Symantec Altiris DS - SQL Injection (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Symantec Altiris ...

MS13-005 HWND_BROADCAST Low to Medium Integrity Privilege Escalation

Exploit for windows platform in category local exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

[SECURITY] Fedora 17 Update: tremulous-1.2.0-0.5.beta1.fc17

Tremulous is a free, open source game that blends a team based FPS with ele ments of an RTS. Players can choose from 2 unique races, aliens and humans. Players on both teams are able to build working structures in-game like an RTS. These structures provide many functions, the most important being...

HT Editor Spawning Root Shell

Exploit for linux platform in category remote exploits !/usr/bin/python Exploit Title: HT Editor Spawning Root Shell Date: 29-Mar-2012 Author: blusp10it Version: 2.0.18 Download: http://sourceforge.net/projects/hte/files/ht-source/ht-2.0.18.tar.gz Tested on: BackTrack 4 R2, Ubuntu 10.04 Run with:...

[SECURITY] Fedora 15 Update: tremulous-1.2.0-0.4.beta1.fc15

Tremulous is a free, open source game that blends a team based FPS with ele ments of an RTS. Players can choose from 2 unique races, aliens and humans. Players on both teams are able to build working structures in-game like an RTS. These structures provide many functions, the most important being...

Gadu-Gadu Remote Code Execution

Vendor: Gadu-Gadu http://gadu-gadu.pl Vulnerable Version: All Vulnerability Type: MITM, Remote Code Execution Risk level: High Credit: Kacper Szczesniak Vulnerability Details: Gadu-Gadu is vulnerable to the Man-In-The-Middle attack allowing remote code execution on a victim host. JavaScript code ...

linux/x86 setuid(0) && execve(/bin/sh,0,0) 27 bytes

Exploit for linux/x86 platform in category shellcode ============================================================= linux/x86 setuid0 && execve/bin/sh,0,0 shellcode 27 bytes ============================================================= Special Thanks Inj3ct0r Exploit DataBase I Love Inj3ct0r.Com...

Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit

No description provided by source. !-- Rediff Bol Downloader ActiveX Allows Downloading and Spawning Arbitary Files Affected Program : Rediff Bol Download ActiveX ActiveX OCX Control that downloads the Rediff Bol Messenger setup and spawns it. Related URL : http://messenger.rediff.com/newbol/...

[Full-disclosure] Rediff Bol Downloader ActiveX Allows Downloading and Spawning Arbitary Files

Rediff Bol Downloader ActiveX Allows Downloading and Spawning Arbitary Files Affected Program : Rediff Bol Download ActiveX ActiveX OCX Control that downloads the Rediff Bol Messenger setup and spawns it. Related URL : http://messenger.rediff.com/newbol/ Discovered by : Gregory R. Panakkal...

thinkedit-rfi.txt

r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com ThinkEdit Remote File Inclusion Exploit Software: ThinkEdit 1.9.2 Vendor: http://www.thinkedit.org/ Released: 2006/12/08 Discovered & Exploit By: r0ut3r writ3r at gmail.com Note: The information provided in this document is for...

BIND 8.2.x (TSIG) Remote Root Stack Overflow Exploit (3)

No description provided by source. / copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Solaris 2.7 x86 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleek" bug through UDP to obtain the base /...

CVE-2005-2707

Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks...

CVE-2004-1058

Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline...

GFHost PHP GMail - Remote Command Execution

GFHost PHP GMail - Remote Command Execution GFHost explo Spawn bash style Shell with webserver uid Greetz SPAX, foxtwo, Zone-H This Script is currently under development use strict; use IO::Socket; my $host; my $port; my $command; my $url; my @results; my $probe; my @U; $U1 =...

Microsoft Windows Task Scheduler (XP2000) - .job (MS04-022)

Microsoft Windows Task Scheduler XP2000 - .job MS04-022 // // Microsoft Windows 2K/XP Task Scheduler Vulnerability MS04-022 // Proof-of-Concept Exploit for English WinXP SP1 // 15 Jul 2004 // // Running this will create a file "j.job". When explorer.exe or any // file-open dialog box accesses the...

ProFTPd 1.2.7 1.2.9rc2 - Remote Code Execution Brute Force

ProFTPd 1.2.7 1.2.9rc2 - Remote Code Execution Brute Force / ProFTPd 1.2.7 - 1.2.9rc2 remote r00t exploit -------------------------------------------- By Haggis This exploit builds on the work of bkbll to create a working, brute-force remote exploit for the \n procesing bug in ProFTPd. Tested on...

ProFTPd 1.2.7 < 1.2.9rc2 - Remote Code Execution / Brute Force

/ ProFTPd 1.2.7 - 1.2.9rc2 remote r00t exploit -------------------------------------------- By Haggis This exploit builds on the work of bkbll to create a working, brute-force remote exploit for the \n procesing bug in ProFTPd. Tested on SuSE 8.0, 8.1 and RedHat 7.2/8.0 it works quite well... the...

Microsoft Windows - WebDAV Remote Code Execution (2)

// / 29/05/2003 - by Alumni - / / Microsoft IIS WebDAV New Exploit / / spawns shell on port 32768 / // include include include define SHELLCODELEN 753 define NOP 0x90 define BUFFERLEN 1024 define RET 0x41424344 define GMHOFF 30 define GPAOFF 38 define IPOFF 161 define DEFPORT 32768 //define...

Microsoft Windows - WebDAV Remote Code Execution (2)

Microsoft Windows - WebDAV Remote Code Execution 2 // / 29/05/2003 - by Alumni - / / Microsoft IIS WebDAV New Exploit / / spawns shell on port 32768 / // include include include define SHELLCODELEN 753 define NOP 0x90 define BUFFERLEN 1024 define RET 0x41424344 define GMHOFF 30 define GPAOFF 38...

HP-UX 10.20/11.0 - crontab '/tmp' File

source: https://www.securityfocus.com/bid/1845/info crontab is a binary in the cron package of the HP-UX cron implementation which allows a user to create a file of scheduled commands. A vulnerabiltiy in crontab exists that allows a user to read any file on an HP-UX system. crontab as implemented...