktop ActiveX Hole
The Cisco Secure Desktop contains a vulnerable ActiveX control that could allow an attacker to execute arbitrary code with the privileges of the user who is currently logged into the affected system, according to a warning from the networking vendor. The company issued a patch alongside a warning...
McAfee Email Gateway (formerly IronMail) - Internal Information Disclosure
Advisory Name: Internal Information Disclosure in McAfee Email Gateway formerly IronMail Vulnerability Class: Information Disclosure Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected Platforms: FreeBSD 6.2 / Apache-Coyote 1.1 Local / Remote: Local...
McAfee Email Gateway (formerly IronMail) - Local Privilege Escalation
McAfee Email Gateway formerly IronMail - Local Privilege Escalation Advisory Name: Local Privilege Escalation in McAfee Email Gateway formerly IronMail Vulnerability Class: Local Privilege Escalation Release Date: Tue Apr 6, 2010 Affected Applications: Secure Mail Ironmail ver.6.7.1 Affected...
M.J.M. Quick Player 1.2 - Local Stack Buffer Overflow
Vulnerability : M.J.M. Quick Player v1.2 Stack BOF Discovered by : mrme seeleymagicathotmaildotcom Sploit written by : corelanc0d3r corelanc0d3ratgmaildotcom Sploit released : dec 28th, 2009 Type : local and remote code execution OS : Windows Product : M.J.M. Quick Player Versions affected : 1.2...
OpenX <= 2.8.1 execute arbitrary PHP code-exploits warning-the black bar safety net
Test method: OpenX adserver version 2.8.1 and lower is vulnerable to remote code execution. To be exploited, this vulnerability requires banner / file upload permissions, such as granted to the 'advertiser' and 'administrator' roles. This vulnerability is caused by the insecure file upload...
NSOADV-2009-001: Symantec ConsoleUtilities ActiveX Control Buffer Overflow
Security Advisory NSOADV-2009-001 Title: Symantec ConsoleUtilities ActiveX Control Buffer Overflow Severity: Critical Advisory ID: NSOADV-2009-001 Found Date: 09.09.2009 Date Reported: 15.09.2009 Release Date: 02.11.2009 Author: Nikolas Sotiriu Mail: nso-research at sotiriu.de URL:...
Microsoft Cleans Up Bugs After Biggest Patch Release
After releasing its largest-ever group of security patches two weeks ago, Microsoft has done a little cleaning up. Over the past few days, the company has re-released two security updates and issued a workaround for a Windows CryptoAPI patch that caused Microsoft’s own instant-messaging server to...
DreamPoll 3.1 Vulnerabilities
Exploit for unknown platform in category web applications ============================= DreamPoll 3.1 Vulnerabilities ============================= During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the...
DreamPoll 3.1 - SQL Injection
DreamPoll 3.1 - SQL Injection During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client...
Linux Kernel get_random_int函数不充分随机数漏洞
Linux kernel 2.6.x CVE ID: CVE-2009-3238 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的drivers/char/random.c文件中的getrandomint函数所生成的随机数随机性不够,攻击者可以相对容易的预测返回值,绕过基于随机化的保护机制。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Local privilege escalation vulnerability in Protector Plus Antivirus (Proland Software)
ShineShadow Security Report 15092009-09 TITLE Local privilege escalation vulnerability in Protector Plus antivirus software BACKGROUND Protector Plus range of antivirus products are known the world over for their efficiency and reliability. Protector Plus Antivirus Software is available for Windo...
KSP 2009R2 (m3u) Universal Local Buffer Overflow Exploit (SEH)
Exploit for unknown platform in category local exploits ============================================================== KSP 2009R2 m3u Universal Local Buffer Overflow Exploit SEH ============================================================== !/usr/bin/python Found By :: HACK4LOVE KSP 2009R2 m3u...
Traidnt UP 2.0 Remote SQL Injection Exploit
Exploit for unknown platform in category web applications =========================================== Traidnt UP 2.0 Remote SQL Injection Exploit =========================================== !/usr/bin/ruby ============================================= Traidnt UP v2.0 Exploit SQL Injection...
Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ======================================================== Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability ======================================================== --:remote file include:-- --------------------------------- script:J...
PHP Address Book 4.0.x SQL Injection
-------------------------------------------------------------------- MULTIPLE SQL INJECTION VULNERABILITIES --PHP-AddressBook v-4.0.X-- -------------------------------------------------------------------- CMS INFORMATION: --WEB: http://sourceforge.net/projects/php-addressbook/ --DOWNLOAD:...
FretsWeb 1.2 (name) Remote Blind SQL Injection Exploit
!/usr/bin/python || || || ----------------------------------------- == -- ----------- ---------------------------- ------------------/ VIVA SPAIN!... GANAREMOS EL MUNDIAL!...o.O PROUD TO BE SPANIS...
FretsWeb 1.2 - name Blind SQL Injection
FretsWeb 1.2 - name Blind SQL Injection !/usr/bin/python || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ VIVA SPAIN!... GANAREMOS EL MUNDIAL!...o.O PROUD TO BE SPANISH!...
Online Grades & Attendance 3.2.6 - Multiple SQL Injections
|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ---------------------------------------------------------------------------------------------- | MULTIPLE SQL...