what you don't know can hurt you
Showing 1 - 25 of 47 RSS Feed

Files from Donato Ferrante

Email addressfdonato at autistici.org
First Active2004-01-08
Last Active2015-03-06
Nvidia Mental Ray Satellite Service Arbitrary DLL Injection
Posted Mar 6, 2015
Authored by Luigi Auriemma, Donato Ferrante | Site metasploit.com

The Nvidia Mental Ray Satellite Service listens for control commands on port 7414. When it receives the command to load a DLL (via an UNC path) it will try to connect back to the host on port 7514. If a TCP connection is successful it will then attempt to load the DLL. This Metasploit module has been tested successfully on Win7 x64 with Nvidia Mental Ray Satellite Service v3.11.1.

tags | exploit, tcp
MD5 | f525ec81ea95b79a5ad76e5901af869b
Owning Render Farms Via NVIDIA Mental Ray
Posted Dec 10, 2013
Authored by Luigi Auriemma, Donato Ferrante

This paper details a vulnerability affecting NVIDIA mental ray, which allows an attacker to take control over a mental ray based render farm.

tags | paper
MD5 | 886ce6e4c37835eeb36b477086d12e47
Game Engines: A 0-Day's Tale
Posted May 20, 2013
Authored by Luigi Auriemma, Donato Ferrante | Site revuln.com

This paper details several issues affecting different game engines. All the vulnerabilities discussed in this paper are 0-days, at time of writing. This paper has been released as a companion paper along with the authors' talk Exploiting Game Engines For Fun And Profit presented at the NoSuchCon conference.

tags | paper, remote, local, vulnerability
MD5 | a156b54acde9b90d5f91a8a7577cbc8c
Exploiting Game Engines For Fun and Profit
Posted May 19, 2013
Authored by Luigi Auriemma, Donato Ferrante | Site revuln.com

This presentation discusses what to look for and how to go about exploiting game engines.

tags | paper
MD5 | 2bedf09d0bf1238d5c2ae2a8ac8268bf
EA Origin Insecurity
Posted Mar 18, 2013
Authored by Luigi Auriemma, Donato Ferrante | Site revuln.com

In this paper the authors uncover and demonstrate an interesting way to convert local bugs and features in remotely exploitable security vulnerabilities by using the well known EA Origin platform as an attack vector against remote systems. The attack proposed in this paper is similar to the attack targeting the Steam platform that they detailed in their previous research. The Origin attack detailed in this paper affects more than 40 million Origin users.

tags | advisory, remote, local, vulnerability
MD5 | c92b95ac5695e15bc233f966bcf7c887
Call Of Duty: Modern Warfare 3 NULL Pointer Dereference
Posted Nov 14, 2012
Authored by Luigi Auriemma, Donato Ferrante | Site revuln.com

This paper describes a pre-auth server-side NULL pointer dereference vulnerability in Call Of Duty: Modern Warfare 3, which is due to an issue related to the DemonWare6 query packets. This vulnerability can be exploited to perform Denial of Service (DoS) attacks against game servers.

tags | advisory, denial of service
MD5 | f81259fd248e1c5f858de6428a1df2bf
Steam Browser Protocol Insecurity
Posted Oct 16, 2012
Authored by Luigi Auriemma, Donato Ferrante | Site revuln.com

In this paper the authors uncover and demonstrate a novel and interesting way to convert local bugs and features in remotely exploitable security vulnerabilities by using the well known Steam3 platform as an attack vector against remote systems.

tags | paper, remote, local, vulnerability
MD5 | 63740b046124cdac4856b7ad03a2bb70
directContact03b.txt
Posted Mar 2, 2006
Authored by Donato Ferrante | Site autistici.org

DirectContact version 0.3b is susceptible to a classic directory traversal attack.

tags | exploit
MD5 | dd67b6f6eea0e43c663d7ad8e95bc8ae
homeserver107.txt
Posted Aug 25, 2005
Authored by Donato Ferrante | Site autistici.org

Home FTP Server version 1.0.7 b45 suffers from information disclosure and directory traversal flaws.

tags | advisory, info disclosure
MD5 | d9ab4ed12088d579efe2a20f0b7d94c1
wftp168.txt
Posted Aug 18, 2005
Authored by Donato Ferrante | Site autistici.org

WinFTP Server version 1.6.8 suffers from a Unicode buffer overflow.

tags | advisory, overflow
MD5 | ab17db1986489ea57831a81554114f61
simplecam12.txt
Posted Aug 6, 2005
Authored by Donato Ferrante | Site autistici.org

SimpleCam 1.2 suffers from a directory traversal flaw.

tags | exploit
MD5 | efa8b935cd345212fecb783cb0ced6f0
vcs100.txt
Posted Jul 2, 2005
Authored by Donato Ferrante | Site autistici.org

Video Cam Server version 1.0.0 is susceptible to a directory traversal attack.

