619 matches found
Immunity Canvas: CVE_2010_4452
Name| CVE20104452 ---|--- CVE| CVE-2010-4452 Exploit Pack| CANVAS Description| CVE20104452 Notes| CVE Name: CVE-2010-4452 VENDOR: Oracle NOTES: This exploit will work against Java plugin bundled with Oracle/SUN JDK/JRE = 6 Update 23. Target operating systems are Windows all versions and Ubuntu...
Immunity Canvas: FLASH_WILD2
Name| flashwild2 ---|--- CVE| CVE-2010-2884 Exploit Pack| CANVAS Description| Flash 0day CVE-2010-2884 Notes| CVE Name: CVE-2010-2884 VENDOR: Adobe VersionsAffected: Repeatability: Date public: Not public/0day CVE Url: CVSS: 9.3...
Immunity Canvas: SMB2_NEGOTIATE_LOCAL
Name| smb2negotiatelocal ---|--- CVE| CVE-2009-3103 Exploit Pack| CANVAS Description| SMB2 Negotiate Pointer Dereference Vulnerability Notes| CVE Name: CVE-2009-3103 VENDOR: Microsoft VersionsAffected: Repeatability: One shot References: http://blog.48bits.com/?p=510,...
Immunity Canvas: MS09_022_LOADDLL
Name| ms09022loaddll ---|--- CVE| CVE-2009-0230 Exploit Pack| CANVAS Description| Microsoft Windows Print Spooler Arbitrary DLL Loading Notes| CVE Name: CVE-2009-0230 VENDOR: Microsoft MSADV: MS09-022-LOADDLL Repeatability: One shot Note: Valid credentials of a user with "Manage Printer" privileg...
Immunity Canvas: JOOMLACOMPETITIONS_RFI
Name| joomlacompetitionsrfi ---|--- CVE| CVE-2008-5790 Exploit Pack| CANVAS Description| Joomla comcompetitions Remote File Include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Joomla CVE Url: https://vulners.com/cve/CVE-2008-5790 CVE Name: CVE-2008-5790...
Immunity Canvas: CITECT_SCADA
Name| citectscada ---|--- CVE| CVE-2008-2639 Exploit Pack| CANVAS Description| CitectSCADA ODBC Buffer Overflow Notes| CVE Name: CVE-2008-2639 VENDOR: Citect Repeatability: References: http://www.coresecurity.com/content/citect-scada-odbc-service-vulnerability CVE Url:...
Immunity Canvas: JOOMLACHRONOFORMS_INCLUDE
Name| joomlachronoformsinclude ---|--- CVE| CVE-2008-0567 Exploit Pack| CANVAS Description| Joomla Chronoforms Component Remote File Inclusion Notes| CVE Name: CVE-2008-0567 VENDOR: Joomla Repeatability: Infinite References: http://securityreason.com/exploitalert/3292 CVE Url:...
Immunity Canvas: SMALLAXE_INCLUDE
Name| smallaxeinclude ---|--- CVE| CVE-2008-0376 Exploit Pack| CANVAS Description| Smallaxe remote file include Notes| CVE Name: CVE-2008-0376 VENDOR: SmallAxe Solutions Repeatability: Infinite References: http://securityreason.com/exploitalert/3207 CVE Url:...
Immunity Canvas: OOO_230
Name| ooo230 ---|--- CVE| CVE-2007-4575 Exploit Pack| CANVAS Description| OpenOffice Database 2.3.0 Static Java Execution Notes| CVE Name: CVE-2007-4575 VENDOR: OpenOffice Repeatability: Infinite client side - no crash CVS URL: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4575 Date...
Immunity Canvas: SIGE_INCLUDE
Name| sigeinclude ---|--- CVE| CVE-2007-5781 Exploit Pack| CANVAS Description| SIGE remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: pfadmin CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5781 CVE Name: CVE-2007-5781...
