Section: .. / 0710-exploits /

Page 2 of 8
<< 1 2 3 4 5 6 7 8 >> Files 25 - 50 of 185

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	mobilemail_libtiff.rb.txt
Description:	This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
Author:	H D Moore, KF
Homepage:	http://metasploit.com/
File Size:	5273
Last Modified:	Oct 22 23:43:19 2007
MD5 Checksum:	92e658f30a2a455067ca9db033446795

/// File Name:	NDSA20071016.txt
Description:	Nth Dimension Security Advisory (NDSA20071016) - The SiteBar application has single high risk issues with its translation module. It can can be made to retrieve any file to which the web server user has read access. The SiteBar application has multiple high risk issues with its translation module. It can be made to execute arbitrary code to gain remote access as the web server user typically nobody. The SiteBar application has multiple medium risk issues where it is vulnerable to Javascript injection within the requested URL. The SiteBar application has single medium risk issue where it is vulnerable to malicious redirects within the requested URL. Version 3.3.8 is affected.
Author:	Tim Brown
Homepage:	http://www.nth-dimension.org.uk/
File Size:	4740
Related CVE(s):	CVE-2006-3320, CVE-2007-5492, CVE-2007-5491
Last Modified:	Oct 22 18:00:34 2007
MD5 Checksum:	c400d008b511f86b29c1a277f583eb66

/// File Name:	safari_libtiff.rb.txt
Description:	This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
Author:	H D Moore, KF
Homepage:	http://metasploit.com/
File Size:	4714
Last Modified:	Oct 22 23:41:50 2007
MD5 Checksum:	a52fa90d5222ed2fd16f87b679276bad

/// File Name:	CVE-2007-3510.pl.txt
Description:	IBM Lotus Domino IMAP4 server LSUB command exploit. Binds a shell to tcp/4444.
Author:	Manuel Santamarina Suarez
Related File:	10.23.07-2.txt
File Size:	4541
Related CVE(s):	CVE-2007-3510
Last Modified:	Oct 29 11:29:41 2007
MD5 Checksum:	12b53ef68ec56d33b813e403f6e5a6c9

/// File Name:	phpwcms-rfi.txt
Description:	php wcms XT version 0.0.7 suffers from multiple remote file inclusion vulnerabilities.
Author:	kezzap66345
File Size:	4370
Last Modified:	Oct 2 00:25:21 2007
MD5 Checksum:	e706c0bff11a0fe5e89279531430e6db

/// File Name:	egg-serv.c
Description:	Eggdrop server module message handling remote buffer overflow exploit for Eggdrop version 1.6.18.
Author:	bangbus/magnum, Bow Sineath
File Size:	4332
Last Modified:	Oct 10 23:44:57 2007
MD5 Checksum:	c740b2a5596d457930802785ee85e1b2

/// File Name:	opg-exec.txt
Description:	Original Photo Gallery versions 0.11.2 and below suffer from a remote command execution vulnerability.
Author:	Francesco Ongaro, Antonio Parata
Homepage:	http://www.ush.it/
File Size:	4076
Last Modified:	Oct 2 20:51:26 2007
MD5 Checksum:	d8de2d84d9e87e2e7b7cad36e23374c2

/// File Name:	multicart-sql.txt
Description:	MultiCart version 1.0 remote blind SQL injection exploit.
Author:	k1tk4t
Homepage:	http://newhack.org/
File Size:	4059
Last Modified:	Oct 2 20:14:11 2007
MD5 Checksum:	c337eaf6e910efa17b13e40db1ce03d2

/// File Name:	phppm-rfilfi.txt
Description:	PHP Project Management versions 0.8.10 and below suffer from multiple remote and local file inclusion vulnerabilities.
Author:	GolD_M
Homepage:	http://www.tryag.cc/
File Size:	3952
Last Modified:	Oct 22 18:19:38 2007
MD5 Checksum:	a8f04800c0cf54df5011b488004ae287

/// File Name:	cart32-download.txt
Description:	Cart32 versions 6.3 and below suffer from an arbitrary file download vulnerability.
Author:	Paul Craig
Homepage:	http://www.security-assessment.com/
File Size:	3416
Last Modified:	Oct 5 01:40:02 2007
MD5 Checksum:	cce806581647e183818feed3cb1f26f2

/// File Name:	segue-rfi.txt
Description:	Segue CMS versions 1.8.4 and below suffer from a remote file inclusion vulnerability in index.php.
Author:	kezzap66345
File Size:	3366
Last Modified:	Oct 2 00:24:28 2007
MD5 Checksum:	57b7867616446c2734a247734ff058b1

/// File Name:	sip-pwn.txt
Description:	The Linksys SPA-941 version 5.1.8 is susceptible to a cross site scripting vulnerability using SIP as a vector of attack.
Author:	Radu State
File Size:	3185
Last Modified:	Oct 10 02:11:44 2007
MD5 Checksum:	2abafc8f32aea3759986777274e40e8f

