Section:  .. / 1009-exploits  /

Page 4 of 13
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 >> Files 75 - 100 of 305
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: webkit-corrupt.txt
Description:
Webkit on Apple Safari versions prior to 4.1.2 and 5.0.2 and Google Chrome versions prior to 5.0.375.125 suffers from a memory corruption vulnerability.
Author:Jose Antonio Vazquez Gonzalez
File Size:3861
Related CVE(s):CVE-2010-1813
Last Modified:Sep 11 15:02:45 2010
MD5 Checksum:c02933ebe9605677f38a92ea22c0fc78

 ///  File Name: moaub-msoffice.txt
Description:
Month Of Abysssec Undisclosed Bugs - Microsoft Office Visio suffers from a DXF file stack based overflow vulnerability.
Author:Abysssec,Shahin
Homepage:http://www.abysssec.com/
File Size:3857
Related CVE(s):CVE-2010-1681
Last Modified:Sep 8 22:18:00 2010
MD5 Checksum:4d5699375ade33244cdbeab5f9ceb0bf

 ///  File Name: bacnet-overflow.py.txt
Description:
BACnet OPC client buffer overflow exploit with user add shellcode. Version 1.0.24 is affected.
Author:Jeremy Brown
File Size:3774
Last Modified:Sep 16 21:05:07 2010
MD5 Checksum:2d67bc68aa7b77086364c880df5dab4e

 ///  File Name: amirocmsfaq-xss.txt
Description:
Amiro.CMS version 5.8.4.0 suffers from a stored cross site scripting vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:3771
Last Modified:Sep 1 16:39:03 2010
MD5 Checksum:fcde2057993cb2b829ddb53e50b7a2db

 ///  File Name: moaub-cpanel.txt
Description:
Month Of Abysssec Undisclosed Bugs - Cpanel suffers from a PHP restriction bypass vulnerability. Versions 11.25 and below are affected.
Author:Abysssec,Shahin
Homepage:http://www.abysssec.com/
File Size:3736
Last Modified:Sep 1 16:06:39 2010
MD5 Checksum:3dfa74787ba6fd6279c79324649a56a1

 ///  File Name: DCA-00015.txt
Description:
YOPS (Your Own Personal [WEB] Server) version 2009-11-30 suffers from a remote buffer overflow vulnerability.
Author:ipax
Homepage:http://www.dclabs.com.br/
File Size:3730
Last Modified:Sep 11 15:16:29 2010
MD5 Checksum:c648fe223b54443d9d9543189d3da13e

 ///  File Name: allpc-sqlxss.txt
Description:
Allpc version 2.5 osCommerce suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:RoAd_KiLlEr
File Size:3703
Last Modified:Sep 27 22:36:29 2010
MD5 Checksum:d72b6950133fd8fb824fcf4f787ba60a

 ///  File Name: integard_password_bof.rb.txt
Description:
This Metasploit module exploits a stack buffer overflow in Race river's Integard Home/Pro internet content filter HTTP Server. Versions prior to 2.0.0.9037 and 2.2.0.9037 are vulnerable. The administration web page on port 18881 is vulnerable to a remote buffer overflow attack. By sending an long character string in the password field, both the structured exception handler and the saved extended instruction pointer are over written, allowing an attacker to gain control of the application and the underlying operating system remotely. The administration website service runs with SYSTEM privileges, and automatically restarts when it crashes.
Author:Lincoln,Nullthreat,Rick,corelanc0d3r,jduck
Homepage:http://www.metasploit.com
File Size:3690
Related OSVDB(s):67909
Last Modified:Sep 11 13:20:44 2010
MD5 Checksum:647d8990db0dbe0d59c18c7f7d7d73ff

 ///  File Name: tftpddesktop-traversal.txt
Description:
TFTP Desktop version 2.5 suffers from a directory traversal vulnerability.
Author:chr1x
File Size:3682
Last Modified:Sep 1 16:20:39 2010
MD5 Checksum:898e5d989da95c2440eeba3e54c34fc6

 ///  File Name: moaub-msmpeg.txt
Description:
Month Of Abysssec Undisclosed Bugs - Microsoft MPEG Layer-3 remote command execution exploit.
Author:Abysssec,Shahin
Homepage:http://www.abysssec.com/
File Size:3616
Related CVE(s):CVE-2010-0480
Last Modified:Sep 5 21:52:39 2010
MD5 Checksum:d4b2242d4267867ef990e47086ff8728

 ///  File Name: chrome-extensiondetection.txt
Description:
Google Chrome suffers from an installed extensions arbitrary detection vulnerability.
Author:Lostmon
Homepage:http://lostmon.blogspot.com/
File Size:3594
Last Modified:Sep 8 00:56:21 2010
MD5 Checksum:a76ba5e7565d1c6c8e2e8342a19d93a1

 ///  File Name: chillycms113-shell.py.txt
Description:
chillyCMS version 1.1.3 suffers from a shell upload vulnerability.
Author:John Leitch
File Size:3552
Last Modified:Sep 15 21:13:58 2010
MD5 Checksum:ceffe691bf31874d8beb46630e9095b2

