IT-Grundschutz M4.049: Absicherung des Boot-Vorgangs für ein Windows-System

IT-Grundschutz M4.049: Absicherung des Boot-Vorgangs für ein Windows-System. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94205 Stand: 13. Ergänzungslieferung 13. EL...

[IPv6 Disable Tool] Command-line Software to Enable or Disable IPv6 on Windows

IPv6 Disable is the free command-line tool to quickly Enable or Disable IPv6 Internet Protocol version 6 on your Windows system. It automatically checks for the current status of IPv6 and then enable/disable it accordingly. It is simple & easy to use tool. Also being a command-line based tool mak...

trs某系统任意文件下载漏洞第二弹

简要描述： 感觉挺严重的问题，存在的地方包括但是不局限银行、政府等行业。 详细说明： exp inforadar/jsp/util/filedownload.jsp?filePath=../../../../../../../etc/passwd exp2 http://inforadar.trs.com.cn/jsp/util/filedownload.jsp?filePath=c:%5Cboot.ini%00.xml 官方网站需要加个截断，就可以了 应该是神马雷达系统。 很多地方都有这问题。 但是google找不到多少个，因为很多都是二次开发，目录明改变了。 比如招行。。。...

Gnew 2013.1 PHP File Inclusion / SQL Injection

Advisory ID: HTB23171 Product: Gnew Vendor: Raoul Proença Vulnerable Versions: 2013.1 and probably prior Tested Version: 2013.1 Advisory Publication: August 28, 2013 without technical details Vendor Notification: August 28, 2013 Public Disclosure: October 2, 2013 Vulnerability Type: PHP File...

Multiple Vulnerabilities in Gnew

High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in Gnew, which can be exploited to execute arbitrary PHP code and pefrom SQL injection attacks against vulnerable application. 1 PHP File Inclusion in Gnew: CVE-2013-5639 Vulnerability exists due to insufficient validation...

[Salted Hash Kracker v1.0] Tool to recover the Password from Salted Hash text

Salted Hash Kracker is the free all-in-one tool to recover the Password from Salted Hash text. These days most websites and applications use salt based hash generation to prevent it from being cracked easily using precomputed hash tables such as Rainbow Crack. In such cases, 'Salted Hash Kracker'...

Nmap NSE 6.01: smb-enum-groups

Obtains a list of groups from the remote Windows system, as well as a list of the group's users. This works similarly to 'enum.exe' with the '/G' switch. The following MSRPC functions in SAMR are used to find a list of groups and the RIDs of their users. Keep in mind that MSRPC refers to groups a...

Mozilla Thunderbird ESR Multiple Vulnerabilities-01 November12 (Windows)

This host is installed with Mozilla Thunderbird ESR prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillathunderbirdesrmultvuln01nov12win.nasl 5956 2017-04-14 09:02:12Z teissa $ Mozilla Thunderbird ESR Multiple Vulnerabilities-01 November12 Windows Authors: Arun Kallavi...

The latest FCKeditor proof absolute path vulnerability-vulnerability warning-the black bar safety net

Code: FCKeditor/editor/filemanager/connectors/asp/connector. asp? Command=CreateFolder&Type=File&CurrentFolder=%2F&NewFolderName=aux Version not test it. Principle: create an aux folder, aux in the windows system is not supported, so will complain, broke the absolute path, this relatively...

WinRM - VBS Remote Code Execution (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'WinRM VBS Remote Code Execution'...

SQL Injection Vulnerability in OrangeHRM

High-Tech Bridge Security Research Lab discovered SQL injection vulnerability in OrangeHRM, which could be exploited to alter SQL requests to application's database. 1 SQL Injection Vulnerability in Orange HRM: CVE-2012-5367 The vulnerability was discovered in the "/symfony/web/index.php" script...

Multiple vulnerabilities in jCore

High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in jCore, which can be exploited to perform Cross-Site Scripting XSS and SQL Injection attacks. 1 SQL Injection in jCore: CVE-2012-4232 1.1 Input passed via the "memberloginid" COOKIE parameter to /admin/index.php is not...

BIOS based Virus discovered by Chinese Security Firm

BIOS based Virus discovered by Chinese Security Firm A Chinese AV company 360 discovered a new Trojan, the "BMW Virus" also called Mebromi, that can actually infect a computers BIOS: "BMW 360 Security Center virus is the latest catch of a high-risk virus, the virus that infected a chain BIOS...

Remote Procedure Call Service - MSF Buffer Overflow

Document Title: =============== Remote Procedure Call Service - MSF Buffer Overflow References: =========== Download: http://www.vulnerability-lab.com/resources/videos/24.wmv View: http://www.youtube.com/watch?v=VD9-mj6Y5BI Release Date: ============= 2011-06-10 Vulnerability Laboratory ID VL-ID:...

Remote Procedure Call Service - MSF Buffer Overflow

Document Title: =============== Remote Procedure Call Service - MSF Buffer Overflow References: =========== Download: http://www.vulnerability-lab.com/resources/videos/24.wmv View: http://www.youtube.com/watch?v=VD9-mj6Y5BI Release Date: ============= 2011-06-10 Vulnerability Laboratory ID VL-ID:...

Nmap NSE net: smb-enum-users

Attempts to enumerate the users on a remote Windows system, with as much information as possible, through two different techniques both over MSRPC, which uses port 445 or 139; see 'smb.lua'. The goal of this script is to discover all user accounts that exist on a remote system. This can be helpfu...

Microsoft Windows Vista - 'lpksetup.exe oci.dll' DLL Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/44414/info Microsoft Windows 'lpksetup.exe' is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share...

Nmap NSE: SMB Enum Users

This script attempts to enumerate the users on a remote Windows system, with as much information as possible. This is a wrapper on the Nmap Security Scanner's http://nmap.org smb-enum-users.nse. OpenVAS Vulnerability Test $Id: gbnmapsmbenumusers.nasl 7000 2017-08-24 11:51:46Z teissa $ Wrapper for...

Nmap NSE: SMB Enum Shares

This script attempts to list the shares on a Windows system over the SMB protocol. This is a wrapper on the Nmap Security Scanner's http://nmap.org smb-enum-shares.nse. OpenVAS Vulnerability Test $Id: gbnmapsmbenumshares.nasl 7006 2017-08-25 11:51:20Z teissa $ Wrapper for Nmap SMB Enum Shares NSE...

Here You Have Email Worm Detection

The remote Windows host has files present on the system that indicate that the 'Here You Have' email worm is present. A user of this host likely received an email containing a malicious '.scr' screen saver file and infected the host as a result of running this file. This malware has several...