exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 53 RSS Feed

Files Date: 2011-01-24

Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injection
Posted Jan 24, 2011
Authored by Rodrigo Marcos, jduck | Site metasploit.com

This Metasploit module exploit smashes several pointers. A heap-based buffer overflow can occur when calling the undocumented "sp_replwritetovarbin" extended stored procedure. This vulnerability affects all versions of Microsoft SQL Server 2000 and 2005, Windows Internal Database, and Microsoft Desktop Engine (MSDE) without the updates supplied in MS09-004. Microsoft patched this vulnerability in SP3 for 2005 without any public mention.

tags | exploit, overflow
systems | windows
advisories | CVE-2008-5416, OSVDB-50589
SHA-256 | 22edb58a5f3eb94beb9d96ca4c1c67aaf6a45c0df8336fcfd1b91c3de3a418ba
Sun Microsystems SunScreen Firewall Root Exploit
Posted Jan 24, 2011
Authored by Kingcope

Sun Microsystems SunScreen Firewall local root exploit that spawns a shell on tcp port 1524.

tags | exploit, shell, local, root, tcp
SHA-256 | 48b25d9b1d67e00e988fa7f1f96311c9fd7c9980d28849043cb2bb94b55c28fd
CultBooking 2.0.4 Local File Inclusion
Posted Jan 24, 2011
Authored by LiquidWorm | Site zeroscience.mk

CultBooking version 2.0.4 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 24bcdd6125c7cc4b3d51be8dee944fb8ce491872476affee2bd28200a712e6f8
Netbios Share Scanner 0.2
Posted Jan 24, 2011
Authored by SecPoint | Site secpoint.com

This Python script is a tool that can be used to check windows workstations and servers if they have accessible shared resources.

tags | tool, scanner, python
systems | windows, unix
SHA-256 | d2a52d5c575a937dda9b0844fef2f9aa7f4f1849fbdf2777ecaf4c2e001dccd3
CultBooking 2.0.4 Cross Site Scripting
Posted Jan 24, 2011
Authored by LiquidWorm | Site zeroscience.mk

CultBooking version 2.0.4 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 24e1154c89c42c178796c636bb67c5e08c8ad7b7e1f4211c0ba0b0ae79186a25
Joomla B2 Portfolio 1.0.0 SQL Injection
Posted Jan 24, 2011
Authored by Salvatore Fresta | Site salvatorefresta.net

The Joomla B2 Portfolio component version 1.0.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 1fd97f133305e13c2f534bab23ec06fd46db7e19813511fa4f3416aa10195917
PHP Link Directory 4.1.0 Cross Site Request Forgery
Posted Jan 24, 2011
Authored by AtT4CKxT3rR0r1ST

PHP Link Directory version 4.1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf
SHA-256 | bb90ef1b8d278dfdc8084d3df057b4ca393711fdaa16a18bccbce423e9857b18
MC Content Manager Path Disclosure / SQL Injection
Posted Jan 24, 2011
Authored by MustLive

MC Content Manager suffers from path disclosure and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, info disclosure
SHA-256 | 79ff444202068751e97532edf45a7be59536d42ac9254e58655c806de059b940
RKM 1.5 C Client SQL Injection
Posted Jan 24, 2011
Site emc.com

The vulnerability that was identified in the RSA Key Manager (RKM) C client 1.5 which may expose the product to SQL Injection attack has been addressed. An attacker having access to encrypted data could have leveraged this vulnerability to alter the RKM C Client 1.5 cache.

tags | advisory, sql injection
advisories | CVE-2010-1904
SHA-256 | 5c1419da8eb09fefd4748549c1aa1ef71df8b044be88f8d59ee8e34d154d7cad
Golden FTP Server 4.70 Buffer Overflow
Posted Jan 24, 2011
Authored by Craig Freyman, Gerardo Iglesias Galvan

Golden FTP Server version 4.70 PASS command buffer overflow exploit.

tags | exploit, overflow
SHA-256 | 134b3fcfa0f6c3cf94cd9d5299233951932b930d567aa52433d947fe6e165596
Elite Gaming Ladder 3.6 Blind SQL Injection
Posted Jan 24, 2011
Authored by ro_0t

