what you don't know can hurt you
Showing 1 - 13 of 13 RSS Feed

Files from Meder Kydyraliev

Email addressmeder at o0o.nu
First Active2004-12-31
Last Active2013-03-22
Apache Struts ParametersInterceptor Remote Code Execution
Posted Mar 22, 2013
Authored by Meder Kydyraliev | Site metasploit.com

This Metasploit module exploits a remote command execution vulnerability in Apache Struts versions < 2.3.1.2. This issue is caused because the ParametersInterceptor allows for the use of parentheses which in turn allows it to interpret parameter values as OGNL expressions during certain exception handling for mismatched data types of properties which allows remote attackers to execute arbitrary Java code via a crafted parameter.

tags | exploit, java, remote, arbitrary
advisories | CVE-2011-3923, OSVDB-78501
MD5 | 029499dd57638b7e9ea3532fd62dd326
Apache Struts < 2.2.0 Remote Command Execution
Posted Aug 19, 2011
Authored by Meder Kydyraliev, bannedit | Site metasploit.com

This Metasploit module exploits a remote command execution vulnerability in Apache Struts versions < 2.2.0. This issue is caused by a failure to properly handle unicode characters in OGNL extensive expressions passed to the web server. By sending a specially crafted request to the Struts application it is possible to bypass the "#" restriction on ParameterInterceptors by using OGNL context variables. Bypassing this restriction allows for the execution of arbitrary Java code.

tags | exploit, java, remote, web, arbitrary
advisories | CVE-2010-1870, OSVDB-66280
MD5 | bde580196763354b6003c3f35f903357
Struts2/XWork Remote Command Execution
Posted Jul 14, 2010
Authored by Meder Kydyraliev

Struts2/XWork suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2010-1870
MD5 | 7b3e0de9c487574165854c0ba0e90d8e
Spring Framework Code Execution
Posted Jun 19, 2010
Authored by Meder Kydyraliev

Spring Framework suffers from an arbitrary code execution vulnerability. Versions affected include 3.0.0 to 3.0.2, 2.5.0 to 2.5.6SEC01 (community releases) and 2.5.0 to 2.5.7 (subscription customers).

tags | advisory, arbitrary, code execution
MD5 | 244b9e7b94b99f806358aa981f7143d2
bypassing-servlet.txt
Posted Aug 14, 2007
Authored by Meder Kydyraliev | Site o0o.nu

OWASP Stinger and Struts servlet input validation filters suffer from a bypass vulnerability.

tags | advisory, bypass
MD5 | 09b2efb70510c9796e3e1b76c2a7ee91
DAY_2_-_Fyodor_Yarochkin_and_Meder_Kydyraliev_-_YAWATT.pdf
Posted Oct 9, 2006
Authored by Fyodor Yarochkin, Meder Kydyraliev | Site conference.hitb.org

HITBSecConf2006 Presentation - Yet Another Web Application Testing Toolkit (YAWATT).

tags | web
MD5 | b4922f9e8a485ecd99a4cf30eb975cf2
OpenCMS_multiple_vulnerabilities.txt
Posted Jul 28, 2006
Authored by Meder Kydyraliev | Site o0o.nu

OpenCMS versions 6.2.1, 6.2, 6.0.3, and 6.0.4 are vulnerable to multiple access control and input validation vulnerabilities. Other versions may be vulnerable as well. Authenticated users can perform attacks allow arbitrary file access, viewing the source of JSP files, the uploading of malicious files, and more.

tags | exploit, arbitrary, vulnerability
MD5 | cb097692e1a6cd47657ef42b2d8ef9fb
Blogger_HTTP_response_splitting.txt
Posted Jan 25, 2006
Authored by Meder Kydyraliev | Site o0o.nu

Blogger's personal page redirection mechanism contains a classic HTTP response splitting vulnerability in the "Location" HTTP header. The problem occurs due to use of unsanitized user-supplied data in the "Location" HTTP header, which enables attacker to inject CRLF(%0d%0a) characters thus splitting server's response taking full control over the contents of second HTTP response. Exploitation of the vulnerability can lead to cross-site scripting (XSS), cache poisoning and phishing attacks.

tags | advisory, web, xss
MD5 | 6d0529a5d76e9b40136f39019976a540
orinoco-leakage.txt
Posted Oct 13, 2005
Authored by Meder Kydyraliev | Site o0o.nu

The Linux orinoco driver included in kernel versions less than 2.6.13.4 pads Ethernet frames with uninitialized data, thus allowing remote attackers to obtain parts of memory which may contain sensitive information.

tags | advisory, remote, kernel
systems | linux
MD5 | c84258a815ae4479a0ea7cfa744dfb05
TT-Fyodor-Yarochkin-Meder-Kydyraliev-STIFware-Evolution.ppt
Posted Oct 11, 2005
Authored by Fyodor Yarochkin, Meder Kydyraliev

STIFWare Evolution - Meder and Fyodor have been working on their concept of common framework to unify offensive part of heterogeneous security data and security tools into a single unit - security tools framework. The presentation deals with the evolution of STIF framework into what they call now STIF-ware - a set of STIF relevant modules that would allow the computer security hobbists to build, control and monitor the distributed network of automated hacking agents, guided by set of goals and targets, assigned to the system.

MD5 | 93c0368ab202f180e215595c59b87ec4
xprobe2-0.3.tar.gz
Posted Aug 5, 2005
Authored by Ofir Arkin, Fyodor Yarochkin, Meder Kydyraliev | Site prdownloads.sourceforge.net

Xprobe2 is a remote active OS fingerprinting tool which uses advanced techniques such as fuzzy logic.

Changes: New application-based OS fingerprinting modules (SMB, SNMP). Several bug fixes (i.e. pcap sniffing).
tags | remote
systems | unix
MD5 | 3ebb89ed9380038d368327816e34ec54
xprobe2-0.2.2.tar.gz
Posted Feb 18, 2005
Authored by Ofir Arkin, Fyodor Yarochkin, Meder Kydyraliev | Site prdownloads.sourceforge.net

Xprobe2 0.2.2 is a remote active OS fingerprinting tool which uses advanced techniques such as fuzzy logic.

tags | remote
systems | unix
MD5 | 8eea1406d035827bb8bfeb0536622e1f
xprobe2-0.2.1.tar.gz
Posted Dec 31, 2004
Authored by Ofir Arkin, Fyodor Yarochkin, Meder Kydyraliev | Site sys-security.com

Xprobe2 is a remote active operating system fingerprinting tool. Xprobe2 uses advanced techniques, such as the usage of fuzzy logic to match fingerprinting results with the tool's signature database and unique fingerprinting methods to provide accurate results.

Changes: A number of bugs have been fixed and more features have been introduced.
tags | tool, remote, scanner
systems | unix
MD5 | aaddb4bf793ef573b7fb43ee91bb2224
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close