Immunity Canvas: GROUPWISE_WEBACCESS
Name| groupwisewebaccess ---|--- CVE| CVE-2007-2171 Exploit Pack| CANVAS Description| Novell GroupWise WebAccess Base64 Decoding Stack Overflow Notes| CVE Name: CVE-2007-2171 VENDOR: Novell VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-07-015.html CV...
Immunity Canvas: NETBACKUP_JAVAUI
Name| netbackupjavaui ---|--- CVE| CVE-2005-2715 Exploit Pack| CANVAS Description| VERITAS NetBackup Java User Interface Format String Notes| CVE Name: CVE-2005-2715 VENDOR: Symantec VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-05-001.html CVE Url:...
Immunity Canvas: CA_LIC
Name| calic ---|--- CVE| CVE-2005-0581 Exploit Pack| CANVAS Description| CA License Overflow Notes| CVSS: 4.6 Repeatability: This is a one shot exploit. VENDOR: Computer Associates CVE Url: https://vulners.com/cve/CVE-2005-0581 CVE Name: CVE-2005-0581...
Immunity Canvas: MYSQL_AUTH_BYPASS
Name| mysqlauthbypass ---|--- CVE| CVE-2004-0627 Exploit Pack| CANVAS Description| MySQL authentication bypass Notes| CVE Name: CVE-2004-0627 OSVDB: http://www.osvdb.org/displayvuln.php?osvdbid=7475 Notes: Mysql authentication can be bypass by a special crafted password with zeroed-strings...
Immunity Canvas: ORACLE8LISTENER_WIN32
Name| oracle8listenerwin32 ---|--- CVE| CVE-2001-0499 Exploit Pack| CANVAS Description| Oracle8i TNS Listener stack overflow Notes| References: http://otn.oracle.com/deploy/security/pdf/nainet8bof.pdf CVE Name: CVE-2001-0499 VENDOR: Oracle Repeatability: Single shot Date public: 27-06-2001 CERT...
Immunity Canvas: MQAC
Name| mqac ---|--- CVE| CVE-2014-4971 Exploit Pack| CANVAS Description| mqac Notes| References: https://www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt CVE Name: CVE-2014-4971 VENDOR: Microsoft Notes: Tested on: Windows XP Professional SP3 English Constraints: In order to work the...
Immunity Canvas: RECVMMSG
Name| recvmmsg ---|--- CVE| CVE-2014-0038 Exploit Pack| CANVAS Description| recvmmsg local root Notes| Repeatability: Infinite Notes: Tested on: - Ubuntu 13.10 x8664 3.11.0-12-generic VENDOR: GNU/Linux CVE Url: https://vulners.com/cve/CVE-2014-0038 CVE Name: CVE-2014-0038...
Immunity Canvas: ACROBAT_TOOLBUTTON
Name| acrobattoolbutton ---|--- CVE| CVE-2013-3346 Exploit Pack| CANVAS Description| acrobattoolbutton Notes| CVE Name: CVE-2013-3346 VENDOR: Adobe NOTES: This exploit has been tested on: - Windows XP SP3 EN Acrobat Reader 11.0.2/11.0.1/10.1.4/10.1.2/10.1.1/10.1.0 Vulnerable versions include: =...
Immunity Canvas: MS_TASKSCHEDULER
Name| mstaskscheduler ---|--- CVE| CVE-2010-2743 Exploit Pack| CANVAS Description| MSTASKSCHEDULER Notes| CVE Name: CVE-2010-2743 VENDOR: Microsoft Notes: This is one of the vulnerabilities used by the Stuxnet work to elevate its privileges on Windows Vista and Windows 7. This vulnerability is...
Immunity Canvas: JAVA_METHOD_CHAIN
Name| javamethodchain ---|--- CVE| CVE-2010-0840 Exploit Pack| CANVAS Description| javamethodchain Notes| CVE Name: CVE-2010-0840 VENDOR: Sun Repeatability: Infinite client side - no crash References:...
