CVS Kit CVS Server 1.10 .8 Instructed File Create Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1523/info The cvs client blindly trust paths returned to it by the server. Therefore, a cvs client could be tricked into creating a file anywhere on the system by a malicious server. This problem can be tested yourself as...

FloosieTek FTGatePro 1.22 Mail Server Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8527/info FloosieTek FTGatePro Mail Server may disclose its installation path to remote attackers. This information could be useful when mounting further attacks against the system. This issue exists in the web...

AIOCP 1.3.x cp_login.php choosed_language Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20931/info All In One Control Panel AIOCP is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues could allow an attacker to steal...

Safenet IPSecDrv.sys <= 10.4.0.12 Local kernel ring0 SYSTEM Exploit

No description provided by source. / safenet-ipsec-call.c Copyright c 2008 by [email protected] Safenet IPSecDrv.sys = 10.4.0.12 local kernel ring0 indirect call SYSTEM exploit by mu-b - Thu 03 Jan 2008 - Tested on: IPSecDrv.sys 10.4.0.12 bundle with: SafeNET HighAssurance Remote, SoftRemote -...

Solaris/x86 - Reboot() - 37 bytes

No description provided by source. / Title: Solaris/x86 - Reboot - 37 bytes Author: Jonathan Salwan submit!shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan Date: 2010-05-21 Tested: SunOS opensolaris 5.11 snv111b i86pc i386 i86pc Solaris !Database of...

DESlock+ <= 3.2.6 DLMFDISK.sys local kernel ring0 SYSTEM Exploit

No description provided by source. / deslock-pown-v2.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel ring0 SYSTEM exploit by mu-b - Wed 26 Dec 2007 - Tested on: DLMFDISK.sys 1.2.0.27 - Microsoft Windows 2003 SP2 - Microsoft Windows XP SP2 Note: create a mountable filesyste...

Linux Kernel 3.7.6 (RedHat x86x64) - MSR Driver Privilege Escalation

Linux Kernel 3.7.6 RedHat x86x64 - MSR Driver Privilege Escalation // PoC exploit for /dev/cpu//msr, 32bit userland on a 64bit host // can do whatever in the commented area, re-enable module support, etc // requires CONFIGX86MSR and just uid 0 // a small race exists between the time when the MSR ...

win32/xp sp2 ARABIC (ar) mechanism shellcode + proxy 500 bytes

Title :windows xp sp2 arabic mechanism shellcode 128 bytes+proxy=500bytes Author :TrOoN E-mail : email protected | www.facebook.com/fysl.fyslm Home : city 617 logts : Draria . algeria Web Site : www.1337day.com | 1337Day is ThE best pentes Security platform : WinDows XP sp 2 AraBic | platform i...

Hosting Provider InMotion Hacked, Thousands of Sites Affected

InMotion, a large hosting provider based in California, was compromised in recent days and the attackers were able to replace the index files of thousands of sites, defacing them and in some cases making it difficult for site owners to recover and reload their sites. The attack occurred on Sunday...

Unreal IRCD 3.2.8.1 Remote Backdoor

It seems as if our backdoor was found so we figured we cant sell this in the ac1db1tch3z CANVAS pack PhosphoricAc1d Exploit pack. P.S. Since it took months and months for the community to find the system exploit, we still have a more complicated zerday unrealircd hack module. Please inquire when...

Apache 2.2.14 mod_isapi - Dangling Pointer Remote SYSTEM

Apache 2.2.14 modisapi - Dangling Pointer Remote SYSTEM / Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit CVE-2010-0425 ------------------------------------------------------------------------------ Advisory: http://www.senseofsecurity.com.au/advisories/SOS-10-002 Description:...

Apache 2.2.14 mod_isapi Dangling Pointer Remote SYSTEM Exploit

Exploit for unknown platform in category remote exploits ============================================================== Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit ============================================================== / Apache 2.2.14 modisapi Dangling Pointer Remote...

PDQ Script 1.0 <== [listingid] SQL Injection

Exploit for unknown platform in category web applications ============================================ PDQ Script 1.0 == listingid SQL Injection ============================================ +===================================================================================+ | | | PDQ Script 1.0 ...

SMB 2.0 Protocol Detection

Detect systems that support the SMB 2.0 protocol...

Microsoft IIS 5.0 FTP Server Remote Stack Overflow Exploit (win2k sp4)

No description provided by source. !/usr/bin/perl IIS 5.0 FTP Server / Remote SYSTEM exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection Modded by muts, additional egghunter added for secondary larger payload Might take a...

Microsoft IIS 5.0 FTP Server (Windows 2000 SP4) - Remote Stack Overflow

Microsoft IIS 5.0 FTP Server Windows 2000 SP4 - Remote Stack Overflow !/usr/bin/perl IIS 5.0 FTP Server / Remote SYSTEM exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2googlemail.com Affects IIS6 with stack cookie protection Modded by muts, additional egghunter added for...

Microsoft IIS 5.0 FTP Server Remote Stack Overflow Exploit (win2k sp4)

Exploit for windows platform in category remote exploits ====================================================================== Microsoft IIS 5.0 FTP Server Remote Stack Overflow Exploit win2k sp4 ====================================================================== !/usr/bin/perl IIS 5.0 FTP...

MySQL udf_init function 信息泄露

MySQL 4.0.23 及之前版本与 4.1.10 及之前的版本存在一个信息泄露的弱点. 这个弱点的问题存在 sqludf.cc 中 udfinit function 在检查资料夹区分时缺乏适当的验证, 导致讯息 漏的弱点. 当本地端攻击者是拥有 INSERT 和 DELETE 的权限时, 可以利用 CREATE FUNCTION 来呼叫 libc 程式库, 进而执行任意的程式码. MySQL 4.0.23 及之前版本与 4.1.10 及之前的版本 参考 MySQL 4.0 与 4.1 Downloads, 升级到 4.0.24 或 4.1 .10a 或 最新的 MySql 版本...

Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit

No description provided by source. / dne2000-call.c Copyright c 2008 by [email protected] Deterministic Network Enhancer dne2000.sys local kernel ring0 SYSTEM exploit by mu-b - Sun 06 Jan 2008 - Tested on: dne2000.sys 2.21.7.233 - 3.21.7.17464...

Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit

Exploit for unknown platform in category local exploits ====================================================================== Deterministic Network Enhancer dne2000.sys kernel ring0 SYSTEM exploit ====================================================================== / dne2000-call.c Copyright c...