Section: .. / 0411-exploits /

Page 3 of 4
<< 1 2 3 4 >> Files 50 - 75 of 77

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	apache-squ1rt.c
Description:	Apache v2.0.52 remote denial of service exploit (version two) which sends a lot of spaces, consuming CPU and RAM. More information available here. Versions between 2.0.35 and 2.0.52 may be vulnerable, but only v2.0.50 through 2.0.52 was tested.
Author:	Daniel Guido
File Size:	2522
Related CVE(s):	CAN-2004-0942
Last Modified:	Nov 18 06:38:03 2004
MD5 Checksum:	a38bce43fe615d961245f570ff5817f4

/// File Name:	101_netn.cpp
Description:	NetNote Server version 2.2 build 230 crafted string vulnerability exploit that crashes the server.
Author:	class101
File Size:	4522
Last Modified:	Nov 13 20:03:40 2004
MD5 Checksum:	2471da94acdd22918c6bdbee201e68f4

/// File Name:	phpbugtraq.txt
Description:	PHP Bug Traq 0.9.1 is susceptible to SQL injection attacks.
Author:	How Dark
Homepage:	http://www.howdark.com/
File Size:	4542
Last Modified:	Nov 13 05:10:14 2004
MD5 Checksum:	ac683be3267fd8d8a84233ffd5009310

/// File Name:	hppsc2510.txt
Description:	The HP PSC 2510 runs an FTP daemon that is not configurable and allows anyone to upload a file to be printed without any authentication.
Author:	Justin Rush
File Size:	680
Last Modified:	Nov 13 01:00:44 2004
MD5 Checksum:	9b0747282dd6250fc93d6d79edfff70e

/// File Name:	zonelabsFilter.txt
Description:	By using hex encoded characters, it is possible to bypass the Zone Labs IMsecure and IMsecure Pro Active Link filters in versions prior to 1.5.
Author:	Paul Kurczaba
File Size:	992
Last Modified:	Nov 13 00:53:10 2004
MD5 Checksum:	b6d55cd6030469199d8a4f9c0562c539

/// File Name:	phpwebsite.txt
Description:	phpWebSite 0.9.3-4 is susceptible to an HTTP response splitting vulnerability.
Author:	Maestro
File Size:	2005
Last Modified:	Nov 13 00:47:34 2004
MD5 Checksum:	f84a1df64f88dc3f3e8f541a2fca2859

/// File Name:	technote.pl
Description:	Technote remote command execution that spawns bash style shell with the webserver uid.
Author:	SPABAM
File Size:	3877
Last Modified:	Nov 13 00:24:27 2004
MD5 Checksum:	48c69b4c9a92c741a4d33374e40e9da7

/// File Name:	waraxe-2004-SA037.txt
Description:	A SQL injection bug exists in Phorum versions 5.0.12 and below. Exploitation example given.
Author:	Janek Vind aka waraxe
Homepage:	http://www.waraxe.us/
File Size:	5257
Last Modified:	Nov 13 00:22:44 2004
MD5 Checksum:	126da5f1fe68ed3742dd59eb079def15

/// File Name:	HOD-kerio-firewall-DoS-expl.c
Description:	Denial of service exploit for Kerio Personal Firewall version 4.1.1 and below. The vulnerability allows a remote attacker to reliably render a system inoperative with one single packet.
Author:	houseofdabus
Related File:	eEye.kerio.txt
File Size:	11858
Last Modified:	Nov 12 21:39:21 2004
MD5 Checksum:	2155470b61ae00f217da31c8c79a9285

/// File Name:	vbul30x.txt
Description:	Another SQL injection has been discovered in VBulletin Forums 3.0.x.
Author:	Dr. Death
File Size:	398
Last Modified:	Nov 12 21:37:04 2004
MD5 Checksum:	0a368925cf1755b7c915b05b9e353208

/// File Name:	04WebServer.txt
Description:	Documentation on three vulnerabilities that were found in version 1.42 of 04WebServer. It includes a XSS vulnerability, lack of character filtering when writing to log file, and potential server restart problems after requesting a DOS device in the URL.
Author:	Tan Chew Keong
Homepage:	http://www.security.org.sg/
File Size:	3784
Last Modified:	Nov 12 05:17:17 2004
MD5 Checksum:	b8f33c4f3e82717870f0a4047e3f19dc

/// File Name:	101_slim.cpp
Description:	Remote buffer overflow exploit for SlimFTPd versions 3.15 and below. Binds a shell to port 101.
Author:	class101
File Size:	9879
Last Modified:	Nov 12 05:06:30 2004
MD5 Checksum:	3bd529c381a9d88fc5ed46d54c552c88

