12 matches found
South River Technologies Privilege Escalation
South River Technologies WebDrive Service Bad Security Descriptor Local Elevation Of Privileges by Nine:Situations:Group::bellick site: http://retrogod.altervista.org/ Software site: http://www.webdrive.com/ Download location: http://www.webdrive.com/download/index.html Tested against: South Rive...
EPSON Status Monitor 3 local privilege escalation vulnerability
------- EPSON Status Monitor 3 local privilege escalation vulnerability -------- by Nine:Situations:Group::bruiser site: http://retrogod.altervista.org/ -------------------------------------------------------------------------------- After that pyrokinesis found:...
Google Chrome - 'ChromeHTML://' Remote Parameter Injection
click me milw0rm.com 2008-12-23...
Exodus v0.10 uri handler arbitrary parameter injection
-------------------------------------------------------------------------------- Exodus v0.10 uri handler arbitrary parameter injection by Nine:Situations:Group::strawdog tested against IE8b/xpsp3 may not work against non-English systems because of an installation bug...
MS Windows DirectSpeechSynthesis Module Remote BoF Exploit win2k
No description provided by source. !-- 01/06/2007 23.19.50 Microsoft Windows DirectSpeechSynthesis Module XVoice.dll / DirectSpeechRecognition Module Xlisten.dll remote buffer overflow exploit / 2k sp4 seh version both the dlls are located in %SystemRoot%\speech folder and they are vulnerable to...
IE 6 / Dart Communications PowerTCP ZIP Compression Control (DartZip.dll 1.8.5.3) remote buffer overflow
!-- IE 6 / Dart Communications PowerTCP ZIP Compression Control DartZip.dll 1.8.5.3 remote buffer overflow exploit / xp sp2 it by rgod site: retrogod.altervista.org software site: www.dart.com -- html object classid='clsid:42BA826E-F8D8-4D8D-8C05-14ABCE99D4DD' id='DartZip'/object script...
ThWboard <= 3.0b2.84-php5 SQL Injection / Code Execution Exploit
No description provided by source. ?php printr' ----------------------------------------------------------------------------- ThWboard =3.0 beta 2.84-php5 boardstyleid sql injection / cmd exec exploit by rgod dork: "powered by ThWboard" version specific: "powered by ThWboard 3 Beta 2.84-php5" "by...
ThWboard 3.0b2.84-php5 - SQL Injection / Code Execution
?php printr' ----------------------------------------------------------------------------- ThWboard =3.0 beta 2.84-php5 boardstyleid sql injection / cmd exec exploit by rgod dork: "powered by ThWboard" version specific: "powered by ThWboard 3 Beta 2.84-php5" "by Baecher & Gonschorek" mail: retrog...
Flatnuke 2.5.8 - 'userlang' Local Inclusion / Delete All Users
!/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if...
pppBlog 0.3.8 - System Disclosure
pppBlog 0.3.8 - System Disclosure !/usr/bin/php -q -d shortopentag=on ? echo "pppBlog = 0.3.8 system disclosure exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: intext:"Powered by pppblog"\r\n\r\n"; / works with:...
phpMyChat 0.15.0dev - SYS enter Remote Code Execution
phpMyChat 0.15.0dev - SYS enter Remote Code Execution !/usr/bin/php -q -d shortopentag=on works with magicquotesgpc=Off\r\n\r\n"; echo "dork: intext:"2000-2001 The phpHeaven Team" -sourceforge\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host path cmd OPTIONS\r\n"; echo "host: target server...
iGENUS WebMail 2.0.2 - config_inc.php Remote Code Execution
iGENUS WebMail 2.0.2 - configinc.php Remote Code Execution !/usr/bin/perl use IO::Socket; print "\r\n"; print "iGENUS WebMail works against PHP5 with registerglobals = On\r\n"; print " & allowurlfopen = On\r\n"; print "by rgod rgodautisticiorg\r\n"; print "site:...