exploit the possibilities
Showing 1 - 25 of 67 RSS Feed

Files Date: 2009-03-09

RadASM 2.2.1.5 .RAP File Overflow
Posted Mar 9, 2009
Authored by zAx

RadASM version 2.2.1.5 .rap file local stack overflow exploit.

tags | exploit, overflow, local
MD5 | bb7d763a5d3aae55885bc59d47ebc0ec
MediaCoder 0.6.2.4275 Universal Overflow SEH Exploit
Posted Mar 9, 2009
Authored by Stack | Site v4-team.com

MediaCoder version 0.6.2.4275 .m3u file universal buffer overflow SEH exploit.

tags | exploit, overflow
MD5 | 5cbf1d085ab6ca83e3e86fdb0f99d35c
MediaCoder 0.6.2.4275 Universal Stack Overflow
Posted Mar 9, 2009
Authored by Stack | Site v4-team.com

MediaCoder version 0.6.2.4275 .m3u file universal stack overflow exploit.

tags | exploit, overflow
MD5 | d46d4529c639160e0329f475a0abe8d2
Addonics NAS Adapter Denial Of Service
Posted Mar 9, 2009
Authored by h00die

Addonics NAS adapter post authentication denial of service exploit.

tags | exploit, denial of service
MD5 | 77935380cd07e1beaa7c6c9d1e56b891
PHP Director 0.21 eval() Injection Exploit
Posted Mar 9, 2009
Authored by StAkeR

PHP Director versions 0.21 and below SQL injection into outfile eval() injection exploit.

tags | exploit, php, sql injection
MD5 | ced33f5c979ff4e9f9f5051747797a34
MySQL: Secure Web Apps - SQL Injection Techniques
Posted Mar 9, 2009
Authored by Omnipresent

Whitepaper called MySQL: Secure Web Apps - SQL Injection Techniques.

tags | paper, web, sql injection
MD5 | baaed42a8dcb554a0f9c9968c3f465fc
Adur[IT] Magazine Issue 1
Posted Mar 9, 2009
Authored by Adurit-T, adurit

Issue 1 of Adur[IT] Magazine : IT Security. Written in Arabic.

tags | magazine
MD5 | bc19864860ee6b3f3b57255cd8fce049
Wordlist Cracking WPA/WPA2-PSK
Posted Mar 9, 2009
Authored by ka0x

Whitepaper discussing the cracking of WPA and WPA-PSK with a wordlist. Written in Spanish.

tags | paper
MD5 | 3a751abb852b36af1a5524202634b8c1
eZip Wizard 3.0 Stack Buffer Overflow
Posted Mar 9, 2009
Authored by fl0 fl0w | Site fl0-fl0w.docspages.com

Proof of concept exploit for a local stack buffer overflow vulnerability in eZip Wizard version 3.0.

tags | exploit, overflow, local, proof of concept
MD5 | 2a0c41015de837071a8b767eea238e7e
PHP Fuzzing In Action
Posted Mar 9, 2009
Authored by Abysssec | Site abysssec.com

PHP Fuzzing In Action - 20 Ways To Fuzz PHP Source Code.

tags | paper, php
MD5 | 3d008daa66d2d541133ffd73d92c9c4d
Woltlab Burning Board 3.0.x Cross Site Scripting
Posted Mar 9, 2009
Authored by StAkeR

Woltlab Burning Board version 3.0.x suffers from url redirection, tag script injection, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 707c295ab0cfed2d46a45bc7ab7928e6
PHP-Fusion Book Panel Module SQL Injection
Posted Mar 9, 2009
Authored by elusiven

The PHP-Fusion Book Panel module suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | de15bc5a994a812f95e1c3843de4cf28
Core Security Technologies Advisory 2009.0218
Posted Mar 9, 2009
Authored by Core Security Technologies, Francisco Falcon | Site coresecurity.com

Foxit Reader versions 3.0 build 1120 and build 1301 suffer from authorization bypass and buffer overflow vulnerabilities.

tags | advisory, overflow, vulnerability
advisories | CVE-2009-0836, CVE-2009-0837
MD5 | e3819ef2f892e318f47ff55dff405400
Digital Defense VRT Advisory 2009.22
Posted Mar 9, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

A directory traversal vulnerability exists in the SMART Web Server.

tags | advisory, web
MD5 | b130314ed2d4f2c2d6548baac1ed3a07
Digital Defense VRT Advisory 2009.21
Posted Mar 9, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

The vBook login application suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 75fc728c21338f544aa8ddebd3c92860
Gentoo Linux Security Advisory 200903-21
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-21 - A vulnerability in cURL may allow for arbitrary file access. David Kierznowski reported that the redirect implementation accepts arbitrary Location values when CURLOPT_FOLLOWLOCATION is enabled. Versions less than 7.19.4 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2009-0037
MD5 | 3c32af9d813424bf78d0512fe0e9b807
Gentoo Linux Security Advisory 200903-20
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-20 - Multiple vulnerabilities in WebSVN allow for file overwrite and information disclosure. James Bercegay of GulfTech Security reported a Cross-site scripting (XSS) vulnerability in the getParameterisedSelfUrl() function in index.php (CVE-2008-5918) and a directory traversal vulnerability in rss.php when magic_quotes_gpc is disabled (CVE-2008-5919). Versions less than 2.1.0 are affected.

