Section: .. / 0504-exploits /

Page 4 of 6
<< 1 2 3 4 5 6 >> Files 75 - 100 of 138

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	postnukeSQL.txt
Description:	PostNuke 0.760-RC3 is susceptible to SQL injection and cross site scripting attacks.
Author:	Diabolic Crab
Homepage:	http://www.hackerscenter.com/
File Size:	2543
Last Modified:	Apr 17 22:11:37 2005
MD5 Checksum:	6a24eee0397120aaec68754f40024eb9

/// File Name:	GoText101.c
Description:	GoText 1.01 local user information disclosure exploit.
Author:	Kozan, ATmaCA
Homepage:	http://www.netmagister.com
File Size:	2531
Last Modified:	May 27 05:57:58 2005
MD5 Checksum:	a5346425da74a26267ffd268842556a4

/// File Name:	phpBBupload.txt
Description:	The up.php script in phpBB 2.0.x allows malicious remote attackers to upload files and execute them with the permissions of the webserver uid.
Author:	Status-x
File Size:	2506
Last Modified:	Apr 17 21:51:07 2005
MD5 Checksum:	78c28129d09b1486d7655ac6c6719ad0

/// File Name:	predebug2.c
Description:	Example predebug code execution exploit, demonstrating how programmers being loaded into debuggers can attack the machine running the debugger.
Author:	Brett Moore
Homepage:	http://www.security-assessment.com
Related File:	PreDebug.pdf
File Size:	2431
Last Modified:	Apr 20 23:17:32 2005
MD5 Checksum:	907e08389bb6518f3a430653e9701216

/// File Name:	MS05-021-PoC.pl
Description:	MS05-021 Exchange X-LINK2STATE exploit that makes use of a heap overflow in SvrAppendReceivedChunk function which is located in xlsasink.dll.
Author:	Evgeny Pinchuk
File Size:	2396
Last Modified:	Jun 1 06:27:08 2005
MD5 Checksum:	80e2b45f2fd0dd245f2c2c3514d686b5

/// File Name:	bkforum4.txt
Description:	BK Forum version 4 is susceptible to SQL injection attacks.
Author:	Diabolic Crab
Homepage:	http://www.hackerscenter.com/
File Size:	2333
Last Modified:	Jun 1 07:40:31 2005
MD5 Checksum:	653491e8110f768b59f2a1029145dce0

/// File Name:	sonicwallXSS.txt
Description:	SonicWall SOHO/10 is susceptible to cross site scripting and code injection vulnerabilities.
Author:	Oliver Karow
Homepage:	http://www.oliverkarow.de/
File Size:	2296
Last Modified:	Apr 17 09:14:34 2005
MD5 Checksum:	80422d10d22ed8405056627e4c621669

/// File Name:	cubecart206.txt
Description:	CubeCart 2.0.6 is susceptible to file inclusion and other flaws.
Author:	John Cobb
Homepage:	http://www.NoBytes.com
File Size:	2246
Last Modified:	Apr 14 07:41:59 2005
MD5 Checksum:	c40adc023e973916f6d7465a9ab2aec0

/// File Name:	FilePocket12.c
Description:	FilePocket version 1.2 local proxy password disclosure exploit.
Author:	Kozan, ATmaCA
Homepage:	http://www.netmagister.com
File Size:	2234
Last Modified:	May 27 05:53:44 2005
MD5 Checksum:	d1800f78998078e04b48febc617e97d3

/// File Name:	includer10exec.pl.txt
Description:	Another remote command execution exploit for The Includer CGI versions 1.0 and below.
Author:	K-C0d3r
File Size:	2191
Last Modified:	Apr 18 08:12:31 2005
MD5 Checksum:	20977247bfa016015d65cb81872c0087

/// File Name:	cal_phpbb.pl.txt
Description:	phpBB versions 2.0.13 and below Calendar Pro module exploit that retrieves a users md5 hash.
Author:	Axl, CereBrums
File Size:	2126
Last Modified:	Apr 17 19:47:04 2005
MD5 Checksum:	6a81916759b29655f8eae0e7eb1c6be3

/// File Name:	mailenable_EHLO_DoS.pl
Description:	MailEnable EHLO unicode-address-interpretation exploit.
Author:	CorryL
Homepage:	http://www.x0n3-h4ck.org
Related File:	mailenable_ehlo_dos.txt
File Size:	2085
Related OSVDB(s):	15232
Last Modified:	Apr 17 20:32:53 2005
MD5 Checksum:	596a587e196bdc3d5d42fac218c058d4

/// File Name:	includer10.pl.txt
Description:	The Includer CGI versions 1.0 and below remote command execution exploit.
Homepage:	http://nst.void.ru
File Size:	2083
Last Modified:	Apr 18 08:11:15 2005
MD5 Checksum:	2e93df914fd652fa9315d146545f3cc0

