seeing is believing
Showing 1 - 25 of 323 RSS Feed

Files

Packet Storm New Exploits For February, 2012
Posted Mar 1, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 322 exploits added to Packet Storm in February, 2012.

tags | exploit
systems | linux
MD5 | 5570d9616495d180401539cece596951
Netmechanica NetDecision HTTP Server Denial Of Service
Posted Feb 29, 2012
Authored by Prabhu S Angadi | Site secpod.com

Netmechanica NetDecision HTTP Server version 4.5.1 suffers from a denial of service vulnerability. Proof of concept included.

tags | exploit, web, denial of service, proof of concept
systems | linux
MD5 | e1a7c744b61abe4bd2cd106ed702b736
Dotclear 2.4.1.2 Cross Site Scripting
Posted Feb 29, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

Dotclear version 2.4.1.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2012-1039
MD5 | f4e4d73faf5476faa61daefc13fadf36
Netmechanica NetDecision Traffic Grapher Server Information Disclosure
Posted Feb 29, 2012
Authored by Prabhu S Angadi | Site secpod.com

Netmechanica NetDecision Traffic Grapher Server version 4.5.1 suffers from an information disclosure vulnerability. Proof of concept exploit included.

tags | exploit, proof of concept, info disclosure
systems | linux
MD5 | 9e94fa153cbc3f17e41f22a8b4bd0966
Yealink VOIP Phone Cross Site Scripting
Posted Feb 29, 2012
Authored by Narendra Shinde

Yealink VOIP Phone suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2012-1417
MD5 | 1356c22c62ef3603d02f11bd45485604
ASUS Net4Switch ipswcom.dll ActiveX Stack Buffer Overflow
Posted Feb 29, 2012
Authored by sinn3r, Dmitriy Evdokimov | Site metasploit.com

This Metasploit module exploits a vulnerability found in ASUS Net4Switch's ipswcom.dll ActiveX control. A buffer overflow condition is possible in multiple places all because of the poor use of the CxDbgPrint() function, which allows remote attackers to gain arbitrary code execution under the context of the user.

tags | exploit, remote, overflow, arbitrary, code execution, activex
advisories | OSVDB-79438
MD5 | 89e2542c604e3e6e89bba3b879832ab3
IBM Personal Communications I-Series Buffer Overflow
Posted Feb 29, 2012
Authored by TecR0c | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow vulnerability in IBM Personal Communications I-Series. The issue affects file parsing in which data copied to a location in memory exceeds the size of the reserved destination area. The buffer is located on the runtime program stack. Versions tested: IBM System i Access for Windows V6R1M0 version 06.01.0001.0000a which bundles pcsws.exe version 5090.27271.709.

tags | exploit, overflow
systems | windows
advisories | CVE-2012-0201
MD5 | 2d5f9b10f02a872dad2c7339ae14ed2a
AliveChat Cross Site Scripting
Posted Feb 29, 2012
Authored by Sony

AliveChat suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4a395ee410d43709cec872a5936ab543
WebfolioCMS 1.1.4 Cross Site Request Forgery
Posted Feb 29, 2012
Authored by Ivano Binetti

WebfolioCMS versions 1.1.4 and below suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 4fdfba972fcd4fb5dec78d96ddf38872
Netmechanica NetDecision Dashboard Server Information Disclosure
Posted Feb 29, 2012
Authored by Prabhu S Angadi | Site secpod.com

Netmechanica NetDecision 4.5.1 Dashboard Server version 1.0 is prone to an information disclosure vulnerability. Proof of concept exploit included.

tags | exploit, proof of concept, info disclosure
systems | linux
MD5 | aab2e7fe9ae81bf198f8ce01cfd7ac3b
Microsoft Internet Explorer 8 Code Execution
Posted Feb 29, 2012
Authored by Ivan Fratric

This is a proof of concept exploit that allows an attacker to execute arbitrary code via vectors involving a dereferenced memory address in Microsoft Internet Explorer 8. It leverages the issue discussed in MS11-081. The exploit is slightly crippled by the author.

tags | exploit, arbitrary, proof of concept
advisories | CVE-2011-1999
MD5 | 019b8a52cdfa45c64282b47a5068cc29
BrewBlogger 2.3.2 CSRF / SQL Injection / Shell Upload
Posted Feb 29, 2012
Authored by KedAns-Dz

BrewBlogger version 2.3.2 suffers from cross site request forgery, shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection, csrf
MD5 | 24481cc19b1eeff4a7f132784f17fc27
Oracle Live Help On Demand Webcare Cross Site Scripting
Posted Feb 29, 2012
Authored by Sony

