exploit the possibilities
Showing 1 - 24 of 24 RSS Feed

Files Date: 2010-06-26

Clicker CMS Blind SQL Injection
Posted Jun 26, 2010
Authored by hacker at sr.gov.yu

Clicker CMS suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6a9c94d8dbd81fc7ddffffa4e0789c9f
Joomla JE Story 1.4 SQL Injection
Posted Jun 26, 2010
Authored by L0rd CrusAd3r

The Joomla JE Story component version 1.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a3df57386c4ff50f45af5f0cb1239e65
Simple Fuzzer 0.6.2
Posted Jun 26, 2010
Authored by aaron conole | Site aconole.brad-x.com

Simple Fuzzer is a simple fuzzer. It has two network modes of operation, an output mode for developing command line fuzzing scripts, as well as taking fuzzing strings from literals and building strings from sequences. It is built to fill a need - the need for a quickly configurable black box testing utility that does not require intimate knowledge of the inner workings of C or require specialized software rigs. The aim is to just provide a simple interface, clear inputs/outputs, and reusability.

Changes: The latest release adds a number of bug fixes and stability enhancements and also updates the feature-set of the included sniffer.
tags | fuzzer
MD5 | 961cbf43f77f9fab65d81ef56d5d01e4
Web Wiz Guide Remote File Inclusion
Posted Jun 26, 2010
Authored by kannibal615

Web Wiz Guide suffers from a remote file inclusion vulnerability.

tags | exploit, remote, web, code execution, file inclusion
MD5 | 66775d47e57e84052d97205406f591b9
Allwin WinExec cmd.exe ExitProcess Shellcode
Posted Jun 26, 2010
Authored by RubberDuck

195 bytes small Allwin WinExec cmd.exe and ExitProcess shellcode.

tags | shellcode
MD5 | e4eda76bc533bead190a1ab4f9a64de5
Zero Day Initiative Advisory 10-115
Posted Jun 26, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-115 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the AVM bytecode verifier. Specifically, the newFrameState method performs arithmetic when calculating the size of a stack frame. It implicitly trusts the max_scope and max_stack variables as obtained from the bytecode. By crafting specific values, the integer indicating the size of the frame can be made to overflow. This value is later used during memory copy operations which an attacker can influence to gain arbitrary code execution under the context of the user running the browser.

tags | advisory, remote, overflow, arbitrary, code execution
advisories | CVE-2010-2160
MD5 | 077caa5deb66c45c23a0ee2d720c9f7a
Zero Day Initiative Advisory 10-114
Posted Jun 26, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-114 - This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required in that a target must visit a malicious web page. The specific vulnerability exists within the parsing of an undocumented opcode within Adobe's ActionScript Virtual Machine 2 bytecode. The operand to this opcode is used as an offset to a structure and if set to a malicious value can be pointed to attacker controlled data. The structure contains a function pointer that is later called. If an attacker modifies the controlled data pointed to by the invalid offset, this function pointer can be set to point to malicious code thus gaining execution under the context of the user running the browser.

tags | advisory, web, arbitrary
advisories | CVE-2010-2160
MD5 | c43d5e14d79ee92338d2fcaed5456d6e
ASRC Really Simple Chat 3.3 Cross Site Scripting / Remote File Inclusion
Posted Jun 26, 2010
Authored by Zer0 Thunder

ASRC Really Chat version 3.3 suffers from cross site scripting and remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, file inclusion
MD5 | 8a2e52c23040a2b682df45388a848604
2daybiz B2B Portal Script SQL Injection
Posted Jun 26, 2010
Authored by r45c4l

2daybiz B2B Portal Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c1ca7e90cebdfa270c5ee06e230488f0
Simple Machines Forum 1.1.11 Change Administrator Password
Posted Jun 26, 2010
Authored by ShaDow-D3v1L

Simple Machines Forum version 1.1.11 suffers from a remote administrative password changing vulnerability.

tags | exploit, remote
MD5 | 6f01a3d4a645c5d22b598d3f40154d60
Allomani And Clips 2.7.0 Cross Site Request Forgery
Posted Jun 26, 2010
Authored by G0D-F4Th3r

Allomani and Clips version 2.7.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 73c14dd569efe5eb46f0170e6ff670e6
FieldNotes 32 5.0 SEH Overwrite
Posted Jun 26, 2010
Authored by TecR0c | Site corelan.be

FieldNotes 32 version 5.0 SEH overwrite local exploit that produces a malicious .dxf file.