/// File Name:	ie_dhtml_poc.txt
Description:	Proof-of-Concept exploit code for the MSIE DHTML object handling vulnerabilities (described in MS05-20).
Author:	Berend-Jan Wever
Homepage:	http://www.edup.tudelft.nl/~bjwever
Related File:	04.12.05c.txt
File Size:	2063
Related OSVDB(s):	15465
Related CVE(s):	CAN-2005-0553
Last Modified:	Apr 19 00:08:59 2005
MD5 Checksum:	4682b826fd776764dcb3dbc6ee5c81c8

/// File Name:	eGroupWare_infoleak.txt
Description:	eGroupWare contains a bug where mail attachments could be sent to the wrong recipient by mistake, due to eGroupWare caching attachments after a user decides to cancel a message.
Author:	Gerald Quakenbush
Homepage:	http://www.mastermindsecuritygroup.com
File Size:	2038
Last Modified:	Apr 18 22:58:20 2005
MD5 Checksum:	b47ae0f4b64381cf82e80f88cee4e95c

/// File Name:	plsql_multiplestatement_injection.t..>
Description:	Specialized exploit for cases where SQL injection is possible against a Oracle PL/SQL setup.
Author:	Esteban Martinez Fayo
File Size:	1996
Last Modified:	Apr 19 22:27:17 2005
MD5 Checksum:	e45da5398455857dcb6ca69306692fd2

/// File Name:	PaFileDB.txt
Description:	PaFileDB versions 3.1 and below are susceptible to cross site scripting and SQL injection vulnerabilities.
Author:	Diabolic Crab
Homepage:	http://www.hackerscenter.com/
File Size:	1995
Last Modified:	Apr 14 08:05:21 2005
MD5 Checksum:	99b4a9c4579e4111456e50cbbc70310b

/// File Name:	annuaire.txt
Description:	annuaire netref version 4.2 is susceptible to a remote command execution flaw.
Author:	jaguar
Homepage:	http://jaguar.wulab.com
File Size:	1960
Last Modified:	Jun 1 06:37:32 2005
MD5 Checksum:	a0fbcd0ccd5115d9cba508943a0c8d73

/// File Name:	BulletProof.c
Description:	BulletProof FTP server version 2.4.0.31 local privilege escalation exploit that provides a shell with SYSTEM privileges.
Author:	Jerome Athias, Reed Arvin
Homepage:	http://reedarvin.thearvins.com/
File Size:	1948
Last Modified:	May 27 06:08:20 2005
MD5 Checksum:	cc4e2b6ca245131b55750aabff2e0ebe

/// File Name:	bitRace.txt
Description:	BitDefender 8 suffers from a race condition.
Author:	unsecure
File Size:	1946
Last Modified:	Jun 1 07:36:52 2005
MD5 Checksum:	7d132a3d8dc1a757184beffd19031512

/// File Name:	phpMyAdmin262XSS.txt
Description:	phpMyAdmin versions 2.6.2-beta1 and below are susceptible to cross site scripting attacks.
Author:	Oriol Torrent Santiago
File Size:	1945
Last Modified:	Apr 17 09:39:42 2005
MD5 Checksum:	40d436084b6cd2050651f0c867057003

/// File Name:	shoutbox302.txt
Description:	Shoutbox SCRIPT versions 3.0.2 and below suffer from a remote retrieval flaw that allows for the grabbing of an administrator's MD5 hash and their username.
Author:	CorryL
Homepage:	http://www.x0n3-h4ck.org
File Size:	1885
Last Modified:	Jun 1 06:34:54 2005
MD5 Checksum:	112f564af6eea7a062786d5bb7cca5d0

/// File Name:	NotJustBrowsing.c
Description:	NotJustBrowsing 1.0.3 local password disclosure exploit.
Author:	Kozan, ATmaCA
Homepage:	http://www.netmagister.com
File Size:	1787
Last Modified:	May 27 05:20:20 2005
MD5 Checksum:	b8b97ef4385caaf817bd6d09c05de3b4

/// File Name:	aiodio_read.c
Description:	Linux kernel AIO local denial of service exploit for the PPC64 and IA64 architecture.
Author:	Daniel McNeil
File Size:	1771
Last Modified:	Apr 17 09:41:41 2005
MD5 Checksum:	13bd9dfdc8ad7d7b4dadc1ddf3e159b4

/// File Name:	oracle_sdo_code_size.c
Description:	Exploit for buffer overflow vulnerability in procedure MDSYS.MD2.SDO_CODE_SIZE within Oracle Database Server version 10.1.0.2 under Windows 2000 SP4.
Author:	Esteban Martinez Fayo
File Size:	1702
Related OSVDB(s):	15559
Last Modified:	Apr 19 22:20:25 2005
MD5 Checksum:	7eb1cc643d279d60af99034d31251a25