Section:  .. / 1010-exploits  /

Page 4 of 12
<< 1 2 3 4 5 6 7 8 9 10 11 12 >> Files 75 - 100 of 284
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: deluxebb13x-sql.txt
Description:
DeluxeBB version 1.3 suffers from a remote SQL injection vulnerability.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
Related Exploit:deluxebb13-sql.txt
File Size:1671
Last Modified:Oct 20 21:11:53 2010
MD5 Checksum:a3213cd1981a3f6ad2226ad299979b1e

 ///  File Name: vbulletin361-sql.txt
Description:
vBulletin version 3.6.1 suffers from a remote SQL injection vulnerability.
Author:jos_ali_joe
File Size:2555
Last Modified:Oct 20 21:10:35 2010
MD5 Checksum:8bf6ff43671e5c19788c22d9ebe1774c

 ///  File Name: winamp558-overflow.txt
Description:
Winamp version 5.5.8.2985 stack overflow exploit that creates a malicious .mtm file.
Author:Mighty-D
File Size:10472
Last Modified:Oct 20 21:08:25 2010
MD5 Checksum:663745b52f3adbec6919fc2046b4df4b

 ///  File Name: fatplayer_wav.rb.txt
Description:
This Metasploit module exploits a buffer overflow in Fat Player 0.6b. When the application is used to import a specially crafted wav file, a buffer overflow occurs allowing arbitrary code execution.
Author:Alexey Sintsov,James Fitts
Homepage:http://www.metasploit.com
File Size:2095
Last Modified:Oct 20 21:05:56 2010
MD5 Checksum:ff9b15dc97a34dbf1e22ffea5afc7854

 ///  File Name: Oracle_JRE_java_net_urlconnection_S..>
Description:
Security-Assessment.com discovered that a Java Applet making use of java.net.URLConnection class can be used to bypass same-of-origin (SOP) policy and domain based security controls in modern browsers when communication occurs between two domains that resolve to the same IP address. This advisory includes a Proof-of-Concept (PoC) demo and Java Applet source code. This demonstrates how the security vulnerability can be exploited to leak cookie information to an unauthorised domain, which resides on the same host IP address.
Author:Roberto Suggi Liverani Craig
Homepage:http://www.security-assessment.com/
Related Exploit:oraclejre-bypass.tgz
File Size:188230
Related CVE(s):CVE-2010-3573
Last Modified:Oct 20 00:02:44 2010
MD5 Checksum:be58f24fcb5371cbb65d3ac41af1fb9b

 ///  File Name: Oracle_Siebel_eBusiness_Application..>
Description:
Security-Assessment.com has discovered that two components of the Siebel eBusiness Application Suite are vulnerable to reflected Cross Site Scripting attacks. The vulnerabilities can be exploited by both authenticated and unauthenticated remote users.
Author:Roberto Suggi Liverani Craig
Homepage:http://www.security-assessment.com/
File Size:138411
Related CVE(s):CVE-2010-2406
Last Modified:Oct 20 00:02:44 2010
MD5 Checksum:d489484937d2fa3002641e3ab060bbdf

 ///  File Name: Oracle_Sun_Java_System_Web_Server_H..>
Description:
Security-Assessment.com discovered that is possible to successfully perform an HTTP Response Splitting attack against applications served by Sun Java System Web Server. The vulnerability can be exploited if user supplied input is used to generate the value of an HTTP header.
Author:Roberto Suggi Liverani Craig
Homepage:http://www.security-assessment.com/
File Size:156035
Related CVE(s):CVE-2010-3514
Last Modified:Oct 20 00:02:44 2010
MD5 Checksum:0802687dca5700a47fd1f814d354a3e8

 ///  File Name: massplayer-dos.txt
Description:
Mass Player version 2.1 denial of service exploit that creates a malicious MP3.
Author:Sweet
File Size:651
Last Modified:Oct 19 23:54:49 2010
MD5 Checksum:76881a6008b5a07e9ef3089628b7b944

 ///  File Name: linux-rds-exploit.c
Description:
Linux kernel versions 2.6.36-rc8 and below RDS privilege escalation exploit.
Author:Dan Rosenberg
Homepage:http://www.vsecurity.com/
File Size:6804
Related CVE(s):CVE-2010-3904
Last Modified:Oct 19 23:53:20 2010
MD5 Checksum:54ff3c68fb1a6ff5120c84c765210789

 ///  File Name: joomlapinboard-rfi.txt
Description:
The Joomla Pinboard component suffers from a remote file inclusion vulnerability.
Author:jos_ali_joe
File Size:961
Last Modified:Oct 19 23:49:36 2010
MD5 Checksum:fc2dfbac98b950b24ed75e99f2ff5c4d

 ///  File Name: alpha2player-dos.txt
Description:
Alpha 2 Player suffers from a denial of service vulnerability.
Author:anT!-Tr0J4n
File Size:2323
Last Modified:Oct 19 23:47:35 2010
MD5 Checksum:714346ddfdc72e0bd8733f4bfa85997b

