what you don't know can hurt you
Showing 1 - 18 of 18 RSS Feed

Files from Mishra Dhiraj

Email addressmishra.dhiraj95 at gmail.com
First Active2017-09-02
Last Active2019-01-21
GattLib 0.2 Stack Buffer Overflow
Posted Jan 21, 2019
Authored by Mishra Dhiraj

GattLib version 0.2 suffers from a stack buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-6498
MD5 | 5e660817d7bb750ffdf15cc68bd1810b
aria2 1.33.1 Password Disclosure
Posted Jan 2, 2019
Authored by Mishra Dhiraj

aria2 version 1.33.1 suffers from a password disclosure vulnerability when logging URLs with secrets in them.

tags | exploit, info disclosure
advisories | CVE-2019-3500
MD5 | 6faf3e5ab90997fdc7deea262c1d499c
Telegram Desktop 1.3.14 Denial Of Service
Posted Sep 20, 2018
Authored by Mishra Dhiraj

Telegram Desktop (aka tdesktop) version 1.3.14 might allow attackers to cause a denial of service (assertion failure and application exit) via an "Edit color palette" search that triggers an "index out of range" condition.

tags | advisory, denial of service
MD5 | 31d080533f64618434fcb4a98727b3e6
phpMyAdmin Credential Stealer
Posted Sep 9, 2018
Authored by Mishra Dhiraj | Site metasploit.com

This Metasploit module gathers phpMyAdmin credentials from a target linux machine.

tags | exploit
systems | linux
MD5 | 82c4bd6adf62d917164aef95e6b99aa7
MIWiFi Xiaomi_55DD 2.8.50 Out-Of-Band Resource Load
Posted Sep 2, 2018
Authored by Mishra Dhiraj

An out-of-band resource load issue was discovered on Xiaomi MIWiFi Xiaomi_55DD version 2.8.50 devices. It is possible to induce the application to retrieve the contents of an arbitrary external URL and return those contents in its own response. If a domain name (containing a random string) is used in the HTTP Host header, the application performs an HTTP request to the specified domain. The response from that request is then included in the application's own response.

tags | exploit, web, arbitrary
advisories | CVE-2018-16307
MD5 | 6ac1762d0861842f9b5cefc05f6c1c0e
Epiphany Web Browser 3.28.1 Denial Of Service
Posted Aug 23, 2018
Authored by Mishra Dhiraj

Epiphany Web Browser version 3.28.1 suffers from a denial of service vulnerability.

tags | exploit, web, denial of service
MD5 | b861883dd67141c86e6d706650ff3c80
cgit Directory Traversal
Posted Aug 14, 2018
Authored by Mishra Dhiraj | Site metasploit.com

This Metasploit module exploits a directory traversal vulnerability in cgit versions prior to 1.2.1.

tags | exploit
advisories | CVE-2018-14912
MD5 | 9cb22f90ff6602ff71d0f3a6065eb878
Oracle GlassFish Server 4.1 Directory Traversal
Posted Aug 13, 2018
Authored by Mishra Dhiraj | Site metasploit.com

This Metasploit module exploits an unauthenticated directory traversal vulnerability which exits in administration console of Oracle GlassFish Server version 4.1, which is listening by default on port 4848/TCP.

tags | exploit, tcp
advisories | CVE-2017-1000028
MD5 | fd16dd7193f3dbf77f3cec17df7260fc
WebKitGTK+ WebKitFaviconDatabase Denial Of Service
Posted Jun 11, 2018
Authored by Mishra Dhiraj, Zubin Devnani, Hardik Mehta, Manuel Caballero

This Metasploit module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in denial of service.

tags | exploit, denial of service
advisories | CVE-2018-11646
MD5 | 954689ae091fb2f143e2c327b7465e84
WebKitGTK+ 2.21.3 pageURL Mishandling Denial Of Service
Posted Jun 5, 2018
Authored by Mishra Dhiraj

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.

tags | exploit
advisories | CVE-2018-11646
MD5 | 4aa04572e2f242c2da834f23b0e01ea1
Epiphany 3.28.2.1 Denial Of Service
Posted Jun 1, 2018
Authored by Mishra Dhiraj

