seeing is believing
Showing 1 - 25 of 35 RSS Feed

Files from Nicholas Lemonias

Email addresslem.nikolas at googlemail.com
First Active2014-01-06
Last Active2017-01-20
MySQL Cluster Remote Overflows
Posted Jan 20, 2017
Authored by Nicholas Lemonias

Memory issues and remote overflows have been addressed in MySQL. They have been addressed in the large patch release in January, 2017.

tags | advisory, remote, overflow
advisories | CVE-2016-5541
MD5 | 65883e06d5d45b74ea0b7d63f6bed9a5
SpaceHack Satellite Terminal Scanner
Posted Nov 17, 2016
Authored by Nicholas Lemonias

This tool can be used to find insecure satellite terminals and "Telecommand and Control" terminals in a network.

tags | tool, scanner
systems | unix
MD5 | b7d56025d18986f06f0994da75107cfc
MySQL Overflows / Memory Corruption / Format String
Posted Jul 21, 2016
Authored by Nicholas Lemonias

MySQL versions 5.7.12 and below suffer from integer overflow, buffer overflow, memory corruption, and format string vulnerabilities.

tags | advisory, overflow, vulnerability
advisories | CVE-2016-3477
MD5 | 9ff046aa258bd477bb9020f04cba4c41
The Future Of Buffer Overflows
Posted Mar 21, 2016
Authored by Nicholas Lemonias

This is an academic whitepaper that discusses trends in memory exploitation.

tags | paper
MD5 | 8a2dcb51ee1a7e9fcbb3e3fe90bf524f
ProFTP 1.3.5a Missing Bounds Checks / Memory Allocation
Posted Nov 30, 2015
Authored by Nicholas Lemonias

ProFTP version 1.3.5a suffers from missing boundary checks and memory allocation problems.

tags | advisory
MD5 | 2d43d65a7f542da03c07037b0fd3e74f
ProFTPd 1.3.5a Heap Overflow
Posted Nov 27, 2015
Authored by Nicholas Lemonias

ProFTPd version 1.3.5a suffers from heap overflow vulnerabilities.

tags | advisory, overflow, vulnerability
MD5 | ebb546df9609d5827f90fdfe2f5d1c6b
MySQL 5.6.24 Buffer Overflow
Posted Oct 7, 2015
Authored by Nicholas Lemonias

MySQL version 5.6.24 suffers from multiple buffer overflow vulnerabilities.

tags | exploit, overflow, vulnerability
advisories | CVE-2016-0546
MD5 | 7ef3230eff96f619204c48a4405001d3
Satellite, Aerospace, And Military Ecosystem Security At The K-Band And Above
Posted Jun 6, 2015
Authored by Nicholas Lemonias

This is a presentation by Advanced Information Security Corp that discusses various satellite, aerospace, and military ecosystems relating to their communications and some security shortfalls.

tags | paper
MD5 | ebdf12f569325b8535e7953cd9ff870c
4k Satellite Security Research - DVB-S2X Standard Evaluation Notes
Posted Apr 24, 2015
Authored by Nicholas Lemonias

During a security evaluation of the Digital Video Broadcasting for Satellite-S2X (Extended) for UHD/4K compatible ecosystems; conducted internally by the Advanced Information Security Group, instances of insecure function use were observed, which could lead to exploitation of these systems.

tags | paper
MD5 | 062abf2df5f08043368cc2dc4c715450
Apache 2.2.29 protocol.c Null Pointer Dereference
Posted Apr 14, 2015
Authored by Nicholas Lemonias

Apache version 2.2.29 suffers from a null pointer dereference vulnerability in protocol.c.

tags | advisory, protocol
MD5 | 8c509d972cafb92eb2d3e58c20ee0d20
Apache 2.2.29 mod_nw_ssl.c Null Pointer Dereference
Posted Apr 14, 2015
Authored by Nicholas Lemonias

Apache version 2.2.29 suffers from a null pointer dereference vulnerability in mod_nw_ssl.c.

