400 matches found
Qmail SMTP Bash Environment Variable Injection (Shellshock)
This module exploits a shellshock vulnerability on Qmail, a public domain MTA written in C that runs on Unix systems. Due to the lack of validation on the MAIL FROM field, it is possible to execute shell code on a system with a vulnerable BASH Shellshock. This flaw works on the latest Qmail...
CVE-2014-3927
mrlg-lib.php in mrlg4php before 1.0.8 allows remote attackers to execute arbitrary shell code...
Code injection
mrlg-lib.php in mrlg4php before 1.0.8 allows remote attackers to execute arbitrary shell code...
Shell Injection
rack-perftoolsprofiler is vulnerable to shell injection attacks. A malicious user can inject and execute arbitrary shell code when passing arguments to the profiler...
GraphicsMagick and ImageMagick Code Execution Vulnerabilities
GraphicsMagick is a set of simple image processing tools, the tool to the image to provide resizing, rotation, highlighting and other functions.ImageMagick is the U.S. ImageMagick Studio, Inc. of a set of open-source image processing software, the software can read, convert, write a variety of...
Microsoft Windows multiple security vulnerabilities
Internet Explorer / Edge multiple security vulnerabilities, VBScript / Jscript code execution, Windows Shell code execution, kernel privilege escsalation...
GE Proficy Vulnerabilities
OVERVIEW Researchers amisto0x07 and Z0mb1E of Zero Day Initiative ZDI have identified two vulnerabilities in the General Electric GE Proficy human-machine interface/supervisory control and data acquisition HMI/SCADA - CIMPLICITY application. GE has released security advisories, GEIP13-05 and...
Easy Forms for vBulletin 4.X - Upload Shell Code / Remote Code Execute
Easy Forms vBuletin 4.x have suffers from a remote code execute and upload shell code. This is private exploit. You can buy it at https://0day.today...
BlazeDVD Pro Player 7.0 - '.plf' Local Buffer Overflow (SEH)
BlazeDVD Pro v7.0 - .plf Buffer Overflow SEH Date: 19.08.2014 Exploit Author: metacom Vendor Homepage: http://www.blazevideo.com/ Software Link: http://www.blazevideo.com/download/BlazeDVDProSetup.exe Version: 7.0.0.0 Tested on: Win 7 EN, Win 8.1 !/usr/bin/python from struct import pack buffer=...
Mediacoder (.lst) - SEH Buffer Overflow
No description provided by source. !/usr/bin/python import os import sys from struct import pack from time import sleep if os.name == nt: os.systemcls os.systemcolor 3f else: os.systemclear print +Exploit Title: All Mediacoder Product SEH Buffer Overflow +Download All Product:...
VWar 1.5 war.php vwar_root Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...
UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Buffer Overflow Exploit
No description provided by source. / Date : May 28th 2007. UltraISO = 8.6.2.2011 local buffer-over flow by n00b You might need to change the jmp esp% adress to your version. Tested on win xp service pack 2 eng executes calc.Don't forget you need to have the bin and cue file in the same Directory...
RapidLeech Scripts Remote File Upload Vulnerability
No description provided by source. Exploit Title: RapidLeech Scrits Remote File Upload upload shell php Date: 21/07/2010 Author: H-SK33PY Software Link: http://www.rapidleech.com/ Version: all versions Google dork :intitle:Rx08.ii36B.Rv Platform / Tested on: linux Category: remote Code : N/A...
Wordpress Lazy SEO plugin 1.1.9 - Shell Upload Vulnerability
No description provided by source. Exploit Title : Wordpress Lazy SEO plugin Shell Upload Vulnerability Exploit Author : Ashiyane Digital Security Team Google Dork: : inurl:/wp-content/plugins/lazy-seo/ Date: 2013/09/21 Vendor Homepage : http://wordpress.org/plugins/lazy-seo Software Link :...
OpenFTPD <= 0.30.1 (message system) Remote Shell Exploit
No description provided by source. / shouts to mitakeet :D exploit for openftpd format string bug. tested on most current version only. -infamous42md AT hotpop DOT com is real email only tricky part is find a place to stick the shell, as there isn't enough room to send it with the format string...
Cisco IOS 11.x TFTP Server Long File Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5328/info A problem has been discovered in Cisco IOS and MGX switches that could result in a denial of service, and potential code execution. It has been discovered that the TFTP server file name handling of Cisco IOS is...
Michael Sandrof IrcII 4.4 -7 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1046/info IrcII is a well-known Internet Relay Chat IRC client for unix. Version 4.4-7 and possibly previous versions are known to be vulnerable to a buffer overflow condition in their direct client-to-client DCC chat...
WvTFTPd 0.9 - Remote Root Heap Overflow Exploit
No description provided by source. / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is not exactly straight forward. When we overflow our buffer, we overwrite a pointer that is freed before we get to trigger our overwrite. so we have to restore th...
File 3.x Local Stack Overflow Code Execution Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/7008/info It has been reported that a stack overflow exists in the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to execute code as the user invoki...
Rational ClearCase 3.2/4.x DB Loader TERM Environment Variable Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3523/info ClearCase is a commercially available software change management package. It is maintained and distributed by Rational. A problem with the package could lead to a local user gaining elevated privileges. The...