exploit the possibilities
Showing 1 - 25 of 57 RSS Feed

Files Date: 2010-10-04

Introduction To Metasploit
Posted Oct 4, 2010
Authored by P0C T34M

Whitepaper called Introduction to Metasploit. Written in Arabic.

tags | paper
MD5 | cfaef6335fa76724b72ab43e7a6527a4
Mandriva Linux Security Advisory 2010-195
Posted Oct 4, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-195 - libESMTP, probably 1.0.4 and earlier, does not properly handle a backslashed 0 field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. The match_component function in smtp-tls.c in libESMTP 1.0.3.r1, and possibly other versions including 1.0.4, treats two strings as equal if one is a substring of the other, which allows remote attackers to spoof trusted certificates via a crafted subjectAltName.

tags | advisory, remote, arbitrary, spoof
systems | linux, mandriva
advisories | CVE-2010-1192, CVE-2010-1194
MD5 | 2e62897f12ac68c2eb13e73340279a62
Mandriva Linux Security Advisory 2010-196
Posted Oct 4, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-196 - Multiple stack-based buffer overflows in the Sieve plugin in Dovecot 1.0 before 1.0.4 and 1.1 before 1.1.7, as derived from Cyrus libsieve, allow context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a crafted SIEVE script, as demonstrated by forwarding an e-mail message to a large number of recipients, a different vulnerability than CVE-2009-2632.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2009-3235
MD5 | 0ea0fdb43e154eb9a9cccd4095000cc7
CuteNews Local File Inclusion
Posted Oct 4, 2010
Authored by eidelweiss

CuteNews suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | e8f6d7bb81bd999f2a5a9979cb3fdf0d
Facebook.com Cross Site Request Forgery / Cross Site Scripting
Posted Oct 4, 2010
Authored by John Jean | Site wargan.com

Facebook.com suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 6b43f99573634f84a8df88ce1f5bfeeb
SnackAmp 3.1.3B SMP Buffer Overflow
Posted Oct 4, 2010
Authored by Muhamad Fadzil Ramli

SnackAmp version 3.1.3B malicious SMP buffer overflow exploit with DEP bypass.

tags | exploit, overflow
MD5 | 6e264c512e514cfe071b629c254140b2
Web.config Download Proof Of Concept
Posted Oct 4, 2010
Authored by Giorgio Fedon | Site blog.mindedsecurity.com

Proof of concept exploit that demonstrates the downloading of Web.config. This affects unpatched versions of .NET framework 3.5 Sp1. Full details are available on the homepage.

tags | exploit, web, proof of concept
MD5 | bfb1ee177bc3b140953eda03a3fbc68e
NetWin Surgemail 4.3e Cross Site Scripting
Posted Oct 4, 2010
Authored by Kerem Kocaer

NetWin Surgemail version 4.3e suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e126786eed62b4ff1b8b6afa2b612566
ITS SCADA SQL Injection
Posted Oct 4, 2010
Authored by Andrej Komarov, Eugene Salov

ITS SCADA suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 247a028ac7512697ebaf78fe334a2b66
FreeBSD 7.0 - 7.2 pseudofs Null Pointer Dereference
Posted Oct 4, 2010
Authored by Przemyslaw Frasunek

FreeBSD versions 7.0 through 7.2 pseudofs null pointer dereference local exploit.

tags | exploit, local
systems | freebsd
MD5 | 568ab10a23b678224fdffce5d908fc32
Uebimiau Webmail 3.2.0-2.0 Local File Inclusion
Posted Oct 4, 2010
Authored by Blake

Uebimiau Webmail version 3.2.0-2.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | bdb72afa8d9d342f43c1396ec6e37c35
Aspect Ratio CMS Blind SQL Injection
Posted Oct 4, 2010
Authored by Stephan Sattler

Aspect Ratio CMS suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4a32ae8604621ce5a642e13c574d3352
DNET Live-Stats 0.8 Local File Inclusion
Posted Oct 4, 2010
Authored by Blake

DNET Live-Stats version 0.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 0126ea2171550fce61896624ca6ce248
Abhimanyu Infotech SQL Injection
Posted Oct 4, 2010
Authored by ZoRLu

Abhimanyu Infotech SQL injection exploit that leverages show_news.php.

tags | exploit, php, sql injection
MD5 | 7861d217b5b5e6db89a9c64cc5371f16
Mobius Forensic Toolkit 0.5.5
Posted Oct 4, 2010
Site savannah.nongnu.org

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Changes: The Hive extension assembles the registry\'s logical structure, akin to that viewed with regedit. The new extension Hive Report adds report capabilities to the Hive extension. Three registry reports were added: OS information, user accounts and user profiles. The Report Viewer extension shows generated reports.
tags | tool, python, forensics
MD5 | 2e5e8e15bafc57c8a9e2cf62a6b5768a
Win32/XP Pro SP3 Add New Local Administrator Shellcode
Posted Oct 4, 2010
Authored by Anastasios Monachos

113 bytes small generic Win32/XP Pro SP3 add new local administrator shellcode.

tags | local, shellcode
systems | windows
MD5 | d02849c9f6c5c7a0d645669e823a9163
Generic Win32 Add New Local Administrator Shellcode
Posted Oct 4, 2010
Authored by Anastasios Monachos

326 bytes small generic Win32 add new local administrator shellcode.

tags | local, shellcode
systems | windows
MD5 | 71f0923e1b28058c25140b215f3d239c
FAQMasterFlex 1.2 SQL Injection
Posted Oct 4, 2010
Authored by cyb3r.anbu

FAQMasterFlex version 1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 77913c03792d602ae92a84f545f6981d
Cilem Haber 1.4.4 Database Disclosure
Posted Oct 4, 2010
Authored by ZoRLu

Cilem Haber version 1.4.4 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | b68724dc59e7515329d8c2dadc8a5e4c
CA BrightStor ARCserve Message Engine 0x72 Buffer Overflow
Posted Oct 4, 2010
Authored by MC | Site metasploit.com

This Metasploit module exploits a buffer overflow in Computer Associates BrightStor ARCserve Backup 11.1 - 11.5 SP2. By sending a specially crafted RPC request, an attacker could overflow the buffer and execute arbitrary code.

tags | exploit, overflow, arbitrary
MD5 | 7377f23e956ba83120b66fc897b7cc32
CA BrightStor ARCserve Tape Engine 0x8A Buffer Overflow
Posted Oct 4, 2010
Authored by MC | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup r11.1 - r11.5. By sending a specially crafted DCERPC request, an attacker could overflow the buffer and execute arbitrary code.

tags | exploit, overflow, arbitrary
MD5 | d5fb5cb9adcd57a97372edf6aa3f33eb
Secunia Security Advisory 41695
Posted Oct 4, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in ProxySG, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 1fd95d3bfd300757e4ce6d5bdc682d65
Secunia Security Advisory 41685
Posted Oct 4, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Kerem Kocaer has discovered a vulnerability in SurgeMail, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 10e433277fb0a5420bf5642a1ff39187
Secunia Security Advisory 41701
Posted Oct 4, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in APR-util, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | 5066f3289ff06d1364fcea485c8cc63a
Secunia Security Advisory 41716
Posted Oct 4, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in MySQL, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | 68459612253922545e221305af810525
Page 1 of 3
Back123Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close