PHP Nuke 6.0 has vulnerabilities in the Forums and Private_Messages modules which allow attackers to save forum information and user data to a text file.
7b1313ba497ad7dec8ca3b3a90d79592630c5aa71b940def865f36032997e154ISS Security Advisory - ISS X-Force has discovered a flaw in the PeopleSoft PeopleTools application framework. Attackers could exploit a vulnerability to write arbitrary files with attacker-defined data under the permissions of the Web server via the "SchedulerTransfer" servlet.
d4e4a170931e409182da4f67336e84fd3dcb57e5a8ce070bb07f6abbfceb3062Microsoft's Internet Explorer 5 introduced the new 'Web Archive' format for storing web pages; this has a potential security breach found when used with encoded executables along with a malformed MIME header.
b6be13ced680d91688a37b693d889f27d98fa98f94fc2654c24b0c14efa1dc3bEthereal is a GTK+-based network protocol analyzer, or sniffer, that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and to give Ethereal features that are missing from closed-source sniffers. Screenshot available here.
42c6f93ae0398c3de1f7d164e49b8546763de8481b26d6e740c382a04993e7d5aH scans for open NetBIOS shares on a system and reports them to the user in an easy to use copy and paste format utilizing the net command. C++ source code and binary included.
6b6ec6734f6ea1fae45a630818c442c80c7db1c4bf275d75159dcff75fed94deRemote CGI exploit written in Perl for Cpanel 5 Guestbook. Spawns a bash shell with the uid of the webserver. Windows version. Warning: Use this binary at your own risk.
6b94af34f927331d86b03d701534fcd53fc85dcaded9fca70821ecfdfa6e7123Postnuke v0.723 has SQL injection and directory traversal vulnerabilities which allow an attacker to view directories and perform remote command execution.
c7174c9efaf63c50640a797daaf52e208c587ea7527c490209c5b8d8130f87bcWin32hlp exploit for the :LINK overflow that traps a .CNT file with arbitrary code that once downloaded will execute without a user being prompted for verification. Tested against Windows 2000 PRO/SERVER SP0/SP1/SP2.
4a9d7740766726256679babfae4710b20451e06922ced940aa5e2331fab55f08Local exploit for Unreal IRC daemon 3.2.
e50479b8ae3686d516f7edd3b95bdd081d79cb14541fca5c08905c7229d76008Local exploit to get gid of games for toppler.
dafe4a741510221ea6c66764660c6cb121ba22750610c8274faa4a3558e27179Polymorphic Shellcode Generator - In Spanish. This tool was written to mask the final function of shellcode in exploits. Tested on Linux, FreeBSD, OpenBSD, and NetBSD.
8791ddbd0def68d52be402a2277d183d94f283e1ed7ac8aa7b826d5f00110219A simple ELF binary encryption tool for Linux that encrypts the .text part of an ELF file with the password being given as an argument.
1777c3839840816aef4069dcfdb183463ba353c5bb7c384b9bbfea62bcde1611
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed