exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 100 RSS Feed

Files

comodo-exec.txt
Posted Jan 24, 2008
Authored by Krystian Kloskowski

Comodo AntiVirus version 2.0 ExecuteStr() remote command execution exploit.

tags | exploit, remote
SHA-256 | 860eaa5b7ca93f42fedbecfe93bbdec266a10c29dab3d1d52b87859defc21004

Related Files

Having Fun With VirusScan Enterprise
Posted Jul 12, 2012
Authored by Mert SARICA | Site mertsarica.com

VirusScan Enterprise Antivirus product may have a bug (or a vulnerability) in its parser that can lead to wrong action status messages and reports, malicious file scan bypass, and name spoofing by adding the magic line to the beginning of the file header.

tags | paper, spoof, virus
SHA-256 | 2245ea07c6a13e3cfa317e75e1bd13e79210f3bafacb32336208b8c41a1e3a8f
Clam AntiVirus Toolkit 0.97.5
Posted Jun 16, 2012
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This release addresses possible evasion cases in some archive formats. It also addresses stability issues in portions of the bytecode engine. This release is recommended for all users.
tags | tool, virus
systems | unix
advisories | CVE-2012-1457, CVE-2012-1458, CVE-2012-1459
SHA-256 | db6c5e1a5ec8ca0b8006cf82661d3158d3365ba1b4bc14c03c5d0bca89a93c0d
Anti-Virus File Parsing Evasion
Posted Mar 19, 2012
Authored by Suman Jana, Vitaly Shmatikov

Many different AntiVirus products suffer from various file-parsing evasion vulnerabilities. Some of the affected pieces of software include AhnLab-V3 2011.01.18.00, BitDefender 7.2, CAT-QuickHeal 11.00, Command 5.2.11.5, Comodo 7424, eSafe 7.0.17.0, F-Prot 4.6.2.117, F-Secure 9.0.16160.0, Ikarus T3.1.1.97.0, Jiangmin 13.0.900, Kaspersky 7.0.0.125, Norman 6.06.12, Sophos 4.61.0, Symantec 20101.3.0.103, McAfee 5.400.0.1158, Norman 6.06.12, nProtect 2011-01-17.01, and Panda 10.0.

tags | advisory, vulnerability
advisories | CVE-2012-1419, CVE-2012-1420, CVE-2012-1421, CVE-2012-1422, CVE-2012-1423, CVE-2012-1424, CVE-2012-1425, CVE-2012-1426, CVE-2012-1427, CVE-2012-1428, CVE-2012-1429, CVE-2012-1430, CVE-2012-1431, CVE-2012-1432, CVE-2012-1433, CVE-2012-1434, CVE-2012-1435, CVE-2012-1436, CVE-2012-1437, CVE-2012-1438, CVE-2012-1439, CVE-2012-1440, CVE-2012-1441, CVE-2012-1442, CVE-2012-1443, CVE-2012-1444, CVE-2012-1445, CVE-2012-1446
SHA-256 | 193275575de0eac59e8a98740fa704a8e2265457fd5a44adfa2b9f9c7719d0d6
Clam Antivirus Toolkit 0.97.4
Posted Mar 16, 2012
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This release includes minor bugfixes, detection improvements, and initial support for on-access scanning under Mac OS X. This update is recommended for all users.
tags | tool, virus
systems | unix
SHA-256 | 958dd09c9da9ceb50c9e556b3ced9cbdf40e836d2bdc98286ce96e84fd4a5a53
Carbylamine PHP Encoder
Posted Mar 15, 2012
Authored by Prakhar Prasad | Site code.google.com

Carbylamine PHP Encoder is a PHP Encoder for obfuscating/encoding PHP files so that antivirus detection signatures can be bypassed.

tags | tool, php, rootkit
systems | unix
SHA-256 | 6f197acdeea20ab9bfd507bc9b7b41f814bbf276f8f26d7b7d2f1d89744c1b14
PrivaWall Antivirus Office XML Format Evasion/Bypass
Posted Mar 13, 2012
Authored by Moshe Zioni