tags | advisory
MD5 | 324fa3360e765040a4de6c8da2d74b89
Kerberos krb5-1.13 Insecure Functions
Posted Apr 6, 2015
Authored by Nicholas Lemonias

Kerberos version krb5-1.13 makes use of some insecure functions.

tags | advisory
MD5 | 6e3090af9a33fee487f0f35aaa545267
OpenSSH 6.8 Insecure Functions
Posted Apr 3, 2015
Authored by Nicholas Lemonias

OpenSSH version 6.8 makes use of some insecure functions.

tags | advisory
MD5 | f2c9d2c27b4f37ee57df559776cf7134
OpenSSL 1.0.2a Insecure Functions
Posted Apr 3, 2015
Authored by Nicholas Lemonias

OpenSSL version 1.0.2a makes use of some insecure functions.

tags | advisory
MD5 | 67dab38b98557a8440b703be32d1326c
eBay Inc. Cross Site Scripting / Filtration Bypass
Posted Mar 11, 2015
Authored by Nicholas Lemonias

eBay's site suffered from cross site scripting and filtration bypass vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | ed29ff4a3126405b4c259b270c6b66e3
OpenSSL 1.0.2 GHOST Issues
Posted Mar 11, 2015
Authored by Nicholas Lemonias

During a code audit of the OpenSSL 1-1.0.2 implementation for Linux, conducted internally by the Advanced Information Security Group, multiple instances of deprecated function use were observed, in relation to the GHOST vulnerability.

tags | advisory
systems | linux
MD5 | f32950a674e2860ef6b8165b7daba06e
Mediafire Open Redirect
Posted Feb 19, 2015
Authored by Nicholas Lemonias

Mediafire suffered from an open redirect vulnerability.

tags | exploit
MD5 | 4ec3b549ee6b4e5c201082ee0c22223e
Rackspace Cross Site Scripting
Posted Feb 19, 2015
Authored by Nicholas Lemonias

Rackspace suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | be432db39e65c254d84354cbef549061
Sinopec Group Cross Site Scripting
Posted Feb 9, 2015
Authored by Nicholas Lemonias

Sinopec Group suffers from multiple cross site scripting and HTML injection vulnerabilities. They have been notified and have not responded to the author.

tags | exploit, vulnerability, xss
MD5 | 58c94ea23996f94f1aaf1bb552d00cd8
VSAT SAILOR SAT COM 900 Password Change
Posted Jan 29, 2015
Authored by Nicholas Lemonias

VSAT SAILOR SAT COM 900 remote bypass administrative password changing exploit.

tags | exploit, remote
MD5 | 5b8e86287af8480ed2131da2fcf28277
Oracle.com Cross Site Scripting
Posted Jan 19, 2015
Authored by Nicholas Lemonias

Oracle's website suffered from some cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 11ad69e302a27974349c40b5b433532e
Microsoft Network (MSN) Bypass / XSS / Abuse / Parameter Injection
Posted Jan 7, 2015
Authored by Nicholas Lemonias

Microsoft Network (MSN) suffered from filter bypass, cross site scripting, URI abuse, and parameter injection vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | de47974940226e393ff15b533be113a0
Advanced Information Security Shellshock Scanner
Posted Oct 3, 2014
Authored by Nicholas Lemonias

AIS shellshock scanning tool that leverages the User-Agent header against a large list of possible targets. Written in C.

tags | exploit
MD5 | 74ab1fba2486673b18ce5c1a7900ba50
Google Youtube Arbitrary File Upload
Posted Mar 4, 2014
Authored by Nicholas Lemonias

Youtube.com suffered from an arbitrary file upload vulnerability when headers were manipulated.

tags | exploit, arbitrary, file upload
MD5 | f25e06a25e86b69302ceeabf4bee5f3d
AT&T Cross Site Scripting
Posted Feb 27, 2014
Authored by Nicholas Lemonias

www.att.com suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 0b95763cabaa3e274460fa7774b20b70
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close