Oracle Live Help On Demand Webcare suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6ee4e4cbe3c323e5762d508dcd67164e
European Central Bank SQL Injection
Posted Feb 29, 2012
Authored by Th4 MasK

European Central Bank suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e38cfcf643b17354b7bf7339863df310
Bravenet Web Services Cross Site Scripting
Posted Feb 29, 2012
Authored by Sony

Bravenet Web Services suffers from a cross site scripting vulnerability.

tags | exploit, web, xss
MD5 | 309469266cd79bad7f78e411ed1953d9
Topics Viewer Cross Site Request Forgery
Posted Feb 29, 2012
Authored by The Green Hornet

Topics Viewer suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 714f15b6f203d8a26d9a131aa586ae23
Osdev Cross Site Scripting
Posted Feb 29, 2012
Authored by Mr.PaPaRoSSe

Osdev suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 547fd70ad59f9b9290565ae5c38c8138
ImgPals Photo Host 1.0 Stable Admin Account Deactivation
Posted Feb 28, 2012
Authored by CorryL

ImgPals Photo Host version 1.0 STABLE suffers from a remote administrative account disabling vulnerability.

tags | exploit, remote
MD5 | cba530ca9691ccc3d36ba9f01870182e
Microsoft AdCenter Service Cross Site Scripting
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

Microsoft AdCenter Service at advertising.microsoft.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9e4d3a19dd8fc9a33f8ab87369204995
Sysax 5.53 SSH Username Buffer Overflow Exploit
Posted Feb 27, 2012
Authored by Craig Freyman

Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444.

tags | exploit, remote, overflow, shell, shellcode, code execution
MD5 | efa4237db0195980bc7a8d07b894b4a8
Sysax Multi Server 5.53 SFTP Post Auth SEH Exploit
Posted Feb 27, 2012
Authored by Craig Freyman

Sysax Multi Server version 5.53 SFTP post authentication SEH exploit with egghunter shellcode that binds a shell to port 4444.

tags | exploit, shell, shellcode
MD5 | 9ebc939a18d9148892f51f798563dd37
Socusoft Photo 2 Video 8.05 Buffer Overflow
Posted Feb 27, 2012
Authored by Julien Ahrens | Site vulnerability-lab.com

Socusoft Photo 2 Video version 8.05 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | cd96556d5b30deabdb08867c30b8affe
OSQA CMS 3b Cross Site Scripting
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

OSQA CMS version 3b suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b854525d547f8cfab225d0e812767448
Wolf CMS 0.7.5 Cross Site Scripting / SQL Injection
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

Wolf CMS version 0.7.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 1fb6cb749d247422778e7fd15ba5466f
Mozilla Firefox 4.0.1 Integer Overflow
Posted Feb 27, 2012
Authored by pa_kt

Mozilla Firefox version 4.0.1 Array.reduceRight() integer overflow exploit.

tags | exploit, overflow
advisories | CVE-2011-2371
MD5 | 7b1de00624beb0c2e001fc131c1ec90c
Page 1 of 13
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Millions Of High Security Crypto Keys Crippled By Newly Discovered Flaw
Posted Oct 16, 2017

tags | headline, flaw, cryptography
Pizza Hut Latest To Be Hit In Card Data Breach
Posted Oct 16, 2017

tags | headline, hacker, privacy, bank, cybercrime, data loss, fraud
Artificial Intelligence - Hype, Hope, And Fear
Posted Oct 16, 2017

tags | headline, botnet, cyberwar
KRACK Attacks: Breaking WPA2 By Forcing Nonce Reuse
Posted Oct 16, 2017

tags | headline, privacy, phone, wireless, flaw, cryptography
Even Pokemon Go Was Used By Russia To Meddle In The Election
Posted Oct 13, 2017

tags | headline, government, usa, russia, cyberwar
US Voices Frustration With Warrant-Proof Encryption
Posted Oct 13, 2017

tags | headline, government, privacy, usa, cryptography
An Unknown Hacker Stole Sensitive Data On Australia's War Planes
Posted Oct 13, 2017

tags | headline, hacker, government, australia, data loss, cyberwar
Legacy Office Feature Used In Novel Document Attacks
Posted Oct 13, 2017

tags | headline, hacker, malware, microsoft, flaw
Equifax Rival TransUnion Also Sends Site Visitors To Malicious Pages
Posted Oct 12, 2017

tags | headline, malware
The Myth Of Responsible Encryption: Experts Say It Can't Work
Posted Oct 12, 2017

tags | headline, government, backdoor, cryptography
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close