5801 matches found
Apache 1.3.x mod_mylo - Remote Code Execution
/ Apache + modmylo remote exploit By Carl Livitt / July 2003 carllivitt at hush dot com Public release - Linux and FreeBSD targets. / include include include include include include include include include include include include include include define SIZ 8096 define HTTPPORT 80 define SHELLPORT...
MS Windows (RPC DCOM) Remote Exploit (w2k+XP Targets)
Exploit for unknown platform in category remote exploits ===================================================== MS Windows RPC DCOM Remote Exploit w2k+XP Targets ===================================================== / DCOM RPC Overflow Discovered by LSD - Exploit Based on Xfocus's Code Written by ...
Firebird 1.0.2 FreeBSD 4.7-RELEASE Local Root Exploit
Exploit for bsd platform in category local exploits ===================================================== Firebird 1.0.2 FreeBSD 4.7-RELEASE Local Root Exploit ===================================================== / DSR-firebird.c ------------------------------- Tested on: Firebird 1.0.2 FreeBSD...
Xeneo Web Server 2.2.9.0 - Denial of Service
!/usr/bin/perl Xeneo Web Server DoS Vulnerable systems: Xeneo. Web Server 2.2.9.0 Written by badpack3t For SP Research Labs 04/21/2003 www.security-protocols.com usage: perl sp-xeneo.pl use IO::Socket; use strict; print ".:."x 20; print "\nXeneo Web Server 2.2.9.0 DoS, \n"; print ".:."x 20; print...
PoPToP 1.1.3-b31.1.3-20030409 - Negative Read Overflow (Metasploit)
PoPToP 1.1.3-b31.1.3-20030409 - Negative Read Overflow Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Nuked-klaN 1.3 - Remote Information Disclosure
Nuked-klaN 1.3 - Remote Information Disclosure source: https://www.securityfocus.com/bid/6917/info A vulnerability has been discovered in Nuked-Klan which may be exploited to execute certain PHP functions on a target server. This issue occurs in the 'Team', 'News', and 'Lien' modules and is due t...
GlobalSunTech Access Point GL2422AP-0T - Information Disclosure
GlobalSunTech Access Point GL2422AP-0T - Information Disclosure // source: https://www.securityfocus.com/bid/6100/info An information disclosure vulnerability has been discovered in GlobalSunTech access points. It has been reported that a remote attacker is able to retrieve sensitive information...
AOL Instant Messenger 4.x - Arbitrary File Creation
AOL Instant Messenger 4.x - Arbitrary File Creation source: https://www.securityfocus.com/bid/4526/info An issue has been reported, which could allow an AIM user to save files to arbitrary locations. Reportedly, this is achievable when a direct connection is made between two AIM users. Files that...
CVE-2001-1495
networkquery.php in Network Query Tool 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the target parameter...
System V Derived /bin/login - Extraneous Arguments Buffer Overflow (modem based) (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'System V Derived...
BeroFTPD 1.3.4(1) (Linux x86) - Remote Code Execution
/ BeroFTPD 1.3.41 Linux x86 remote root exploit by qitest1 - 5/05/2001 BeroFTPD is an ftpd derived from wuftpd sources. This code exploits the format bug of the site exec cmd, well known to be present in wuftpd-2.6.0 and derived daemons. BeroFTPD 1.3.41 is the current version at the moment. JUST...
AOL Instant Messenger 3.5.1856/4.0/4.1.2010/4.2.1193 - 'aim://' Remote Buffer Overflow
source: https://www.securityfocus.com/bid/2118/info AOL Instant Messenger AIM is a real time messaging service for users that are on line. When AOL Instant Messenger is installed, by default it configures the system so that the aim: URL protocol connects aim:// urls to the AIM client. There exist...
Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (9)
Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 9 /\ Microsoft IIS 4.0/5.0 Extended UNICODE Directory Traversal Exploit proof of theory exploit cuz it's wednesday and i'm on the couch brought to you by the letter B, the number 7, optyx, and t12 optyx - t12 - greetz go out to...
icq.greeting-card.txt
Hi, I don't know if this has been reported before. ICQ's Greeting Card service allow you to send message with HTML commands so you can crash target computer or run script codes. If you write this in message box target computer should be crash in 3 seconds. Meliksah Ozoral [email protected]...
FuseWare FuseMail 2.7 - POP Mail Buffer Overflow
FuseWare FuseMail 2.7 - POP Mail Buffer Overflow // source: https://www.securityfocus.com/bid/634/info There is a buffer overflow in the FuseMail POP service long USER,PASS that may allow an intruder to execute arbitrary code on the target server. FuseMail 2.7...
NetcPlus SmartServer 3.5.1 - SMTP Buffer Overflow
NetcPlus SmartServer 3.5.1 - SMTP Buffer Overflow // source: https://www.securityfocus.com/bid/632/info There is a buffer overflow on the SmartServer3 SMTP service long MAIL FROM: that may allow an intruder to execute arbitrary code on the target server. 1 @Work SmartServer3...
Microsoft NT 4.0 RAS/PPTP - Malformed Control Packet Denial of Service
source: https://www.securityfocus.com/bid/2111/info Quoted from a Microsoft FAQ, "Point-to-Point-Tunneling Protocol PPTP is a new networking technology that supports multiprotocol virtual private networks VPN, enabling remote users to access corporate networks securely across the Microsoft Window...
Slackware Linux 3.4 - liloconfig-color Temporary File
Slackware Linux 3.4 - liloconfig-color Temporary File source: https://www.securityfocus.com/bid/77/info liloconfig-color creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This...
PT-1998-1096 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows UDP messages to broadcast addresses, enabling a Fraggle attack. This can cause a denial of service by flooding the target. Recommendations: At the moment, there is ...
Driver Flighting Check for Graphics Ring3
Evaluates to true if client machine is targeting to Ring3 of Graphics device class...