exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 106 RSS Feed

Files from Maksymilian Arciemowicz

Email addresscxib at securityreason.com
First Active2005-02-26
Last Active2016-12-12
iOS 10.1.x Certificate File Memory Corruption
Posted Dec 12, 2016
Authored by Maksymilian Arciemowicz

iOS version 10.1.x suffers from certificate file memory corruption vulnerability.

tags | exploit
systems | ios
advisories | CVE-2016-7626
SHA-256 | 7e1e8673a388d4d9b72823a033c26a949f1c575404ff7bd1bd86dbb75dc5eaf8
Apple macOS 10.12.1 / iOS 10 SecureTransport SSL Handshake MitM / DoS
Posted Oct 24, 2016
Authored by Maksymilian Arciemowicz

Apple macOS version 10.12.1 and iOS version 10 suffer from man-in-the-middle and denial of service issues with SecureTransport SSL handshakes.

tags | exploit, denial of service
systems | cisco, apple, ios
SHA-256 | dd040da5d731f7a4c679a12a2eae20eaa3b0971446f0a9d2625d0635e6c07f4f
Apple libc Incomplete Fix
Posted Aug 26, 2016
Authored by Maksymilian Arciemowicz

Apple's libc security update for OS X El Capitan version 10.11.2 has an incomplete fix.

tags | advisory
systems | apple, osx
advisories | CVE-2015-7038, CVE-2015-7039
SHA-256 | 1e5f9c6d0b83d92011bbf4e96ebccd3cac5637b6b7ee38f795eecf2e67ee7819
glibc catopen() Unbounded Stack Allocations
Posted Jan 26, 2016
Authored by Maksymilian Arciemowicz

glibc catopen() suffers from multiple unbounded stack allocations.

tags | exploit
SHA-256 | caf84b9ea8ebc32c176093e05bebacaad33f8ab3e8422e642de67c6796682c46
Magento 1.9.x Man-In-The-Middle
Posted Jan 26, 2016
Authored by Maksymilian Arciemowicz

Magento versions 1.9.x suffer from a man-in-the-middle vulnerability.

tags | advisory
SHA-256 | 1a8ec89508ab76d3e1690d5c566a439a7120f88d7945d716564e509ba86b8747
Mac OS X 10.11 FTS Buffer Overflow
Posted Dec 8, 2015
Authored by Maksymilian Arciemowicz

Mac OS X version 10.11 suffered from an FTS deep structure of the file system buffer overflow vulnerability.

tags | exploit, overflow
systems | apple, osx
advisories | CVE-2010-0105, CVE-2013-6799, CVE-2014-4433, CVE-2014-4434
SHA-256 | ae3851256e0ee57573fd3cac02fe7bcf26b41cfc7bbf09ad64cb3dfcdae81556
MacOS X 10.11 Hardlink Resource Exhaustion
Posted Oct 26, 2015
Authored by Maksymilian Arciemowicz

MacOS X 10.11 suffers from a hardlink bomb issue that causes resource exhaustion.

tags | exploit, denial of service
advisories | CVE-2010-0105, CVE-2013-6799, CVE-2014-4433, CVE-2014-4434
SHA-256 | 4058ea8977e433e0872ba59dabcc96a98e1a41577ee9392d7c6db485784a1396
MacOS X 10.11 FTS Buffer Overflow
Posted Oct 26, 2015
Authored by Maksymilian Arciemowicz

The MacOS X 10.11 FTS library suffers from a buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2010-0105, CVE-2013-6799, CVE-2014-4433, CVE-2014-4434
SHA-256 | 6e8afd8414e594a1c22b90fded2505f57393097d961dbd2f8a8dcd3ab5996ea9
phpMyAdmin 4.4.6 Man-In-The-Middle
Posted May 14, 2015
Authored by Maksymilian Arciemowicz

phpMyAdmin version 4.4.6 suffers from a man-in-the-middle vulnerability when reaching out to github's API.

