CA ARCserve D2D r15 GWT RPC - Multiple Vulnerabilities

CA ARCserve D2D r15 GWT RPC - Multiple Vulnerabilities Exploit Title:CA ARCserve D2D r15 GWT RPC Request Auth Bypass / Credentials Disclosure and Commands Execution Google Dork: / Date: 25 July 2011 Author: rgod Software Link: / Version: r15.0 Tested on: Microsoft Windows Server 2003 r2 sp2 CVE :...

DmxReady Faqs Manager 1.2 - SQL Injection

DmxReady Faqs Manager 1.2 - SQL Injection Exploit Title: DmxReady Faqs Manager v1.2 SQL Injection Vulnerability Google Dork: inurl:incfaqsmanager.asp Date: 03.07.2011 Author: Bellatrix Software Link: http://www.dmxready.com/?product=faqs-manager-v1 Version: v1.2 Language: ASP Price : $99.97 Teste...

Kaillera - Multiple Clients Buffer Overflow Vulnerabilities

Kaillera - Multiple Clients Buffer Overflow Vulnerabilities !/usr/bin/perl Exploit Title: Remote Buffer Overflows in Kaillera clients Date: 6/30/11 Author: sil3ntdre4m Software Link: Multiple: 1. Kaillera original client: An emulator to download with this client bundled with it is Project64K 0.13...

XnView 1.98 - Denial of Service (PoC)

XnView 1.98 - Denial of Service PoC done by BraniX found: 2011.06.19 published: 2011.06.20 tested on: Windows XP SP3 Home Edition tested on: Windows XP SP3 Professional App: XnView 1.98 latest version App Url: http://www.xnview.com xnview.exe MD5: ebe200d81a095d296e94e887dc40e607 Xjp2.dll MD5:...

Adobe Audition 3.0 build 7283 - Session File Handling Buffer Overflow (PoC)

Adobe Audition 3.0 build 7283 - Session File Handling Buffer Overflow PoC !/usr/bin/perl Adobe Audition 3.0 build 7283 Session File Handling Buffer Overflow PoC Vendor: Adobe Systems Inc. Product web page: http://www.adobe.com/products/audition/ Affected version: 3.0 build 7238 Summary: Recording...

Microsoft Windows Movie Maker 2.1.4026 - .avi Remote Buffer Overflow

Microsoft Windows Movie Maker 2.1.4026 - .avi Remote Buffer Overflow source: https://www.securityfocus.com/bid/46835/info Windows Movie Maker is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Successful...

PHP Exif Extension - exif_read_data() Remote Denial of Service

PHP Exif Extension - exifreaddata Remote Denial of Service Source: http://permalink.gmane.org/gmane.comp.security.oss.general/4198 ===================================================================== PHP Exif 64bit Casting Vulnerability...

ObjectivityDB - Lack of Authentication

ObjectivityDB - Lack of Authentication !/usr/bin/python obj.py Objectivity/DB Lack of Authentication Remote Exploit Jeremy Brown 0xjbrown41-gmail-com Jan 2011 "Objectivity, Inc. is a leader in distributed, scalable database technology. Our patented data management engine and persistent object sto...

KingView 6.5.3 - SCADA HMI Heap Overflow

KingView 6.5.3 - SCADA HMI Heap Overflow Exploit Title: KingView 6.53 SCADA HMI Heap Overflow PoC Date: 9/28/2010 Author: Dillon Beresford Software Link: http://download.kingview.com/software/kingview%20English%20Version/kingview6.53EN.rar Version: 6.53 English Tested on: Windows XP SP1 works on...

VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow

VeryTools VideoSpirit Pro 1.68 - Local Buffer Overflow Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable...

Trend Micro Titanium Maximum Security 2011 - Local Kernel

Trend Micro Titanium Maximum Security 2011 - Local Kernel / 1.Description: The tmtdi.sys kernel driver distributed with Trend Micro Titanium Maximum Security 2011 contains a pointer overwrite vulnerability in the handling of IOCTL 0x220404. Exploitation of this issue allows an attacker to execute...

Microsoft Excel - SxView Record Parsing Heap Memory Corruption

Microsoft Excel - SxView Record Parsing Heap Memory Corruption ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | day 29 binary analysis | | | | || / \ || | | | || ||// \/|/ ''' Title : Microsoft Excel SxView Record Parsing Heap Memory Corruption Version : Excel...

