Microsoft Visual C++ - '.RC Resource Files' Local Buffer Overflow

// // // Microsoft Visual C++ 6.0 SP6 resource compiler buffer overflow // vulnerability .rc resource files exploit // // vulnerability found / exploit built by porkythepig // // include "stdio.h" include "stdlib.h" include "memory.h" define STR01 "Microsoft Visual Studio 6.0 SP6 .rc PoC exploit ...

Apple Mac OSX 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow

source: https://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to cause kernel panic, resultin...

cwmExplorer 1.0 - show_file Source Code Disclosure

cwmExplorer 1.0 - showfile Source Code Disclosure Title : cwmExplorer 1.0 showfile Source Code Disclosure Vulnerability Author : ajann Contact : : ERROR------------------------------------------------------ .... .. $datei = "dirs/".$d."/".$GETshowfile;...

phpged.txt

========================================================================================================================== PhpGedView 4.0.2 DOCUMENTROOT File inclusion Vulnerablity ======================================= Script:PhpGedView ============= Version:4.0.2 ============= script...

phpevent-rfi.txt

Title : PHP Event Calendar 1.5.1 index.php Remote File Include Vulnerability Discovered By :::: ThE-LoRd-Of-CrAcKiNg MeHdi ------------------------------------------------------------------------ Sorce Code: http://www.scriptdungeon.com/jump.php?ScriptID=633 Affected software description : Title:...

atftp.txt

!/usr/bin/perl -w acaroatjervus.it http://www.securityfocus.com/bid/21320 [email protected] is credited with the discovery of this vulnerability use IO::Socket; if!$ARGV1 print "Uso: atftp-19.pl \n\n"; exit; $victim = IO::Socket::INET-newProto='udp', PeerAddr=$ARGV0, PeerPort=$ARGV1 or die "Canno...

Moskool Component Admin.Moskool.PHP远程文件包含漏洞

MamboXChange Moskool是一款基于Mambo的应用模块程序。 MamboXChange Moskool不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'admin.moskool.php'脚本对用户提交的"mosConfigabsolutepath"参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码 MamboXChange Moskool 1.5 http://mamboxchange.com/projects/moskool/...

MattWrighttextcounter.pl远程执行命令漏洞 Exploit

No description provided by source. Doru Petrescu （[email protected]）提供了如下测试代码： -- cut here -- !/usr/bin/perl $URL='http://dtp.kappa.ro/a/test.shtml'; please DO modify this $EMAIL='[email protected],root'; please DO modify this if $ARGV0 $CMD=$ARGV0; else $CMD="ps ax;cd ..;cd ..;cd ..;cd etc;cat...

telaen110.txt

!/usr/bin/perl """"""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ DigitaL Hackin...

MS Windows NetpManageIPCConnect Stack Overflow Exploit (py)

Exploit for unknown platform in category remote exploits =========================================================== MS Windows NetpManageIPCConnect Stack Overflow Exploit py =========================================================== !/usr/bin/python MS06-070 Windows WorkStation...

NetGear wireless driver fails to properly process certain 802.11 management frames

Overview A buffer overflow vulnerability has been reported in the Netgear WG111v2.SYS wireless driver. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code, or cause a denial-of-service condition. Description The WG111v2.SYS driver is a wireless 802.11...

SystemMessenger_xss.txt

------=Part15425083137.1162268411579 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Sun java System Messenger Express remote XSS vulnerabilities By: Handrix 29 November 2006 MorX security research team www.morx.org...

IBM AIX snappd本地权限提升漏洞

IBM AIX是一款商业性质的UNIX操作系统。 AIX的snappd工具实现上存在漏洞，本地snapp组的攻击者可能利用此漏洞以root用户权限执行任意指令。 IBM AIX 5.3 IBM AIX 5.2 临时解决方法： 删除setuid root位： chmod 550 /usr/sbin/snappd 厂商补丁： IBM --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： ftp://aix.software.ibm.com/aix/efixes/security/snappdifix.tar.Z...

AlberT-EasySite PSA_PATH远程文件包含漏洞

AlberT-EasySite是一款基于PHP的站点生成系统。 AlberT-EasySite在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞在服务器上以Web进程权限执行任意命令。 AlberT-EasySite没有正确地验证AES/modules/auth/phpsecurityadmin/include/logout.php文件中对PSAPATH参数的输入，允许攻击者通过包含本地或外部资源执行任意PHP代码。成功攻击要求打开了registerglobals。 AlberT AlberT-EasySite 1.0 AlberT AlberT-EasySite 0.8.12...

PowerMovieList 0.13/0.14 - Edit User HTML Injection

source: https://www.securityfocus.com/bid/20564/info PowerMovieList is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would execute in the...

phpmynews14-rfi.txt

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= PHPMyNews 1.4 = cfgincludedir Remote File Include Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Discovered by XORONturkish hacker...

AIX 3.x4.x Windows 95982000NT 4.0 SunOS 5 - gethostbyname() Remote Buffer Overflow

AIX 3.x4.x Windows 95982000NT 4.0 SunOS 5 - gethostbyname Remote Buffer Overflow source: https://www.securityfocus.com/bid/6853/info A vulnerability has been discovered in multiple vendor implementations of the 'gethostbyname' library function, which is used to resolve network addresses. The...

MS Windows (Windows Kernel) Privilege Escalation Exploit (MS06-049)

No description provided by source. / MS06-049 Windows ZwQuerySystemInformation Local Privilege Escalation Vulnerability Exploit Created by SoBeIt Main file of exploit Tested on: Windows 2000 PRO SP4 Chinese Windows 2000 PRO SP4 Rollup 1 Chinese Windows 2000 PRO SP4 English Windows 2000 PRO SP4...

PHPartenaire 1.0 (dix.php3) Remote File Include Vulnerability

No description provided by source. =================================================================================== PHPartenaire = $urlphpartenaire Remote File Inclusion Exploit =================================================================================== Softname : PHPartenaire Url :...

webSPELL <= 4.01.01 Database Backup Download Vulnerability

Exploit for unknown platform in category web applications ========================================================== webSPELL = 4.01.01 Database Backup Download Vulnerability ========================================================== WebSPELL = 4.01.01 Accessible Database Backup Download Exploit...