Section:  .. / 0508-exploits  /

Page 1 of 5
<< 1 2 3 4 5 >> Files 1 - 25 of 105
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: 0508-exploits.tgz
Description:
New Packet Storm exploits for August, 2005.
Homepage:http://packetstormsecurity.org/
File Size:206356
Last Modified:Aug 31 09:28:32 2005
MD5 Checksum:02ccdc9a05ba0798d3558b6f698c0350

 ///  File Name: AD20050830.txt
Description:
BNBT EasyTracker is susceptible to a remote denial of service vulnerability when accepting a malformed HTTP request. Demonstration exploit provided. Versions 7.7r3.2004.10.27 and below are affected.
Author:Sowhat
Homepage:http://secway.org/advisory/AD20050830.txt
File Size:8779
Last Modified:Aug 31 08:09:09 2005
MD5 Checksum:2ac337d4908927ed071926acbb6d4270

 ///  File Name: ADSLFR4II.txt
Description:
Nth Dimension Security Advisory (NDSA20050719) - Mentor's ADSL-FR4II router, firmware version 2.00.0111 2004.04.09, is susceptible to unauthenticated administrative access, downloading of configuration files with the system password, and denial of service attacks.
Author:Tim Brown
Homepage:http://www.nth-dimension.org.uk/
File Size:3572
Last Modified:Aug 17 06:59:01 2005
MD5 Checksum:f3bbb1c54db3bfc7d745084f66ad82a6

 ///  File Name: adv22-y3dips-2005.txt
Description:
PunBB 1.2.6 suffers from a script injection flaw in its use of IMG tags.
Author:y3dips
Homepage:http://echo.or.id/adv/adv22-y3dips-2005.txt
File Size:2515
Last Modified:Aug 31 07:34:44 2005
MD5 Checksum:e745714402a160c0bbd36c5fd17862fe

 ///  File Name: atutor151.txt
Description:
ATutor versions 1.5.1 and below suffer from multiple cross site scripting vulnerabilities.
Author:matrix killer, h4cky0u
Homepage:http://www.h4cky0u.org
File Size:1482
Last Modified:Aug 19 06:59:26 2005
MD5 Checksum:fccc7b6e4fffe218a5e27fd4fae0f546

 ///  File Name: autolinks21.txt
Description:
AutoLinks Pro 2.1 suffers from a remote file inclusion vulnerability.
Author:NewAngels Team
File Size:1308
Last Modified:Aug 31 07:22:26 2005
MD5 Checksum:a9273540bd7022124f6c8cb05c02da63

 ///  File Name: backupexec_dump.pm.txt
Description:
Veritas Backup Exec Agent remote file access exploit that makes use of a logic flaw. This exploit is part of the Metasploit framework and works against all current versions of this Agent.
File Size:8044
Last Modified:Aug 12 09:02:26 2005
MD5 Checksum:ae93e11c686917a4a9744af5e2f5e9e3

 ///  File Name: bbcaffe20XSS.txt
Description:
BBCaffe 2.0 is susceptible to cross site scripting attacks.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:647
Last Modified:Aug 19 06:57:57 2005
MD5 Checksum:c6500fadeb3fafe813e84a2915b24834

 ///  File Name: bbcodeLogout.txt
Description:
Proof of concept information for a flaw in BBCode that works against vBulletin and phpBB.
Author:h4cky0u
Homepage:http://www.h4cky0u.org
File Size:1401
Last Modified:Aug 24 06:47:21 2005
MD5 Checksum:6d35da96e7140acf5dc447d925174aaf

 ///  File Name: beaXSS.txt
Description:
BEA WebLogic versions 8.1 SP4 and below suffer from a cross site scripting flaw in the Administration console.
Author:GomoR
Homepage:http://www.GomoR.org/
File Size:1433
Last Modified:Aug 25 06:59:40 2005
MD5 Checksum:75cb275908dde195433f902633155e90

 ///  File Name: bfccown.zip
Description:
Proof of concept exploit for the flaws relating to BFCC versions 1.22_A and below and BFVCC versions 2.14_B and below.
Author:Luigi Auriemma
Homepage:http://aluigi.altervista.org
Related File:bfccown.txt
File Size:11110
Last Modified:Aug 31 07:50:44 2005
MD5 Checksum:0918b1298c512f28393bf9f2d5603a9b

 ///  File Name: cfbbxss.txt
Description:
CFBB version 1.1.10 suffers from a cross site scripting vulnerability.
Author:stormhacker
Homepage:Http://www.security-arab.com
File Size:253
Last Modified:Aug 9 10:47:39 2005
MD5 Checksum:e06de2ff9c58f6cfaa80b3686a759a4b

