what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 11 of 11

Files from Luca Ercoli

Gnome Keyring Daemon Credential Disclosure

Posted Apr 24, 2017

Authored by Luca Ercoli | Site lucaercoli.it

The gnome-keyring-daemon is vulnerable to local credential disclosure as it leaves credentials accessible in memory.

tags | exploit, local, info disclosure

SHA-256 | 6697cd1cd04eb6ae92213c8cfaf4b457d5ddee242e09603a1e96f9336687274c

Download | Favorite | View

etomiteCMS.txt

Posted Feb 1, 2006

Authored by Luca Ercoli | Site lucaercoli.it

Etomite CMS version 0.6 has been found backdoored after their site was compromised.

tags | advisory

SHA-256 | e4bd555f4fbac86882cfde7eb1597f6a173a01cf9b11e021c3b67cd277d4356e

Download | Favorite | View

FTGate-expl.pl.txt

Posted Nov 20, 2005

Authored by Luca Ercoli | Site lucaercoli.it

Remote proof of concept buffer overflow exploit for the IMAP server in FTGate4 Groupware version 4.1.

tags | exploit, remote, overflow, imap, proof of concept

SHA-256 | 407fcb6c333d58d2349fad1a8b780a19e4b7926bc74f534bc88f3a61e8b5177b

Download | Favorite | View

ftgate4.txt

Posted Nov 20, 2005

Authored by Luca Ercoli | Site lucaercoli.it

The IMAP server in FTGate4 Groupware version 4.1 is susceptible to a buffer overrun.

tags | advisory, overflow, imap

SHA-256 | 763f0181ed949d2cb1aaf4bdf5aa123194429ec774dbcc5a931d866e1ea72f0e

Download | Favorite | View

lgfreeze.mid

Posted Apr 20, 2005

Authored by Luca Ercoli | Site lucaercoli.it

Example of malformed MIDI ringtone which can be used to cause a Denial of Service condition in LG-U8120 mobile phones.

tags | exploit, denial of service

SHA-256 | d88d8912a07b8432a22f5b3279b4ba54f57f6883f9b4a6dbd3af5acca52d6b49

Download | Favorite | View

lg8120_midi_dos.txt

Posted Apr 20, 2005

Authored by Luca Ercoli | Site lucaercoli.it

LG u8120 mobile phones are vulnerable to a Denial of Service condition when malformed MIDI ringtones are sent to them.

tags | advisory, denial of service

SHA-256 | 43d00dc0128c5866e3796a05f31f1e9218064ce1216fa3f9f1e729bed32d07ae

Download | Favorite | View

explorerDoS.txt

Posted Apr 17, 2005

Authored by Luca Ercoli

Windows Explorer is susceptible to a denial of service issue in its handling of image files.

tags | advisory, denial of service

systems | windows

SHA-256 | 4ff58ed58e4aeaec72fc7f40f628b2f9d4c800d12d76392ee96a26908fefd75f

Download | Favorite | View

mysqlDoS.txt

Posted Mar 22, 2005

Authored by Luca Ercoli

MySQL versions 4.1.x, 4.0.x, and 5.0.x are all susceptible to a denial of service attack due to a problem with handling device names.

tags | advisory, denial of service

SHA-256 | e7b0f006e157c78b597991a04a36c0cebb80da3406e01d2ed57a7bd477e1bf1f

Download | Favorite | View

mozilla16win.txt

Posted Jan 11, 2005

Authored by Luca Ercoli

Mozilla version 1.6 for Windows is susceptible to a denial of service flaw due to a mishandling of xbm graphic files.

tags | advisory, denial of service

systems | windows

SHA-256 | 6ff0b1b45147a640d253b8b58c6eeacb62ece17d85deb91c0b3549b9d177e928

Download | Favorite | View

crystalftp.txt

Posted Dec 30, 2004

Authored by Luca Ercoli

Crystal FTP Pro does not perform bound checking on the results returned by LIST command.

tags | advisory

SHA-256 | 92579ac2a4ca121339075b354046e00645b8a2919a645a8d595cb5a964a6c892

Download | Favorite | View

eXtremail2.c

Posted Apr 25, 2004

Authored by Luca Ercoli | Site seeweb.com

Linux eXtremail versions 1.5.9 and below remote root exploit that makes use of a format string vulnerability in its logging mechanism.

tags | exploit, remote, root

systems | linux

SHA-256 | 6036e06b4c58e55a423903721dd48a2c313b1ab18a6383129e59eff5587ec24e

Download | Favorite | View