Epiphany version 3.28.2.1 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2018-11396
MD5 | 965dc4e23eb37e3a77857fea3e6a7c8c
DuckDuckGo 4.2.0 WebRTC Private IP Leakage
Posted Apr 3, 2018
Authored by Brendan Coles, Mishra Dhiraj | Site metasploit.com

This Metasploit module exploits a vulnerability in browsers using well-known property of WebRTC (Web Real-Time Communications) which enables Web applications and sites to capture or exchange arbitrary data between browsers without requiring an intermediary.

tags | exploit, web, arbitrary
advisories | CVE-2018-6849
MD5 | 1d9975950bdc7255d15ef79cf990fc30
Samsung Internet Browser SOP Bypass
Posted Dec 20, 2017
Authored by Tod Beardsley, Jeffrey Martin, Mishra Dhiraj

This Metasploit module takes advantage of a Same-Origin Policy (SOP) bypass vulnerability in the Samsung Internet Browser, a popular mobile browser shipping with Samsung Android devices. By default, it initiates a redirect to a child tab, and rewrites the innerHTML to gather credentials via a fake pop-up.

tags | exploit, bypass
advisories | CVE-2017-17692
MD5 | 91bfa1cba09b3c4c4fa53ef3b84ecd59
IBM Lotus Notes Denial Of Service
Posted Nov 8, 2017
Authored by Mishra Dhiraj | Site metasploit.com

This Metasploit module creates a malicious web page that causes a crash in IBM Lotus Notes when viewed in the native browser.

tags | exploit, web, denial of service
advisories | CVE-2017-1130
MD5 | 6f5149353309d9f52b58572701f6b48e
IBM Notes 8.5 / 9.0 encodeURI Denial Of Service
Posted Oct 10, 2017
Authored by Mishra Dhiraj | Site metasploit.com

IBM Notes versions 8.5 and 9.0 encodeURI denial of service exploit.

tags | exploit, denial of service
advisories | CVE-2017-1129
MD5 | 4a6f94a511ddc2e93499393749dd965c
Metasploit Cross Site Rquest Forgery
Posted Oct 7, 2017
Authored by Mishra Dhiraj

Metasploit Pro, Express, Ultimate, and Community suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2017-15084
MD5 | c8ca60fdae30ac7c1a2e4987f680b81e
IBM Notes 8.5.x / 9.0.x Denial Of Service
Posted Sep 3, 2017
Authored by Mishra Dhiraj

IBM Notes versions 8.5.x and 9.0.x suffer from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-1130
MD5 | 5962a5618ef528d19dbaa50818de00f6
IBM Notes 8.5.x / 9.0.x Denial Of Service
Posted Sep 2, 2017
Authored by Mishra Dhiraj

IBM Notes versions 8.5.x and 9.0.x suffer from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2017-1129
MD5 | 9fb22fea4846ddb2727b405d5822e3bd
Page 1 of 1
Back1Next

File Archive:

January 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    15 Files
  • 2
    Jan 2nd
    15 Files
  • 3
    Jan 3rd
    11 Files
  • 4
    Jan 4th
    1 Files
  • 5
    Jan 5th
    2 Files
  • 6
    Jan 6th
    5 Files
  • 7
    Jan 7th
    24 Files
  • 8
    Jan 8th
    15 Files
  • 9
    Jan 9th
    16 Files
  • 10
    Jan 10th
    23 Files
  • 11
    Jan 11th
    17 Files
  • 12
    Jan 12th
    3 Files
  • 13
    Jan 13th
    2 Files
  • 14
    Jan 14th
    18 Files
  • 15
    Jan 15th
    33 Files
  • 16
    Jan 16th
    23 Files
  • 17
    Jan 17th
    29 Files
  • 18
    Jan 18th
    15 Files
  • 19
    Jan 19th
    2 Files
  • 20
    Jan 20th
    3 Files
  • 21
    Jan 21st
    17 Files
  • 22
    Jan 22nd
    19 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close