619 matches found
Immunity Canvas: PHPPM_INCLUDE
Name| phppminclude ---|--- CVE| CVE-2007-5641 Exploit Pack| CANVAS Description| PHP Project Management = 0.8.10 remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: php-pm CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5641 CVE Name: CVE-2007-5641...
Immunity Canvas: LOCALLPC
Name| localLPC ---|--- CVE| CVE-2006-6696 Exploit Pack| CANVAS Description| LPC local MS07-021 Notes| CVE Name: CVE-2006-6696 VENDOR: Microsoft MSADV: MS07-021 CVSS: 6.9 CVE Url: https://vulners.com/cve/CVE-2006-6696 Notes: If you get FFFFFFF that means inetinfo died sorry,...
Immunity Canvas: MS08_078
Name| ms08078 ---|--- CVE| CVE-2008-4844 Exploit Pack| CANVAS Description| MS Internet Explorer XML Parsing Vulnerability Notes| CVE Name: CVE-2008-4844 VENDOR: Microsoft MSADV: MS08-078 Repeatability: One Shot MSRC: http://www.microsoft.com/technet/security/Bulletin/MS08-078.mspx Note: After the...
Immunity Canvas: JAVA_DESERIALIZE
Name| javadeserialize ---|--- CVE| CVE-2008-5353 Exploit Pack| CANVAS Description| javadeserialize Notes| CVE Name: CVE-2008-5353 VENDOR: Sun OSVDB: 50500 Repeatability: Infinite client side - no crash References: http://sunsolve.sun.com/search/document.do?assetkey=1-66-244991-1 CVE Url:...
Immunity Canvas: FOXIT_PRINTF
Name| foxitprintf ---|--- CVE| CVE-2008-1104 Exploit Pack| CANVAS Description| Foxit Reader - util.printf Javascript Overflow Notes| CVE Name: CVE-2008-1104 VENDOR: Foxit Software VersionsAffected: 2.3.2825 Repeatability: Infinite CVS URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-1104...
Immunity Canvas: ACROBAT_JS
Name| acrobatjs ---|--- CVE| CVE-2007-5659 Exploit Pack| CANVAS Description| Adobe Acrobat Reader Stack Overflow 8.1.1 Notes| CVE Name: CVE-2007-5659 VENDOR: Adobe VersionsAffected: 8.1.1 and Below Repeatability: References: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=657...
Immunity Canvas: JOOMLACOLORLAB_INCLUDE
Name| joomlacolorlabinclude ---|--- CVE| CVE-2007-5451 Exploit Pack| CANVAS Description| Joomla comcolorlab Component Remote File Inclusion Notes| CVE Name: CVE-2007-5451 VENDOR: Joomla Repeatability: Infinite References: http://www.osvdb.net/show/osvdb/40609 CVE Url:...
Immunity Canvas: MS04_007
Name| ms04007 ---|--- CVE| CVE-2003-0818 Exploit Pack| CANVAS Description| ASN.1 bitstring decoding exploit Notes| References: http://www.eeye.com/html/Research/Advisories/AD20040210-2.html CVE Name: CVE-2003-0818 VENDOR: Microsoft MSADV: MS04-007 Repeatability: Single shot Date public: Not publi...
Immunity Canvas: FP30REG
Name| fp30reg ---|--- CVE| CVE-2003-0822 Exploit Pack| CANVAS Description| FP30REG Chunked Heap Overflow MS03-051 Notes| CVE Name: CVE-2003-0822 VENDOR: Microsoft MSADV: MS03-051 MSRC: http://www.microsoft.com/technet/security/bulletin/ms03-051.mspx Date public: 10/01/2003 CERT Advisory: CVE Url:...
Immunity Canvas: SAMBA_NTTRANS
Name| sambanttrans ---|--- CVE| CVE-2003-0085 Exploit Pack| CANVAS Description| sambanttrans Notes| References: http://www.samba.org/samba/whatsnew/samba-2.2.8.html CVE Name: CVE-2003-0085 VENDOR: Samba Development Notes: WARNING! This exploit can get you more than one shell-listener because of t...
