exploit the possibilities
Showing 1 - 24 of 24 RSS Feed

Files Date: 2010-12-17

Radius Manager Cross Site Scripting
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

Radius Manager version 3.8.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-4275
MD5 | 6783d9e441a713674afbb1c7cbd2637b
Embedded Video WordPress Plugin Cross Site Scripting
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

Embedded Video WordPress Plugin suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-4277
MD5 | 8d334a9e0e49210b531f81abc1b6c6c9
Apple Quicktime Memory Corruption
Posted Dec 17, 2010
Authored by Rodrigo Rubira Branco

The Apple QuickTime player does not properly parse .fpx media files, which causes a memory corruption by opening a malformed file with an invalid value located in PoC repro.fpx at offset 0x49. Tested vulnerable are versions 7.6.8 (1675) and 7.6.6 (1671).

tags | advisory
systems | apple
advisories | CVE-2010-3801
MD5 | 07c9b19419ee844d05c4e27b7fd4518c
Heap Taichi: Exploiting Memory Allocation Granularity In Heap-Spraying Attacks
Posted Dec 17, 2010
Authored by Wei Zou, TieLei Wang, Tao Wei, Zhenkai Liang, Yu Ding

Whitepaper called Heap Taichi: Exploiting Memory Allocation Granularity in Heap-Spraying Attacks.

tags | paper
MD5 | 5207201b75dfd1cff38a556ed604f7f4
Gentoo Linux Security Advisory 201012-01
Posted Dec 17, 2010
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201012-1 - Multiple vulnerabilities have been reported in Chromium, some of which may allow user-assisted execution of arbitrary code. Versions less than 8.0.552.224 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
MD5 | cda50340585cc45ab6a6d19db83b4582
Windows Win32k Pointer Dereference
Posted Dec 17, 2010
Authored by Stefan Le Berre, Ludo t0ka7a

Microsoft Windows Win32k pointer dereference proof of concept exploit that leverages the vulnerability noted in MS10-098.

tags | exploit, proof of concept
systems | windows
advisories | CVE-2010-3944
MD5 | e7879d1b680b3951a98fe4b903fb8d7d
Alt-N WebAdmin 3.3.3 Source Code Disclosure
Posted Dec 17, 2010
Authored by Shennan Wang

Alt-N WebAdmin version 3.3.3 suffers from a remote source code disclosure vulnerability. Also affected is U-Mail for Windows version 9.8 and U-Mail GateWay for Windows version 9.8.

tags | exploit, remote, info disclosure
systems | windows
MD5 | 040a4e901b7f26d34c96b7cbfa250d49
RTShop 2.0 SQL Injection
Posted Dec 17, 2010
Authored by KnocKout

RTShop version 2.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7b01b6f81a839f6d7f7e6fc2ce8ce87b
Easy Online Shop SQL Injection
Posted Dec 17, 2010
Authored by Easy Laster

Easy Online Shop suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 95134e840dc93e6be60dd81fd61c69ed
Immo Makler Script SQL Injection
Posted Dec 17, 2010
Authored by Easy Laster

Immo Makler Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 07b29a3022b26feda68186aae12e65bd
Social Share Cross Site Scripting
Posted Dec 17, 2010
Authored by Aliaksandr Hartsuyeu | Site evuln.com

Social Share suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | fc60bc04e317b76003d945d8d172d2cc
D-Link DIR-300 Cross Site Request Forgery
Posted Dec 17, 2010
Authored by outlaw.dll

D-Link DIR-300 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 083e234ec61b09e1889f1e42d3fc8d8c
Softbiz PHP Joke Site Software SQL Injection
Posted Dec 17, 2010
Authored by v3n0m

Softbiz PHP Joke Site suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, php, vulnerability, sql injection
MD5 | aba1ecc6ab486b88161162369f9266fe
CubeCart 3.x Shell Upload
Posted Dec 17, 2010
Authored by StunTMaN

CubeCart version 3.x suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | 99beb33623c8e82a56e8e4e8a140a095
MHP Downloadshop SQL Injection
Posted Dec 17, 2010
Authored by Easy Laster

MHP Downloadshop suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | adc10898527480397d56ba75912e98e3
PHP ID Page SQL Injection
Posted Dec 17, 2010
Authored by jos_ali_joe

