what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 44 RSS Feed

Files from Rafel Ivgi

First Active2004-01-08
Last Active2008-12-12
Microsoft Internet Explorer 8 Beta 2 XSS
Posted Dec 12, 2008
Authored by Rafel Ivgi

Microsoft Internet Explorer 8.0 Beta 2 suffers from various security holes relating to the Anti-XSS filter it has built-in. Examples of how to bypass this filter are included.

tags | exploit, xss
SHA-256 | bf1c3a2b9bde334002cee2e30b1693e6e24476d9f1a2f9b5fe1957f34d5fed62
facebookadv-overflow.txt
Posted Feb 12, 2008
Authored by Rafel Ivgi | Site mc-grp.com

Facebook Image Uploader versions 5.0.14.0 and below suffer from a stack buffer overflow vulnerability.

tags | advisory, overflow
SHA-256 | 6152aa9c19bfdd72791f98dfb5833a168d8504603ca4d7435002e4d4abb45373
oracleXSS072005.txt
Posted Jul 20, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Various cross site scripting flaws exist in Oracle Reports 9.0.2.

tags | advisory, xss
SHA-256 | c3314b3f65f7f9578497cceda140926c18480d0a6f9cd7a67d1799ed497ea7b0
officeXP.txt
Posted Feb 23, 2005
Authored by Rafel Ivgi

Finjan has discovered a new vulnerability in Microsoft Word XP that would allow a hacker to launch a buffer overflow attack. This attack could occur when a user opened a Word document using Internet Explorer.

tags | advisory, overflow
SHA-256 | 88ddeadbe4476a6f5b1f5544ec3482bcd443d604087437ea5acb0aaa974b10e9
kazaaDoS.txt
Posted Jan 18, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Flaws in Kazaa allow for arbitrary code execution and for remote execution of code.

tags | exploit, remote, arbitrary, code execution
SHA-256 | 54d24c88f2912b09d0b345f953c5e2770d0632927a44603c2da9fd28f2b664fc
Gallery134.txt
Posted Jan 18, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Gallery 1.3.4 suffers from remote script inclusion and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss
SHA-256 | 36bc6482ca51b4b7350ffc8c1ee1e6a6bb416073b0a7a3a9c534cf7492035976
ieBarBypass.txt
Posted Jan 16, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Microsoft Internet Explorer 6 is susceptible to a flaw that allows for malicious file download via manipulation of the File Download Information bar functionality.

tags | exploit
SHA-256 | 9819de7846ae70cadf20f378c91cc61117a83847a9ab9ea1767507c8b371ec78
winaceHKI.txt
Posted Jan 7, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

WinAce WinHKI version 1.4d suffers from a directory traversal flaw that allows a compressed archive to overwrite files below the extraction directory.

tags | exploit
SHA-256 | 7acca77e689274d3cd982f9d900df6860a2925ef7a040d858a40a2163d48384e
symantecBO.txt
Posted Jan 7, 2005
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

A stack buffer overflow exists in all Symantec products in all versions until 2005.

tags | advisory, overflow
SHA-256 | 1547ccdc34d04f8a18cf75c06785fbcbed245d4632a1fa13b5ff3ead034b0424
iDEFENSE Security Advisory 2004-05-26.t
Posted May 26, 2004
Authored by iDefense Labs, Rafel Ivgi | Site idefense.com

iDEFENSE Security Advisory 05.26.04: Remote exploitation of a buffer overflow in firmware release 1.1.9.4 of 3Com's OfficeConnect Remote 812 ADSL Router could allow a denial of service. By sending a specially formed long string to the telnet port of a vulnerable device containing Telnet escape sequences, it is possible to get it to either reboot or stop handling packets. If the device does not reboot spontaneously, it will require a manual reboot before continuing normal operation.

tags | advisory, remote, denial of service, overflow
advisories | CVE-2004-0476
SHA-256 | 02eabd38499d8724a5f09a1c30c54ba23979a167fff06c240818836ce07ce693
msxml3dll.txt
Posted May 12, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

The msxml3.dll crashes when a page is refreshed that has an ampersand included inside of a link or value.

tags | advisory
SHA-256 | 87782652da2a9d4d71ad20c25f67177ce0ebae7ed140f222f81055d63310722d
emule042e.pl
Posted May 11, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Remote denial of service exploit for Emule 0.42e.

tags | exploit, remote, denial of service
SHA-256 | d97b9f4a450cf14a21ea099cb309d992c537fc5102c6f64ccf04d10875f1e39b
bitdefender.txt
Posted Apr 19, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

BitDefender's online scanning service has Active-X related flaws that allow an attacker to run arbitrary code server side.

tags | advisory, arbitrary, activex
SHA-256 | b99278bb29477cd2c8b3b823340d554551425884717cdd650dc007d6d6ad6370
symantecVD.txt
Posted Apr 6, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Symantec Virus Detection is susceptible to a buffer overflow.