PrivaWall Antivirus suffers from an Office XML format evasion / bypass vulnerability. Versions 5.6 and below are affected.

tags | advisory, bypass
SHA-256 | 57c9ab5ac6dd39653d293a5937b5378a8b03f2696525cb2d336fa349b059e84b
Secunia Security Advisory 48219
Posted Mar 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Kingsoft Antivirus 2011, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
SHA-256 | efdc7d8f122e4d4ced8aa4c0f3a93133f1d8920bee9c49a7df3f954fc2945d66
Antivirus Software Bypass
Posted Nov 7, 2011
Authored by reset557

Various antivirus software on Windows fails to detect, block and/or move malware if the executable file has only execution permission and no read, write, or other bits set.

tags | advisory, bypass
systems | windows
SHA-256 | 879cd8a29ab09f08b7c40d225925d5e8508b102a9ffe9d1dc4638c067da81f49
Gentoo Linux Security Advisory 201110-20
Posted Oct 24, 2011
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201110-20 - Multiple vulnerabilities were found in Clam AntiVirus, the most severe of which may allow the execution of arbitrary code. Versions less than 0.97.3 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2010-0405, CVE-2010-3434, CVE-2010-4260, CVE-2010-4261, CVE-2010-4479, CVE-2011-1003, CVE-2011-2721, CVE-2011-3627
SHA-256 | 8a4cb5b5ff29de3a4a524379def9f673e2628a57bd1fb5f9d7b6f15abab93201
Clam AntiVirus Toolkit 0.97.3
Posted Oct 17, 2011
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This is a minor bugfix release and is recommended for all users.
tags | tool, virus
systems | unix
SHA-256 | 3a8cece5b7e6b15410f6b8f96ff5591b2c5a72f290ee8a28fefda44cb5ae7aba
Social Engineering Toolkit
Posted Aug 19, 2011
Authored by Karthik R

Whitepaper called Social Engineering Toolkit. This article covers backdooring executables and evading antivirus using scripts included with BackTrack.

tags | paper
SHA-256 | fbcf75008182e4dbcd87643f245856c70110db2cf8ab3517e184bc997d649044
Sophail: A Critical Analysis Of Sophos Antivirus
Posted Aug 4, 2011
Authored by Tavis Ormandy

This paper describes the results of a thorough examination of Sophos Antivirus internals. The author presents a technical analysis of claims made by the vendor, and publishes the tools and reference material required to reproduce their results. Furthermore, they examine the product from the perspective of a vulnerability researcher, exploring the rich attack surface exposed, and demonstrating weaknesses and vulnerabilities.

tags | paper, vulnerability, virus
SHA-256 | 57ecb0848e5b99ef5678dc00d7aabb2718195a8bb23f387f2d5ff429df854455
Clam Antivirus Toolkit 0.97.2
Posted Jul 26, 2011
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This release fixes problems with the bytecode engine, Safebrowsing detection, hash matcher, and other minor issues.
tags | virus
systems | unix
SHA-256 | 91503f8cff482cac1f2c951c5d62a7da8a17ba3b32eb8fa2800e29c03c7cd58a
Kingsoft AntiVirus 2012 KisKrnl.sys Privilege Escalation
Posted Jul 22, 2011
Authored by MJ0011

Kingsoft AntiVirus 2012 KisKrnl.sys versions 2011.7.8.913 and below local kernel mode privilege escalation exploit.

tags | exploit, kernel, local
SHA-256 | 9d7b340d71c50c87f2f1c7b9ede1151660b6b9dbb1ac032dcdc173e51908c3b4
Clam AntiVirus Toolkit 0.97.1
Posted Jun 9, 2011
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This is a bugfix release recommended for all users.
tags | virus
systems | unix
SHA-256 | 69e9c102d56348266b6597d6d401b0a5a2190e158b78e75ee0591f90479ed2ca
Netcat Rewritten To Bypass AntiVirus
Posted May 18, 2011
Authored by knull | Site leethack.info

rcat is a rewritten netcat replacement for Windows that was created solely to bypass antivirus detection. Source and binary are included.