PHP ID Page suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | e0038b3bf25d2abbcc133f51108fa4aa
PalizPortal Cross Site Scripting
Posted Dec 17, 2010
Authored by NetQurd

Paliz Portal suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4789d0c8491f19e409d7eacc20e415c4
ESTsoft ALYac Anti-Virus 1.5 Privilege Escalation
Posted Dec 17, 2010
Authored by MJ0011

ESTsoft ALYac Anti-Virus 1.5 versions 5.0.1.2 and below local kernel mode privilege escalation exploit.

tags | exploit, kernel, local, virus
MD5 | e2f03e634091665736206f6301344727
ViRobot Desktop 5.5 / Server 3.5 Privilege Escalation
Posted Dec 17, 2010
Authored by MJ0011

ViRobot Desktop version 5.5 and Server version 3.5 local kernel mode privilege escalation exploit.

tags | exploit, kernel, local
MD5 | ff7bc70a0ffc11642cd6fa2f743abbb4
NProtect Anti-Virus 2007 Privilege Escalation
Posted Dec 17, 2010
Authored by MJ0011

NProtect Anti-Virus 2007 versions 2010.5.11.1 and below local kernel mode privilege escalation exploit.

tags | exploit, kernel, local, virus
MD5 | 1423378e985e6f54705ce42b9f71958a
AhnLab V3 Internet Security 8.0 Privilege Escalation
Posted Dec 17, 2010
Authored by MJ0011

AhnLab V3 Internet Security versions 8.0.3.28 and below local kernel mode privilege escalation exploit.

tags | exploit, kernel, local
MD5 | d6e513e7c36754c29d17fb5dc46319f5
Rootkit Discovered On Debian Lenny Host Post Exim Compromise
Posted Dec 17, 2010
Site reddit.com

This tarball was discovered on a compromise Debian Lenny host after it was compromised via the recent remote root Exim vulnerability. It includes binaries such as the MIG logcleaner, backdoored versions of top, uptime, free, pgrep and more. Please note that a thorough analysis of these binaries has not been performed and they must be considered unsafe and untrustworthy. Only use the enclosed contents for research purposes. Further details regarding this rootkit can be obtained via the reddit site link.

tags | tool, remote, root, rootkit
systems | linux, unix, debian
MD5 | d0e098de3b0e436f934763810cd31189
Apple Security Advisory 2010-12-16
Posted Dec 17, 2010
Authored by Apple | Site apple.com

Apple Security Advisory 2010-12-16-1 - Multiple vulnerabilities have been addressed in Time Capsule and the Airport Base Station.

tags | advisory, vulnerability
systems | apple
advisories | CVE-2008-4309, CVE-2009-2189, CVE-2010-0039, CVE-2009-1574, CVE-2010-1804
MD5 | a14ed761c5bec8b98a0f67d14d9adfcb
Mandriva Linux Security Advisory 2010-257
Posted Dec 17, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-257 - The setup_arg_pages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIG_STACK_GROWSDOWN is used, does not properly restrict the stack memory consumption of the environment for a 32-bit application on a 64-bit platform, which allows local users to cause a denial of service via a crafted exec system call, a related issue to CVE-2010-2240. drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device. Various other issues have been addressed as well.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, mandriva
advisories | CVE-2010-3858, CVE-2010-2963, CVE-2010-3067, CVE-2010-3442, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850
MD5 | cbebccc9f3a37f2a2a6720c5b935c95d
Page 1 of 1
Back1Next

File Archive:

November 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    2 Files
  • 2
    Nov 2nd
    9 Files
  • 3
    Nov 3rd
    15 Files
  • 4
    Nov 4th
    90 Files
  • 5
    Nov 5th
    22 Files
  • 6
    Nov 6th
    16 Files
  • 7
    Nov 7th
    1 Files
  • 8
    Nov 8th
    1 Files
  • 9
    Nov 9th
    40 Files
  • 10
    Nov 10th
    27 Files
  • 11
    Nov 11th
    28 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    18 Files
  • 14
    Nov 14th
    2 Files
  • 15
    Nov 15th
    2 Files
  • 16
    Nov 16th
    29 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    15 Files
  • 19
    Nov 19th
    21 Files
  • 20
    Nov 20th
    16 Files
  • 21
    Nov 21st
    1 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    19 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close