2852 matches found
Debian Security Advisory DSA 2645-1 (inetutils - denial of service)
Ovidiu Mara reported in 2010 a vulnerability in the ping util, commonly used by system and network administrators. By carefully crafting ICMP responses, an attacker could make the ping command hangs. OpenVAS Vulnerability Test $Id: deb2645.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated...
CVE-2013-0637
Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.3.183.61 and 11.x before 11.6.602.167 on Mac OS X, before 10.3.183.61 and 11.x before 11.2.202.270 on Linux, before 11.1.111.43 on Android 2.x and 3.x, and before 11.1.115.47 on Android 4.x; Adobe AIR before...
AdaptCMS 2.0.4 - config.php?question SQL Injection
AdaptCMS 2.0.4 - config.php?question SQL Injection Exploit Title: AdaptCMS = 2.0.4 SQL Injection vulnerability Date: 26/10/2012 Exploit Author: Kallimero Vendor Homepage: http://www.adaptcms.com/ Software Link: http://www.insanevisions.com/page/3/Downloads/ Version: 2.0.4 Tested on: Debian...
ASMAX AR 1004g Authentication Bypass Vulnerability
Exploit for hardware platform in category web applications Exploit Title: ASMAX AR 1004g Authentication Bypass Date: 30.01.2013 Exploit Author: lucyoa Vendor Homepage: asmax.pl ASMAX AR 1004g is the most popular router device from asmax. ------------------- Device Info --------------------------...
ZTE ZXV10 W300 series (Djaweb router) vulnerability
Exploit for hardware platform in category remote exploits 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0...
CVE-2012-6057
The dissecteigrpmetriccomm function in epan/dissectors/packet-eigrp.c in the EIGRP dissector in Wireshark 1.8.x before 1.8.4 uses the wrong data type for a certain offset value, which allows remote attackers to cause a denial of service integer overflow and infinite loop via a malformed packet...
Code injection
The DHCP server on Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 7.0 before 7.25.8, 7.1 before 7.25.8, 7.2 before 7.25.8, 8.0 before 8.05.28, 8.1 before 8.12.56, 8.2 before 8.25.27, 8.3 before...
NTP Clock Variables Disclosure
This module reads the system internal NTP variables. These variables contain potentially sensitive information, such as the NTP software version, operating system version, peers, and more. This module requires Metasploit: https://metasploit.com/download Current source:...
SafeNet Sentinel Keys Server - Crash (PoC)
SafeNet Sentinel Keys Server - Crash PoC Exploit Title: SafeNet Sentinel Keys Server DoS Date: 10 Sep 2012 Exploit Author: retset https://twitter.com/ret5et Vendor Homepage: http://www.safenet-inc.com/ Version: Sentinel Protection Installer v7.6.5 sntlkeyssrvr.exe ver. 1.3.1.3 Download link:...
Zenoss 3 showDaemonXMLConfig Command Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Zenoss 3...
Discuz! 7.00 + 7.1 + 7.2 database exploit
Exploit for php platform in category web applications Exploit Title: Discuz! 7.00 + 7.1 + 7.2 database exploit Author: Over-X email: email protected Vendor or Software Link: http://download.comsenz.com/Discuz/7.0.0/Discuz7.0.0FULLSCGBK.zip Version: 7.00 & 7.1 & 7.2 Google dork: "powered by Discuz...
Lynx Message Server - Multiple Vulnerabilities
Lynx Message Server - Multiple Vulnerabilities 1. Summary The Micro Technology Services Inc. "Lynx Message Server 7.11.10.2" and/or "LynxTCPService version 1.1.62" web interface is vulnerable to SQL Injection, Cross-Site Scripting, and other security problems. 2. Description Lynx is a "Facility...
AnvSoft Any Video Converter 4.3.6 Buffer Overflow
Title: ====== AnvSoft Any Video Converter 4.3.6 - Multiple Buffer Overflow Vulnerabilities Date: ===== 2012-04-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=492 VL-ID: ===== 492 Introduction: ============= An all-in-one user-friendly DVD ripper, Video Record, video...
Lantronix Telnet Service Banner Detection
Detect Lantronix telnet services This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Lantronix Telnet Service Banner Detection', 'Description' = 'Detect Lantronix telnet services', 'Author' =...
Support Incident Tracker SiT! < 3.65 Multiple Vulnerabilities - Active Check
Support Incident Tracker is prone to multiple SQL injection SQLi and cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
IPtools 0.1.4 - Remote Buffer Overflow
source: https://www.securityfocus.com/bid/51312/info IPtools is prone to a remote buffer-overflow vulnerability because it fails to bounds-check user-supplied input before copying it into an insufficiently sized memory buffer. Exploiting this vulnerability may allow remote attackers to execute...
CVE-2011-3300
Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.08.13, 7.1 and 7.2 before 7.25.4, 8.0 before 8.05.25, 8.1 and 8.2 before 8.25.11, 8.3 before 8.32.23, 8.4 before 8.42.6, and 8.5 before 8.51.1...
Design/Logic Flaw
Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.0 before 7.08.13, 7.1 and 7.2 before 7.25.4, 8.0 before 8.05.25, 8.1 and 8.2 before 8.25.11, 8.3 before 8.32.23, 8.4 before 8.42.6, and 8.5 before 8.51.1...
Nmap-scanner
This module requires argument like: "Target Host" or IP address to work. A port Scanner uses raw IP packets in novel ways to determine what hosts are available on the network It was designed to rapidly scan large networks, but works fine against single hosts Nmap "Network Mapper" is an open sourc...
Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Denial of Service Vulnerability in Cisco TelePresence Codecs Advisory ID: cisco-sa-20110831-tandberg Revision 1.0 For Public Release 2011 August 31 1600 UTC GMT...