Buffer overflow

Multiple buffer overflows in RealNetworks Helix Server and Helix Mobile Server 11.x before 11.1.8 and 12.x before 12.0.1 allow remote attackers to 1 cause a denial of service via three crafted RTSP SETUP commands, or execute arbitrary code via 2 an NTLM authentication request with malformed...

Simple Machines Forum (SMF) 1.0.13/1.1.5 - 'Destroyer 0.1' Password Reset Security Bypass

!/usr/bin/perl use LWP::UserAgent; use Getopt::Std; use LWP::Simple; use HTTP::Request; Author: Xianur0 Uxmal666atgmail.com Cracks links Password Recovery Find Temporary Files executed by mods DB function Flood by Error Log File Path Disclosure List installed Mods Useful To Find Mods Vulnerable...

Simple Machines Forum - Destroyer 0.1

Exploit for unknown platform in category web applications ===================================== Simple Machines Forum - Destroyer 0.1 ===================================== !/usr/bin/perl use LWP::UserAgent; use Getopt::Std; use LWP::Simple; use HTTP::Request; Author: Xianur0 Uxmal666atgmail.com...

The times-the level of WEP crack full power slightly-vulnerability warning-the black bar safety net

With the rapid development of network technology and network applications, more and more, many users began to focus on network security. Believe the wired network to the wireless network in terms of security there is inherent, since the communication medium is a wireless signal, so the intruder c...

Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor :...

Openfire Server 3.6.0a - Authentication Bypass / SQL Injection / Cross-Site Scripting

Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Server = 3.6.0a Remotely Exploitable: Yes Risk:...

vicftp-dos.txt

include include include define z00roa memseta,0,sizeofa; //greetings : SiD.psycho //Smallest greetings : Gorion - lofamy cIem We want be like y0U : unsigned int setportconst char port ifatoiport==0 || atoiport0 return 21; return atoiport; int mainint argc,char argv...

eventscal-rfi.txt

Events Calendar 1.1 Remote File Inclusion Vulnerability ======================================================== Author: kevin mitnick tunisianblackhat team = = Home : http://tunisianblackhat.com = = email: kevinmitnickAlive.fr = = ========================================================= script ...

Gentoo Security Advisory GLSA 200412-06 (PHProjekt)

The remote host is missing updates announced in advisory GLSA 200412-06. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-1641-1 phpmyadmin - several issues

Bulletin has no description...

DEBIAN-CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

Cross site scripting

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

Security Bypass Vulnerabilities AXESSTEL

Bboyhacks bboyhacksatgmail.com AXESS.TEL CDMA 1xEV-DO FIXED WIRELESS MODEN AXW-D800 S/W Version:D2ETH10901VEBR Jun-14-2006 Default LAN IP: 192.168.0.1 http thttpd 2.25b Security Bypass Vulnerabilities basic setup http://192.168.0.1/etc/config/System.html Network...

Cygwin setup packages spoofing

Package source authentity is not checked during installation procedure...

python written oracle database passwords scanning tools-vulnerability warning-the black bar safety net

Nothing else, write a small tool. Sweep the oracle password. The level is limited, the python did not get to the bottom, even in the writing tool of the time"or"this conditional statement will not. So everyone will. -----------------------oracle's password,user scan -----------------------code by...

MyBlog 0.9.8 - Multiple Remote Information Disclosure Vulnerabilities

MyBlog 0.9.8 - Multiple Remote Information Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/30310/info MyBlog is prone to multiple information-disclosure vulnerabilities because the application fails to properly restrict access to sensitive files. An unprivileged attacker may...

Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit

No description provided by source. // Bea Weblogic -- Apache Connector Remote Exploit +-1day // Should stack break latest Windows Server 2003 address space randomization // BIG THANKS TO // "dong-hun you"Xpl017Elz in INetCop - for his paper // "Title: Advanced exploitation in exec-shield Fedora...

Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit

Exploit for unknown platform in category remote exploits =================================================================== Bea Weblogic Apache Connector Code Exec / Denial of Service Exploit =================================================================== // Bea Weblogic -- Apache Connector...