Exploit the possiblities
Showing 1 - 25 of 197 RSS Feed

Files

Packet Storm New Exploits For March, 2016
Posted Mar 31, 2016
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 196 exploits added to Packet Storm in March, 2016.

tags | exploit
systems | linux
MD5 | 27b9a3ae84d1ea9d14e40d3687c95271
Windows Kernel Bitmap Use-After-Free
Posted Mar 31, 2016
Authored by Google Security Research, hawkes

The included proof of concept crashes Windows 7 with special pool enabled on win32k.sys. The crashes are triggering in multiple different ways (two examples attached).

tags | exploit
systems | linux, windows, 7
advisories | CVE-2016-0094
MD5 | 3defdb2525d89c17d6295174598fc97a
Windows Kernel NtGdiGetTextExtentExW Out-Of-Bounds Memory Read
Posted Mar 31, 2016
Authored by Google Security Research, hawkes

The included proof of concept crashes Windows 7 with special pool enabled on win32k.sys. The crash is due to accessing memory past the end of a buffer.

tags | exploit, proof of concept
systems | linux, windows, 7
advisories | CVE-2016-0093
MD5 | e05989cd4b370bea012d96b631c5ffc0
Adobe Flash URLStream.readObject Use-After-Free
Posted Mar 31, 2016
Authored by Google Security Research, natashenka

There is a use-after-free in URLStream.readObject in Adobe Flash. If the object read is a registered class, the constructor will get invoked to create the object. If the constructor calls URLStream.close, the URLStream will get freed, and then the deserialization function will continue to write to it.

tags | exploit
systems | linux
advisories | CVE-2015-8048
MD5 | 29e6c0f7851ce44f33ed9cfb8ec20ef3
Adobe Flash TextField.maxChars Use-After-Free
Posted Mar 31, 2016
Authored by Google Security Research, natashenka

There is a use-after-free in the TextField.maxChars setter in Adobe Flash. If the maxChars the field is set to is an object with valueOf defined, the valueOf function can free the field's parent object, which is then used.

tags | exploit
systems | linux
advisories | CVE-2015-8426
MD5 | f0a08b17fce3d596221e66b864f0297f
Android ih264d_process_intra_mb Memory Corruption
Posted Mar 31, 2016
Authored by Google Security Research, natashenka

The included proof of concept causes a crash in ih264d_process_intra_mb in avc parsing, likely due to incorrect bounds checking in one of the memcpy or memset calls in the method.

tags | exploit, proof of concept
systems | linux
MD5 | a4df13bd861ddd22c72fd635514ea67a
Adobe Flash Color.setTransform Use-After-Free
Posted Mar 31, 2016
Authored by Google Security Research, natashenka

If Color.setTransform in Adobe Flash is set to a transform that deletes the field it is called on, a use-after-free occurs.

tags | exploit
systems | linux
advisories | CVE-2015-5574
MD5 | 705b7d8bf7676bdbc4359d71a42b0b65
Wireshark Heap-Based Out-Of-Bounds Read
Posted Mar 31, 2016
Authored by Google Security Research, mjurczyk

A crash was identified due to a heap-based out-of-bounds read in dissect_pktc_rekey in an ASAN build of Wireshark (current git master).

tags | exploit
systems | linux
MD5 | 4be0c556a4f6144a4a49a2822b267df1
Python 2.7 For iOS Filter Bypass
Posted Mar 31, 2016
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Python 2.7 iOS application version 1.5.4 suffers from a filter bypass issue that allows malicious script code to get inserted client-side.

tags | exploit, python
systems | ios
MD5 | 48e059143317589304cdb0f92d4625eb
TrendMicro SSO Redirect / Session Theft
Posted Mar 31, 2016
Authored by Hadji Samir | Site vulnerability-lab.com

TrendMicro's SSO suffers from a redirection and session theft vulnerability.

tags | exploit
MD5 | 9c6a4732fb4d9bcf137002f1da302cb5
Dorsa Web CMS 2016 Q1 SQL Injection
Posted Mar 31, 2016
Authored by ICG SEC | Site vulnerability-lab.com

Dorsa Web CMS from 2016 Q1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 7e71c01cdc333c97b06b62dd1e9d0012
Cades 2016Q1 SQL Injection
Posted Mar 31, 2016
Authored by Dr.Malware | Site vulnerability-lab.com

Cades 2016Q1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 62a47a66643f785397d8d93b17518903
Docker UI 0.10.0 Cross Site Scripting
Posted Mar 31, 2016
Authored by Manideep K | Site vulnerability-lab.com

Docker UI version 0.10.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2fff2f470a324e2ae625e5564d2a3f84
Docker UI 0.10.0 Cross Site Request Forgery
Posted Mar 31, 2016
Authored by Manideep K | Site vulnerability-lab.com

Docker UI version 0.10.0 suffers from multiple client-side cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | e7191ff8a6af3f11ea1c17e034d58fcb
Hi Technology And Services CMS SQL Injection
Posted Mar 31, 2016
Authored by ICG SEC | Site vulnerability-lab.com