 ///  File Name: mblogger-xss.txt
Description:
mBlogger version 1.0.04 addcomment.php persistent cross site scripting exploit.
Author:Ptrace Security
File Size:3547
Last Modified:Sep 5 22:18:51 2010
MD5 Checksum:ac329602f53e933ab8d1c40e1f3484d2

 ///  File Name: pixelpost173-xsrfxss.txt
Description:
PixelPost version 1.7.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
Author:Sweet
File Size:3508
Last Modified:Sep 15 20:11:58 2010
MD5 Checksum:cfab11e8683d294b05c5504b78196fb6

 ///  File Name: ablog-sql.txt
Description:
A-Blog version 2.0 remote SQL injection exploit that leverages sources/search.php.
Author:Ptrace Security
File Size:3478
Last Modified:Sep 5 21:58:43 2010
MD5 Checksum:8ce8acb382d24f462f9ac9cb6a12d2c0

 ///  File Name: peel571-sql.txt
Description:
PEEL Premium version 5.71 suffers from a remote SQL injection vulnerability.
Author:KnocKout
File Size:3449
Last Modified:Sep 27 22:10:32 2010
MD5 Checksum:4c4befe8ce186f3595a73c3fa675c7fd

 ///  File Name: PRL-2010-07.txt
Description:
A flaw exists within SSHD.NLM of Novell Netware version 6.5. When the application attempts to resolve an absolute path on the server, a 512 byte destination buffer is used without bounds checking. By providing a large enough value, an attacker can cause a buffer to be overflowed. Successful exploitation results in remote code execution under the context of the server.
Author:Francis Provencher
File Size:3448
Last Modified:Sep 2 23:12:50 2010
MD5 Checksum:0f072e2d9e7ec5d12c5cefae31d95aeb

 ///  File Name: ZSL-2010-4965.txt
Description:
Softek Barcode Reader Toolkit version 7.1.4.14 Active-X related buffer overflow proof of concept exploit.
Author:LiquidWorm
Homepage:http://www.zeroscience.mk/
File Size:3416
Last Modified:Sep 21 19:07:07 2010
MD5 Checksum:8aa99dc0ba8a0fc008402b9f2de625cc

 ///  File Name: rumbacms-xss.txt
Description:
Rumba CMS version 2.4 suffers from cross site scripting vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:3394
Last Modified:Sep 1 13:52:14 2010
MD5 Checksum:d7fad0360466b3a40cd8128ccb988b4b

 ///  File Name: pligg104-sql.txt
Description:
Pligg version 1.0.4 suffers from additional remote SQL injection vulnerabilities outside of the previously discovered findings.
Author:Bogdan Calin
Homepage:http://www.acunetix.com/
Related Exploit:pliggcms104-sql.txt
File Size:3371
Last Modified:Sep 3 19:19:28 2010
MD5 Checksum:3162841c2d8bfcfec785cce729b0412b

 ///  File Name: coldusergroup-xssbypass.txt
Description:
ColdUserGroup version 1.6 suffers from bypass and cross site scripting vulnerabilities.
Author:Sangteamtham
File Size:3345
Last Modified:Sep 11 14:40:02 2010
MD5 Checksum:4ae352c11f6a3ceb653178eb0d2e05ca

 ///  File Name: entrans-sqlxss.txt
Description:
Entrans version 0.3.2 suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:3343
Last Modified:Sep 27 23:00:24 2010
MD5 Checksum:266e22520448a2d9904c7d335122295a

 ///  File Name: carportal20-sql.txt
Description:
Car Portal version 2.0 suffers from a remote blind SQL injection vulnerability.
Author:RoAd_KiLlEr
File Size:3303
Last Modified:Sep 27 22:40:41 2010
MD5 Checksum:780cb8838bba74c42926a48cd8a30480

 ///  File Name: MVSA-10-007.txt
Description:
Web-based Local Management Interface (LMI) of IBM Proventia Network Mail Security System appliance (firmware 1.6 and 2.5) is vulnerable to multiple persistent and reflected XSS attacks. When exploited by an external/internal attacker, such identified vulnerabilities could lead to Session Hijack, Information Disclosure, force installation of malicious file or Trojan on users' PCs, etc.
Author:Dr. Marian Ventuneac
File Size:3285
Related CVE(s):CVE-2010-0152
Last Modified:Sep 13 21:03:00 2010
MD5 Checksum:d000347eefac0631f9db2c32676ba011

 ///  File Name: java_rmi_connection_impl.rb.txt
Description:
This Metasploit module exploits a vulnerability in the Java Runtime Environment that allows to deserialize a MarshalledObject containing a custom classloader under a privileged context. The vulnerability affects version 6 prior to update 19 and version 5 prior to update 23.
Author:Matthias Kaiser,Sami Koivu,egypt
Homepage:http://www.metasploit.com
File Size:3263
Related OSVDB(s):63484
Related CVE(s):CVE-2010-0094
Last Modified:Sep 8 22:05:17 2010
MD5 Checksum:0d92c0d644f75f48c339916b902897e1