Section: .. / 0403-exploits /

Page 2 of 3
<< 1 2 3 >> Files 25 - 50 of 61

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	rfcbof.zip
Description:	Exploit for Red Faction versions 1.20 and below that have a client-side buffer overflow.
Author:	Luigi Auriemma
Homepage:	http://aluigi.altervista.org
Related File:	redfaction120.txt
File Size:	5410
Last Modified:	Mar 5 06:26:22 2004
MD5 Checksum:	98f4f1a862da41bdacac4a0f7d24c638

/// File Name:	hpjadmadv.txt
Description:	HP Web JetAdmin Version 7.5.2546 has multiple vulnerables. They include denial of service, the ability to upload any file to the server, the ability to write to any file on the filesystem, and the ability to read any file via a directory traversal attack.
Author:	wirepair
File Size:	5251
Last Modified:	Mar 24 20:38:00 2004
MD5 Checksum:	e6f0dc1235b0d0236d656ada61472d58

/// File Name:	ragefreeze.zip
Description:	Remote denial of service exploit for The Rage game versions 1.01 and below.
Author:	Luigi Auriemma
Homepage:	http://aluigi.altervista.org
Related File:	therage101.txt
File Size:	5196
Last Modified:	Mar 24 04:02:00 2004
MD5 Checksum:	4bf17b3df82c0f6ebc4c73592086592a

/// File Name:	motorolaT720.txt
Description:	Motorola T720 Cellular phones have a vulnerability that cause a denial of service when the phone receives an abnormal amount of IP traffic. Upon receiving the traffic, the phone powers-off when the user attempts to access the network.
Author:	Shaun Colley
Homepage:	http://www.nettwerked.co.uk
File Size:	5054
Last Modified:	Mar 2 03:47:00 2004
MD5 Checksum:	d3c62248544d92b2ef9ea4bdffd774cc

/// File Name:	phpBBXSS206d.txt
Description:	phpBB versions 2.0.6d and below suffer from cross site scripting vulnerabilities.
Author:	JeiAr
Homepage:	http://www.gulftech.org
File Size:	4776
Last Modified:	Mar 15 20:06:27 2004
MD5 Checksum:	8f141547555e3e8b5843c2166e6132ba

/// File Name:	waraxe-2004-SA010.txt
Description:	Multiple vulnerabilities exist in the Error Manager version 2.1 for PhpNuke 6.0. One of them allows for script injection in error logs, forcing an administrator to execute code when viewing the logs.
Author:	Janek Vind aka waraxe
File Size:	4704
Last Modified:	Mar 18 19:56:20 2004
MD5 Checksum:	c5211d7706772572c3d0aa67c167526f

/// File Name:	virtuanews103.txt
Description:	VirtuaNews Admin Panel version 1.0.3 Pro is vulnerable to a cross site scripting attack.
Author:	Rafel Ivgi aka The-Insider
Homepage:	http://theinsider.deep-ice.com
File Size:	4206
Last Modified:	Mar 5 22:35:46 2004
MD5 Checksum:	679b21b883c822881e664b5f21da6993

/// File Name:	waraxe-2004-SA006.txt
Description:	The 4nalbum module for PHP-Nuke versions 6.5 to 7.0 suffers from path disclosure, cross site scripting, remote file inclusion, and SQL injection vulnerabilities.
Author:	Janek Vind aka waraxe
File Size:	4031
Last Modified:	Mar 17 07:46:24 2004
MD5 Checksum:	369a410f953e7fff7195f32b0c5adfd7

/// File Name:	Adv-20040331.txt
Description:	S-Quadra Advisory #2004-03-31 - CactuShop shopping cart versions 5.x suffer from a SQL injection attack that allows for remote code execution via the MS SQL xp_cmdshell function. They also have a cross site scripting vulnerability.
Author:	Nick Gudov
Homepage:	http://www.s-quadra.com/advisories/Adv-20040331.txt
File Size:	3894
Last Modified:	Mar 31 16:13:00 2004
MD5 Checksum:	c25653ec903f60f19045dd7037a0d269

/// File Name:	invision13.txt
Description:	Invision Power Board versions 1.3 Final is susceptible to a cross site scripting attack.
Author:	Rafel Ivgi aka The-Insider
Homepage:	http://theinsider.deep-ice.com
File Size:	3582
Last Modified:	Mar 5 22:36:48 2004
MD5 Checksum:	e1d2c462314e0f2e7511cbf50dee4767

/// File Name:	wsftp402eval3.txt
Description:	Ipswitch WS_FTP server version 4.0.2.EVAL allows for a local attacker with program execution privileges to run anything with SYSTEM privileges. Full step-by-step exploitation given.
Author:	Hugh Mann
File Size:	3565
Last Modified:	Mar 23 16:55:00 2004
MD5 Checksum:	04e6d24da1e0cdf233c5fa31d7cbe6b8

/// File Name:	waraxe-2004-SA005.txt
Description:	PHP-Nuke 7.1.0 is susceptibel to multiple cross site scripting attacks.
Author:	Janek Vind aka waraxe
File Size:	3478
Last Modified:	Mar 17 07:43:35 2004
MD5 Checksum:	5b9ef9a1588d59a6e090331c3ad524ba

