This Metasploit module exploits a buffer overflow in Shadow Stream Recorder 3.0.1.7. Using the application to open a specially crafted asx file, a buffer overflow may occur to allow arbitrary code execution under the context of the user.
c4438630e52e139293816f065664b142
DBO local denial of service exploit that leverages LauncherConfig.xml.
945111471b42c47f3dd5cba5147ebb6a
Sagem Routers remote authentication bypass exploit.
bac2c30e66184f69815b795874698102
Sagem routers remote reset exploit. It affects F@ST router models 1200/1240/1400/1400W/1500/1500-WG/2404.
8451ab0ec46347610bb4b5d5dcc75313
Shadow Stream Recorder universal stack overflow exploit that creates a malicious .m3u file.
eedcad6215ca48a0da3c15964204293e
ASP Product Catalog version 1.0 cross site scripting and database disclosure exploit.
32d3c3c58236cd67cb26f4f73bb7d775
Exjune Guestbook version 2 remote database disclosure exploit.
42911c52bb3e54d127bbc80b4c2225c9
OTSTurntables version 1.00.027 local stack overflow universal exploit that generates a malicious .ofl file.
7f85c9c78cb06ce67c9d23e6571b76a6
Remote exploit for the authentication bypass vulnerability in ProFTPd using mod_mysql.
2bb08ad8bfb02ce8ca1d364de1caa9c7
Whitepaper called Exploiting Web 2.0, Real Life SQL Injection.
6d18dc9a6a4084b400641792dc4691b3
Elecard AVC HD Player local stack overflow proof of concept exploit that creates a malicious .m3u file.
329ec12bb34cc371679dfe51f47eb367
dBpowerAMP Audio Player version 2 local buffer overflow exploit that generates a malicious .pls file that will bind a shell to port 4444.
e6d2a06ff382bc668e3c936d91611ca3
JetAudio Basic version 7.0.3 proof of concept buffer overflow exploit that creates a malicious .m3u file.
411f9da2714972af33d90e119dded0aa
MediaMonkey version 3.0.6 local buffer overflow proof of concept exploit that creates a malicious .m3u file.
8d56ca10377e3a2a988df87d56641423
EleCard MPEG Player local stack overflow exploit that creates a malicious .m3u file that binds a shell to port 4444.
483e3151eda44b9b3012b735c8f7cbf3
Browser3D version 3.5 .sfs file local stack overflow exploit.
fd1199ffbdd3620255250cd433020b5f
Sagem Router F@st version 2404 remote unauthenticated reset proof of concept exploit.
59bc1e569decabc95c1ca892722b64b3
Excel Viewer OCX versions 3.1 and 3.2 denial of service proof of concept exploit.
4c6f899240739b5222dca5cb9f9eda04
VUPlayer version 2.49 local denial of service proof of concept exploit that creates a malicious file.
e5b35ddc35541c682132bd87cadf7055
Pixel8 Web Photo Album version 3.0 suffers from a remote SQL injection vulnerability in Photo.asp.
216c90ada96a69d20a33e8fcf5b8df97
QuickerSite Easy CMS suffers from a remote database disclosure vulnerability.
c1fabb7516b26b72d10b403e1ec90361
Gnews Publisher .NET suffers from a remote SQL injection vulnerability in authors.asp.
42518b49d12c42a0dbab11175573dd93
Click and BaneX suffers from multiple remote SQL injection vulnerabilities. The authentication bypass was already discovered back in November of 2007.
83e54fd5b04c695af05ad26984bd995b
Click and Email suffers from remote SQL injection and cross site scripting vulnerabilities.
77b018c44725e47e01bd8c3ee390effe
Click and Rank suffers from remote SQL injection and cross site scripting vulnerabilities.
b6473f2dbce6c99c4c3cafab0b384fd9