GeoCore MAX DB Ver. 7.3.3 - Blind SQL Injection

GeoCore MAX DB Ver. 7.3.3 - Blind SQL Injection Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Vendor : http://geodesicsolutions.com Exploit Author: Esac Homepage author : www.iss4m.ma Last Checked: 25/04/2014...

PyHttpShell - Python HTTP Shell

PyHttpShell is a shell written in python, traffic is over http protocol using a server in the middle. Video: https://vimeo.com/91085876 Features Transport over HTTP/HTTPS. Supports System Proxy Settings. Multiple Hosts/Connections. Download files to client machine. Change Sleep time remotely. Wor...

DEBIAN-CVE-2014-1921

parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors...

Debian DSA-2860-1 : parcimonie - information disclosure

Holger Levsen discovered that parcimonie, a privacy-friendly helper to refresh a GnuPG keyring, is affected by a design problem that undermines the usefulness of this piece of software in the intended threat model. When using parcimonie with a large keyring 1000 public keys or more, it would alwa...

CVE-2013-5169

CoreGraphics in Apple Mac OS X before 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate attackers to obtain sensitive information by reading the screen...

CVE-2013-5169

CoreGraphics in Apple Mac OS X before 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate attackers to obtain sensitive information by reading the screen...

CVE-2013-5169

CVE-2013-5169 affects CoreGraphics in Apple Mac OS X prior to 10.9. When the system enters display-sleep mode, screen locking may fail to block visibility of all windows, enabling physically proximate attackers to read sensitive information from the screen. The available documents describe the vu...

D-Link DIR-605L Captcha Handling Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 /Boa/ include Msf::Exploit::Remote::HttpClient def initializeinfo = superupdateinfoinfo, 'Name' = 'D-Link DIR-605L Captcha Handling...

Joomla! VirtueMart component <= 2.0.22a - SQL Injection

------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ - Affected versions: All versions between 2.0.8 and 2.0.22...

Joomla! Component com_virtuemart 2.0.22a - SQL Injection

Joomla! Component comvirtuemart 2.0.22a - SQL Injection ------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ -...

Joomla Virtuemart 2.0.22a SQL Injection

------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ - Affected versions: All versions between 2.0.8 and 2.0.22...

Researchers Discovery Data-Stealing Malware That Likes to Nap

Researchers at FireEye’s Malware Intelligence Lab say they’ve found malware that attempts to evade detection with extended sleep calls and uses “the fast flux technique” to hide the attacker’s identity. They are calling the malicious downloader “Trojan Nap” and notes it uses a technique akin to t...

Malware in your Mouse can act as RAT for Cyber Criminals

Recently we reported about that Symantec provide overview and analysis of the year in global threat activity via its Internet Security Threat Report ISTR, with a exclusive details that 400 million new variants of malware were created in 2011, which is an average of 33 million new variants of...

CVE-2011-3214

IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate attackers to bypass the password requirement via unspecified vectors...

Security feature bypass

IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate attackers to bypass the password requirement via unspecified vectors...

CVE-2011-3214

CVE-2011-3214: IOGraphics in Apple Mac OS X up to 10.6.8 exposes a locked-screen bypass when an Apple Cinema Display is in display sleep. A physically proximate attacker could bypass the password requirement. Apple issued a security update (Security Update 2011-006 / OS X 10.7.2) addressing the l...

CVE-2011-3214

IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate attackers to bypass the password requirement via unspecified vectors...

Wordtrainer 3.0 Buffer Overflow

!/usr/bin/python +Exploit Title: Wordtrainer V3.0 .ORD File Buffer Overflow Vulnerability +Date: 12\04\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.wordtrainer.net/software/files/wt307shwexe/wt307shw.exe +Version: 3.0 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A from struct impo...

Wake-on-LAN

This script will send a WoL Wake-On-LAN packet to each MAC address listed in file uploaded via its preference. To use this feature : - The scanner must be located on the same physical subnet as the targets. - The MAC addresses of the targets must be listed in a text file supplied via the policy...

CVE-2010-4012

Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pressing the Sleep/Wake button...