/// File Name:	mambo45.txt
Description:	The Mambo Open Source web content management system version 4.5 stable 1.0.3 and earlier suffers from multiple vulnerabilities including cross site scripting, SQL injection, and query tampering.
Author:	JeiAr
Homepage:	http://www.gulftech.org/
File Size:	3435
Last Modified:	Mar 17 08:08:55 2004
MD5 Checksum:	ec2f492becbcac7c65ef593029606aa8

/// File Name:	trendmicro.txt
Description:	TrendMicro Interscan Viruswall versions 3.5 and below suffer from a directory traversal vulnerability that allow a remote attacker to access any files outside of the web root.
Author:	Tri Huynh from SentryUnion
File Size:	3366
Last Modified:	Mar 24 16:11:00 2004
MD5 Checksum:	ec8b6587245cb7d6b0ea630d03b0e0cd

/// File Name:	vz-eSignal76.pl
Description:	Remote exploit for eSignal versions 7.6 and 7.5 that downloads and executes a file.
Author:	insect
Homepage:	http://viziblesoft.com/
Related File:	vz012004-esignal7.txt
File Size:	3321
Last Modified:	Mar 26 02:50:56 2004
MD5 Checksum:	6f90cae56696ff993c33b9899191a47e

/// File Name:	invision101PSsql.txt
Description:	Invision Gallery version 1.0.1 fails to properly validate user supplied input allowing for various SQL injection attacks.
Author:	JeiAr
Homepage:	http://www.gulftech.org
File Size:	3318
Last Modified:	Mar 22 18:21:00 2004
MD5 Checksum:	c0d1a2d6ef28b6bda7f843d1e973fada

/// File Name:	waraxe-2004-SA007.txt
Description:	Both cross site scripting and SQL injection vulnerabilities exist in the 4nGuestbook version 0.92 module for PHP-Nuke versions 6.5 through 6.9.
Author:	Janek Vind aka waraxe
File Size:	3201
Last Modified:	Mar 17 07:49:20 2004
MD5 Checksum:	becce8a2081f9a11e8233b6d1b356fc1

/// File Name:	ieBad.txt
Description:	Good write up discussing how Microsoft has yet again dropped the ball on patching another Internet Explorer vulnerability, where using forms can allow an attacker to spoof a fake destination to the user.
Homepage:	http://www.malware.com
File Size:	2884
Last Modified:	Mar 31 18:04:00 2004
MD5 Checksum:	680d3103b8fc6fe4567af0e44af3bcff

/// File Name:	vocaltec8.txt
Description:	VocalTec Gateway version 8 has multiple vulnerabilities. Using an information disclosure vulnerability existant in this server, an attacker can then traverse directories when treating the file as a directory, and gain access to any file normally protected.
Author:	Rafel Ivgi aka The-Insider
Homepage:	http://theinsider.deep-ice.com
File Size:	2633
Last Modified:	Mar 16 04:46:46 2004
MD5 Checksum:	f9be12534bb4e693002b5793cad94b9e

/// File Name:	Pegasi022.txt
Description:	Pegasi Web Server aka PWS version 0.2.2 is susceptible to cross site scripting and directory traversal attacks due to a lack of input validation.
Author:	Donato Ferrante
Homepage:	http://www.autistici.org/fdonato
File Size:	2629
Last Modified:	Mar 12 02:59:48 2004
MD5 Checksum:	e3efa0b9842af7a8049abc169304ca43

/// File Name:	gwebTraversal.txt
Description:	GWeb HTTP server version 0.6 is susceptible to a directory traversal bug that allows remote attackers to access files outside of the webroot.
Author:	Donato Ferrante
Homepage:	http://www.autistici.org/fdonato
File Size:	2585
Last Modified:	Mar 3 21:45:00 2004
MD5 Checksum:	bc5882614a2a4eb87319badebaab8f69

/// File Name:	newsmanlite25.txt
Description:	News Manager Lite 2.5 and News Manager Lite administration suffer from cross site scripting, SQL injection, and cookie hijacking vulnerabilities.
Author:	Manuel Lopez
File Size:	1968
Last Modified:	Mar 23 06:17:00 2004
MD5 Checksum:	8b8b4c8b0df0c8fea60819640c5c61a0

/// File Name:	PWebServer033.txt
Description:	PWebServer version 0.3.3 suffers from a directory traversal attack that allows a remote attacker to access any file outside of the webroot.
Author:	Donato Ferrante
Homepage:	http://www.autistici.org/fdonato
File Size:	1951
Last Modified:	Mar 9 06:21:00 2004
MD5 Checksum:	00405698c916876942c35258726a48b6

/// File Name:	invisionPTSL11.txt
Description:	Invision Power Top Site List versions 1.1 and below are susceptible to a SQL injection attack.
Author:	JeiAr
Homepage:	http://www.gulftech.org
File Size:	1941
Last Modified:	Mar 22 18:23:00 2004
MD5 Checksum:	89cc01772ab29a9573a722ab0fff2aa0

/// File Name:	phorum503.txt
Description:	Cross site scripting vulnerabilities exists in Phorum versions 5.0.3 Beta and below.
Author:	JeiAr
File Size:	1885
Last Modified:	Mar 17 07:57:35 2004
MD5 Checksum:	945b7d0d1cd0744b82f57e86647d09ac