Immunity Canvas: IE_PEERS_SETATTRIBUTE
Name| iepeerssetattribute ---|--- CVE| CVE-2010-0806 Exploit Pack| CANVAS Description| iepeerssetattribute Notes| CVE Name: CVE-2010-0806 VENDOR: Microsoft Notes: This is the iepeers exploit for IE 6/7, first discovered in the wild in March, 2010. It will work on both DEP and non-DEP machines and...
Immunity Canvas: JOOMLADADAMAIL_RFI
Name| joomladadamailrfi ---|--- CVE| CVE-2008-6221 Exploit Pack| CANVAS Description| Joomla comdadamail Remote File Include Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Joomla CVE Url: https://vulners.com/cve/CVE-2008-6221 CVE Name: CVE-2008-6221...
Immunity Canvas: MS08_059
Name| ms08059 ---|--- CVE| CVE-2008-3466 Exploit Pack| CANVAS Description| Microsoft Host Integration Server RPC Interface Vulnerability Notes| References: http://www.microsoft.com/technet/security/Bulletin/ms08-059.mspx CVE Name: CVE-2008-3466 VENDOR: Microsoft Notes: MSADV: MS08-059 Date public...
Immunity Canvas: SEGUE_INCLUDE
Name| segueinclude ---|--- CVE| CVE-2007-5186 Exploit Pack| CANVAS Description| Segue remote file include Notes| CVSS: 6.8 Repeatability: Infinite VENDOR: Segue CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5186 CVE Name: CVE-2007-5186...
Immunity Canvas: LSGB_EXEC
Name| lsgbexec ---|--- CVE| CVE-2007-2093 Exploit Pack| CANVAS Description| Limesoft GuestBook exec Notes| CVE Name: CVE-2007-2093 VENDOR: Limesoftware.co.uk Notes: Try using nc -e /bin/sh as your command and having a nc -vlp Repeatability: Infinite CVE Url:...
Immunity Canvas: TM_SPROTECT
Name| tmsprotect ---|--- CVE| CVE-2007-1070 Exploit Pack| CANVAS Description| Trend Micro ServerProtect RPC Overflow Notes| CVE Name: CVE-2007-1070 VENDOR: Trend Micro Notes: Platforms Tested: References: http://www.tippingpoint.com/security/advisories/TSRT-07-01.html CVE Url:...
Immunity Canvas: REALVNC_NOAUTH
Name| realvncnoauth ---|--- CVE| CVE-2006-2369 Exploit Pack| CANVAS Description| REALVNCNOAUTH Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: RealVNC CVE Url: https://vulners.com/cve/CVE-2006-2369 CVE Name: CVE-2006-2369...
Immunity Canvas: MAILENABLE_IMAP
Name| mailenableimap ---|--- CVE| CVE-2005-1015 Exploit Pack| CANVAS Description| mailenableimap Notes| CVE Name: CVE-2005-1015 VENDOR: MailEnable VersionsAffected: MailEnable Enterprise = 1.04 Repeatability: Repeatable. CVE Url: https://vulners.com/cve/CVE-2005-1015 CVSS: 10.0...
Immunity Canvas: SADMIND
Name| sadmind ---|--- CVE| CVE-2003-0722 Exploit Pack| CANVAS Description| sadmind Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F56740 CVE Name: CVE-2003-0722 VENDOR: Sun Date public: Sep 16, 2003 CERT Advisory: CVE Url:...
Immunity Canvas: ESET_EPFWNDIS
Name| ESETEpFwNDIS ---|--- CVE| CVE-2014-4973 Exploit Pack| CANVAS Description| EpFwNDIS.sys Trusted Value Vulnerability Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the ESET Personal Firewall NDIS filter EpFwNdis.sys driver. The Firewall Module Build 1183 2014021...
Immunity Canvas: CVE_2014_5460
Name| CVE20145460 ---|--- CVE| CVE-2014-5460 Exploit Pack| CANVAS Description| CVE-2014-5460 Notes| CVE Name: CVE-2014-5460 VENDOR: Tribulant Changelog: https://wordpress.org/plugins/slideshow-gallery/changelog/ Notes: If the Suhosin-Patch is installed typically announced in the PHP banner the...
