Showing 1 - 8 of 8

Files from Val Smith

Forgotten World - Corporate Business Application Systems: Posted Feb 18, 2011; Authored by Val Smith, Sh2kerr; Whitepaper called Forgotten World - Corporate Business Application Systems. This paper will describe some basic and advanced threats and attacks on Enterprise Business Applications – the core of many companies. Both the paper and Blackhat DC presentation are included in this archive.; tags | paper; systems | linux; SHA-256 | 2e70cc9c883bdf948194b3801a4b9fe5f07f8e73912c291bd5c5b643e993e4a6; Download | Favorite | View

phpBB viewtopic.php Arbitrary Code Execution: Posted Dec 31, 2009; Authored by H D Moore, Val Smith, Patrick Webster | Site metasploit.com; This Metasploit module exploits two arbitrary PHP code execution flaws in the phpBB forum system. The problem is that the 'highlight' parameter in the 'viewtopic.php' script is not verified properly and will allow an attacker to inject arbitrary code via preg_replace().; tags | exploit, arbitrary, php, code execution; advisories | CVE-2005-2086, CVE-2004-1315; SHA-256 | 3a2382adc10594ee42ff1bd0b49855a630ee0af65a53e90bd2f33b29bcbe9542; Download | Favorite | View

Sasser Worm avserve FTP PORT Buffer Overflow: Posted Nov 26, 2009; Authored by patrick, Val Smith, chamuco | Site metasploit.com; This Metasploit module exploits the FTP server component of the Sasser worm. By sending an overly long PORT command the stack can be overwritten.; tags | exploit, worm; SHA-256 | 5d5c22dfbd84d41c7c21a45e5676f648dbcc83cd3302d47b1a95c27ace3b87f0; Download | Favorite | View

phpBB viewtopic.php Arbitrary Code Execution: Posted Oct 30, 2009; Authored by Val Smith; This Metasploit module exploits two arbitrary PHP code execution flaws in the phpBB forum system. The problem is that the 'highlight' parameter in the 'viewtopic.php' script is not verified properly and will allow an attacker to inject arbitrary code via preg_replace().; tags | exploit, arbitrary, php, code execution; advisories | CVE-2005-2086, CVE-2004-1315; SHA-256 | 1bd480a3c38c3cf0cbb3b509893353c357ec5b1bf7fc0df522daa1890d05161f; Download | Favorite | View

Further Down The VM Spiral: Posted Jan 4, 2009; Authored by Val Smith, chamuco | Site offensivecomputing.net; Presentation called Further Down the VM Spiral.; tags | paper; SHA-256 | c375df19723aa50405c3578260589605b47dac194a812c3bcb3360c7a43ef6bf; Download | Favorite | View

Inside The Malicious World Of Blog Comment Spam: Posted Jan 4, 2009; Authored by Val Smith, Colin Ames | Site offensivecomputing.net; Whitepaper called Inside the Malicious World of Blog Comment Spam.; tags | paper; SHA-256 | dccb3a2c0c1cdd5b6a2aefb021cd01be7b0b1a7fcca5840483c345b10b991d3b; Download | Favorite | View

Hacking Malware - Offense Is The New Defense: Posted Jan 4, 2009; Authored by Val Smith, chamuco; Presentation called Hacking Malware - Offense is the new Defense.; tags | paper; SHA-256 | 49a69eea4ecdcbb9fd14a6e4078bbd75a781159d16030e70283919300e0d4dd9; Download | Favorite | View

vm.pdf: Posted Mar 22, 2006; Authored by Val Smith | Site offensivecomputing.net; Detecting the Presence of Virtual Machines Using the Local Data Table - This paper describes a method for determining the presence of virtual machine emulation in a non-privileged operating environment. This attack is useful for triggering anti-virtualization attacks and evading analysis.; tags | paper, local; SHA-256 | 48ac374b43d646206bf8a59b9cc0aed6ac19a76791acaea176314b493393c68e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days