Section:  .. / 0708-exploits  /

Page 2 of 7
<< 1 2 3 4 5 6 7 >> Files 25 - 50 of 174
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: counterpath-dos.txt
Description:
CounterPath X-Lite SIP Phone version 3.x suffers from a remote denial of service vulnerability.
Author:Zwell
Homepage:http://www.nosec.org/
File Size:5395
Last Modified:Aug 14 04:40:07 2007
MD5 Checksum:35b2319663f18b866d440babebd80e1a

 ///  File Name: SURGEMAIL.py.txt
Description:
Surgemail 38k 0-day exploit that binds a shell to TCP/9999.
Author:Joey Mengele
File Size:5359
Last Modified:Aug 14 19:42:08 2007
MD5 Checksum:329b80d7aef354d323a4f91268f566ff

 ///  File Name: cisco-sql.txt
Description:
A SQL injection vulnerability exists in the Log On page of the web interface for Cisco CallManager AKA Unified Communications Manager. An unauthenticated attacker who is able to access the Log On page could exploit this vulnerability to run arbitrary SQL commands as the logged in database user, usually cm_publisher. By running SQL commands, the attacker could gain information about the CallManager configuration, including call records. Exploitation details provided.
Author:Elliot Kendall
File Size:5355
Last Modified:Aug 31 19:00:05 2007
MD5 Checksum:3f7b845f8abbf592305551e6224d261d

 ///  File Name: wengophone-dos.txt
Description:
WengoPhone SIP Phone version 2.x suffers from a remote denial of service vulnerability.
Author:Zwell
Homepage:http://www.nosec.org/
File Size:5047
Last Modified:Aug 14 04:41:30 2007
MD5 Checksum:3c7e4535413d5462d0d7d69a6c2b83f1

 ///  File Name: zyxel_070810.txt
Description:
Zyxel Zywall 2 suffers from persistent cross site scripting, cross site request forgery, and persistent denial of service vulnerabilities.
Author:Henri Lindberg
Homepage:http://www.louhi.fi/
File Size:4749
Last Modified:Aug 12 00:08:28 2007
MD5 Checksum:741aa9359ec5d00c3f3c3c9131ebfd6f

 ///  File Name: asa-2007-015.rb.txt
Description:
Proof of concept exploit that tests for the chan_iax vulnerability in Asterisk versions below 1.2.2 and 1.4.8.
Author:tenkei_ev
Related File:ASA-2007-015.txt
File Size:4572
Related CVE(s):CVE-2007-3763
Last Modified:Aug 1 02:57:38 2007
MD5 Checksum:7f965e932ba1804302cb8d60372ffeff

 ///  File Name: pbd-sql.txt
Description:
PHP Blue Dragon CMS version 3.0.0 remote SQL injection exploit.
Author:Kacper
Homepage:http://devilteam.eu/
File Size:4524
Last Modified:Aug 11 23:38:04 2007
MD5 Checksum:0e5d9888b98d2f6466f21335f94dadf9

 ///  File Name: pakupaku-rfulfi.txt
Description:
Pakupaku CMS versions 0.4 and below remote file upload exploit.
Author:GolD_M
Homepage:http://www.tryag.cc/
File Size:4403
Last Modified:Aug 30 09:10:12 2007
MD5 Checksum:eb28e47bc15b4183419bd79aff5b9e8d

 ///  File Name: phpnews093-rfi.txt
Description:
PHPNews version 0.93 suffers from a remote file inclusion vulnerability.
Author:kezzap66345
File Size:4263
Last Modified:Aug 8 07:16:17 2007
MD5 Checksum:2a8679d8cc431e3636d49b6f7f6f9bfa

 ///  File Name: bitchx-heap.txt
Description:
BitchX version 1.1 Final remote heap overflow exploit that binds a TCP shell to port 4444.
Author:bannedit
Homepage:http://www.blacksecurity.org/
File Size:4010
Last Modified:Aug 28 04:59:39 2007
MD5 Checksum:050200b6730c3625547c6df0bcc8ca77

 ///  File Name: grandstream-sip.txt
Description:
The Grandstream SIP phone version GXV-3000 is susceptible to a denial of service vulnerability. Exploit included.
Author:Humberto J. Abdelnur, Olivier Festor, Radu State
File Size:3831
Last Modified:Aug 23 23:08:42 2007
MD5 Checksum:54dd946c914f59e40ad779a521d3ccb3

 ///  File Name: cisco-dos.txt
Description:
The Cisco 7940 is susceptible to a denial of service vulnerability when sent three specially crafted SIP messages. Demonstration exploit included.
Author:Radu State
File Size:3697
Last Modified:Aug 21 22:04:55 2007
MD5 Checksum:949108fa7f623a7e290a90f7c64fdb55