Immunity Canvas: CVE_2014_5261
Name| CVE20145261 ---|--- CVE| CVE-2014-5261 Exploit Pack| CANVAS Description| CVE-2014-5261 Notes| CVE Name: CVE-2014-5261 VENDOR: The Cacti Group Changelog: http://svn.cacti.net/viewvc?view=rev&revision=7454 Notes: This is a post-authentication command injection vulnerability in Cacti 0.8.8b,...
Immunity Canvas: NOVELL_NICM
Name| novellnicm ---|--- CVE| CVE-2013-3956 Exploit Pack| CANVAS Description| nicm.sys Privilege Escalation Notes| CVE Name: CVE-2013-3956 Notes: The IOCTL handler for the nicm.sys driver in Novell Client IR5 does not validate pointers from usermode buffers. When passing in the IOCTL 0x143B6B an...
Immunity Canvas: MS13_056
Name| ms13056 ---|--- CVE| CVE-2013-3174 Exploit Pack| CANVAS Description| MS13056 Notes| CVE Name: CVE-2013-3174 VENDOR: Microsoft NOTES: This exploit has been tested on: - Windows XP SP 3 EN on IE 8 no jsrecon - Windows 7 PRO SP 1 EN x86-64 on IE 8 32bit jsrecon works No webpage open in the...
Immunity Canvas: FLASH_APSB11_18
Name| flashAPSB1118 ---|--- CVE| CVE-2011-2110 Exploit Pack| CANVAS Description| flashAPSB1118 Notes| CVE Name: CVE-2011-2110 VENDOR: Adobe Notes: This is an exploit found in the wild, targeting Windows Flash player versions 10.3.181.23 and earlier. VersionsAffected: Windows Flash Player versions...
Immunity Canvas: MS_ENABLEEUDC
Name| msenableeudc ---|--- CVE| CVE-2010-4398 Exploit Pack| CANVAS Description| Windows EnableEUDC Privilege Escalation Exploit Notes| Repeatability: Notes: Tested on Windows 7 x86/64. VENDOR: Microsoft CVE Name: CVE-2010-4398...
Immunity Canvas: ADOBE_FLASH_BUTTON
Name| adobeflashbutton ---|--- CVE| CVE-2010-3654 Exploit Pack| CANVAS Description| adobeflashbutton Notes| CVE Name: CVE-2010-3654 VENDOR: Adobe NOTES: Exploitation through an PDF file is more reliable than with a direct HTML/Flash exploit VersionsAffected: Adobe Acrobat Reader 9.4.0...
Immunity Canvas: MS09_061_CAS
Name| ms09061cas ---|--- CVE| CVE-2009-0091 Exploit Pack| CANVAS Description| MS09-061 Microsoft .NET CAS Type Verification Vulnerability Notes| URL: http://www.microsoft.com/technet/security/Bulletin/MS09-061.mspx CVE Name: CVE-2009-0091 VENDOR: Microsoft CVE Url:...
Immunity Canvas: MS08_049
Name| ms08049 ---|--- CVE| CVE-2008-1457 Exploit Pack| CANVAS Description| EventSystem Service Overflow Notes| CVE Name: CVE-2008-1457 VENDOR: Microsoft Notes: Due to the fact that the svchost.exe instance where the EventSystem service is running is DEP protected, and that all loaded DLLs have GS...
Immunity Canvas: JOOMLACP_INCLUDE
Name| joomlacpinclude ---|--- CVE| CVE-2008-1505 Exploit Pack| CANVAS Description| Joomla Component custompages Remote File Inclusion Notes| CVE Name: CVE-2008-1505 VENDOR: Joomla Repeatability: Infinite References: http://www.securityfocus.com/bid/28409 CVE Url:...
