Section: .. / 0701-exploits /

Page 4 of 8
<< 1 2 3 4 5 6 7 8 >> Files 75 - 100 of 195

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	gmx-xss.txt
Description:	The German free mail provider, GMX, suffers from a cross site scripting vulnerability.
Author:	commander keen
File Size:	2127
Last Modified:	Jan 5 07:57:04 2007
MD5 Checksum:	92169507c46934f5bd707ff904f8846e

/// File Name:	tftpdwin042.txt
Description:	TFTPDWIN version 0.4.2 remote buffer overflow exploit.
Author:	acaro
File Size:	2095
Last Modified:	Jan 16 04:29:45 2007
MD5 Checksum:	99964cb405827681deff02aa17331ce9

/// File Name:	devc4992.py.txt
Description:	Dev-C++ version 4.9.9.2 CPP file parsing local stack overflow proof of concept exploit.
Author:	shinnai
Homepage:	http://shinnai.altervista.org/
File Size:	1983
Last Modified:	Jan 31 05:09:05 2007
MD5 Checksum:	3b200e9a5cfbe00a7c1ee6305f3aab23

/// File Name:	MOAB-14-01-2007.c
Description:	Month of Apple Bugs - Proof of concept exploit for the _ATPsndrsp function. The _ATPsndrsp function is vulnerable to a heap-based buffer overflow condition, due to insufficient checking of user input. This leads to a denial of service condition and potential arbitrary code execution by unprivileged users.
Author:	LMH
Homepage:	http://projects.info-pull.com/moab/
File Size:	1894
Related CVE(s):	CVE-2007-0236
Last Modified:	Jan 20 04:09:05 2007
MD5 Checksum:	d8a22e613c075522ee7d1a0b3bdf1403

/// File Name:	MOAB-28-01-2007.rb.txt
Description:	Month of Apple Bugs - crashdump follows symlinks within the /Library/Logs/CrashReporter/ directory, allowing admin-group users to execute arbitrary code and overwrite files with elevated privileges. In couple with a specially crafted Mach-O binary, this can be used to write a malicious crontab entry, which will run with root privileges. This ruby code demonstrates this vulnerability.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	1848
Related CVE(s):	CVE-2007-0467
Last Modified:	Jan 29 17:59:01 2007
MD5 Checksum:	d2a1cdd08b0f39cc9d815a3572650b30

/// File Name:	rapidkill.txt
Description:	RapidKill remote command execution exploit.
Author:	Red_Dragon
Homepage:	http://www.onhackerline.ir/
File Size:	1837
Last Modified:	Jan 24 05:59:53 2007
MD5 Checksum:	f2d5f3eba36f433a29a46dc3e9eb29a9

/// File Name:	googlePwned.txt
Description:	It is possible to access Google's blacklisted URL database which contains some juicy real logins and passwords.
Author:	Rajesh Sethumadhavan
Homepage:	http://www.xdisclose.com/
File Size:	1820
Last Modified:	Jan 4 03:52:00 2007
MD5 Checksum:	a57451a6327efff092a654acb6b30374

/// File Name:	lcs11-rfi.txt
Description:	Local Calendar System version 1.1 suffers from a remote file inclusion flaw.
Author:	Tr_ZiNDaN
File Size:	1796
Last Modified:	Jan 29 17:29:32 2007
MD5 Checksum:	c1397db7851ddeaef4bb0baff9e654ad

/// File Name:	adv62-y3dips-2007.txt
Description:	Upload Service version 1.0 suffers from a remote file inclusion flaw.
Author:	y3dips
Homepage:	http://echo.or.id/
File Size:	1787
Last Modified:	Jan 24 07:42:09 2007
MD5 Checksum:	6d3348f6b4f7cb170691af62ef746048

/// File Name:	phpxd03-rfi.txt
Description:	phpXD versions 0.3 and below remote file inclusion exploit.
Author:	Dr Max Virus
File Size:	1714
Last Modified:	Jan 24 06:09:45 2007
MD5 Checksum:	72fb1eb373124bdab06b785a4cf82561

/// File Name:	rediffbol.txt
Description:	Rediff Bol's ActiveX control allows any webpage to download and spawn any file.
Author:	Gregory R. Panakkal
Homepage:	http://www.infogreg.com/
File Size:	1705
Last Modified:	Jan 2 04:01:10 2007
MD5 Checksum:	0c2edf49fb404cf977c80e16027985be

/// File Name:	MOAB-04-01-2007.rb.txt
Description:	Proof of concept exploit for a format string vulnerability in the handling of iPhoto XML feeds title field that allows for potential remote arbitrary code execution.
Author:	Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
Related File:	DMA-2007-0104a.txt
File Size:	1690
Last Modified:	Jan 5 08:32:27 2007
MD5 Checksum:	43c08a1cc97fc323401c9da3bb5e0083

