Section: .. / 0512-exploits /

Page 1 of 4
<< 1 2 3 4 >> Files 1 - 25 of 83

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	0512-exploits.tgz
Description:	Packet Storm new exploits for December, 2005.
Homepage:	http://packetstormsecurity.org/
File Size:	173367
Last Modified:	Jan 1 22:36:42 2006
MD5 Checksum:	fda394a1e54f4abf73962ed66d26dc3b

/// File Name:	k-rad3.c
Description:	Linux kernel 2.6.11 and below CPL 0 local exploit. Third version/variant of this exploit.
Author:	sd, alert7
Homepage:	http://www.xfocus.org/
File Size:	17113
Last Modified:	Dec 31 10:05:55 2005
MD5 Checksum:	fe97c08a01073659a768232db8f502ef

/// File Name:	cijfer-ccxpl.pl.txt
Description:	Remote command execution exploit for CubeCart versions 3.0.6 and below that makes use of an input sanitization flaw in orderSuccess.inc.php.
Author:	cijfer
File Size:	3721
Last Modified:	Dec 31 10:02:57 2005
MD5 Checksum:	4657be8ac1e8639b13575ee1bf77e75c

/// File Name:	ie_xp_pfv_metafile.pm.txt
Description:	This Metasploit module exploits a vulnerability in the Windows Picture and Fax Viewer found in Windows XP and 2003. This vulnerability uses a corrupt Windows Metafile to execute arbitrary code.
Author:	H D Moore
Homepage:	http://www.metasploit.com
File Size:	50588
Last Modified:	Dec 31 09:59:58 2005
MD5 Checksum:	41f7cfba418309a3d955d808ee079bd6

/// File Name:	kapda-18.txt
Description:	KAPDA Advisory #18 - Various WebWiz scripts suffer from SQL injection vulnerabilities due to a lack of input sanitization in check_user.asp. Details on exploitation provided.
Author:	DevilBox
Homepage:	http://www.KAPDA.ir
File Size:	2925
Last Modified:	Dec 31 08:16:23 2005
MD5 Checksum:	23b2a1ef85c18c71cc4d9a6678fedfaa

/// File Name:	ie_6_sp2_crash.html
Description:	Internet Explorer Version 6.0.2900.2180.xpsp_sp2 mshtml.dll <div> denial of service exploit.
Author:	rgod
Homepage:	http://rgod.altervista.org/
File Size:	800
Last Modified:	Dec 31 03:28:07 2005
MD5 Checksum:	b5a6124e8c38eeed20d5355a60984a7e

/// File Name:	phpdocumentor_130rc4_incl_expl.txt
Description:	Remote command execution exploit for phpDocumentor versions 1.3.0 rc4 and below.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	10691
Last Modified:	Dec 31 03:26:14 2005
MD5 Checksum:	2fd6773ad972fc55747644a9248f2869

/// File Name:	gmailXSSinject.txt
Description:	Google's GMailSite script is susceptible to cross site scripting attacks. Details provided. Versions 1.0.4 and below are affected.
Author:	Lostmon
Homepage:	http://lostmon.blogspot.com/
File Size:	7393
Last Modified:	Dec 31 03:24:35 2005
MD5 Checksum:	b30b60462a746c3ee07d8b8ef9512402

/// File Name:	dBpowerAMPv11.5.txt
Description:	BpowerAMP Music Converter v11.5 and prior local buffer overflow exploit.
Author:	fRoGGz SecuBox Labs
Homepage:	http://secubox.shadock.net/dBpowerAMP_Music_Converter_v11.5_Local_Buffer_Overflow_Issue.html
File Size:	3420
Last Modified:	Dec 29 03:16:47 2005
MD5 Checksum:	07cdccb20d13c9120729756bbdc1d4ee

/// File Name:	Dev_15_sql_xpl.php.txt
Description:	Dev Web versions less than of equal to 1.5 'cat' SQL injection and admin MD5 password hash disclosure exploit.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	12762
Last Modified:	Dec 29 01:47:54 2005
MD5 Checksum:	4e8ecca6f99911710c2e7703c1042181

/// File Name:	Microsoft.IIS.Malformed.URI.cpp
Description:	Microsoft IIS 5.1 malformed URI denial of service exploit.
Author:	lympex
Homepage:	http://l-bytes.tk
File Size:	3649
Last Modified:	Dec 28 23:28:38 2005
MD5 Checksum:	33e4e92fc77d2514e825fa4956262cd3