Elite Gaming Ladder version 3.6 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f0777cc8552a6036eb00e0b50ac6a3d73d27d321cb574b3cb1c46b4011f56ab9
Security Token Prediction In Google Scholar Alerts
Posted Jan 24, 2011
Authored by FB1H2S

Whitepaper that discusses a security token prediction vulnerability in Google Scholar alerts.

tags | exploit
SHA-256 | 3cf72288cc52a5fdca22cae1d62858b7565ad40233aa1294bce10a40253fff48
WordPress Uploader 1.0.0 Cross Site Scripting
Posted Jan 24, 2011
Authored by AutoSec Tools

WordPress Uploader version 1.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 16093e2f61e28329bae00265d529cc1f45f18312a5a43062653cdc942ded7a44
Inetserv 3.23 SMTP Denial Of Service
Posted Jan 24, 2011
Authored by G13

Inetserv version 3.23 suffers from a SMTP denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | 8fe11631d405e34be8c2f4953aa9ea412cb29ccb8bf1c5c023e9173ffeaad6dd
OpenSSH 5.7p1
Posted Jan 24, 2011
Authored by Damien Miller | Site openssh.com

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.

Changes: ECC support for kex exchange and public key authentication, SFTP hard link support, improved QoS/DSCP support, bandwidth limiting for SFTP, and more.
tags | encryption
systems | linux, unix, openbsd
SHA-256 | 59057d727d902d8b04b2ce0ba8f288c6e02cb65aca183cc8d559a4a66426581b
WordPress Media Manager Shell Upload
Posted Jan 24, 2011
Authored by PenetraDz

WordPress Media Manager plugin suffers from a shell upload vulnerability.

tags | exploit, shell
SHA-256 | 07c3c888e55d3f8222e719ffb692ea52cb6ff8ca2ff2c701e7912e5249e5525e
IGNOU Website SQL Injection
Posted Jan 24, 2011
Authored by Pradip Sharma

IGNOU Website suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 761e7993168e82e9a39ef347dce0a37aa37b8dc8d1693434a39a19d5eac7003e
PHP Coupon Script 6.0 Blind SQL Injection
Posted Jan 24, 2011
Authored by BorN To K!LL

PHP Coupon Script version 6.0 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, php, sql injection
SHA-256 | 524ca9958d76167131074bab2df98edc6652a756d4ac1934c9d4fa31e4be5676
Inetserv 3.23 POP3 Denial Of Service
Posted Jan 24, 2011
Authored by dmnt

Inetserv version 3.23 suffers from a POP3 denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | b01bc8ea3eb2994b20ee9bb0b56f3031be71188f22df1fdf28330c71a087439d
Secunia Security Advisory 43055
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for sssd. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | linux, fedora
SHA-256 | ac6f8e527046bbbdea3323add607555ac5c23f520f29bb9d5ccaa892568ce0e2
Secunia Security Advisory 43050
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for wordpress-mu. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.

tags | advisory, vulnerability, sql injection
systems | linux, fedora
SHA-256 | cf82215d8616724c89d2393a8871fed2050766525e15dfe4d77090bfe2d704cb
Secunia Security Advisory 43028
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Gallery, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
SHA-256 | 1f6ec15881bdf84935b9c429e7e62b7a992b7920210ecf1114f741967b1ac6b0
Secunia Security Advisory 43036
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been discovered in CultBooking, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.

tags | advisory, vulnerability, xss
SHA-256 | 8740b386c69a60db68521bb62359f55659d3353dfa57dbc369ec5730e7cc272e
Secunia Security Advisory 43035
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in InetServer, which can be exploited by malicious users and malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | fc7a3242006021379b914025b3ae8c2a06d77730274bcce015512a237d48bfba
Secunia Security Advisory 43026
Posted Jan 24, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for adobe-flash. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct click-jacking and cross-site scripting attacks, disclose sensitive information, bypass certain security restrictions, and compromise a user's system.

tags | advisory, vulnerability, xss
systems | linux, gentoo
SHA-256 | d58952d54cc04c76f8dcd58baa0f44bf6b515f3f12095b312616c69bea271a78
Page 1 of 3
Back123Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    13 Files
  • 9
    Aug 9th
    13 Files
  • 10
    Aug 10th
    34 Files
  • 11
    Aug 11th
    16 Files
  • 12
    Aug 12th
    5 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    25 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close