tags | exploit, overflow, local
MD5 | 9eece798aba4c3be37cfe04b4c306b8d
VMware Security Advisory 2010-0010
Posted Jun 26, 2010
Authored by VMware | Site vmware.com

VMware Security Advisory - Multiple security vulnerabilities have been addressed in the ESX 3.5 third party update for Service Console kernel.

tags | advisory, kernel, vulnerability
advisories | CVE-2008-5029, CVE-2008-5300, CVE-2009-1337, CVE-2009-1385, CVE-2009-1895, CVE-2009-2848, CVE-2009-3002, CVE-2009-3547, CVE-2009-2698, CVE-2009-2692
MD5 | e4196a7c8913b5f43c7453aff28107c4
HP Security Bulletin HPSBUX02544 SSRT100107
Posted Jun 26, 2010
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - Potential security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service (DoS) or to execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | hpux
advisories | CVE-2007-2442, CVE-2007-2443, CVE-2007-2798, CVE-2010-1321
MD5 | d7ec6c273171108b603677cb0855feb9
Cisco ASA HTTP Response Splitting
Posted Jun 26, 2010
Authored by Daniel King

Cisco Adaptive Security Appliance (ASA) is vulnerable to HTTP response splitting caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim?s web browser within the security context of the Adaptive Security Appliance site. Versions 8.1(1) and earlier are affected.

tags | exploit, remote, web
systems | cisco
advisories | CVE-2008-7257
MD5 | d7649eea42958b18c1c26401d2e2662b
Geomau 7 Local Buffer Overflow
Posted Jun 26, 2010
Authored by MadjiX

Geomau 7 .wg2 local buffer overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept
MD5 | adba54b05163cadb6fc6cdbfa2815fdb
THC-IPV6 Attack Tool 1.2
Posted Jun 26, 2010
Authored by van Hauser, thc | Site thc.org

THC-IPV6 is a toolkit that attacks the inherent protocol weaknesses of IPv6 and ICMP6 and it includes an easy to use packet factory library.

Changes: Test case added to implementation6.
tags | protocol
MD5 | 4943516d89b81a2c16c6c50f8d93ab1e
Wincalc 2 Local Buffer Overflow
Posted Jun 26, 2010
Authored by MadjiX

Wincalc 2 .num local buffer overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept
MD5 | a9701589689efd6506833022c30c2237
Big Forum 5.2 Shell Upload / Local File Inclusion
Posted Jun 26, 2010
Authored by Zer0 Thunder

Big Forum version 5.2 suffers from local file inclusion and shell upload vulnerabilities.

tags | exploit, shell, local, vulnerability, file inclusion
MD5 | 156754079266b3a1de6b17a6bb61e249
Delete All Data Polymorphic Shellcode
Posted Jun 26, 2010
Authored by gunslinger | Site gunslingerc0de.wordpress.com

40 bytes small sys_rmdir("/") Linux / x86 polymorphic shellcode.

tags | x86, shellcode
systems | linux
MD5 | 14235648e8804dd1fd867bcd31647f05
Delete All Data Shellcode
Posted Jun 26, 2010
Authored by gunslinger | Site gunslingerc0de.wordpress.com

16 bytes small delete all data on filesystem Linux / x86 shellcode.

tags | x86, shellcode
systems | linux
MD5 | e8c27f934f49e1de3e700932c043b1a0
2daybiz B2B Portal Script SQL Injection
Posted Jun 26, 2010
Authored by JaMbA

2daybiz B2B Portal Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c89c95c1207494daaeaa842d3eba9c44
BPTraveling Site SQL Injection
Posted Jun 26, 2010
Authored by JaMbA

BPTraveling Site suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 62e4e75935845f8de0b8be84d0093eab
XT-Commerce 3.0.4 SQL Injection
Posted Jun 26, 2010
Authored by 5ev3n

XT-Commerce version 3.0.4 remote SQL injection exploit.

tags | exploit, remote, sql injection
MD5 | 1611681a44c7054269756d8f2c67e915
Page 1 of 1
Back1Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    1 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    12 Files
  • 13
    Feb 13th
    18 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    19 Files
  • 20
    Feb 20th
    20 Files
  • 21
    Feb 21st
    15 Files
  • 22
    Feb 22nd
    2 Files
  • 23
    Feb 23rd
    2 Files
  • 24
    Feb 24th
    16 Files
  • 25
    Feb 25th
    37 Files
  • 26
    Feb 26th
    15 Files
  • 27
    Feb 27th
    15 Files
  • 28
    Feb 28th
    4 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close