Adobe Acrobat and Reader - pushstring Memory Corruption

Adobe Acrobat and Reader - pushstring Memory Corruption ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | ' + self.eol else: self.content += self.eol + data + self.eol self.content += 'endobj' + self.eol def objSWFStreamself, objnum, data, stream:...

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow

Microsoft Word 2007 SP2 - sprmCMajority Buffer Overflow ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-microsoft-office-word-sprmcmajority-buffer-overflow/...

DMXready Polling Booth Manager - SQL Injection

DMXready Polling Booth Manager - SQL Injection Author: L0rd CrusAd3r aka VSN [email protected] Exploit Title: DMXready Polling Booth Manager SQLi Vulnerability Vendor url:http://www.dmxready.com Version:1 Price:79$ Published: 2010-09-6 GThanx to:r0073r inj3ct0r.com, Sid3^effects, MaYur, MA120...

Joomla! Component NeoRecruit 1.4 - SQL Injection

Joomla! Component NeoRecruit 1.4 - SQL Injection / / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID...

Joomla! Component com_qcontacts - SQL Injection

Joomla! Component comqcontacts - SQL Injection Exploit Title: Joomla Component QContacts comqcontacts - SQL Injection Vulnerability Date: 12, July 2010 Author: mlk Software Link: http://bugsec.googlecode.com/files/Joomlacomqcontacts.zip Version: 1.0.4 and previous Tested on: all OS CVE : 0 Code :...

Sun Java Web Server 7.0 u7 - Remote Overflow (DEP Bypass)

Sun Java Web Server 7.0 u7 - Remote Overflow DEP Bypass Exploit Title: SJWSexv2 Date: 09/07/2010 Author: dmc Software Link: download link if available Version: 7.0 u7 Tested on: Windows XP SP3 - with and without DEP CVE : CVE-2010-0361 / Sun Java Web Server Exploit v2 Tested on: Sun Java Web Serv...

Sun Java Web Server 7.0 u7 - Remote Overflow

Sun Java Web Server 7.0 u7 - Remote Overflow / Sun Java Web Server Exploit Tested on: Sun Java Web Server 7.0 update 7 - XP SP3 Ref: CVE-2010-0361 This vulnerability was identified by Evgeny Legerov Author: Dominic Chell Date: 23/01/2010 / include "stdafx.h" include include include include includ...

webERP 3.11.4 - Multiple Vulnerabilities

webERP 3.11.4 - Multiple Vulnerabilities Title: webERP Multiple Vulnerabilities Author: ADEO Security Published: 30/06/2010 Version: 3.11.4 Possible all versions Vendor: http://www.weberp.org Description: "webERP is a complete web based accounting/ERP system that requires only a web-browser and p...

Joomla! Component Joomanager - SQL Injection

Joomla! Component Joomanager - SQL Injection Note from the vendor received 10Mar11: The old code was using JReguest::GetVar and we change it to JReguest::GetInt so the catid must be an integer only and not text. We updated this over 6 months ago in version 1.1.1 1 1 0 I'm Sid3^effects member from...

Joomla! Component jesectionfinder - Local File Inclusion

Joomla! Component jesectionfinder - Local File Inclusion Name : Joomla jesectionfinder LFI Vulnerability Date : june, 26 2010 Critical Level : HIGH Vendor Url : http://joomlaextensions.co.in/component/awdsong/ Google Dork: inurl:/component/jesectionfinder/ Price:$25.00 Author : Sid3^effects aKa...

OpenEMR Electronic Medical Record Software 3.2 - Multiple Vulnerabilities

OpenEMR Electronic Medical Record Software 3.2 - Multiple Vulnerabilities Redspin Security Notice -- RSN-2010-01 Multiple vulnerabilities in OpenEMR Electronic Medical Record Software Overview ---------------- Quote from http://www.oemr.org/ OpenEMR is a free medical practice management, electron...

Joomla! Component com_ybggal 1.0 - catid SQL Injection

Joomla! Component comybggal 1.0 - catid SQL Injection ----------------------------------------------------------------------- Joomla Component comybggal 1.0 catid SQL Injection Vulnerability ----------------------------------------------------------------------- Author : v3n0m Site :...