Immunity Canvas: NETRISK_INCLUDE
Name| netriskinclude ---|--- CVE| CVE-2008-0144 Exploit Pack| CANVAS Description| netRisk remote file include Notes| CVE Name: CVE-2008-0144 VENDOR: netRisk Repeatability: Infinite References: http://secunia.com/advisories/28328 CVE Url:...
Immunity Canvas: IEPDF
Name| iepdf ---|--- CVE| CVE-2007-3896 Exploit Pack| CANVAS Description| Microsoft IE 7 url-handling error MS07-061 Notes| CVE Name: CVE-2007-3896 VENDOR: Microsoft MSADV: MS07-061 Repeatability: Infinite client side - no crash MSRC: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3896...
Immunity Canvas: SNORTRPC
Name| snortrpc ---|--- CVE| CVE-2006-5276 Exploit Pack| CANVAS Description| Snort RPC Notes| CVE Name: CVE-2006-5276 VENDOR: SourceFire Notes: This version of the exploit needs to connect to a port 139 Note that it does not need to be an actual Netbios target. Something like a netcat listener wil...
Immunity Canvas: BLOG_PIXELMOTION
Name| blogpixelmotion ---|--- CVE| CVE-2006-5085 Exploit Pack| CANVAS Description| Blog PixelMotion exec Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Pixel Motion CVE Url: https://vulners.com/cve/CVE-2006-5085 CVE Name: CVE-2006-5085...
Immunity Canvas: MS06_025
Name| ms06025 ---|--- CVE| CVE-2006-2371 Exploit Pack| CANVAS Description| RasMan RPC Server Signedness Bug Notes| CVE Name: CVE-2006-2371 VENDOR: Microsoft Notes: If you choose the wrong version to attack, RasMan may stop responding with MSRPC Pipe Not Available errors, and will most likely not...
Immunity Canvas: SNMPXDMID
Name| snmpXdmid ---|--- CVE| CVE-2001-0236 Exploit Pack| CANVAS Description| snmpXdmid Buffer Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F26981&zone32=category%3Asecurity%20snmpXdmid CVE Name: CVE-2001-0236 VENDOR: Sun Development Notes: This is a one sho...
Immunity Canvas: RAILS_ACCEPT_READFILE
Name| railsacceptreadfile ---|--- CVE| CVE-2019-5418 Exploit Pack| CANVAS Description| Ruby on Rails Arbitrary File Read CVE-2019-5418 Notes| CVE Name: CVE-2019-5418 VENDOR: Rails NOTES: The vulnerability resides in Action View in combination with calls to 'render file:' in a controller. You need...
Immunity Canvas: FIREFOX_PDFJS_FILEREADER
Name| firefoxpdfjsfilereader ---|--- CVE| CVE-2015-4495 Exploit Pack| CANVAS Description| firefoxpdfjsfilereader Notes| CVE Name: CVE-2015-4495 VENDOR: Mozilla NOTES: Tested on: Ubuntu 14.04.3 LTS Firefox 39.0 Under the Response tab of ClientD main window, the option "Respond directly with exploi...
Immunity Canvas: ADOBE_FLASH_DOMAINMEMORY_UAF
Name| adobeflashdomainMemoryuaf ---|--- CVE| CVE-2015-0313 Exploit Pack| CANVAS Description| adobeflashdomainMemoryuaf Notes| CVE Name: CVE-2015-0313 VENDOR: Adobe Notes: This module exploits a use-after free vulnerability on the Flash handling of the ApplicationDomain.currentDomain.domainMemory...
Immunity Canvas: ADOBE_FLASH_OTF_PARSING
Name| adobeflashotfparsing ---|--- CVE| CVE-2012-1535 Exploit Pack| CANVAS Description| adobeflashotfparsing Notes| CVE Name: CVE-2012-1535 VENDOR: Adobe Notes: This exploit takes advantage of a integer overflow that leads to a heap based buffer overflow. The kerntable contains an integer that wh...