what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 6 of 6

Files from 0x00string

Cisco RV130W 1.0.3.44 Remote Stack Overflow

Posted Jun 4, 2019

Authored by 0x00string

Cisco RV130W version 1.0.3.44 suffers from a remote stack overflow vulnerability.

tags | exploit, remote, overflow

systems | cisco

advisories | CVE-2019-1663

SHA-256 | cf50c981afbcb668852b8ad19be0b75d28bef6b28174ce3ce8eb6a47cb7bcc94

Download | Favorite | View

NUUO NVRMini 2 3.9.1 Stack Overflow

Posted Jun 4, 2019

Authored by 0x00string

NUUO NVRMini 2 version 3.9.1 suffers from an sscanf stack overflow vulnerability.

tags | exploit, overflow

advisories | CVE-2018-19864

SHA-256 | be473cbd1adc1b33f150970f88fdcbab738c3a4caaa2fca93d98adb64883cc1a

Download | Favorite | View

QNAP Transcode Server Command Execution

Posted Aug 29, 2017

Authored by 0x00string, Zenofex | Site metasploit.com

This Metasploit module exploits an unauthenticated remote command injection vulnerability in QNAP NAS devices. The transcoding server listens on port 9251 by default and is vulnerable to command injection using the 'rmfile' command. This Metasploit module was tested successfully on a QNAP TS-431 with firmware version 4.3.3.0262 (20170727).

tags | exploit, remote

SHA-256 | aca7c1b49b5440cd6ddb47ea9a27fb677d0d8d9659ef9c1d3398a36955a83511

Download | Favorite | View

CUPS Remote Code Execution

Posted Feb 3, 2017

Authored by 0x00string

CUPS versions prior to 2.0.3 reference count over decrement remote code execution exploit.

tags | exploit, remote, code execution

advisories | CVE-2015-1158

SHA-256 | 9952774461bb22bab55621db41a0c77cb15b0319086b5d190546e343fd847c8f

Download | Favorite | View

FreePBX config.php Remote Code Execution

Posted Mar 25, 2014

Authored by i-Hmx, 0x00string | Site metasploit.com

This Metasploit module exploits a vulnerability found in FreePBX version 2.9, 2.10, and 2.11. It's possible to inject arbitrary PHP functions and commands in the "/admin/config.php" parameters "function" and "args".

tags | exploit, arbitrary, php

advisories | CVE-2014-1903

SHA-256 | 1c02024d4a3f7042c08772f0fe212d3e817f272a686805a55db99a37717d3b29

Download | Favorite | View

DALIM Dialog Server 6.0 Local File Inclusion

Posted Mar 7, 2013

Authored by Digital Defense, r@b13$, 0x00string, Ryan Oliver | Site digitaldefense.net

The DALIM Dialog Server contains a local file inclusion vulnerability within the 'logfile' file viewing component. An authenticated remote attacker can use this weakness to view arbitrary files from the DALIM Dialog Server's root file system. Version 6.0 is affected.

tags | advisory, remote, arbitrary, local, root, file inclusion

SHA-256 | dca9725360ef2d286f6870673bf57ab52e554f8c9c03ee26b0ef0a2ba420a63d

Download | Favorite | View