exploit the possibilities
Showing 1 - 25 of 72 RSS Feed

Files Date: 2005-12-14

MS05-053.c
Posted Dec 14, 2005
Authored by Winny Thomas

Microsoft Windows Metafile (WMF) remote exploit which takes advantage of the bug known as ms05-053. This program creates a special .wmf file which crashes IE by overflowing the "mtNoObjects" header.

tags | exploit, remote, overflow
systems | windows
MD5 | 380f01f84a68f99123f0eaeefe547cc1
lsof_4.76.tar.gz
Posted Dec 14, 2005
Authored by Vic Abell

Lsof is an extremely powerful unix diagnostic tool. Its name stands for LiSt Open Files, and it does just that. It lists information about any files that are open by processes currently running on the system. It is useful for pinpointing which process is using each network socket. FAQ available here.

Changes: Bug fixes. Supports the newest operating systems.
tags | tool, intrusion detection
systems | unix
MD5 | 886e72980ad3504c305ead9792e4d528
CounterDoS.c
Posted Dec 14, 2005
Authored by Iman Karim | Site home.inf.fh-rhein-sieg.de

Counter Strike 2D denial of service exploit that affects versions 0.1.0.1 and below.

tags | exploit, denial of service
MD5 | d87083992aad727560be35d101326126
openview_connectednodes_exec.pm.txt
Posted Dec 14, 2005
Authored by Valerio Tesei

This Metasploit module exploits an arbitrary command execution vulnerability in the HP OpenView connectedNodes.ovpl CGI application. The results of the command will not be displayed to the screen.

tags | exploit, arbitrary, cgi
advisories | CVE-2005-2773
MD5 | ae5ae0d62af26ea683bce8a720fc56eb
oracle9i_xdb_http.pm.txt
Posted Dec 14, 2005
Authored by y0

This Metasploit module exploits a stack overflow in the authorization code of the Oracle 9i HTTP XDB service.

tags | exploit, web, overflow
MD5 | 3904180db4222415f801532251f226a4
fireburn.txt
Posted Dec 14, 2005
Authored by Aviv Raff | Site aviv.raffon.net

Proof of concept exploit for Firefox 1.0.4 for the InstallVersion.compareTo() vulnerability. Needs functional shellcode to work.

tags | exploit, shellcode, proof of concept
MD5 | a7b9197c7c69f746d4d5c68ef60627c1
Technical Cyber Security Alert 2005-347A
Posted Dec 14, 2005
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA05-347A - Microsoft has released updates that address critical vulnerabilities in Internet Explorer (IE). A remote, unauthenticated attacker could exploit these vulnerabilities to execute arbitrary code or cause a denial of service on an affected system.

tags | advisory, remote, denial of service, arbitrary, vulnerability
advisories | CVE-2005-1790, CVE-2005-2127
MD5 | 54d0359c312168a33ac3ae8b14332e6b
adpHashdisclose.txt
Posted Dec 14, 2005
Authored by Liz0ziM | Site biyo.tk

ADP Forum versions 2.0 through 2.0.3 suffers from a direct download flaw that discloses users' password hashes.

tags | exploit
MD5 | 3a4537af165b9812a28f6030875fd239
secunia-IE2.txt
Posted Dec 14, 2005
Authored by Jakob Balle | Site secunia.com

Secunia Research has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to trick users into downloading and executing arbitrary programs on a user's system. A design error in the processing of mouse clicks in new browser windows and the predictability of the position of the File Download dialog box can be exploited to trick the user into clicking on the Run button of the dialog box.

tags | advisory, arbitrary
systems | windows
MD5 | 4deb6f1ff04696a98d0b46a51e0d492b
secunia-IE.txt
Posted Dec 14, 2005
Authored by Andreas Sandblad | Site secunia.com

Secunia Research has discovered a vulnerability in Microsoft Internet Explorer 6.0, which can be exploited by malicious people to trick users into executing malicious files. The vulnerability is caused due to a design error in the processing of keyboard shortcuts for certain security dialogs.

tags | advisory
advisories | CVE-2005-2829
MD5 | a0ce996e36ae3b5006f4606974677172
EEYEB-20050523.txt
Posted Dec 14, 2005
Authored by Derek Soeder | Site eeye.com

eEye Security Advisory - eEye Digital Security has discovered a local privilege escalation vulnerability in the Windows kernel that could allow any code executing on a Windows NT 4.0 or Windows 2000 system to elevate itself to the highest possible local privilege level (kernel).

tags | advisory, kernel, local
systems | windows, 2k, nt
advisories | CVE-2005-2827
MD5 | 204c949d2587d64927b34183a6cb0b46
ICDCIT-CFP.txt
Posted Dec 14, 2005
Site cse.iitk.ac.in

CALL FOR PARTICIPATION for the 2nd International Conference on Distributed Computing (ICDCIT 2005).

