Section:  .. / 1004-exploits  /

Page 8 of 20
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 >> Files 175 - 200 of 490
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: joomlagbufacebook-sql.txt
Description:
The Joomla GBU Facebook component version 1.0.5 suffers from a remote SQL injection vulnerability.
Author:kaMtiEz
Homepage:http://www.indonesiancoder.com/
File Size:1913
Last Modified:Apr 19 20:29:35 2010
MD5 Checksum:3e5486bb852fa6d5e08a74cf7d01e465

 ///  File Name: 2010-02-sudo.txt
Description:
sudoedit as found in sudo versions 1.7.2p5 and below fails to verify the path of the executable and therefore allows for an easy to exploit local privilege escalation vulnerability.
Author:Maurizio Agazzini,Valerio Costamagna
Homepage:http://lab.mediaservice.net/
File Size:2183
Related CVE(s):CVE-2010-1163
Last Modified:Apr 19 20:25:49 2010
MD5 Checksum:9b4e6b76c052c87f529fda87d785353d

 ///  File Name: corelanc0d3r_tweakfs_sploit.py.txt
Description:
TweakFS version 1.0 stack buffer overflow exploit that creates a malicious .zip file.
Author:corelanc0d3r
File Size:4150
Last Modified:Apr 19 20:15:55 2010
MD5 Checksum:65da74d98e6f35068a47825c3409cf22

 ///  File Name: joomlaifsurfalert-lfi.txt
Description:
The Joomla iF surfALERT component version 1.2 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1287
Last Modified:Apr 19 20:10:08 2010
MD5 Checksum:dfa91bcfa6b90e005e7ee0ce31650251

 ///  File Name: openreglement-rfilfi.txt
Description:
Openreglement version 1.04 suffers from local file inclusion and remote file inclusion vulnerabilities.
Author:cr4wl3r
File Size:2960
Last Modified:Apr 19 18:59:07 2010
MD5 Checksum:c3690d79e59bd0b1383b171f8954eda1

 ///  File Name: kleophatracms-xss.txt
Description:
Kleophatra CMS suffers from a cross site scripting vulnerability.
Author:anT!-Tr0J4n
File Size:772
Last Modified:Apr 19 18:57:16 2010
MD5 Checksum:b13d0d923e8b525371bf53d9e18f87e8

 ///  File Name: joomlacugmp-lfi.txt
Description:
The Joomla Contact Us Google Map component version 1.2 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1260
Last Modified:Apr 19 18:56:21 2010
MD5 Checksum:e10c5701d997f7ec3c4b4e086c9a1498

 ///  File Name: ZSL-2010-4934.txt
Description:
The AVTECH Software Active-X controller (AVC781Viewer.dll) suffers from buffer overflow, integer overflow and denial of service vulnerabilities.
Author:LiquidWorm
File Size:11452
Last Modified:Apr 19 18:54:55 2010
MD5 Checksum:a42defd50217618d03a6f358f28db5f8

 ///  File Name: joomlacudrm-lfi.txt
Description:
The Joomla Contact Us Draw Root Map component version 1.1 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1277
Last Modified:Apr 19 18:50:58 2010
MD5 Checksum:02f3d8848048a6a23841b4cd33986169

 ///  File Name: nxwebcms-lfirfi.txt
Description:
N/X WCMS version 4.5 suffers from local file inclusion and remote file inclusion vulnerabilities.
Author:eidelweiss
File Size:8403
Last Modified:Apr 19 18:49:44 2010
MD5 Checksum:39eef1966a19c8d307a8dc7a38004094

 ///  File Name: joomlamultiplemap-lfi.txt
Description:
The Joomla Multiple Map component version 1.0 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1265
Last Modified:Apr 19 18:46:10 2010
MD5 Checksum:69268090a70c1e458f50242c467853a8

 ///  File Name: ms10_025_wmss_connect_funnel.rb.txt
Description:
This Metasploit module exploits a stack buffer overflow in the Windows Media Unicast Service version 4.1.0.3930 (NUMS.exe). By sending a specially crafted FunnelConnect request, an attacker can execute arbitrary code under the "NetShowServices" user account. Windows Media Services 4.1 ships with Windows 2000 Server, but is not installed by default. NOTE: This service does NOT restart automatically. Successful, as well as unsuccessful exploitation attempts will kill the service which prevents additional attempts.
Author:jduck
Homepage:http://www.metasploit.com
File Size:4656
Related OSVDB(s):63726
Related CVE(s):CVE-2010-0478
Last Modified:Apr 19 18:46:07 2010
MD5 Checksum:c628ec8e8cdc6b02bba2239149b248fb