Immunity Canvas: CACHEFSD_LPD
Name| cachefsdlpd ---|--- CVE| CVE-2002-0084 Exploit Pack| CANVAS Description| cachefsd .cfsmnt File Stack Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309 CVE Name: CVE-2002-0084 VENDOR: Sun Development Notes: This vulnerability had been marked only as ...
Immunity Canvas: LINUX_TTY_RACE
Name| linuxttyrace ---|--- CVE| CVE-2014-0196 Exploit Pack| CANVAS Description| linuxttyrace local root Notes| Repeatability: Multiple Times Notes: Exploit has been tested successfully on: - Ubuntu 13.10 3.14.1-vanilla - Ubuntu 14.04 3.14.1-vanilla - Ubuntu 14.04 3.14.2-vanilla - Fedora 20...
Immunity Canvas: MS10_061
Name| ms10061 ---|--- CVE| CVE-2010-2729 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Arbitrary File Creation Notes| CVE Name: CVE-2010-2729 VENDOR: Microsoft MSADV: MS10-061 Repeatability: Note: Please refer to the Microsoft URLs to know exactly the conditions for when this...
Immunity Canvas: JAVA_DESERIALIZE_WIN32
Name| javadeserializewin32 ---|--- CVE| CVE-2008-5353 Exploit Pack| CANVAS Description| Java ZoneInfo deserialize exploit HTTP MOSDEF WIN32 Notes| CVE Name: CVE-2008-5353 VENDOR: Sun Repeatability: Infinite client side - no crash References:...
Immunity Canvas: XOOPS_XTCONTEUDO
Name| xoopsxtconteudo ---|--- CVE| CVE-2007-3221 Exploit Pack| CANVAS Description| Xoops XT-Conteudo Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Xoops CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3221 CVE Name: CVE-2007-3221...
Immunity Canvas: MS05_039
Name| ms05039 ---|--- CVE| CVE-2005-1983 Exploit Pack| CANVAS Description| Microsoft Windows PnP RPC Overflow Notes| CVE Name: CVE-2005-1983 VENDOR: Microsoft MSADV: MS05-039 Repeatability: One shot Note: Windows XP needs a valid username and password References:...
Immunity Canvas: WUGLOB
Name| wuglob ---|--- CVE| CVE-2001-0550 Exploit Pack| CANVAS Description| WuFTPD Globbing Arbitrary Free Notes| CVE Name: CVE-2001-0550 VENDOR: wuftpd.org References: CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0550 CERT Advisory: Date public: CVSS: 7.5...
Immunity Canvas: LNK_EXEC
Name| lnkexec ---|--- CVE| CVE-2015-0096 Exploit Pack| CANVAS Description| lnkexec Notes| References: https://technet.microsoft.com/library/security/ms15-020 CVE Name: CVE-2015-0096 VENDOR: Microsoft NOTES: Tested on: - Windows 7 32bit - Internet Explorer 8 a popup will appear if Protected Mode...
Immunity Canvas: IE_CARDSPACECLAIMCOLLECTION
Name| iecardspaceclaimcollection ---|--- CVE| CVE-2013-3918 Exploit Pack| CANVAS Description| iecardspaceclaimcollection Notes| CVE Name: CVE-2013-3918 VENDOR: Microsoft NOTES: - This exploits leaks a vtable pointer of a CTable object in order to bypass ASLR - We also leak the shellcode's address...
Immunity Canvas: GRAPE_INCLUDE
Name| grapeinclude ---|--- CVE| CVE-2008-1963 Exploit Pack| CANVAS Description| Grape Web Statistics Remote File include Notes| CVE Name: CVE-2008-1963 VENDOR: Quate Repeatability: Infinite References: http://www.securityfocus.com/bid/28838 CVE Url: https://vulners.com/cve/CVE-2008-1963 CVSS: 7.5...