Administrador de Contenidos - Admin Authentication Bypass

Administrador de Contenidos - Admin Authentication Bypass Administrador de Contenidos Admin Login Bypass vulnerability Prodcut: Administrador de Contenidos Home : www.DZ4All.cOm/Cc Vunlerability : Admin Bypass Risk : High Dork : "Diseño Web Hernest Consulting S.L." Discovred by: Ra3cH From :...

Powered by iNetScripts - Arbitrary File Upload

Powered by iNetScripts - Arbitrary File Upload ==================================================== Powered by iNetScripts: Shell Upload Vulnerability ==================================================== Contact :Sec-q8 [email protected] Published: 2010-04-25 Home : http://Sec-Senter.com/vb...

Java Deployment Toolkit - Performs Insufficient Validation of Parameters

Java Deployment Toolkit - Performs Insufficient Validation of Parameters Java Deployment Toolkit Performs Insufficient Validation of Parameters ------------------------------------------------------------------------- Java Web Start henceforth, jws provides java developers with a way to let users...

Joomla! Component DW Graph - Local File Inclusion

Joomla! Component DW Graph - Local File Inclusion --------------------------------------------------------------------------------- Joomla Component DW Graph Local File Inclusion --------------------------------------------------------------------------------- Author : Chip D3 Bi0s Group :...

Subdreamer 3.0.1 - CMS upload

Subdreamer 3.0.1 - CMS upload ======================================================================================== | Title : Subdreamer.v3.0.1 cms upload Vulnerability | Author : indoushka | email : [email protected] | Home : www.h4kz.com | Web Site : | Dork : Website powered by Subdreame...

Skype - URI Handler Input Validation

Skype - URI Handler Input Validation Description The Windows Skype client implements two URI handlers, Skype: and Skype-Plugin. Both handlers allow for easy browser integration and are supported by all modern browsers. When a Skype link is clicked, the Skype.exe process is spawned with the /URI:...

Ac4p.com Gallery 1.0 - Multiple Vulnerabilities

Ac4p.com Gallery 1.0 - Multiple Vulnerabilities ======================================================================================== | Title : Ac4p.com Gallery v1.0 Mullti Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Alger...

TinyMCE WYSIWYG Editor - Multiple Vulnerabilities

TinyMCE WYSIWYG Editor - Multiple Vulnerabilities + Vurnerebility: Js tinymce/tinymce WYSIWYGjava script vurnerebility xss--popup & SQl implemented + Language : Java--,Xml + lisences : LGPL + Vendor : Moxiecode Systems AB + support : IE7J0/IE6.0/NS8.1-IE/NS8.1-G/FF2.0/O9.02; + Category : bug repo...

Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL

Ipswitch IMAIL 11.01 - Reversible Encryption + weak ACL |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 |...

cPanel - HTTP Response Splitting

cPanel - HTTP Response Splitting Recognize-Security - cPanel HTTP Response Splitting Vulnerability ----------------------------------------------------------------- Security Advisory by Trancer January 21 2010 http://www.rec-sec.com "Hacking, however, is an art, not a science." Vendor ------ cPan...

PPVChat - Multiple Vulnerabilities

PPVChat - Multiple Vulnerabilities andresg888 Exploit Title : Exotic-Cams --LFI & XSS-- Date : 2010-01-09 Author : andresg888 Vendor : http://www.ppvchat.com/ Contact : andresg8884tgmaildotcom Dork : No DoRk f0R ScRipT KiDDieS Example LFI: http://server/registration/model.php Example XSS: Go to...

Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service

Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service Product: Windows Live Messenger 2009 Build 14.0.8089.726 Vulnerability: ActiveX - Denial of Service Discussion: Vulnerability is in Activex Controlmsgsc.14.0.8089.726.dll Sending a string to ViewProfile , cause a crash on msnmsgr.e...

Uguestbook - Database Disclosure

Uguestbook - Database Disclosure ======================================================================================== | Title : Asp Uguestbook DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...

Sitecore Staging Module 5.4.0 - Authentication Bypass File Manipulation

Sitecore Staging Module 5.4.0 - Authentication Bypass File Manipulation SEC Consult Security Advisory ========================================================================== title: Authentication bypass and file manipulation in Sitecore Staging Module products: Sitecore Staging Module vulnerab...