tags | paper, conference
MD5 | 45e08097f6e483f5fd24a1b42ef081a7
bd.c
Posted Dec 14, 2005
Authored by Endrazine | Site pulltheplug.org

Universal BIOS password dumping utility.

tags | cracker
MD5 | cc234126293a91eefc7cca531f64ad4f
dbiosw.asm
Posted Dec 14, 2005
Authored by Endrazine | Site pulltheplug.org

BIOS password physical memory reading utility that displays to the screen.

tags | cracker
MD5 | 575529ce3bb0beffda17885ca0ccc47c
wbiosw.asm
Posted Dec 14, 2005
Authored by Endrazine | Site pulltheplug.org

BIOS password physical memory reading utility that writes to a file.

tags | cracker
MD5 | ec564ed639b91a385df4135aecbb72f0
Bios.Information.Leakage.txt
Posted Dec 14, 2005
Authored by Endrazine

Whitepaper discussing information leakage and password extraction from a BIOS.

tags | paper
MD5 | 484b3c11908948f9c7311f87b66bf5e1
phpcoin_122_sql_xpl.html
Posted Dec 14, 2005
Authored by rgod | Site retrogod.altervista.org

PhpCOIN version 1.2.2 blind SQL injection and remote code execution exploit.

tags | exploit, remote, code execution, sql injection
MD5 | 4e5c4c0841e7cf1d1c5715cd43bc271a
phpcoin_122_incl_xpl.html
Posted Dec 14, 2005
Authored by rgod | Site retrogod.altervista.org

PhpCOIN version 1.2.2 remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 8daca9cd0eaad6f3477b12ed9e24d536
phpcoin122.html
Posted Dec 14, 2005
Authored by rgod | Site retrogod.altervista.org

PhpCOIN version 1.2.2 is susceptible to arbitrary file inclusion, blind SQL injection, and path disclosure attacks.

tags | exploit, arbitrary, sql injection, file inclusion
MD5 | 06e0f015908740a626e9fcdad2aa017a
iDEFENSE Security Advisory 2005-12-12.t
Posted Dec 14, 2005
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 12.12.05 - Local exploitation of a buffer overflow vulnerability in the uidadmin binary included in multiple versions of The SCO Group Inc.'s Unixware allows attackers to gain root privileges. iDefense has confirmed the existence of this vulnerability in SCO Unixware versions 7.1.3 and 7.1.4. All previous versions of SCO Unixware are suspected to be vulnerable.

tags | advisory, overflow, local, root
systems | unixware
advisories | CVE-2005-3903
MD5 | 996a690d22da6ca2e5833755caecbcfb
Gentoo Linux Security Advisory 200512-4
Posted Dec 14, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200512-04 - The Oulu University Secure Programming Group (OUSPG) discovered that various ISAKMP implementations, including Openswan and racoon (included in the IPsec-Tools package), behave in an anomalous way when they receive and handle ISAKMP Phase 1 packets with invalid or abnormal contents. Versions less than 2.4.4 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 36b8d66694532b2b1376a9a1fe488446
BTGrup.txt
Posted Dec 14, 2005
Authored by khc

The BTGrup Admin WebController script is susceptible to a SQL injection attack.

tags | exploit, sql injection
MD5 | b077a1a5be54dbc0ddd5f2155b17801d
imoelPassword.txt
Posted Dec 14, 2005
Authored by mehrtash mallahzadeh | Site ashiyane.com

Direct download access of the setting.php file in IMOEL CMS allows for disclosure of the SQL password.

tags | exploit, php
MD5 | c3cf39d735cdc657ca8f40d348f2d188
NetGearRP114DoS.txt
Posted Dec 14, 2005
Authored by Marc Ruef | Site scip.ch

Marc Ruef found an old fashioned denial of service flaw in the NetGear RP114 device.

tags | advisory, denial of service
MD5 | 3324c8625d16b293772c9133758ac086
SEC-20051212-0.txt
Posted Dec 14, 2005
Site sec-consult.com

SEC-CONSULT Security Advisory 20051212-0 - Due to insufficient input validation within the Nortel SSL VPN appliance's web interface, it is possible for an attacker to supply his victim with a malicious link that results in code execution on the victim's client. The problem has been reproduced with version 4.2.1.6, however other versions might be vulnerable as well.

tags | advisory, web, code execution
MD5 | 9ce0939ab0aaf717ddc6ba43d06ae7bd
Page 1 of 3
Back123Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    1 Files
  • 17
    Jan 17th
    2 Files
  • 18
    Jan 18th
    20 Files
  • 19
    Jan 19th
    32 Files
  • 20
    Jan 20th
    15 Files
  • 21
    Jan 21st
    10 Files
  • 22
    Jan 22nd
    16 Files
  • 23
    Jan 23rd
    1 Files
  • 24
    Jan 24th
    1 Files
  • 25
    Jan 25th
    36 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close