Section:  .. / 0406-exploits  /

Page 2 of 2
<< 1 2 >> Files 25 - 34 of 34
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: roundUP.txt
Description:
 Roundup is susceptible to a directory traversal attack that will permit an attacker to view files outside of the web root.
Author:Vickenty Fesunov
File Size:1796
Last Modified:Jun 10 10:09:25 2004
MD5 Checksum:751d0c8016c146f80cc191a6fe075334

 ///  File Name: sambar.txt
Description:
 Sambar Server version 6.x has been found susceptible to directory traversal, direct file access, and cross site scripting attacks
Author:Oliver Karow
Homepage:http://www.oliverkarow.de/research/sambar.txt
File Size:1381
Last Modified:Jun 3 23:28:18 2004
MD5 Checksum:6574f9f30fe358ae4cb1db893e3bb9f9

 ///  File Name: subexp.c
Description:
 Subversion 1.0.2 remote exploit that makes use of a stack overflow in the svn_time_from_cstring() function. Binds a shell to port 36864. Tested against RedHat 8.0 Psyche build.
Author:Gyan Chawdhary
File Size:3899
Last Modified:Jun 7 22:50:27 2004
MD5 Checksum:ba7bc719419799acd815ca5164cd3a69

 ///  File Name: tn-linksys.txt
Description:
 Linksys Web Camera versions 2.12 and below are vulnerable to a file inclusion vulnerability.
Author:Andrew
File Size:830
Last Modified:Jun 23 02:05:11 2004
MD5 Checksum:8644bec47b491078fb0b317d247134a8

 ///  File Name: unsecure.zip
Description:
 Remote proof of concept denial of service exploit that makes use of a flaw in the Unreal game engine where a simple UDP packet with a long value can overwrite important memory zones. Vulnerable games include: DeusEx versions below and equal to 1.112fm, Devastation versions below and equal to 390, Mobile Forces versions below and equal to 20000, Nerf Arena Blast versions below and equal to 1.2, Postal 2 versions below and equal to 1337, Rune versions below and equal to 107, Tactical Ops versions below and equal to 3.4.0, TNN Pro Hunter, Unreal 1 versions below and equal to 226f, Unreal II XMP versions below and equal to 7710, Unreal Tournament versions below and equal to 451b, Unreal Tournament 2003 versions below and equal to 2225, Unreal Tournament 2004 versions below 3236, Wheel of Time versions below and equal to 333b, X-com Enforcer.
Author:Luigi Auriemma
Homepage:http://aluigi.altervista.org
Related File:unrealCodeExec.txt
File Size:7765
Last Modified:Jun 23 01:35:04 2004
MD5 Checksum:361204957ff8fe968183581a523bd891

 ///  File Name: usr8003.txt
Description:
 USR Robotics Broadband Router 8003 has a flawed password checking functionality where the password is first verified by a javascript function that has the real administrator password embedded and easily viewable in the source code, allowing any malicious remote attacker to take full control of the device. Tested against firmware v1.04 08. USR Robotics has claimed the problem is not that serious and has not taken any steps to remedy the situation.
Author:Fernando Sanchez
File Size:1464
Last Modified:Jun 9 08:04:44 2004
MD5 Checksum:c4938d18d1cff57950f3c87e7661cd54

 ///  File Name: vpasp5x.txt
Description:
 VP-ASP Shopping Cart version 5.x is remote susceptible to cross site scripting and SQL injection attacks.
Author:Thomas Ryan
Homepage:http://www.providesecurity.com/research/advisories/06142004-01.asp
File Size:4507
Last Modified:Jun 18 02:12:41 2004
MD5 Checksum:83b28a51651383ae29607899b22eac1c

 ///  File Name: waraxe-2004-SA032.txt
Description:
 PHP-Nuke versions 6.x - 7.3 suffer from multiple cross site scripting flaws and one SQL injection attack.
Author:Janek Vind aka waraxe
Homepage:http://www.waraxe.us/
File Size:8260
Last Modified:Jun 14 09:56:20 2004
MD5 Checksum:29a12d03061abc3f21207ac954c01902

 ///  File Name: WinAgentsTFTP.txt
Description:
 When an overly long filename is requested via the WinAgents TFTP server, a denial of service occurs due to an error in the handling of the request. Tested against version 3.0, other versions may be susceptible. Exploitation included.
Author:Ziv Kamir
File Size:1224
Last Modified:Jun 14 11:03:37 2004
MD5 Checksum:e9030ba21e5ba0c96dbfd3e2f3056239