HMS HICP Protocol + Intellicom - NetBiterConfig.exe Remote Buffer Overflow

HMS HICP Protocol + Intellicom - NetBiterConfig.exe Remote Buffer Overflow More info http://reversemode.com/index.php?option=comcontent&task=view&id=65&Itemid=1 ----- 1st PART "HMS HICP Protocol" AFAIK there is no public documentation about this protocol, if not so please let me know and I'll...

Vivvo CMS 4.1.5.1 - file Disclosure

Vivvo CMS 4.1.5.1 - file Disclosure waraxe-2009-SA075 - Remote File Disclosure in Vivvo CMS 4.1.5.1 =============================================================================== Author: Janek Vind "waraxe" Date: 21. October 2009 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-75.htm...

redcat media - SQL Injection

redcat media - SQL Injection x==========================================x | AntiSecuritydotorg | x==========================================x x==========================================x | Title : redcat media inurl:index.php?contentId= SQL Injection Vulnerability | Vendor :...

BPGames 1.0 - Blind SQL Injection

BPGames 1.0 - Blind SQL Injection x===================================================================x | AntiSecuritydotorg | x===================================================================x | Title : BPGames 1.0 blind SQL Injection Exploit | | Software : BPGames | | Vendor :...

BPMusic 1.0 - Blind SQL Injection

BPMusic 1.0 - Blind SQL Injection x========================================================================================================================================x | AntiSecuritydotorg |...

DDL CMS 1.0 - Multiple Remote File Inclusions

DDL CMS 1.0 - Multiple Remote File Inclusions +============================================================+ | | | DDL CMS 1.0 Multiple Remote File Inclusion Vulnerabilities | | | +============================================================+ | | | Author : HxH | | | | E-Mail : HxHatlivedotat | |...

Micro CMS 3.5 - SQL Injection Local File Inclusion

Micro CMS 3.5 - SQL Injection Local File Inclusion Micro CMS File inclusion Vuln Micro CMS SQLi login bypass By learn3r hacker from Nepal [email protected] Affected version: v 3.5 or may be lower... File Inclusion Vuln Requires register globals to be on... Vuln file: microcms-inlude.php...

JSFTemplating Mojarra Scales GlassFish - File Disclosure

JSFTemplating Mojarra Scales GlassFish - File Disclosure SEC Consult Security Advisory ======================================================================= title: File disclosure vulnerability in JSFTemplating, Mojarra Scales and GlassFish Application Server v3 Admin console products:...

Avast! 4.8.1335 Professional - Kernel Local Buffer Overflow

Avast! 4.8.1335 Professional - Kernel Local Buffer Overflow include include include include include include / Program : avast! 4.8.1335 Professionnel Homepage : http://www.avast.com Discovery : 2009/07/29 Author Contacted : 2009/07/31 Found by : Heurs This Advisory : Heurs Contact :...

HTC Windows Mobile OBEX FTP Service - Directory Traversal

HTC Windows Mobile OBEX FTP Service - Directory Traversal I shall complete the information related to Bugtraq ID: 33359 Title: HTC / Windows Mobile OBEX FTP Service Directory Traversal Author: Alberto Moreno Tablado Vendor: HTC Vulnerable Products: - HTC devices running Windows Mobile 6 - HTC...

Messages Library 2.0 - cat.php?CatID SQL Injection

Messages Library 2.0 - cat.php?CatID SQL Injection +===================================================================================+ ./SEC-R1Z / / / / /\ \ |/ / \ \ / / / / | | / | | / / \ / / / / | || / | | / / \ \ \ \2009 | \ | | / / / \ /\ / ||\ \ ||/ ...

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow (SEH)

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow SEH include include include include include unsigned char rawData = 0x23, 0x56, 0x69, 0x72, 0x74, 0x75, 0x61, 0x6C, 0x44, 0x4A, 0x20, 0x50, 0x6C, 0x61, 0x79, 0x6C, 0x69, 0x73, 0x74, 0x0D, 0x0A, 0x23, 0x4D, 0x69, 0x78, 0x54, 0x79, 0x70, 0x65,...