 ///  File Name: hansoconverter-overflow.txt
Description:
Hanso Converter proof of concept buffer overflow exploit.
Author:anT!-Tr0J4n
File Size:2378
Last Modified:Oct 19 23:46:55 2010
MD5 Checksum:ca214d8f33d9958cb3c459741e95fe94

 ///  File Name: cometbird-dos.txt
Description:
Comet Bird version 3.6.10 suffers from a denial of service vulnerability.
Author:anT!-Tr0J4n
File Size:2504
Last Modified:Oct 19 23:46:04 2010
MD5 Checksum:d54072308b1897cbf8b6624d87f1939f

 ///  File Name: phpcheckz-sql.txt
Description:
phpCheckZ version 1.1.0 suffers from a remote blind SQL injection vulnerability.
Author:Salvatore Fresta
File Size:1259
Last Modified:Oct 19 23:44:48 2010
MD5 Checksum:6229c97b1f2bbbc88ba4fba9f525ffbb

 ///  File Name: joomlaflashfun-lfi.txt
Description:
The Joomla Flash Fun component suffers from a local file inclusion vulnerability.
Author:jos_ali_joe
File Size:1061
Last Modified:Oct 19 23:43:04 2010
MD5 Checksum:a1c28076c6f67d2c4f0ab61a8f56566f

 ///  File Name: joomlaeventcal-rfi.txt
Description:
The Joomla Eventcal component suffers from a remote file inclusion vulnerability.
Author:jos_ali_joe
File Size:1027
Last Modified:Oct 19 23:42:21 2010
MD5 Checksum:2601ffbf7c944eb28c2785b07804dfa6

 ///  File Name: phpbb2foing-rfi.txt
Description:
Fully modded phpBB 2 suffers from a remote file inclusion vulnerability.
Author:jos_ali_joe
File Size:2349
Last Modified:Oct 19 23:40:25 2010
MD5 Checksum:ac5b96d0b1d63b2a11fda27028414a80

 ///  File Name: oraclejre-bypass.tgz
Description:
The Oracle JRE - java.net.URLConnection class - suffers from a same-of-origin (SOP) policy bypass vulnerability. Malicious java applet proof of concept code included.
Author:Roberto Suggi Liverani Craig
Homepage:http://www.security-assessment.com/
File Size:3361
Related CVE(s):CVE-2010-3573
Last Modified:Oct 19 23:35:58 2010
MD5 Checksum:9d2815e05de87254ba5b655090d696aa

 ///  File Name: acerorbicam-dllhijack.txt
Description:
Acer OrbiCam version 9.4.4.1084 DLL hijacking exploit for mfc71ptb.dll and mfc71loc.dll.
Author:Inj3cti0n P4ck3t
File Size:858
Last Modified:Oct 19 23:33:55 2010
MD5 Checksum:dc1baecd94946e0c226177bd1a1a2f64

 ///  File Name: powerdvd-dllhijack.c
Description:
PowerDVD version 5.00.1107 DLL hijacking exploit.
Author:Inj3cti0n P4ck3t
File Size:820
Last Modified:Oct 19 03:17:28 2010
MD5 Checksum:f42d237ef6e81b9d68b59c898616ecba

 ///  File Name: realwin_scpc_initialize.rb.txt
Description:
This Metasploit module exploits a stack buffer overflow in DATAC Control International RealWin SCADA Server 2.0 (Build 6.1.8.10). By sending a specially crafted packet, an attacker may be able to execute arbitrary code.
Author:Luigi Auriemma,MC
Homepage:http://www.metasploit.com
File Size:2017
Last Modified:Oct 19 03:16:30 2010
MD5 Checksum:37781b81cd082caceb3c4e43805060ea

 ///  File Name: eventticketportal-xsrf.txt
Description:
Event Ticket Portal Script suffers from a cross site request forgery vulnerability.
Author:KnocKout
File Size:1570
Last Modified:Oct 19 03:15:32 2010
MD5 Checksum:0d4b9ec06950ef99ad758adfafab44da

 ///  File Name: gnuc-origin.txt
Description:
The GNU C library dynamic linker suffers from an $ORIGIN expansion vulnerability.
Author:Tavis Ormandy
File Size:13744
Related CVE(s):CVE-2010-3847
Last Modified:Oct 19 03:10:47 2010
MD5 Checksum:f2e84353fe16194342b73b40025a36f6

 ///  File Name: copyprotected-sql.txt
Description:
CopyProtected.com suffers from a remote SQL injection vulnerability.
Author:dolomedes
File Size:449
Last Modified:Oct 19 03:06:20 2010
MD5 Checksum:50c817c78bda14c6f410fe9882ea6d8d

 ///  File Name: travelportal-xsrf.txt
Description:
Travel Portal suffers from a cross site request forgery vulnerability.
Author:KnocKout
File Size:1627
Last Modified:Oct 19 03:04:28 2010
MD5 Checksum:a7edf803f9c85a38377fa5b6ebe5fff1