 ///  File Name: nvr-settext-dos.txt
Description:
NVR SP2 version 2.0 SetText() remote buffer overflow denial of service exploit that makes use of nvUnifiedControl.dll version 1.1.45.0.
Author:shinnai
Homepage:http://shinnai.altervista.org/
File Size:3431
Last Modified:Aug 28 04:46:31 2007
MD5 Checksum:19c05d297af649c915988b015cd6cce0

 ///  File Name: OS2A_1009.txt
Description:
The Ripe Website Manager versions 0.8.9 and below suffer from cross site scripting and SQL injection vulnerabilities.
Author:Nagendra Kumar G, Arun Kethipelly
File Size:3261
Last Modified:Aug 23 23:12:25 2007
MD5 Checksum:c3b9f09d4d2441c0dba8901503776577

 ///  File Name: postcast-overflow.txt
Description:
Postcast Server Pro version 3.0.61 and Quiksoft EasyMail emsmtp.dll version 6.0.1 buffer overflow exploit.
Author:rgod
Homepage:http://retrogod.altervista.org/
File Size:3238
Last Modified:Aug 28 17:48:51 2007
MD5 Checksum:d219f1ac5c8237428552cf151ffe1811

 ///  File Name: vbul368-xss.txt
Description:
vBulletin version 3.6.8 suffers from multiple cross site scripting vulnerabilities.
Author:Hasadya Raed
File Size:3229
Last Modified:Aug 20 02:47:39 2007
MD5 Checksum:e17cdad7756a64bbd3c02450599e3873

 ///  File Name: Ferite_Language_DoS.zip
Description:
The interpreter for the Ferite programming language is susceptible to a denial of service flaw. Exploit code included.
Author:WarGame
Homepage:http://vx.netlux.org/wargamevx
File Size:3217
Last Modified:Aug 8 09:46:56 2007
MD5 Checksum:7b31864ef778e1a6d5d03398d59009b9

 ///  File Name: ecentrex-overflow.txt
Description:
eCentrex VoIP client module remote buffer overflow exploit that makes use of uacomx.ocx version 2.0.1.
Author:rgod
Homepage:http://retrogod.altervista.org/
File Size:3212
Last Modified:Aug 21 22:51:27 2007
MD5 Checksum:3fade46c37f0b850b1d915308991d4d9

 ///  File Name: TS-2007-002-0.txt
Description:
Template Security has discovered a serious user input validation vulnerability in the BlueCat Networks Proteus IPAM appliance. Proteus can be used to upload files to managed Adonis appliances to be downloadable by TFTP from the appliance. A Proteus administrator with privilege to add TFTP files and perform TFTP deployments can overwrite existing files and create new files as root on the Adonis DNS/DHCP appliance. This can be used for example to overwrite the system password database and change the root account password. Exploitation details provided. E
Author:Template Security
File Size:3135
Last Modified:Aug 8 09:26:55 2007
MD5 Checksum:8a4de76d6997f2dba9b93bea297d4831

 ///  File Name: wireshark-dos.txt
Description:
WireShark versions below 0.99.6 suffer from a denial of service vulnerability when parsing MMS messages. Denial of service exploit included.
Author:Zwell
Homepage:http://www.nosec.org/
File Size:3041
Last Modified:Aug 15 05:38:58 2007
MD5 Checksum:30d54c76454c1e4355441db12e9ebed9

 ///  File Name: blizzard-dos.txt
Description:
Blizzard StarCraft Brood War version 1.15.1 suffers from a remote denial of service vulnerability.
Author:Gynvael Coldwind
File Size:2827
Last Modified:Aug 30 09:47:49 2007
MD5 Checksum:a5789f2382d3d95d12aeb03dc5277771

 ///  File Name: savant-overflow.txt
Description:
Savant version 3.1 GET request remote universal overflow exploit that binds a shell to TCP/4444.
Author:acaro
File Size:2763
Last Modified:Aug 14 04:47:05 2007
MD5 Checksum:1718712f23470679dc1710d03b317ec7

 ///  File Name: joomlabibtext-sql.txt
Description:
BibTeX Joomla component versions 1.3 and below remote blind SQL injection exploit.
Author:ajann
File Size:2760
Last Modified:Aug 24 02:56:55 2007
MD5 Checksum:1e30340aa855cf2fd2411e4846de57df

 ///  File Name: ppstream-overflow.txt
Description:
PPStream ActiveX remote overflow exploit that makes use of PowerPlayer.dll version 2.0.1.3829.
Author:dummy
File Size:2748
Last Modified:Aug 31 18:48:45 2007
MD5 Checksum:132a38ce0cc72b3c49ae42b164ffefa1

 ///  File Name: msvisual-overflow.txt
Description:
Microsoft Visual 6 stack overflow exploit that affects VDT70.DLL.
Homepage:http://www.deltahacking.ir
File Size:2718
Last Modified:Aug 8 07:23:25 2007
MD5 Checksum:61ce66fb5dc9c74537e0ba0e34a3f068