tags | advisory
advisories | CVE-2015-3903
SHA-256 | 7874bceeec1e2f481da195934ba9bcdbc30d95e33a128f5b75118b179e149a02
C++11 Resource Exhaustion
Posted Aug 2, 2014
Authored by Maksymilian Arciemowicz | Site cxsecurity.com

GCC and CLANG C++11 regex functionality suffers from resource exhaustion issues.

tags | advisory
SHA-256 | 83d7378cceea145fb84e0dfdb032d2cfc6a9b87c7c99948a4ad5a9157744b7d8
MacOSX 10.9.2/XNU HFS Hard Linking
Posted Apr 6, 2014
Authored by Maksymilian Arciemowicz | Site cxsecurity.com

Multiple vulnerabilities have been reported in HFS, including a hard linking issue that can be used to trigger a denial of service condition.

tags | exploit, denial of service, vulnerability
advisories | CVE-2010-0105, CVE-2013-6799
SHA-256 | be35bd5afa319dfac7f6e3e41d1bb757eeeb443aa69504e617ce51aef83f35fb
OS X / Safari / Firefox REGEX Denial Of Service
Posted Mar 14, 2014
Authored by Maksymilian Arciemowicz | Site cxsecurity.com

Mac OS X, Safari, Firefox and Kaspersky all suffer from a regular expression denial of service condition that was discovered long ago in regcomp().

tags | exploit, denial of service
systems | apple, osx
advisories | CVE-2010-4051, CVE-2010-4052, CVE-2011-3336
SHA-256 | 8d9bccde42a49a51d60d66232f596249d63d2b6443263209bcfa4a6ea5ad5d2f
Mac OS X 10.8.3 ftpd Remote Resource Exhaustion
Posted Apr 12, 2013
Authored by Maksymilian Arciemowicz

ftpd on Mac OS X 10.8.3 suffers from a denial of service vulnerability. This appears to be an old vulnerability that has not been properly addressed.

tags | advisory, denial of service
systems | apple, osx
advisories | CVE-2010-2632, CVE-2011-0418
SHA-256 | 13b77811aa62fba78277a75249e3609cc4a3861977ccbcd966b983a25d221503
FreeBSD 9.1 ftpd Remote Denial Of Service
Posted Feb 2, 2013
Authored by Maksymilian Arciemowicz | Site cxsecurity.com

FreeBSD version 9.1 suffers from a remote ftpd denial of service vulnerability.

tags | exploit, remote, denial of service
systems | linux, freebsd
advisories | CVE-2011-0418, CVE-2010-2632, CVE-2011-0418, CVE-2010-4051, CVE-2010-4052
SHA-256 | ee47445b28383e3aa5a3bd3988e583b7a429051d6f88bc8757efc1a780f4fbf8
cIFrex 1.1 Source Scanner
Posted May 2, 2012
Authored by Maksymilian Arciemowicz | Site cxsecurity.com

cIFrex is a small script written in PHP that supports searching for bugs in the analysis of the source code. It uses a database of regular expressions.

tags | tool, php
systems | unix
SHA-256 | 4172d492b1bd172650866495ce29ca87bee838cb96d452d364a667227680e43d
PHP 5.4 / 5.3 eregi() Memory Limit Bypass
Posted Mar 30, 2012
Authored by Maksymilian Arciemowicz

PHP versions 5.4 and 5.3 suffer from a deprecated eregi() memory_limit bypass vulnerability. Proof of concepts included.

tags | exploit, php, proof of concept, bypass
systems | linux
SHA-256 | b8f9235bcde03d20acafbedaa0aa12b05d9c56034aaaa1a9f164f8fbde699142
PHP 5.3.8 NULL Pointer Dereference
Posted Jan 15, 2012
Authored by Maksymilian Arciemowicz

PHP version 5.3.8 suffers from multiple NULL pointer dereference vulnerabilities.

