120 matches found
ICMPExfil - Exfiltrate data with ICMP
ICMP Exfil allows you to transmit data via valid ICMP packets. You use the client script to pass in data you wish to exfiltrate, then on the device you're transmitting to you run the server. Anyone watching-- human or security system-- will just see valid ICMP packets, there's nothing malicious...
Manual Firewall changes for Veeam Backup from Storage Snapshot with Cisco HyperFlex IOvisor processing
Challenge This article describes making manual firewall changes for Veeam Backup from Storage Snapshot with Cisco HyperFlex IOvisor processing. For details on how to perform these firewall changes using a predefined VMware ESXi extension please review KB2298. HyperFlex Version Specific Article...
PCMAN FTP Server 2.0.7 DELETE Buffer Overflow
from ftplib import FTP print ''' Created: ScrR1pTK1dd13 Name: Greg Priest Mail: [email protected] Exploit Title: PCmanftpddeletecommandremotecodeexploitWin7x64HUNENG Date: 2016.10.31 Exploit Author: Greg Priest Version: Pcmanftpd 2.0.7 Tested on: Windows 7 Enterprise x64 HUN/ENG '''...
FreeFTPd 1.0.8 mkd Denial Of Service
from ftplib import FTP print ''' ,;'++';, '++++++++++++++++; .+++++++++++++++++++++++' ;++++++: :++++++: '++++' , +. :; . .'++++; :++++, '+ +.+.++':+:+ +: + :++++, ++++, + ++.++':+.+ +:'.+. :++++ ,+++; + +:':++',++,++.+:+ +, '+++. '+++ ++ ;+ ,+:'; ,: ;;+++ +.++. +++; +++; : ++' + '+++ :++;++,+: +...
PCMan FTP Server 2.0.7 - 'DELETE' Remote Buffer Overflow
from ftplib import FTP print ''' Created: ScrR1pTK1dd13 Name: Greg Priest Mail: [email protected] Exploit Title: PCmanftpddeletecommandremotecodeexploitWin7x64HUNENG Date: 2016.10.31 Exploit Author: Greg Priest Version: Pcmanftpd 2.0.7 Tested on: Windows 7 Enterprise x64 HUN/ENG '''...
ManageEngine Desktop Central 9 Build 90087 - CSRF Vulnerability
Exploit for jsp platform in category web applications :8020/STATEID/1417736606982/roleMgmt.do?actionToCall=addUser&SUBREQUEST=XMLHTTP" method="POST" input type="hidden" name="newDCAu...
A method can ignore the CDN to find the true IP DDOS and intrusion-vulnerability warning-the black bar safety net
This vulnerability,==should not count the vulnerability. But the impact of range is great, the current acceleration music, website defender, Baidu cloud acceleration, security, treasure, etc the CDN can beat the exhilaration of, a variety of high - DDOSand CC Defense, but this hole can ignore the...
K-Shell by kikicoco VHS version 1.2 edition (.aspx)
Данная утилита предназначенна для системных администраторов для удаленного управления своим сервером. Любое незаконное использование скрипта преследуется по закону. last update: 06.05.2013 21:20 Что может: Wso-style Server IP Client IP HostName Username OS Version IIS Version System Dir...
金蝶内部员工系统目录遍历、泄露服务器集群IP、财务收入报表等数据
简要描述: 配置错误导致遍历漏洞,监控log文件报告,可以找到关键sql语句 内部敏感数据遍历下载,服务器集群ip泄露,财务收入报表随意下载,危险程度自知! 详细说明: http://kdeas.kingdee.com//easWebClient/ http://kdeas.kingdee.com/nap/ http://kdeas.kingdee.com//client/ http://global.kingdee.com/en/products/kis/...
Microsoft Word UNC Path Injector
This module modifies a .docx file that will, upon opening, submit stored netNTLM credentials to a remote host. It can also create an empty docx file. If emailed the receiver needs to put the document in editing mode before the remote server will be contacted. Preview and read-only mode do not wor...
DaqFactory HMI NETB Request Overflow
$Id: daqfactorybof.rb 13756 2011-09-19 11:38:49Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
DaqFactory HMI NETB Request Overflow
Exploit for windows platform in category remote exploits $Id: daqfactorybof.rb 13750 2011-09-18 02:45:55Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...
BNAT Router
This module will properly route BNAT traffic and allow for connections to be established to machines on ports which might not otherwise be accessible. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0957-1)
Icedtea included in java-160-openjdk was updated to version 1.7.5/1.8.2/1.9.1 to fix several security issues : - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition - S6891766, CVE-2010-3554: OpenJDK corba reflecti...
CVE-2010-1157
Apache Tomcat 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 might allow remote attackers to discover the server's hostname or IP address by sending a request for a resource that requires 1 BASIC or 2 DIGEST authentication, and then reading the realm field in the WWW-Authenticate header in the rep...
Boa 0.93.15 - HTTP Basic Authentication Bypass
/ Boa HTTP Basic Authentication Bypass Vuln: Boa/0.93.15 with Intersil Extensions Original Advisory: http://www.securityfocus.com/archive/1/479434 http://www.ikkisoft.com/stuff/SN-2007-02.txt Luca "ikki" Carettoni http://www.ikkisoft.com / ---- !/usr/bin/env python import urllib2 SERVERIPADDRESS ...
Rational Software Hidden Administrator 1.7 Auth Bypass Exploit
No description provided by source. Hidden Administrator Authenticaiton Bypass Exploit ahmedatrewterz.com http://www.securityfocus.com/bid/24049 &...
nukesentinel-disclose.txt
!/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ Support us: Just click once on our publicity ; ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url...
NukeSentinel 2.5.05 - 'nukesentinel.php' File Disclosure
!/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url http://www.victim.com/ -file config.php Options:...
Получение реального IP сервера Lotus Domino (information leakage)
С помощью запроса GET //////////// HTTP/1.0 можно получить сведения о реальном IP Сервера...