2024 matches found
intellitamper207-header.txt
/ IntelliTamper 2.07 Location: HTTP Header Remote Code Execution exploit. Based on exploit by Koshi written in Perl. This one should be more stable. Just for fun and to learn more about win32 exploitation. by Wojciech Pawlikowski [email protected] / include include include include include include...
Team SHATTER Security Advisory: SQL Injection in Oracle Database (DBMS_DEFER_SYS.DELETE_TRAN)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory SQL Injection in Oracle Database DBMSDEFERSYS.DELETETRAN August 4, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR1, 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes Authentication to...
Oracle Database PL/SQL Statement Multiple SQL Injection Exploits
No description provided by source. / Advanced SQL Injection in Oracle databases Becoming the SYS user with SQL Injection. This script creates functions that can be injected to replace the password of the SYS user and to restore it to the original value. By Esteban Martinez Fayo [email protected] /...
Deterministic Network Extender 'dne2000.sys'本地特权提升漏洞
BUGTRAQ ID: 29772 CNCAN ID:CNCAN-2008061907 Deterministic Network Extender不正确过滤用户提供的数据,可导致本地特权提升。 攻击者可以利用漏洞以SYSTEM级别权限执行任意代码。 Deterministic Network Extender 'dne2000.sys' 2.21.7.233 - 3.21.7.17464版本受此漏洞影响,'dne2000.sys'驱动与如下产品绑定使用: - SafeNet HighAssurance Remote and SoftRemote - Cisco VPN Client -...
Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit
No description provided by source. / dne2000-call.c Copyright c 2008 by [email protected] Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 - 3.21.7.17464...
Deterministic Network Enhancer - 'dne2000.sys' Kernel Ring0 SYSTEM
/ dne2000-call.c Copyright c 2008 by Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 3.21.7.17464 bundled with: SafeNET HighAssurance Remote, SoftRemote Cisco VPN Client Winproxy Compile: MinGW + -lntdll -...
Deterministic Network Enhancer - dne2000.sys Kernel Ring0 SYSTEM
Deterministic Network Enhancer - dne2000.sys Kernel Ring0 SYSTEM / dne2000-call.c Copyright c 2008 by Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 3.21.7.17464 bundled with: SafeNET HighAssurance Remote,...
Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit
No description provided by source. / dne2000-call.c Copyright c 2008 by [email protected] Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 - 3.21.7.17464 bundled with: SafeNET HighAssurance Remote,...
Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit
Exploit for unknown platform in category local exploits ====================================================================== Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit ====================================================================== / dne2000-call.c Copyright c...
Easy-Clanpage 3.0b1 (section) Local File Inclusion Vulnerability
No description provided by source. LFI Exploit by Loader007 you can connect me for questions ICQ:488525928 Script:Easy-Clanpage 3.0b1 download: http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24 http://example.de/path/?section=LFI%00 HowTo use it 1: make a account 2: up shell ...
easyclan-lfi.txt
LFI Exploit by Loader007 you can connect me for questions ICQ:488525928 Script:Easy-Clanpage 3.0b1 download: http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24 http://example.de/path/?section=LFI%00 HowTo use it 1: make a account 2: up shell as jpg not bigger than 50kb! 3:...
Easy-Clanpage 3.0b1 - 'section' Local File Inclusion
LFI Exploit by Loader007 you can connect me for questions ICQ:488525928 Script:Easy-Clanpage 3.0b1 download: http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24 http://example.de/path/?section=LFI%00 HowTo use it 1: make a account 2: up shell as jpg not bigger than 50kb! 3:...
Easy-Clanpage 3.0b1 - section Local File Inclusion
Easy-Clanpage 3.0b1 - section Local File Inclusion LFI Exploit by Loader007 you can connect me for questions ICQ:488525928 Script:Easy-Clanpage 3.0b1 download: http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24 http://example.de/path/?section=LFI%00 HowTo use it 1: make a...
ASPPortal Free Version - Topic_Id SQL Injection
ASPPortal Free Version - TopicId SQL Injection --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ ASPPortal Free Version TopicId Remote SQL Injection Vulnerability +==--...
Kaspersky kl1.sys驱动本地栈溢出漏洞
CVECAN ID: CVE-2008-1518 Kaspersky Internet Security套件是一套完整的解决方案,用于保护计算机抵御几乎所有来自互联网的主要的威胁。 Internet Security及其他Kaspersky产品中所发布的kl1.sys内核驱动在处理IOCTL 0x800520e8时没有对向swprintf函数所传送的数据执行边界检查,在这种情况下目标缓冲区为2,000单元宽字符数据,因此如果源缓冲区超过了2000字符的话,就可以触发栈溢出,导致执行任意内核态指令。 Kaspersky Labs Kaspersky Antivirus 7.0...
CVE-2008-1518
CVE-2008-1518 describes a local privilege escalation in Kaspersky Lab products. The vulnerable component is the kernel driver kl1.sys used by Kaspersky Anti-Virus 6.0/7.0 and Internet Security 6.0/7.0. The issue is a stack-based buffer overflow triggered in the handling of IOCTL 0x800520e8 due to...
Kaspersky Multiple Products kl1.sys Driver Local Overflow
The version of the Kaspersky product installed on the remote host contains a stack-based overflow in its 'kl1.sys' kernel driver involving its handling of IOCTL 0x800520e8. A local attacker may be able to leverage this issue to gain complete control of the affected system. C Tenable Network...
BP Blog 6.0 - id Blind SQL Injection
BP Blog 6.0 - id Blind SQL Injection --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ bp blog = 0 Exploit2: http://localhost/path/templatepermalink.asp?id=78 and exists select from TABLE Example: http://localhost/path/templatepermalink.asp?id=78 A...
BP Blog 6.0 - 'id' Blind SQL Injection
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ bp blog = 0 Exploit2: http://localhost/path/templatepermalink.asp?id=78 and exists select from TABLE Example: http://localhost/path/templatepermalink.asp?id=78 AND SELECT Count FROM tblauthor = 0...
bpblog-sql.txt
--==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ bp blog = 0 Exploit2: http://localhost/path/templatepermalink.asp?id=78 and exists select from TABLE Example: http://localhost/path/templatepermalink.asp?id=78 AND SELECT Count FROM tblauthor = 0...