tags | advisory, overflow, virus
SHA-256 | 31a857797e3983ace0f26dc8e18ec9b0bc7e387b4858a2de50c91d2630b74419
mcafeefreescan.txt
Posted Apr 6, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Mcafee FreeScan is susceptible to buffer overflow and private information disclosure attacks.

tags | advisory, overflow, info disclosure
SHA-256 | 965b844a3cdf53e9218191c6a7f6de76daa2d357f51cad2f8a2e1a8cd4df2ca2
panda50.txt
Posted Apr 6, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Panda ActiveScan version 5.0 has a buffer overflow that allows for arbitrary code execution with SYSTEM level privileges.

tags | advisory, overflow, arbitrary, code execution
SHA-256 | bb4d99560509598cb4f1c03ef93898aab049201920dcb2e36a4f8e75db55b32f
blaxxun3D.txt
Posted Apr 6, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

blaxxun3d Platform 7 is susceptible to a buffer overflow that allows for arbitrary code execution with SYSTEM level privileges.

tags | advisory, overflow, arbitrary, code execution
SHA-256 | b7a2530778d78625e62544550d13ed956a7c096171f22fca7e63522ee4c5716e
expcrashnp.txt
Posted Mar 19, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Internet Explorer and Explorer.exe can be crashed when a null pointer exception occurs during a shell: call with a double backslash for a filename.

tags | advisory, shell
SHA-256 | e6a8af3cb27b9431ff48b3e871cc42063063123890dc7539a0dde1e45344aba8
vocaltec8.txt
Posted Mar 16, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

VocalTec Gateway version 8 has multiple vulnerabilities. Using an information disclosure vulnerability existant in this server, an attacker can then traverse directories when treating the file as a directory, and gain access to any file normally protected.

tags | exploit, vulnerability, info disclosure
SHA-256 | d2d7e12389fdeb8f5acccd3265801cd775e76256b88501a5b4d43b3d6ea8a296
invision13.txt
Posted Mar 5, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Invision Power Board versions 1.3 Final is susceptible to a cross site scripting attack.

tags | exploit, xss
SHA-256 | 93d8939b30b06bd6edcf59474442458101779057deb1b80413667302d3c4d1bf
virtuanews103.txt
Posted Mar 5, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

VirtuaNews Admin Panel version 1.0.3 Pro is vulnerable to a cross site scripting attack.

tags | exploit, xss
SHA-256 | 205786c68330b41eb6b26b19658148764eb7d43fc3a1175dc049219bdcbb8f1b
lansuite.txt
Posted Feb 28, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

Lan Suite Web Mail version 602Pro running server WEB602/1.04 has multiple vulnerabilities that include path disclosure, cross site scripting problems, and directory listings.

tags | advisory, web, vulnerability, xss
SHA-256 | 71fb254a30156005bb913286702099d4f1a460f30f4cbf79807f2b3f4a77fe76
innomedia.txt
Posted Feb 28, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

The InnoMedia VideoPhone version au75200xvi04010x on the Windows platform is susceptible to an authorization bypass when attempting to via a file as a folder. The underlying webserver is GoAhead-Webs.

tags | advisory, web
systems | windows
SHA-256 | 2aa4026a1e34b2b96369afe2862d487e654e2e64a65fe41aeabc0c2b2f3aed68
jgs010.txt
Posted Feb 25, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

jgs version 0.1.0 on the win32 platform is vulnerable to a cross site scripting attack.

tags | advisory, xss
systems | windows
SHA-256 | 3fb15a45c855b042c6ca43d7a7ffda8a4863277c350438c8f07701657042b9de
badblue24.txt
Posted Feb 24, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

BadBlue web server version 2.4 has a local path disclosure vulnerability in phptest.php.

tags | advisory, web, local, php
SHA-256 | 61526ad7e90d57897a735b25cd5b3a4fed70406fc831efc5ad1c0098950b1c52
Page 1 of 2
Back12Next

File Archive:

September 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    23 Files
  • 2
    Sep 2nd
    12 Files
  • 3
    Sep 3rd
    0 Files
  • 4
    Sep 4th
    0 Files
  • 5
    Sep 5th
    10 Files
  • 6
    Sep 6th
    8 Files
  • 7
    Sep 7th
    30 Files
  • 8
    Sep 8th
    14 Files
  • 9
    Sep 9th
    26 Files
  • 10
    Sep 10th
    0 Files
  • 11
    Sep 11th
    0 Files
  • 12
    Sep 12th
    5 Files
  • 13
    Sep 13th
    28 Files
  • 14
    Sep 14th
    15 Files
  • 15
    Sep 15th
    17 Files
  • 16
    Sep 16th
    9 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    0 Files
  • 19
    Sep 19th
    12 Files
  • 20
    Sep 20th
    15 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    13 Files
  • 23
    Sep 23rd
    12 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    30 Files
  • 27
    Sep 27th
    27 Files
  • 28
    Sep 28th
    8 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close