Pikabot A Stealthy Backdoor with Ingenious Evasion Tactics

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Pikabot, a sophisticated backdoor evades analysis with anti-analysis measures like the "sleep" function, uses NtContinue API, employs language-based execution cessation, and shows connections to Qakbot...

Acronis: SQL injection in https://demor.adr.acronis.com/ via the username parameter

Vulnerability description not provided...

The vulnerability of the __sleep and __wakeup functions in the Symfony software development and management platform allows attackers to compromise data integrity.

The vulnerability of the sleep and wakeup functions in the Symfony software platform for web application development and management involves the restoration of unreliable information in memory. Exploiting this vulnerability can allow an attacker to compromise data integrity...

D-Link DIR-605L Captcha Handling Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 /Boa/ include Msf::Exploit::Remote::HttpClient def initializeinfo = superupdateinfoinfo, 'Name' = 'D-Link DIR-605L Captcha Handling...

Joomla! VirtueMart component <= 2.0.22a - SQL Injection

------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ - Affected versions: All versions between 2.0.8 and 2.0.22...

Joomla! Component com_virtuemart 2.0.22a - SQL Injection

Joomla! Component comvirtuemart 2.0.22a - SQL Injection ------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ -...

Joomla Virtuemart 2.0.22a SQL Injection

------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ - Affected versions: All versions between 2.0.8 and 2.0.22...

PHP 5.2.6 sleep() Local Memory Exhaust Exploit

No description provided by source. ?php sleep9999999; echo 'Hello World'; ? Will print hello world after 9999999 seconds... so maxexecutiontime simply dosnt work :P Why? we can find in manual:...

function sleep() in all versions of PHP

There is a quite big problem with sleep function in php, The maxexecutiontime set to 60sec. in safe mode can be easy passed by using sleep funcion, for example this script: ?php sleep9999999; echo 'Hello World'; ? Will print hello world after 9999999 seconds... so maxexecutiontime simply dosnt wo...

PHP 5.2.6 - sleep() Local Memory Exhaust

PHP 5.2.6 - sleep Local Memory Exhaust There is some kind of issue in PHP we can run out memory even on SAFEMODE script simply allocate maximum of memory and go to sleep for, let's say 9999999 seconds. sleep pass 'maxexecutiontime' setting. Ram eater sploit ? if ! $purl = @parseurl$url die'sorry,...

PHP 5.2.6 - 'sleep()' Local Memory Exhaust

There is some kind of issue in PHP we can run out memory even on SAFEMODE script simply allocate maximum of memory and go to sleep for, let's say 9999999 seconds. sleep pass 'maxexecutiontime' setting. Ram eater sploit ? if ! $purl = @parseurl$url die'sorry, parseurl function disabled Oo'; if !...

MercuryBoard <= 1.1.5 (login.php) Remote Blind SQL Injection Exploit

No description provided by source. ?php / -------------------------------------------------------------------- MercuryBoard = 1.1.5 login.php Remote Blind SQL Injection Exploit -------------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom...

mercuryboard-blindsql.txt

settitle$this-lang-loginheader; 55. $this-tree$this-lang-loginheader; 56. 57. //print "agent: $this-agent\n"; 58. 59. if !isset$this-post'submit' 60. $requesturi = $this-geturi; 61. 62. if substr$requesturi, -8 == 'register' 63. $requesturi = $this-self; 64. 65. 66. return...

MercuryBoard <= 1.1.5 (login.php) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ==================================================================== MercuryBoard settitle$this-lang-loginheader; 55. $this-tree$this-lang-loginheader; 56. 57. //print "agent: $this-agent\n"; 58. 59. if !isset$this-post'submit' 60...