Immunity Canvas: FLASH_DUKE
Name| flashduke ---|--- CVE| CVE-2007-0071 Exploit Pack| CANVAS Description| Adobe Flash Player DefineSceneAndFrameLabelData Tag Overflow Notes| CVE Name: CVE-2007-0071 VENDOR: Adobe VersionsAffected: Adobe Flash Player 9.0.115.0 and below Repeatability: References:...
Immunity Canvas: LINKSYS_APPLY_CGI
Name| linksysapplycgi ---|--- CVE| CVE-2005-2799 Exploit Pack| CANVAS Description| linksysapplycgi Notes| References: http://www.idefense.com/application/poi/display?id=305&type=vulnerabilities CVE Name: CVE-2005-2799 VENDOR: Linksys Date public: Sep 13, 2005 CVE Url:...
Immunity Canvas: IIS5ASP
Name| iis5asp ---|--- CVE| CVE-2001-0241 Exploit Pack| CANVAS Description| iis5asp MS01-023 Notes| References: http://www.eeye.com/html/Research/Advisories/AD20010501.html http://www.microsoft.com/technet/security/bulletin/MS01-023.asp CVE Name: CVE-2001-0241 VENDOR: Microsoft MSADV: MS01-023 MSR...
Immunity Canvas: DRUPAL_SERVICES_RCE
Name| drupalservicesrce ---|--- CVE| CVE-2019-6340 Exploit Pack| CANVAS Description| CVE-2019-6340 Notes| CVE Name: CVE-2019-6340 VENDOR: Drupal NOTES: An unauthenticated unserialization bug can be exploited on the RESTful Web Services module on the Drupal core for the following versions: 7.X...
Immunity Canvas: JAVA_FORNAME_GETFIELD
Name| javaforNamegetField ---|--- CVE| CVE-2012-4681 Exploit Pack| CANVAS Description| Java forName/getField Method Invocation Sandbox Bypass Notes| CVE Name: CVE-2012-4681 VENDOR: Sun Notes: There is a method invocation vulnerability using sun.awt.SunToolkit.getField This vulnerability can then ...
Immunity Canvas: MS12_042
Name| ms12042 ---|--- CVE| CVE-2012-0217 Exploit Pack| CANVAS Description| MS12-042 Privilege Escalation Exploit Notes| Repeatability: Notes: This vulnerability only affects Intel x64-based versions of Windows 7 and Windows Server 2008 R2. The exploit will also facilitate the loading of unsigned...
Immunity Canvas: ACROBAT_LIBTIFF
Name| acrobatlibtiff ---|--- CVE| CVE-2010-0188 Exploit Pack| CANVAS Description| Adobe Acrobat Reader LibTIFF Integer Overflow Notes| CVE Name: CVE-2010-0188 Notes: VersionsAffected: Acrobat Reader =9.3.0 Repeatability: References: http://www.adobe.com/support/security/bulletins/apsb10-07.html...
Immunity Canvas: PHPMYADMIN_INJECTION
Name| phpmyadmininjection ---|--- CVE| CVE-2009-1151 Exploit Pack| CANVAS Description| phpmyadmininjection Notes| CVE Name: CVE-2009-1151 VENDOR: http://www.phpmyadmin.net Notes: This exploit requires that the "/config/ directory was not deleted after installation. Basic authorization may also be...
Immunity Canvas: JOOMLAMP3_INCLUDE
Name| joomlamp3include ---|--- CVE| CVE-2007-5412 Exploit Pack| CANVAS Description| Joomla commp3allopass Component Remote File Inclusion Notes| CVE Name: CVE-2007-5412 VENDOR: Joomla Repeatability: Infinite References: http://securityreason.com/exploitalert/2881 CVE Url:...
Immunity Canvas: MS04_011_SSLPCT
Name| ms04011sslpct ---|--- CVE| CVE-2003-0719 Exploit Pack| CANVAS Description| Microsoft SSL PCT Hello Overflow Notes| References: http://www.microsoft.com/technet/security/bulletin/MS04-011.mspx CVE Name: CVE-2003-0719 VENDOR: Microsoft Notes: Repeatability: One shot MSADV: MS04-011-SSL-PCT Da...