 ///  File Name: chmpokbof.zip
Description:
Proof of concept buffer overflow exploit for Chris Moneymaker's World Poker Championship version 1.0.
Author:Luigi Auriemma
Homepage:http://aluigi.altervista.org
Related File:chmpokbof.txt
File Size:7188
Last Modified:Aug 18 09:40:03 2005
MD5 Checksum:498f3ed082f15ff13e89436b61e6a3c2

 ///  File Name: citibankXSS.txt
Description:
Citibank's website in the UK is susceptible cross site scripting attacks.
Author:Andrew Smith
File Size:2584
Last Modified:Aug 17 07:02:15 2005
MD5 Checksum:8e84876372ebab674c0b73a3848af57e

 ///  File Name: clarolineTraverse.txt
Description:
Claroline 1.6.1 is vulnerable to multiple directory traversal attacks. Teacher access is needed for successful exploitation.
Author:Robbe De Keyzer
File Size:1832
Last Modified:Aug 13 08:41:12 2005
MD5 Checksum:a6a8f5daf900f15a89847adab37ab590

 ///  File Name: comdevInclusion.txt
Description:
Comdev eCommerce 3.0 is susceptible to a remote file inclusion flaw.
File Size:307
Last Modified:Aug 6 07:48:08 2005
MD5 Checksum:3351b2ff267b0c563e160ad9b37dd854

 ///  File Name: comdevTraversal.txt
Description:
Comdev eCommerce 3.0 is susceptible to a directory traversal flaws.
File Size:336
Last Modified:Aug 6 07:47:08 2005
MD5 Checksum:39c136ae1565af349c02026c09da31da

 ///  File Name: ContivitySystem.txt
Description:
When the Nortel Contivity VPN Client client is running as a service, it is possible to manipulate the interface of the client and escalate privileges to that of the LocalSystem account. Version 05_01.030 is affected.
Author:Jeff Peadro
File Size:1266
Last Modified:Aug 11 07:06:44 2005
MD5 Checksum:2dc8e01c10369e2582e95e1f7055f609

 ///  File Name: cosmoshop81078.txt
Description:
Cosmoshop versions 8.10.78 and below suffer from SQL injection flaws, clear text passwords, and directory traversal flaws.
Author:l0om
Homepage:http://www.excluded.org
File Size:1466
Last Modified:Aug 31 07:32:48 2005
MD5 Checksum:43eb2a684a72cba7453b395b76af5865

 ///  File Name: cpan.c
Description:
Remote code execution exploit for cPanel versions 9.x and below that binds a shell to port 1666.
Author:PakBraiN
File Size:1602
Last Modified:Aug 12 08:53:10 2005
MD5 Checksum:e4eb40e742dcd986e712f8dc6e4568e2

 ///  File Name: DMA-2005-0826a.txt
Description:
The Nokia Affix Bluetooth btsrv makes poor use of a popen() that in turn allows for privileged code execution as root.
Author:Kevin Finisterre
Homepage:http://www.digitalmunition.com/
File Size:4242
Last Modified:Aug 28 21:17:28 2005
MD5 Checksum:61e981f322c2f459330e5ada5d8ff244

 ///  File Name: dvbbsXSS.txt
Description:
DVBBS version 7.1 suffers from a cross site scripting flaw.
Author:Lostmon
File Size:1651
Related OSVDB(s):18512
Last Modified:Aug 9 11:11:31 2005
MD5 Checksum:09e5aeaf1577072e5cc026aa88052bab

 ///  File Name: ECWshop.txt
Description:
ECW Shop version 6.0.2 suffers from cross site scripting, various injection, and disclosure vulnerabilities.
Author:John Cobb
Homepage:http://www.NoBytes.com
File Size:2023
Last Modified:Aug 17 08:35:33 2005
MD5 Checksum:75c91c659c362bb159406bb366bc7aff

 ///  File Name: edirectory_imonitor.pm.txt
Description:
Novell eDirectory 8.7.3 iMonitor service remote buffer overflow exploit.
File Size:2235
Last Modified:Aug 15 07:15:34 2005
MD5 Checksum:fdf29f12ee0e8206f662c61a4ccf9757

 ///  File Name: elmexPoC.c
Description:
Proof of concept exploit for Elm versions 2.5.8 and below that makes use of a buffer overflow during the parsing of the Expires field.
Author:c0ntex
Related File:elm-data.tar.gz
File Size:2857
Last Modified:Aug 24 07:17:59 2005
MD5 Checksum:30c19e44672429391d6d1363aa6295f6