what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 11 of 11 RSS Feed

Files Date: 2013-12-03

ISL Light Desktop 3.5.4 Information Disclosure
Posted Dec 3, 2013
Authored by Juan Francisco

ISL Light - Desktop version 3.5.4 suffers from an information disclosure vulnerability. In cases where a person is hosting a sharing session and allows a remote user to see what is happening on the local PC, it has been discovered that if you locally copy something like a hidden password to the local clipboard, then the remote user will be able to directly paste it in clear text into a notepad or other form of document, effectively gaining access to the password. It is not possible to lock this functionality.

tags | exploit, remote, local, info disclosure
advisories | CVE-2013-6237
SHA-256 | 9d0c82286b45ad8906e8301b87342b3bf556f6afcccf8574e717abd46e0af646
Tftpd32 Client Side Format String
Posted Dec 3, 2013
Authored by Fara Denise Rustein

There is a format string vulnerability in Tftpd32 software. When the Tftpd server returns a string containing a specific format, the Tftpd32 client processes this string and displays it in an error message, triggering the vulnerability. This may be leveraged to perform remote command execution and denial of service attacks.

tags | exploit, remote, denial of service
advisories | CVE-2013-6809
SHA-256 | 129ac1ce08dc48d6f6e5cda682240d0878e3ec98aa003011b5bd7848a62ed8a7
OpenSSL Denial Of Service
Posted Dec 3, 2013
Authored by AKAT-1, 22733db72ab3ed94b5f8a1ffcde850251fe6f466, c8e74ebd8392fda4788179f9a02bb49337638e7b

The bn (multiprecision integer arithmetics) part of the OpenSSL library is prone to null ptr deref, off-by-one and other issues resulting in denial of service / crashes.

tags | exploit, denial of service
SHA-256 | 447ace07773c4b0ba176b6f5aae7cebe6cf056be4a8d53a22e4ef63bfdb53ae1
D-Link DIR-XXX Remote Root Access
Posted Dec 3, 2013
Authored by AKAT-1, 22733db72ab3ed94b5f8a1ffcde850251fe6f466, c8e74ebd8392fda4788179f9a02bb49337638e7b

D-Link DIR-XXX remote root access exploit.

tags | exploit, remote, root
SHA-256 | 594de7b61d549b81665048d3e28a9b723dccdd70e2cc5dc2d814621bd21dbd47
TP-Link 150M Wireless Lite N Router Denial Of Service
Posted Dec 3, 2013
Authored by Dino Caus

TP-Link 150M Wireless Lite N router suffers from a denial of service vulnerability due to a handling issue with the Accept-Encoding header.

tags | exploit, denial of service
SHA-256 | 92fc8864aaf511c32ff5099d8b2774df485645e9b664edc9d43f5ac56007db65
Firefox FBTest 1.12b4 Command Execution
Posted Dec 3, 2013
Authored by AKAT-1, 22733db72ab3ed94b5f8a1ffcde850251fe6f466, c8e74ebd8392fda4788179f9a02bb49337638e7b

Firefox FBTest extension suffers from a remote command execution vulnerability.

tags | exploit, remote
SHA-256 | 1c3ce5379be7d4d5b47e624d71819b09a76e4463743b000eac286bbe3b6b8d30
DAVOSET 1.1.4
Posted Dec 3, 2013
Authored by MustLive

DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.

Changes: Various updates.
tags | denial of service
SHA-256 | 71bd44d23d0cdbf638e1e585b20e569127959c03801cb318d33ce0713c4bf9ad
Notepad++ Notepad# 1.5 Stack Buffer Overflow
Posted Dec 3, 2013
Authored by Sun Junwen

Notepad++ plugin Notepad# version 1.5 suffers from a stack buffer overflow vulnerability.

tags | exploit, overflow
SHA-256 | c19e052f9e15c33d328b5132adb0c3ab7f1df64331f43a92a16d5cedf1c14db6
WordPress OptimizePress Theme File Upload
Posted Dec 3, 2013
Authored by United of Muslim Cyber Army, Mekanismen | Site metasploit.com

This Metasploit module exploits a vulnerability found in the the Wordpress theme OptimizePress. The vulnerability is due to an insecure file upload on the media-upload.php component, allowing an attacker to upload arbitrary PHP code. This Metasploit module has been tested successfully on OptimizePress 1.45.

tags | exploit, arbitrary, php, file upload
SHA-256 | d4d53ddb27b4ac9c88bb0c384c50166d149035d70c7d9ddd2d46c5aea886c1cb
Cisco Prime Data Center Network Manager Arbitrary File Upload
Posted Dec 3, 2013
Authored by rgod, juan vazquez | Site metasploit.com

This Metasploit module exploits a code execution flaw in Cisco Data Center Network Manager. The vulnerability exists in processImageSave.jsp, which can be abused through a directory traversal and a null byte injection to upload arbitrary files. The autodeploy JBoss application server feature is used to achieve remote code execution. This Metasploit module has been tested successfully on Cisco Prime Data Center Network Manager 6.1(2) on Windows 2008 R2 (64 bits).

tags | exploit, remote, arbitrary, code execution
systems | cisco, windows
advisories | CVE-2013-5486, OSVDB-97426
SHA-256 | a8b1e9381f38a27ba3bb8e6624bca069e80ca49aa765a1ba3132167371bfd9bd
Packet Storm New Exploits For November, 2013
Posted Dec 3, 2013
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 129 exploits added to Packet Storm in November, 2013.

tags | exploit
systems | linux
SHA-256 | cec1606be4b9041989a72da2a2b153b6775eb0d0a409ef48da044631596568a6
Page 1 of 1
Back1Next

File Archive:

March 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    13 Files
  • 3
    Mar 3rd
    15 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    16 Files
  • 7
    Mar 7th
    31 Files
  • 8
    Mar 8th
    16 Files
  • 9
    Mar 9th
    13 Files
  • 10
    Mar 10th
    9 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    10 Files
  • 14
    Mar 14th
    6 Files
  • 15
    Mar 15th
    17 Files
  • 16
    Mar 16th
    22 Files
  • 17
    Mar 17th
    13 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    16 Files
  • 21
    Mar 21st
    13 Files
  • 22
    Mar 22nd
    5 Files
  • 23
    Mar 23rd
    6 Files
  • 24
    Mar 24th
    47 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close