 ///  File Name: java_ws_arginject_altjvm.rb.txt
Description:
This Metasploit module exploits a flaw in the Web Start plugin component of Sun Java Web Start. The arguments passed to Java Web Start are not properly validated. By passing the lesser known -J option, an attacker can pass arbitrary options directly to the Java runtime. By utilizing the -XXaltjvm option, as discussed by Ruben Santamarta, an attacker can execute arbitrary code in the context of an unsuspecting browser user. This vulnerability was originally discovered independently by both Ruben Santamarta and Tavis Ormandy. Tavis reported that all versions since version 6 Update 10 "are believed to be affected by this vulnerability." In order for this module to work, it must be ran as root on a server that does not serve SMB. Additionally, the target host must have the WebClient service (WebDAV Mini-Redirector) enabled.
Author:jduck
Homepage:http://www.metasploit.com
File Size:9118
Related OSVDB(s):63648
Related CVE(s):CVE-2010-0886
Last Modified:Apr 19 18:45:38 2010
MD5 Checksum:497d4c86de502dbaa7ca516d3a23f53c

 ///  File Name: joomlamultipleroot-lfi.txt
Description:
The Joomla Multiple Root component version 1.0 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1273
Last Modified:Apr 19 18:45:16 2010
MD5 Checksum:e84386404ccd0281fef1d1b0e48b0f27

 ///  File Name: joomlaarcheryscores-lfi.txt
Description:
The Joomla Archery Scores component version 1.0.6 suffers from a local file inclusion vulnerability.
Author:wishnusakti
File Size:1393
Last Modified:Apr 19 18:37:38 2010
MD5 Checksum:04e9331e3445c57018349c45f25617ec

 ///  File Name: xmexploit.py.txt
Description:
XM Easy Personal FTP Server version 5.8.0 LIST buffer overflow denial of service exploit.
Author:Jeremiah Talamantes
File Size:2050
Last Modified:Apr 19 18:33:48 2010
MD5 Checksum:e1b8c16e7c81781310c6605af23d1ec5

 ///  File Name: dlstats-sqlxssadmin.txt
Description:
DL_Stats suffers from cross site scripting, arbitrary administrative access and remote SQL injection vulnerabilities.
Author:Valentin Hobel
File Size:2598
Last Modified:Apr 19 16:53:11 2010
MD5 Checksum:d5615d3d88b18178db8efb50b2706671

 ///  File Name: joomlamatamko-lfi.txt
Description:
The Joomla Matamko component version 1.01 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1240
Last Modified:Apr 19 16:52:16 2010
MD5 Checksum:1b16ac69725e3be14b13e52819c5e20e

 ///  File Name: joomlagadgetfactory-lfi.txt
Description:
The Joomla Gadget Factory component version 1.0.0 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1292
Last Modified:Apr 19 16:50:50 2010
MD5 Checksum:1b6211c7322642cc5da51872630f17a1

 ///  File Name: joomlazimbmanager-lfi.txt
Description:
The Joomla ZiMB Manager component version 0.1 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1251
Last Modified:Apr 19 16:48:58 2010
MD5 Checksum:4413d8b54f37028de35c47b08c5be815

 ///  File Name: joomlazimbcomment-lfi.txt
Description:
The Joomla ZiMB Comment component version 0.8.1 suffers from a local file inclusion vulnerability.
Author:AntiSecurity
File Size:1274
Last Modified:Apr 19 16:48:00 2010
MD5 Checksum:80d7538eb8d0a22da51d912105f6888b

 ///  File Name: cmssitelogic-shellxss.txt
Description:
CMS SiteLogic suffers from cross site scripting and shell upload vulnerabilities.
Author:MustLive
File Size:1595
Last Modified:Apr 19 16:42:05 2010
MD5 Checksum:ccd0fbd00ac11eeace5e9f1fccea2792

 ///  File Name: zs_agentx_bof.py.txt
Description:
AgentX++ stack buffer overflow proof of concept exploit.
Author:ZSploit.com
Homepage:http://zsploit.com/
File Size:3470
Related CVE(s):CVE-2010-1318
Last Modified:Apr 19 16:26:21 2010
MD5 Checksum:0d81df7a733a5eb2421053792e5f57ab

 ///  File Name: aligro-sql.txt
Description:
Aligro version 1.2.1 suffers from a remote SQL injection vulnerability.
Author:indoushka
File Size:1831
Last Modified:Apr 19 16:23:18 2010
MD5 Checksum:51887dfc266992a4fe23712dac7cdc79

 ///  File Name: eclime-disclosure.txt
Description:
eclime version 1.1 suffers from bypass and database download vulnerabilities.
Author:indoushka
File Size:2512
Last Modified:Apr 19 16:22:20 2010
MD5 Checksum:2f30b2a91b0d9cbe08180298e621fac7