/// File Name:	saxon-sql.txt
Description:	SAXON version 5.4 is susceptible to a SQL injection vulnerability.
Author:	Jesper Jurcenoks
Homepage:	http://www.netvigilance.com/
File Size:	3160
Related CVE(s):	CVE-2007-4863
Last Modified:	Oct 29 16:01:39 2007
MD5 Checksum:	dceaa951132307f07f9c85e02598c610

/// File Name:	vimpx-overflow.txt
Description:	VImpX ActiveX remote buffer overflow exploit that takes advantage of VImpX.ocx version 4.7.3.0.
Author:	Saw13
File Size:	3107
Last Modified:	Oct 15 18:35:00 2007
MD5 Checksum:	e2854441edcc2a266b2816cd9c0dca96

/// File Name:	php5x-bypass.txt
Description:	PHP 5.x COM functions safe_mode and disable_function bypass proof of concept exploit.
Author:	shinnai
Homepage:	http://shinnai.altervista.org/
File Size:	3036
Last Modified:	Oct 22 18:25:29 2007
MD5 Checksum:	ec750a9bd37f3a6cbba0eae63cf96594

/// File Name:	flatnuke3-fm.txt
Description:	Flatnuke 3 suffers from remote command execution and privilege escalation vulnerabilities.
Author:	KiNgOfThEwOrLd
Homepage:	http://www.inj3ct-it.org/
File Size:	3008
Last Modified:	Oct 23 17:56:18 2007
MD5 Checksum:	e6a70aa9348521c875f71a3918b54dab

/// File Name:	gomplayer-overflow.txt
Description:	GOM Player version 2.1.6.3499 remote overflow exploit that makes use of GomWeb3.dll version 1.0.0.12. Spawns calc.exe.
Author:	rgod
Homepage:	http://retrogod.altervista.org/
File Size:	3003
Last Modified:	Oct 29 16:28:17 2007
MD5 Checksum:	1a969f1e631cb5f7a248e6899e0ec867

/// File Name:	saxon-xss.txt
Description:	SAXON version 5.4 is susceptible to a cross site scripting vulnerability.
Author:	Jesper Jurcenoks
Homepage:	http://www.netvigilance.com/
File Size:	2981
Related CVE(s):	CVE-2007-4862
Last Modified:	Oct 29 16:01:00 2007
MD5 Checksum:	1e0202d3a8c8e4462972c4f33bb5ee32

/// File Name:	tomcatwebdav-disclose.txt
Description:	Apache Tomcat with WEBDAV remote file disclosure exploit that has SSL support.
Author:	h3rcul3s
File Size:	2921
Last Modified:	Oct 22 18:26:55 2007
MD5 Checksum:	d82a4ac6d64823fa0433274a0c5258cb

/// File Name:	joomlajcon-rfi.txt
Description:	The Joomla JContentSubscription component version 1.5.8 suffers from multiple remote file inclusion vulnerabilities.
Author:	NoGe
File Size:	2775
Last Modified:	Oct 10 23:35:49 2007
MD5 Checksum:	7b9d6d1ccda2d8ca86ba61afd368ea32

/// File Name:	fsfdt-overflow.txt
Description:	FSFDT version 3.000 d9 remote buffer overflow exploit that spawns a reverse shell to 10.0.0.100:4321.
Author:	weak
File Size:	2690
Last Modified:	Oct 5 01:32:29 2007
MD5 Checksum:	968b5f8d999e018b1a86b8c7e98e4002

/// File Name:	phpfaber-rfi.txt
Description:	phpFaber URLInn version 2.0.5 is susceptible to a remote file inclusion vulnerability.
Author:	BiNgZa
File Size:	2619
Last Modified:	Oct 30 20:09:12 2007
MD5 Checksum:	aa3ec3909a003ef50aefc9885845f05e

/// File Name:	phpfusionex-sql.txt
Description:	PHP-Fusion module Expanded Calendar 2.x remote SQL injection exploit.
Author:	Matrix86
Homepage:	http://www.rbt-4.net/
File Size:	2617
Last Modified:	Oct 2 00:23:29 2007
MD5 Checksum:	51242bf351a2a4ccb550c8ee0472abf0

/// File Name:	AST-2007-023-poc.txt
Description:	Proof of concept exploit for the SQL injection vulnerability in Asterisk.
Author:	Humberto J. Abdelnur, Olivier Festor, Radu State
Homepage:	http://www.asterisk.org/security
Related File:	AST-2007-023.txt
File Size:	2613
Related CVE(s):	CVE-2007-5488
Last Modified:	Oct 18 18:12:56 2007
MD5 Checksum:	8309e22cfd35e0434e57edf852121904

/// File Name:	oracle10g-sql.txt
Description:	Oracle 10g CTX_DOC.MARKUP SQL injection exploit that grants DBA to an unprivileged user.
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
Related File:	NISR17102007A.txt
File Size:	2603
Last Modified:	Oct 23 19:12:58 2007
MD5 Checksum:	6e7c39fec3a9942e7563964725d8bd49