what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 8 of 8 RSS Feed

Files from Michael Thumann

Email addressmthumann at ernw.de
First Active2002-05-05
Last Active2009-11-26
Private Wire Gateway Buffer Overflow
Posted Nov 26, 2009
Authored by Michael Thumann | Site metasploit.com

This exploits a buffer overflow in the ADMCREG.EXE used in the PrivateWire Online Registration Facility.

tags | exploit, overflow
advisories | CVE-2006-3252
SHA-256 | 6076a865e7674832125c340ca727625a96f539e09a66e9849981dabb4bdffb1c
Blackberry Mobile Data Service XSS
Posted Apr 17, 2009
Authored by Michael Thumann

The Blackberry Mobile Data Service Connection is vulnerable to several cross site scripting attacks in the "Customize Statistics Page". All versions prior to 4.1.6 MR4 are vulnerable.

tags | exploit, xss
SHA-256 | 32a645ba20821c711d9b5be04daab2fb1198f6b02eca86a871e10c9d321e5366
D1T1_-_Michael_Thumann_-_Hacking_Second_Life.zip
Posted Apr 21, 2008
Authored by Michael Thumann | Site conference.hitb.org

Hacking Second Life - A presentation that covers the basic architecture of SecondLife and points out the possible attack vectors against SecondLife itself, but will also demonstrate hacks from the inside of SecondLife against real-life systems in the internet.

SHA-256 | fd3518c421efc61d62c97afa9fafe5bb277b1577ffc98e5668bc5b92b66370d2
privatewire.pm.txt
Posted Nov 7, 2006
Authored by Michael Thumann

This Metasploit module exploits a buffer overflow in the ADMCREG.EXE used in the PrivateWire Online Registration Facility version 3.7.

tags | exploit, overflow
SHA-256 | a5ec652464b0f067411e97ad1d8e3280db7564bcfd84b1c5fde1f0ead9835c19
ERNW-02-2006.txt
Posted Jul 12, 2006
Authored by Michael Thumann | Site ernw.de

The sipXtapi library from sip foundry contains a buffer overflow when parsing the CSeq field. This flaw can be used by an attacker to gain control over EIP and execute arbitrary code.

tags | exploit, overflow, arbitrary
SHA-256 | 77a6625b68a7a0f0d9aa5020695192031b2e9a9b5fe7b3694ab20b03088f38cd
ERNW-01-2006.txt
Posted Jun 27, 2006
Authored by Michael Thumann | Site ernw.de

The Online Registration Facility of Algorithmic Research PrivateWire VPN Software does not do proper bounds checking handling normal GET requests. Sending an overly long page or script name, it causes a buffer overflow and an attacker can control the EIP to run arbitrary code on the victims machine.

tags | advisory, overflow, arbitrary
SHA-256 | ed57108705046fce7f0788c8851c13a21b39073e06a3b2e3cc8860b156e305dd
ernwSA012005.txt
Posted May 29, 2005
Authored by Michael Thumann

A buffer overflow exists in PMSoftware's Simple Web Server version 1.0.

tags | advisory, web, overflow
SHA-256 | 5fa358e8ae57771eec4d6be7eef2ff8867641bda69d38b8fb79abcb41a1feabc
tomas.zip
Posted May 5, 2002
Authored by Michael Thumann | Site ernw.de

Too Many Secrets v0.7beta is a commandline tool to crack the enable secret passwords on Cisco routers. You need the md5 password hash from the config to run this tool. It contents dictionary and brute force attacks and a nice feature to combine brute forcing with a partial known password string.

systems | cisco
SHA-256 | 366dc501186b5563d654914b6ef0551d25c486d445fe8fd8ca3faba1c9fa666f
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close