systems | windows, unix
SHA-256 | 47d99164764aee28c3624162f20e22d0ac53ad72dd130b374cc7444bfc82d0b9
Avira AntiVirus QUA File Crash
Posted Feb 19, 2011
Authored by KedAns-Dz

Avira AntiVirus local proof of concept exploit that creates a malicious QUA file.

tags | exploit, local, proof of concept
SHA-256 | e2ef3c0258d84a42617b7cddadf0129c7b654cd36d3ad3612bbf696e8749f11f
McAfee Virusscan Antivirus Quarantined File Restore Utility 1.0
Posted Feb 14, 2011
Authored by Mert SARICA | Site mertsarica.com

McAfee Virusscan Antivirus Quarantined File Restore Utility is a useful python script that extracts a file quarantined with the BUP extension by McAfee Virusscan.

tags | tool, python
systems | unix
SHA-256 | b8d0534550bfc32234180545ca6a832d08dbbaef57550859d2a80ae9c79315e3
Clam AntiVirus Toolkit 0.97
Posted Feb 8, 2011
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This release brings many improvements, including complete Windows support (all major components compile out-of-the-box under Visual Studio), support for signatures based on SHA1 and SHA256, better error detection, and speed and memory optimizations.
tags | virus
systems | unix
SHA-256 | ec5d88303c0a6e1d8e1354b68ae8c184faee7989aac11dfacff466d9e0471932
Clam AntiVirus Toolkit 0.97rc
Posted Feb 1, 2011
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: This release brings many improvements, including complete Windows support (all major components compile out-of-the-box under Visual Studio), support for signatures based on SHA1 and SHA256, better error detection, and speed and memory optimizations.
tags | virus
systems | unix
SHA-256 | 6c439b2282a805b2f1359b8dea65debf65568001904c2c2fdf05cec3cfde9cd2
Antivirus / Firewall Evasion Techniques: Evolution Of Download Deploy Shellcode
Posted Jan 31, 2011
Authored by FB1H2S

Whitepaper called Antivirus / Firewall Evasion Techniques : Evolution of Download Deploy Shellcode.

tags | paper, shellcode
SHA-256 | dbb6ec4dcc2c9fc40144c8ec59fdeb2ca61452a22cb209fdf2e7903079ab80b1
Effectiveness Of Antivirus In Detecting Web Application Backdoors
Posted Jan 31, 2011
Authored by FB1H2S

Whitepaper called Effectiveness of Antivirus in Detecting Web Application Backdoors.

tags | paper, web
SHA-256 | 56b496efac0e7ee46bf1f739d096e2a7faddcbb9a3266a3471e63693230b5988
Symantec Antivirus Intel Alert Handler Service Denial of Service
Posted Jan 28, 2011
Authored by TELUS Security Labs | Site telussecuritylabs.com

A denial of service vulnerability exists in Symantec Antivirus Intel Alert Handler service. Remote unauthenticated attackers can exploit this vulnerability by sending a malicious packet to the target service.

tags | advisory, remote, denial of service
advisories | CVE-2010-0111
SHA-256 | 9e9991cc21baae425527d30468a81b8551b7dcfe14ef58362a4b2b29ec346383
Secunia Security Advisory 42937
Posted Jan 18, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Kingsoft Antivirus 2011, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
SHA-256 | fea352b3ab3e46306e4ac1f1a7ce853e0ee5dc41b2d0e41f145c13aee91f6252
Kingsoft AntiVirus 2011 SP5.2 Denial Of Service
Posted Jan 16, 2011
Authored by MJ0011

Kingsoft AntiVirus 2011 SP5.2 KisKrnl.sys versions 2011.1.13.89 and below local kernel mode denial of service exploit.

tags | exploit, denial of service, kernel, local
SHA-256 | 1e25fc7a0416c984cca57aa50d30eec88a510d4ffb20b26d651889869528a98c
Page 1 of 4
Back1234Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close