/// File Name:	binfmt_elf.txt
Description:	Five different flaws have been identified in the Linux ELF binary loader. Exploit included core dumps a non-readable but executable ELF file.
Author:	Paul Starzetz
File Size:	13503
Last Modified:	Nov 12 04:57:59 2004
MD5 Checksum:	89d38e2fe7148d28370803dcceda7a1d

/// File Name:	pop_exp2.py
Description:	YPOPS version 0.6 exploit that binds a shell to port 4444.
Author:	varun uppal
File Size:	3790
Last Modified:	Nov 12 04:52:28 2004
MD5 Checksum:	2a84533c53d3d8b230e5c6e7730d7610

/// File Name:	webcalendar.txt
Description:	The PHP application WebCalendar is susceptible to cross site scripting, http response splitting, code execution, path disclosure, and privilege escalation vulnerabilities.
Author:	Joxean Koret
File Size:	6010
Last Modified:	Nov 12 04:39:06 2004
MD5 Checksum:	f852aff719048217be25181fe7b04d22

/// File Name:	adv08-y3dips-2004.txt
Description:	JAF CMS is susceptible to path disclosure and directory traversal attacks.
Author:	y3dips
Homepage:	http://y3dips.echo.or.id/
File Size:	4582
Last Modified:	Nov 10 08:25:19 2004
MD5 Checksum:	3333ed76a744b568ac89516141226f1c

/// File Name:	qwik_fmtstr_xpl.c
Description:	qwik_smtpd remote root format string exploit.
Author:	Carlos Barros
Homepage:	http://www.barrossecurity.com
File Size:	10227
Last Modified:	Nov 10 07:47:34 2004
MD5 Checksum:	7f49b64e48f0b748c872b5bfcf26825d

/// File Name:	101_mini.cpp
Description:	Minishare versions 1.4.1 and below remote buffer overflow exploit that binds a shell to port 101.
Author:	class101
File Size:	8268
Last Modified:	Nov 10 07:31:50 2004
MD5 Checksum:	470aaf255d5cecbac310c94088f9fe4f

/// File Name:	msieLocalFile.txt
Description:	Microsoft Internet Explorer permits an attacker the ability to verify the existence of local files via Active Scripting.
Author:	Benjamin Tobias Franz
File Size:	3117
Last Modified:	Nov 10 07:29:32 2004
MD5 Checksum:	57f08cd8371ea7a5d9868b89d23e26df

/// File Name:	602res.zip
Description:	Test exploit for 602 Lan Suite versions 2004.0.04.0909 and below which are susceptible to resource consumption and socket consumption attacks.
Author:	Luigi Auriemma
Homepage:	http://aluigi.altervista.org
Related File:	602Lansuite.txt
File Size:	8248
Last Modified:	Nov 10 07:27:29 2004
MD5 Checksum:	083477b9aed0b9ad0220f4e3ab66310d

/// File Name:	icewarpWebmail528.txt
Description:	Merak Mail Server 7.5.2 with Icewarp Web Mail 5.2.8 is susceptible to various file maniuplation and cross site scripting flaws. Version 7.6.0 with Icewarp 5.3.0 is susceptible to two of these flaws.
Author:	ShineShadow
File Size:	7420
Last Modified:	Nov 10 07:10:03 2004
MD5 Checksum:	dd067576d99f6064b1f74c3ea4eab194

/// File Name:	technote-commandexec.txt
Description:	Technote web board products are susceptible to a remote command execution vulnerable that has been around since 2000.
File Size:	820
Last Modified:	Nov 5 05:34:39 2004
MD5 Checksum:	d650e7cdaac5835672b963aa4cf9886d

/// File Name:	iptablesDoS.c
Description:	Proof of concept denial of service exploit for iptables versions below 2.6.8 that makes use of an integer overflow in the logging functionality.
Author:	Felix Zhou
File Size:	3886
Related CVE(s):	CAN-2004-0816
Last Modified:	Nov 5 05:27:25 2004
MD5 Checksum:	79ef4a5bdf0cc12b669100a8e9a7c411

/// File Name:	cht-2004.txt
Description:	Web Forums Server versions 1.6 and 2.0 suffer from directory traversal attacks and also store passwords in cleartext.
Author:	R00tCr4ck
Homepage:	http://www.CyberSpy.Org
File Size:	1488
Last Modified:	Nov 5 05:00:21 2004
MD5 Checksum:	14e19abbf9003b20cdd70064c076608c

/// File Name:	InternetExploiter.html.gz
Description:	InternetExploiter.html is a remote exploit for the IE IFRAME html tag buffer overflow vulnerability which binds a shell to tcp port 28876. Tested against IE 6.0 on Win XP SP1 and IE 6.0 on Win2k.
Author:	Berend-Jan Wever
File Size:	2444
Last Modified:	Nov 4 03:12:23 2004
MD5 Checksum:	bf16e05027e12afc00e3f08f4cc13f9b