897 matches found
CVE-2012-1803
RuggedCom Rugged Operating System ROS 3.10.x and earlier has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote attackers to obtain access by performing a calculation on this address value, and then establishing a 1 TELNET, 2 remot...
FreePBX 2.10.0 Elastix 2.2.0 - Remote Code Execution
FreePBX 2.10.0 Elastix 2.2.0 - Remote Code Execution !/usr/bin/python Exploit Title: FreePBX / Elastix pre-authenticated remote code execution exploit Google Dork: oy vey Date: March 23rd, 2012 Author: muts Version: FreePBX 2.10.0/ 2.9.0, Elastix 2.2.0, possibly others. Tested on: multiple CVE :...
Zen Cart v.1.5.0 Remote Shell Upload
Exploit for php platform in category web applications Remote Shell Upload Vulnerability DaTe : 5.3.2012 Version : 1.5.0 Tested on: Linux " Ubuntu " , "win 7" Author : Mr.ExiT OrPh4n Email : email protected Site : sh4ck.com + v99x.com Dork : "Powered by Zen Cart" Software Link:...
Gaining a Remote Shell on Android
The security of Android devices has come under quite a lot of scrutiny in recent months, with researchers identifying various root exploits and permission leaks that could be exploited. In this video, researcher Thomas Cannon of ViaForensics demonstrates a method for setting up a remote shell on ...
eEye Retina audit script could execute untrusted programs as root
Overview eEye Retina audit scripts have the capability to run remote shell scripts in order to determine vulnerable applications. One audit script in particular audit ID 2499 uses find1 and execute -exec when assessing a vulnerability within Gauntlet Firewall. An attacker who can write an...
CoDeSyS-SCADA-Server
CoDeSyS SCADA Exploit. Vulnerability occurs while parsing long HTTP requests in webserver. import string, sys import socket, httplib import telnetlib Target = sys.argv1 Port = intsys.argv2 ShellcodeType = sys.argv3 def howtousage: print "Sorry, required arguments: Host Port" sys.exit-1 def run:...
Multi Manage System Remote TCP Shell Session
This module will create a Reverse TCP Shell on the target system using the system's own scripting environments installed on the target. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi...
KnFTP-Server
This exploit overwrite EIP and SEH is overwritten with larger payloads knftpd.exe is the only non safeseh module ToDo: Add remote shell ToDo: Test vulnerable targets...
Sagem Router Fast 3304 / 3464 / 3504 Telnet Bypass
!/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Tested Router: SAGEM FAST 3304-V2 Tested on Resellers/ISPs: Wanadoo...
Sagem Router Fast 330434643504 - Telnet Authentication Bypass
Sagem Router Fast 330434643504 - Telnet Authentication Bypass !/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Teste...
Sagem Router Fast 3304/3464/3504 Telnet Authentication Bypass
Exploit for windows platform in category remote exploits !/home/bin/python Remote Exploit: SAGEM ROUTER FAST 3304/3464/3504 - Telnet Authentication bypass Date: 15-August-2011 Author: Elouafiq Ali Version: 3304-V1 / 3304-V2 / 3464 / 3504 Tested on: Linux Ubuntu 11.04, Linux Backtrack 5 Tested...
HP Data Protector Remote Root Shell for Linux
Exploit for linux platform in category remote exploits !/bin/bash Exploit Title: HP Data Protector Remote Root Shell for Linux Date: 2011-08-10 Author: SZ Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on:...
HP Data Protector (HP-UX) - Remote Shell
HP Data Protector HP-UX - Remote Shell !/bin/bash Exploit Title: HP Data Protector Remote Shell for HPUX Date: 2011-08-02 Author: Adrian Puente Z. Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on: HPUX CV...
HP Data Protector (HP-UX) - Remote Shell
!/bin/bash Exploit Title: HP Data Protector Remote Shell for HPUX Date: 2011-08-02 Author: Adrian Puente Z. Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on: HPUX CVE: CVE-2011-0923 Notes: ZDI-11-055...
HP Data Protector Remote Shell
!/bin/bash Exploit Title: HP Data Protector Remote Shell for HPUX Date: 2011-08-02 Author: Adrian Puente Z. Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on: HPUX CVE: CVE-2011-0923 Notes: ZDI-11-055...
HP Data Protector Remote Shell for HP-UX
Exploit for hp-ux platform in category remote exploits !/bin/bash Exploit Title: HP Data Protector Remote Shell for HPUX Author: Adrian Puente Z. Software Link:http://www8.hp.com/us/en/software/software- product.html?compURI=tcm:245-936920&pageTitle=data-protector Version: 0.9 Tested on: HPUX CVE...
Two security issues fixed in ioQuake3 engine
Hello, Quake 3 is a popular online first person shooter developed by IDsoftware 1 that has been released in 1999 and is still widely played. After the release of the source code under the GPL, the ioQuake3 project 2 was started that is dedicated to maintaining the existing codebase. Several game...
Openslaed 1.2 Remote Shell Upload
?php / Vendor: www.slaed.net Download : http://www.slaed.net/uploads/files/public/openslaed.zip exploited by ..: eidelweiss Affected: Version 1.2 Other or lowers version may also be affected Greetz: yogyacarderlink Team, devilzc0de Team, Nofia Fitri unyu², whitehat, petimati, psycothicgirl, viska...
Nodesforum 1.059 Remote File Inclusion
Exploit Title: nodesforum 1.059 Remote File Inclusion Vulnerability Google Dork: inurl: powered by Nodesforum Date: 6/23/2011 Author: bd0rk bd0rkathackermail.com Software-Download: http://home.nodesforum.com/download?file=nodesforum1.059withbbcode1.004.zip Tested on: Ubuntu-Linux / WinVista...
Joomla 1.6.x Administrator PHP Code Execution
Requirements require 'msf/core' Class declaration class Metasploit3 'Joomla 1.6. Administrator PHP Code Execution', 'Description' = %q This module can be used to gain a remote shell to a Joomla! 1.6. install when administrator credentials are known. This is acheived by uploading a malicious...