tags | exploit
MD5 | e0d80aceaf1d274cec82c04eab54612a
yawcam025.txt
Posted Jun 1, 2005
Authored by Donato Ferrante | Site autistici.org

Yawcam 0.2.5 suffers from a directory traversal flaw.

tags | exploit
MD5 | 4b6ba1d587cd5decbc08c35dcc47caa8
RaidenHTTPD.txt
Posted Feb 6, 2005
Authored by Donato Ferrante | Site autistici.org

RaidenHTTPD version 1.1.27 is susceptible to a directory traversal flaw where any file can be extracted from the disk partition where the httpd is installed.

tags | exploit
MD5 | 43f94e3e8371843f56deb595922201ea
lanchat1666c.txt
Posted Feb 5, 2005
Authored by Donato Ferrante | Site autistici.org

LANChat Pro Revival 1.666c suffers from a denial of service flaw due to a mishandling of malformed UDP packets.

tags | advisory, denial of service, udp
MD5 | 8e7c94d05816f253350d498bd638ccaa
yacyXSS.txt
Posted Jan 1, 2005
Authored by Donato Ferrante | Site autistici.org

yacy version 0.31 is susceptible to a cross site scripting attack.

tags | exploit, xss
MD5 | 6f7bf1db4751a945aa301c29170cbf16
OpenDcHub-poc.zip
Posted Dec 11, 2004
Authored by Donato Ferrante | Site autistici.org

Proof of concept exploit for a buffer overflow vulnerability that exists in Open Dc Hub version 0.7.14.

tags | exploit, overflow, proof of concept
MD5 | e3de5e9b0a3845f37783964004b88ef8
opendchub0714.txt
Posted Dec 11, 2004
Authored by Donato Ferrante | Site autistici.org

A buffer overflow exists in the Open Dc Hub program that allows for arbitrary code execution. Version 0.7.14 is affected.

tags | advisory, overflow, arbitrary, code execution
MD5 | f83cf3e535f608591f57480c20e2f368
parachat55.txt
Posted Oct 7, 2004
Authored by Donato Ferrante | Site autistici.org

ParaChat server version 5.5 is susceptible to a directory traversal attack.

tags | exploit
MD5 | 5142f53be781a230176f5d818bb2bc62
birdChat161.txt
Posted Aug 24, 2004
Authored by Donato Ferrante | Site autistici.org

Bird Chat version 1.61 is susceptible to a denial of service attack.

tags | advisory, denial of service
MD5 | a195c0f9b087b5ba971b60c69e7669ea
webchat.txt
Posted Aug 5, 2004
Authored by Donato Ferrante | Site autistici.org

Free Web Chat suffers from both denial of service and resource allocation bugs.

tags | advisory, web, denial of service
MD5 | 324b4b3bdaaa4f1883beae438580b2b9
webbsyte.txt
Posted Aug 5, 2004
Authored by Donato Ferrante | Site autistici.org

When over 40 connections are made to Webbsyte 0.9.0, the service crashes.

tags | advisory
MD5 | 9e0bb4f36d041ee36552eacb315d8b54
12PlanetXSS.txt
Posted Jul 5, 2004
Authored by Donato Ferrante | Site autistici.org

12Planet Chat server version 2.9 suffers from a cross site scripting flaw.

tags | advisory, xss
MD5 | 6e9932c77f1061e857ef4d1679d9ae6c
SCIphoto.txt
Posted Jul 2, 2004
Authored by Donato Ferrante | Site autistici.org

SCI Photo Chat Server version 3.4.9 is susceptible to a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 60f617448ee17a2e546fc9c02cc2a395
easy12.txt
Posted Jul 2, 2004
Authored by Donato Ferrante | Site autistici.org

Easy Chat Server version 1.2 is susceptible to multiple denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability
MD5 | b924b36113ed9cd033d8663f2c60cc3a
Page 1 of 2
Back12Next

File Archive:

April 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    21 Files
  • 2
    Apr 2nd
    35 Files
  • 3
    Apr 3rd
    21 Files
  • 4
    Apr 4th
    16 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    1 Files
  • 7
    Apr 7th
    2 Files
  • 8
    Apr 8th
    23 Files
  • 9
    Apr 9th
    19 Files
  • 10
    Apr 10th
    15 Files
  • 11
    Apr 11th
    14 Files
  • 12
    Apr 12th
    11 Files
  • 13
    Apr 13th
    2 Files
  • 14
    Apr 14th
    5 Files
  • 15
    Apr 15th
    14 Files
  • 16
    Apr 16th
    19 Files
  • 17
    Apr 17th
    19 Files
  • 18
    Apr 18th
    8 Files
  • 19
    Apr 19th
    4 Files
  • 20
    Apr 20th
    5 Files
  • 21
    Apr 21st
    1 Files
  • 22
    Apr 22nd
    10 Files
  • 23
    Apr 23rd
    12 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close