Immunity Canvas: MSSQL_AUTH
Name| mssqlauth ---|--- CVE| CVE-2000-1209 Exploit Pack| CANVAS Description| MSSQL Null Auth Connect Notes| CVE Name: CVE-2000-1209 VENDOR: Microsoft OSVDB: http://www.osvdb.org/displayvuln.php?osvdbid=15757 Notes: Connect to a MSSQL server with auth or with null password and return a Shell Date...
Immunity Canvas: MENU_CONFUSION_LPE
Name| menuconfusionlpe ---|--- CVE| CVE-2019-0859 Exploit Pack| CANVAS Description| Menu Confusion LPE Notes| CVE Name: CVE-2019-0859 Notes: Tested: - Windows 7 x64 - Windows 8.1 x64 Untested: - Windows 10 x64 1607 It should work on Windows 10 x64 1607 version but it is untested VENDOR: Microsoft...
Immunity Canvas: JAVA_DYNAMICBINDING
Name| javaDynamicBinding ---|--- CVE| CVE-2013-2423 Exploit Pack| CANVAS Description| javaDynamicBinding Notes| CVE Name: CVE-2013-2423 VENDOR: Sun Notes: A vulnerability in MethodHandle allows to overwrite public final fields. This can be abused in order to disable Java Sandbox. The current...
Immunity Canvas: SAFARI_FILE_STEALING
Name| safarifilestealing ---|--- CVE| CVE-2008-4216 Exploit Pack| CANVAS Description| Safari 3.2 File Stealing Notes| A Warning: Due to the nature of this exploit, a file error.html will be left behind on the target system CVE Name: CVE-2008-4216 VENDOR: Apple NOTES: There are a lot of things...
Immunity Canvas: JAFCMS_INCLUDE
Name| jafcmsinclude ---|--- CVE| CVE-2008-1609 Exploit Pack| CANVAS Description| Jaf-CMS Remote File include Notes| CVE Name: CVE-2008-1609 VENDOR: Jaf-CMS Repeatability: Infinite References: http://packetstormsecurity.org/filedesc/jafcms-rfi.txt.html CVE Url: https://vulners.com/cve/CVE-2008-160...
Immunity Canvas: PHPDJ_INCLUDE
Name| phpdjinclude ---|--- CVE| CVE-2007-5574 Exploit Pack| CANVAS Description| phpDJ remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: phpdj CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5574 CVE Name: CVE-2007-5574...
Immunity Canvas: BRIGHTSTOR_MEDIA
Name| brightstormedia ---|--- CVE| CVE-2007-2139 Exploit Pack| CANVAS Description| CA BrightStor ARCserve Backup Media Server RPC Interface Overflow Notes| CVE Name: CVE-2007-2139 VENDOR: Computer Associates VersionsAffected: Repeatability: References:...
Immunity Canvas: WINGATE_HTTPPROXY
Name| wingatehttpproxy ---|--- CVE| CVE-2006-2926 Exploit Pack| CANVAS Description| Wingate 6.1.1 remote exploit Notes| CVE Name: CVE-2006-2926 VENDOR: Wingate.com Repeatability: You get one shot References: CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2926 Date public:...
Immunity Canvas: MS05_017
Name| ms05017 ---|--- CVE| CVE-2005-0059 Exploit Pack| CANVAS Description| Microsoft Message Queuing Service Overflow Notes| CVE Name: CVE-2005-0059 VENDOR: Microsoft MSADV: MS05-017 Repeatability: One shot Note: Windows XP needs a valid Username and Password. References:...
Immunity Canvas: JAVA_ATOMICREFERENCEARRAY
Name| javaAtomicReferenceArray ---|--- CVE| CVE-2012-0507 Exploit Pack| CANVAS Description| Java AtomicReferenceArray Type Confusion Sandbox Bypass Notes| CVE Name: CVE-2012-0507 VENDOR: Sun Notes: There is a Type Confusion vulnerability in java.util.concurrent.atomic.AtomicReferenceArray class...
