iscsi-brute NSE Script

Performs brute force password auditing against iSCSI targets. Script Arguments iscsi-brute.target iSCSI target to brute-force. passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb See the documentation for the unpwdb library. creds.service, creds.global See the documentation for t...

drda-brute NSE Script

Performs password guessing against databases supporting the IBM DB2 protocol such as Informix, DB2 and Derby Script Arguments drda-brute.threads the amount of accounts to attempt to brute force in parallel default 10. drda-brute.dbname the database name against which to guess passwords default...

Twitter Reveals More on DNS Attack

Attackers got their hands on a valid set of Twitter credentials and used them to compromise the DNS records. Read the full article. eWEEK...

CVE-2008-6574

Unspecified vulnerability in SIP Enablement Services SES in Avaya Communication Manager 3.1.x and 4.x allows remote attackers to gain privileges and cause a denial of service via unknown vectors related to reuse of valid credentials...

Code injection

Unspecified vulnerability in SIP Enablement Services SES in Avaya Communication Manager 3.1.x and 4.x allows remote attackers to gain privileges and cause a denial of service via unknown vectors related to reuse of valid credentials...

Computer Associates Alert Notification Buffer Overflow

This module exploits a buffer overflow in Computer Associates Threat Manager for the Enterprise r8.1 By sending a specially crafted RPC request, an attacker could overflow the buffer and execute arbitrary code. In order to successfully exploit this vulnerability, you will need valid logon...

pam_per_user authentication module privilege escalation

Having valid credentials on the system, it's possible to login with any account...

Samba smbd Security Descriptor Parsing Remote Overflow

The remote Samba server, according to its version number, is vulnerable to a remote buffer overrun resulting from an integer overflow vulnerability. To exploit this flaw, an attacker would need to send to the remote host a malformed packet containing hundreds of thousands of ACLs, which would in...

phpMyWebhosting - SQL Injection

phpMyWebhosting - SQL Injection !/usr/bin/perl Exploit code by Noam Rathaus of Beyond Security Ltd. The following exploit code will use a valid username and password combination, to cause an SQL injection. Using the SQL injection, the Perl script elevates the privileges of the user provided to...

EasyWeb 1.0 FileManager Module - Directory Traversal

EasyWeb 1.0 FileManager Module - Directory Traversal source: https://www.securityfocus.com/bid/10792/info EasyWeb is prone to a directory traversal vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. The issue occurs if a remote attacker sends a reque...

ezbounce 1.0/1.5 - Format String

// source: https://www.securityfocus.com/bid/8071/info It has been reported that ezbounce is affected by a format string vulnerability. The condition is present in the file "ezbounce/commands.cpp" and can be triggered when session support is enabled. To exploit this vulnerability, the attacker mu...

University of Washington - imap LSUB Buffer Overflow (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'UoW IMAP...