/// File Name:	ebp2x-rfi.txt
Description:	Easy Banner Pro version 2.x suffers from a remote file inclusion vulnerability.
Author:	rUnViRuS
Homepage:	http://www.sec-area.com/
File Size:	1684
Last Modified:	Jan 13 23:51:32 2007
MD5 Checksum:	2ff922507439118ead78bc86c203e733

/// File Name:	tlm-rfi.txt
Description:	TLM CMS versions 1.1 and below suffer from a remote file inclusion vulnerability.
Author:	GolD_M
File Size:	1681
Last Modified:	Jan 14 01:01:05 2007
MD5 Checksum:	eda173b0a50608ae27ba01a380445f34

/// File Name:	cmsms102-xss.txt
Description:	CMS Made Simple version 1.0.2 suffers from multiple cross site scripting vulnerabilities.
Author:	nanoymaster
Homepage:	http://www.nanoy.org/
File Size:	1605
Last Modified:	Jan 5 09:00:15 2007
MD5 Checksum:	45b660cfd50cbfca60bd1965aa475e17

/// File Name:	lmmhi-xss.txt
Description:	Login Manager version 3.0 suffers from cross site scripting and SQL injection flaws.
Author:	Doz
Homepage:	http://www.hackerscenter.com/
File Size:	1536
Last Modified:	Jan 24 04:54:27 2007
MD5 Checksum:	1f64f390ba8100bc42f0664757c05707

/// File Name:	pdf-xss.txt
Description:	It appears that PDF has a flaw in it that allows arbitrary javascript to be executed.
Author:	petko d. petkov
Homepage:	http://www.gnucitizen.org/
File Size:	1527
Last Modified:	Jan 4 03:57:05 2007
MD5 Checksum:	c3a253982d48edc846cc9203972f3cb2

/// File Name:	MOAB-22-01-2007.rb.txt
Description:	Month of Apple Bugs - InputManager provided by the user. Code within the input manager will run under wheel privileges. In combination with diskutil and a wheel-writable setuid binary, this allows unprivileged users to gain root privileges. This is the proof of concept exploit that demonstrates this vulnerability.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	1510
Related CVE(s):	CVE-2007-0023
Last Modified:	Jan 24 06:24:54 2007
MD5 Checksum:	0822f8f385381a6dada4f24b194e032f

/// File Name:	MOAB-18-01-2007.rb.txt
Description:	Month of Apple Bugs - Proof of concept exploit rumpusd. rumpusd is vulnerable to different remotely exploitable heap-based buffer overflows, denial of service conditions and local privilege escalation issues.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	1448
Related CVE(s):	CVE-2007-0019
Last Modified:	Jan 20 04:17:46 2007
MD5 Checksum:	f346f828f0229f5d5c055f66c3cc0e16

/// File Name:	mybloggie215-xss.txt
Description:	myBloggie version 2.1.5 is susceptible to cross site scripting attacks.
Author:	CorryL
Homepage:	http://www.x0n3-h4ck.org
File Size:	1427
Last Modified:	Jan 20 02:40:26 2007
MD5 Checksum:	748ad0ef345953a0fe74ecf6b9ea2c1c

/// File Name:	VLCMediaSlayer-x86.pl.txt
Description:	Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	1422
Related CVE(s):	CVE-2007-0017
Last Modified:	Jan 4 09:15:18 2007
MD5 Checksum:	7be8a31aa5f26b9929610d23d102a6bc

/// File Name:	mpsw-rfi.txt
Description:	The Magic Photo Storage website suffers from a remote file inclusion vulnerability.
Author:	k1tk4t
File Size:	1406
Last Modified:	Jan 13 22:57:30 2007
MD5 Checksum:	c874f011c71475bc4ea69e02693e9658

/// File Name:	VLCMediaSlayer-ppc.pl.txt
Description:	Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This is just a vanilla format string exploit for OSX on ppc.
Author:	LMH, Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
File Size:	1403
Related CVE(s):	CVE-2007-0017
Last Modified:	Jan 4 09:15:37 2007
MD5 Checksum:	a2bdc5495f04b820780a295997ff9d4c

/// File Name:	ashopcom-xss.txt
Description:	Ashop Commerce suffers from multiple cross site scripting vulnerabilities.
Author:	DoZ
Homepage:	http://www.hackerscenter.com/
File Size:	1398
Last Modified:	Jan 2 04:10:24 2007
MD5 Checksum:	7b63705346ac3a4050db334c4c17e528

/// File Name:	openpinboard-rfi.txt
Description:	OpenPinboard version 2.0 suffers from a remote file inclusion vulnerability.
Author:	ZooZ
File Size:	1380
Last Modified:	Jan 4 03:55:26 2007
MD5 Checksum:	bda44ea4348866f6be4d39492cfb3b14