Immunity Canvas: SAFARI_FILE_STEALING2
Name| safarifilestealing2 ---|--- CVE| CVE-2009-1699 Exploit Pack| CANVAS Description| Safari 3.2 XSL File Stealing Notes| CVE Name: CVE-2009-1699 VENDOR: Apple Reference: http://scary.beasts.org/security/CESA-2009-006.html Arugments: After you have placed your single file in the correct...
Immunity Canvas: MS07_065
Name| ms07065 ---|--- CVE| CVE-2007-3039 Exploit Pack| CANVAS Description| Microsoft Message Queuing Service Overflow Notes| CVE Name: CVE-2007-3039 VENDOR: Microsoft MSADV: MS07-065 Repeatability: One shot Note: Windows XP needs a valid Username and Password. According to the SWI Weblog: " There...
Immunity Canvas: WPBACKUP_INCLUDE
Name| wpbackupinclude ---|--- CVE| CVE-2007-5800 Exploit Pack| CANVAS Description| WordPress plugin BackUpWordPress = 0.4.2b Remote File Inclusion Notes| CVE Name: CVE-2007-5800 VENDOR: WordPress Repeatability: Infinite References:...
Immunity Canvas: PHPFFL_INCLUDE
Name| phpfflinclude ---|--- CVE| CVE-2007-4934 Exploit Pack| CANVAS Description| phpFFL 1.24 Remote file inclusion Notes| CVSS: 4.6 Repeatability: Infinite VENDOR: phpffl CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4934 CVE Name: CVE-2007-4934...
Immunity Canvas: MS07_029
Name| ms07029 ---|--- CVE| CVE-2007-1748 Exploit Pack| CANVAS Description| Microsoft DNS Server RPC Interface Overflow Notes| References: http://www.microsoft.com/technet/security/Bulletin/ms07-029.mspx CVE Name: CVE-2007-1748 VENDOR: Microsoft Notes: MSADV: MS07-029 Date public: 04/04/2007 CVE...
Immunity Canvas: GDIWRITE4
Name| GDIWrite4 ---|--- CVE| CVE-2006-5758 Exploit Pack| CANVAS Description| GDIWrite4 MS07-017 Notes| CVE Name: CVE-2006-5758 VENDOR: Microsoft Notes: This exploit will auto-target based on reading a kernel file on Windows 2000 or XP. It will generate a target fingerprint when you run the...
Immunity Canvas: ITUNES_10_6_1
Name| Itunes1061 ---|--- CVE| CVE-2012-0677 Exploit Pack| CANVAS Description| Itunes 10.4 to 10.6.1 Buffer Overflow Notes| CVE Name: CVE-2012-0677 VENDOR: Apple Notes: Buffer overflow SEH based for Itunes 10.4 to 10.6.1 on Windows XP SP2 VersionsAffected: Itunes 10.4 to 10.6.1 Repeatability:...
Immunity Canvas: JAVA_RHINO
Name| javarhino ---|--- CVE| CVE-2011-3544 Exploit Pack| CANVAS Description| javarhino Notes| CVE Name: CVE-2011-3544 VENDOR: Sun OSVDB: http://osvdb.org/show/osvdb/76500 Repeatability: Infinite client side - no crash References: http://schierlm.users.sourceforge.net/CVE-2011-3544.html CVE Url:...
Immunity Canvas: JAVA_DESERIALIZE2
Name| javadeserialize2 ---|--- CVE| CVE-2010-0094 Exploit Pack| CANVAS Description| javadeserialize2 Notes| CVE Name: CVE-2010-0094 VENDOR: Sun OSVDB: http://osvdb.org/show/osvdb/63484 Repeatability: Infinite client side - no crash References:...
Immunity Canvas: IE_HELP
Name| iehelp ---|--- CVE| CVE-2010-0483 Exploit Pack| CANVAS Description| iehelp Notes| CVE Name: CVE-2010-0483 VENDOR: Microsoft Notes: Use from httpserver with name iehelp. Options are: message - Message of the MessageBox to be displayed to the user default: "Press F1 to stop this" Must not be...