Hi Technology and Services CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1b1e4ed7c659176b2cb40b8d4850eace
Patron Info System SQL Injection
Posted Mar 31, 2016
Authored by ICG SEC | Site vulnerability-lab.com

Patron Info System suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7bf815fe78f1e8301e0ce843c06af819
PHP 5.5.33 Invalid Memory Write
Posted Mar 31, 2016
Authored by vah_13

PHP version 5.5.33 suffers from an invalid memory write condition in phar on filename with \0 in the name.

tags | exploit, php
MD5 | 6a27acad9b5e79c8f73d1b6136d0501c
Axil CMS 0.1 SQL Injection
Posted Mar 31, 2016
Authored by T3NZOG4N, Mojtaba MobhaM

Axil CMS version 0.1 suffers from a remote SQL injection vulnerability that allows for login bypass.

tags | exploit, remote, sql injection
MD5 | 669d491aa35bb701309f5437b89b7dbd
Axil CMS 3.0 Cross Site Scripting
Posted Mar 31, 2016
Authored by T3NZOG4N, Mojtaba MobhaM

Axil CMS version 3.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1140c6fe7064e5f140883070160709fa
Apache Jetspeed Arbitrary File Upload
Posted Mar 31, 2016
Authored by wvu, Andreas Lindh | Site metasploit.com

This Metasploit module exploits the unsecured User Manager REST API and a ZIP file path traversal in Apache Jetspeed-2, versions 2.3.0 and unknown earlier versions, to upload and execute a shell. Note: this exploit will create, use, and then delete a new admin user. Warning: in testing, exploiting the file upload clobbered the web interface beyond repair. No workaround has been found yet. Use this module at your own risk. No check will be implemented.

tags | exploit, web, shell, file upload
advisories | CVE-2016-0709, CVE-2016-0710
MD5 | 55991d9f8e870de6ba19c6811c89f66b
Metaphor Stagefright Implementation
Posted Mar 30, 2016
Authored by Hanan Be'er | Site north-bit.com

Included in this archive is a whitepaper called Metaphor - A (real) real-life Stagefright exploit. It presents a thorough research on libstagefright and new techniques used to bypass ASLR. This archive also includes the Metaphor exploit that leverages CVE-2015-3864.

tags | exploit
systems | linux
MD5 | bbefd3e3677a36a22e3be17f5276aa90
Apple Quicktime FPX / PSD File Parsing Memory Corruption
Posted Mar 30, 2016
Authored by Francis Provencher

Apple Quicktime versions prior to 7.7.79.80.95 suffer from .fpx and .psd file parsing memory corruption vulnerabilities. Multiple proof of concepts included.

tags | exploit, vulnerability, proof of concept
systems | linux, apple
advisories | CVE-2016-1767, CVE-2016-1768, CVE-2016-1769
MD5 | 3c5a29ece12ebdfba29f33d2077a59cd
MOBOTIX Video Security Cameras Cross Site Request Forgery
Posted Mar 30, 2016
Authored by LiquidWorm | Site zeroscience.mk

The application interface MOBOTIX VMS allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.

tags | exploit, web
MD5 | b12d89b94fa1f53c222f083dea77526c
Apache OpenMeetings 3.1.0 Path Traversal
Posted Mar 30, 2016
Authored by Andreas Lindh

Apache OpenMeetings versions 1.9.x through 3.1.0 suffer from a path traversal vulnerability.

tags | exploit
advisories | CVE-2016-0784
MD5 | 9adc5351b3d0168fea1cdddf1be93527
CubeCart 6.0.10 CSRF / XSS / SQL Injection
Posted Mar 30, 2016
Authored by High-Tech Bridge SA | Site htbridge.com

CubeCart version 6.0.10 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | c0a53759e447c5ec0c2b9f8895bf8ea2
Page 1 of 8
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
PlexCoin Scam Founder Sentenced To Jail And Fined $10k
Posted Dec 10, 2017

tags | headline, cybercrime, fraud, scam, cryptography
Google Lifts Lid On FBI Data Requests: Now You Can Read Actual Letters Online
Posted Dec 9, 2017

tags | headline, government, privacy, usa, google, fbi
Android Flaw Lets Attack Code Slip Into Signed Apps
Posted Dec 9, 2017

tags | headline, malware, phone, flaw, google
Millions Stolen In NiceHash Bitcoin Heist
Posted Dec 9, 2017

tags | headline, hacker, cybercrime, fraud, cryptography
Apple HomeKit Flaw Left Smart Gadgets Vulnerable
Posted Dec 9, 2017

tags | headline, flaw, apple
Intel Management Engine Pwned By Buffer Overflow
Posted Dec 7, 2017

tags | headline, hacker, flaw, conference, intel
Google Steps Up Browser Rivalry With Site Isolation Security
Posted Dec 7, 2017

tags | headline, google, chrome
Ajit Pai Falsely Claims Killing Net Neutrality Helps The Sick
Posted Dec 7, 2017

tags | headline, government, usa, fraud
Bitcoin Breaks Through The $15,000 Mark
Posted Dec 7, 2017

tags | headline, cryptography
CryptoKitties Craze Slows Down Transactions On Ethereum
Posted Dec 6, 2017

tags | headline, denial of service, cryptography
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close