tags | exploit, php, vulnerability
advisories | CVE-2011-4153
SHA-256 | 38953c5295dc5afd32a246b9cd42af756cdc0d62c5141f04f40ac86c058dcf4f
BSD libc/regcomp(3) Memory Management / Recursion
Posted Nov 4, 2011
Authored by Maksymilian Arciemowicz

Recursion and bad memory management in BSD's libc/regcomp(3) can cause denial of service conditions.

tags | exploit, denial of service
systems | bsd
advisories | CVE-2011-3336
SHA-256 | 745bf11d1ba1563cbd80a1251cff388e13f176d6a07f50f1168101bffb55bcae
PHP 5.3.6 Null Pointer Dereference
Posted Aug 19, 2011
Authored by Maksymilian Arciemowicz

PHP version 5.3.6 suffers from a null pointer dereference vulnerability.

tags | exploit, php
SHA-256 | 672214ec2b4f3ce287d074bc3902a7b5444150b28b017759356019be4b764565
PHP 5.3.6 ZipArchive Invalid Use glob(3)
Posted Aug 19, 2011
Authored by Maksymilian Arciemowicz

PHP version 5.3.6 ZipArchive suffers from an invalid use of glob(3) vulnerability.

tags | advisory, php
advisories | CVE-2011-1657
SHA-256 | 196fc8b1e8e78154b27529d826ddba5612219a4930d20d90583377eb0fb3ae3c
NetBSD 5.1 libc/net Stack Buffer Overflow
Posted Jul 1, 2011
Authored by Maksymilian Arciemowicz

NetBSD version 5.1 libc/net suffers from multiple buffer overflow vulnerabilities.

tags | exploit, overflow, vulnerability
systems | netbsd
advisories | CVE-2011-1656
SHA-256 | 41dc13e14f5bb04dc98558705af4a4ffaa1774d45a59d6fb6682a19250cf3d47
libc/fnmatch(3) Denial Of Service
Posted May 13, 2011
Authored by Maksymilian Arciemowicz

Multiple vendors libc/fnmatch(3) suffer from a denial of service vulnerability. Affected software includes Apache 2.2.17, NetBSD 5.1, OpenBSD 4.8, FreeBSD, Mac OS X 10.6, and Sun Solaris 10. Apache proof of concept is included.

tags | exploit, denial of service, proof of concept
systems | linux, netbsd, solaris, freebsd, openbsd, apple, osx
advisories | CVE-2011-0419
SHA-256 | 2c1ae950fb3bfed82e98d5621bda7e64d189490f5059fd8d12ecb495733b1b59
Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT Memory Exhaustion
Posted May 3, 2011
Authored by Maksymilian Arciemowicz

Multiple vendors are affected by a memory exhaustion vulnerability in libc/glob(3) GLOB_BRACE|GLOB_LIMIT.

tags | exploit
advisories | CVE-2011-0418
SHA-256 | 1d1f0bb940366641cffd2edd81473a10c047934622b6fc4b18eefc826bbb182e
libzip 0.9.3 NULL Pointer Dereference
Posted Mar 18, 2011
Authored by Maksymilian Arciemowicz

libzip version 0.9.3 allows remote and local attackers to trigger a denial of service condition via a null pointer dereference if ZIP_FL_UNCHANGED flag is set.

tags | exploit, remote, denial of service, local
advisories | CVE-2011-0421
SHA-256 | 4ab977aa3a116d991be0d343936aa1203eccdd3ec80506df3e2493e872a86b24
Vsftpd 2.3.2 Denial Of Service
Posted Mar 1, 2011
Authored by Maksymilian Arciemowicz

Vsftpd version 2.3.2 proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
advisories | CVE-2011-0762
SHA-256 | 97bc1d3ccc743031a4f8c24295844c75945d7dc113934134a417a91e26c8a749
Page 1 of 5
Back12345Next

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    14 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close