tags | advisory, php, vulnerability, xss, info disclosure
systems | linux, gentoo
advisories | CVE-2008-5918, CVE-2008-5919, CVE-2009-0240
MD5 | 3909f2f11ac586da6b46f7ef873ed34c
Gentoo Linux Security Advisory 200903-19
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-19 - An error in Xerces-C++ allows for a Denial of Service via malicious XML schema files. Frank Rast reported that the XML parser in Xerces-C++ does not correctly handle an XML schema definition with a large maxOccurs value, which triggers excessive memory consumption during the validation of an XML file. Versions less than 3.0.0-r1 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2008-4482
MD5 | 6e7778da3eb115eecd86c8ae4542497a
Gentoo Linux Security Advisory 200903-18
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-18 - An insecure temporary file usage has been reported in Openswan, allowing for symlink attacks. Dmitry E. Oboukhov reported that the IPSEC livetest tool does not handle the ipseclive.conn and ipsec.olts.remote.log temporary files securely. Versions less than 2.4.13-r2 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2008-4190
MD5 | 3ad5b03d4a29c2a37d3afa7b466742fe
Gentoo Linux Security Advisory 200903-17
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-17 - The Real VNC client is vulnerable to execution of arbitrary code when connecting to a malicious server. An unspecified vulnerability has been discovered in the CMsgReader::readRect() function in the VNC Viewer component, related to the encoding type of RFB protocol data. Versions less than 4.1.3 are affected.

tags | advisory, arbitrary, protocol
systems | linux, gentoo
advisories | CVE-2008-4770
MD5 | 548bc6f4abd0cd421d383d9a83bc06f5
Gentoo Linux Security Advisory 200903-16
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-16 - An untrusted search path vulnerability in Epiphany might result in the execution of arbitrary code. James Vega reported an untrusted search path vulnerability in the Python interface. Versions less than 2.22.3-r2 are affected.

tags | advisory, arbitrary, python
systems | linux, gentoo
advisories | CVE-2008-5985
MD5 | 53d4f7bc82a8cff3831d8476895a9cbe
Gentoo Linux Security Advisory 200903-15
Posted Mar 9, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-15 - Multiple vulnerabilities in gitweb allow for remote execution of arbitrary commands. Versions less than 1.6.0.6 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2008-5516, CVE-2008-5517, CVE-2008-5916
MD5 | 93073410ca350c8073a873fb468bbf0d
Simple Fuzzing Utility
Posted Mar 9, 2009
Authored by aaron conole | Site aconole.brad-x.com

Simple Fuzz is a simple fuzzer. It has two network modes of operation, an output mode for developing command line fuzzing scripts, as well as taking fuzzing strings from literals and building strings from sequences. It is built to fill a need - the need for a quickly configurable black box testing utility that does not require intimate knowledge of the inner workings of C or require specialized software rigs. The aim is to just provide a simple interface, clear inputs/outputs, and reusability.

tags | fuzzer
MD5 | d093b4a090e7a656ee34b676796ab9e0
osCommerce 2.2rc1 Creation / Cross Site Scripting
Posted Mar 9, 2009
Authored by Jonathan Salwan | Site shell-storm.org

osCommerce version 2.2rc1 suffers from cross site scripting and file/directory creation vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 2587d3d92a663573d02def9623b8db81
GeoIPGen IP By Country Generator
Posted Mar 9, 2009
Authored by Andrew Horton (urbanadventurer) | Site morningstarsecurity.com

Geoipgen is an IPv4 network tool for generating geotargeted IP addresses. Features: Random or sorted order, unique or repeating ips, skips broadcast addresses, uses the MaxMind GeoLite Country database.

tags | tool, scanner
systems | unix
MD5 | 0e52c045aba926c8a167650a1876c516
Page 1 of 3
Back123Next

File Archive:

May 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    14 Files
  • 2
    May 2nd
    3 Files
  • 3
    May 3rd
    1 Files
  • 4
    May 4th
    18 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    21 Files
  • 7
    May 7th
    15 Files
  • 8
    May 8th
    19 Files
  • 9
    May 9th
    1 Files
  • 10
    May 10th
    2 Files
  • 11
    May 11th
    18 Files
  • 12
    May 12th
    39 Files
  • 13
    May 13th
    15 Files
  • 14
    May 14th
    17 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    2 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    21 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    6 Files
  • 23
    May 23rd
    1 Files
  • 24
    May 24th
    1 Files
  • 25
    May 25th
    2 Files
  • 26
    May 26th
    23 Files
  • 27
    May 27th
    7 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close