/// File Name:	mIRCexploitXPSP2eng.c
Description:	mIRC exploit for versions 6.16 and below. Proof of concept exploit that does not actually increase privileges but could be useful in restricted environments.
Author:	Jordi Corrales
File Size:	7749
Last Modified:	Dec 28 23:23:55 2005
MD5 Checksum:	f42e9afc57363d0249b6b3aa0790d5ed

/// File Name:	Tolva.txt
Description:	Tolva PHP website system version 0.1.0 suffers from a remote php include vulnerability.
Author:	bedford
File Size:	1596
Last Modified:	Dec 28 22:23:23 2005
MD5 Checksum:	705140a6f6d6ea29bfc9c58f9fba1c14

/// File Name:	Acidcat-bypass.txt
Description:	Several vulnerabilities in Acidcat CMS v 2.1.13 and below have been found which can be used to discover the admin credentials or download the database.
Author:	Hamid Network Security Team
Homepage:	http://hamid.ir
File Size:	1748
Last Modified:	Dec 28 21:46:38 2005
MD5 Checksum:	d683870ab3c64aa5edc3f729683b6aa5

/// File Name:	PHPGedView.php.txt
Description:	PHPGedView versions less than or equal to 3.3.7 arbitrary local and remote code execution and php injection exploit.
Author:	rgod
Homepage:	http://rgod.altervista.org
File Size:	15014
Last Modified:	Dec 28 21:40:01 2005
MD5 Checksum:	1c536361235cf3a330b3e3b7f98d107f

/// File Name:	ACSSEC-2005-11-25-3.txt
Description:	FTGate 4.4 [Build 4.4.000 Oct 26 2005] is vulnerable to specially crafted XSS requests. A remote attacker could trick a user into viewing a vulnerable page which could then lead to remote compromise.
Author:	Tim Shelton
File Size:	1941
Last Modified:	Dec 28 06:25:00 2005
MD5 Checksum:	e008f66c82dc31ff0cacce9d393a4d6e

/// File Name:	muts_mailenable_imap_examine.pm.txt
Description:	Metasploit exploit for a remote buffer overflow that exists in the MailEnable Enterprise 1.1 IMAP EXAMINE command. This vulnerability affects MailEnable Enterprise 1.1 without the ME-10009.EXE patch.
Author:	Mati Aharoni
Related File:	mailenable11.txt
File Size:	3621
Last Modified:	Dec 28 06:11:51 2005
MD5 Checksum:	0759dc48707c12312cfe8713c81d9517

/// File Name:	mailenable-imap-examine.py.txt
Description:	Python exploit for a remote buffer overflow that exists in the MailEnable Enterprise 1.1 IMAP EXAMINE command. This vulnerability affects MailEnable Enterprise 1.1 without the ME-10009.EXE patch.
Author:	Mati Aharoni
Related Exploit:	muts_mailenable_imap_examine.pm.txt"
File Size:	5147
Last Modified:	Dec 28 06:10:21 2005
MD5 Checksum:	4d2052261c05aa5f9b5f8999662a166c

/// File Name:	excelBugs.tgz
Description:	Two Microsoft Excel xls files that demonstrate null pointer bugs.
Author:	ad
File Size:	2041
Last Modified:	Dec 28 05:56:46 2005
MD5 Checksum:	0564e730901ee39f705c3811eb423ef6

/// File Name:	cerberusHelp.txt
Description:	Cerberus HelpDesk is susceptible to SQL injection and cross site scripting flaws. cerberus-gui 2.649 is affected. support-center 2.649 through 3.2.0pr2 is also affected. Full exploitation details provided.
Author:	A. Ramos
Homepage:	http://www.unsec.net
File Size:	5752
Last Modified:	Dec 27 09:31:57 2005
MD5 Checksum:	4e8068a82c40d05baeb62691157db870

/// File Name:	phpBB2018.txt
Description:	phpBB 2.0.18 is susceptible to cross site scripting and path disclosure issues.
Author:	Maksymilian Arciemowicz
Homepage:	http://securityreason.com/
File Size:	2227
Last Modified:	Dec 27 09:22:48 2005
MD5 Checksum:	efaa7a3cf341f9cd6b6b794e94f020b6

/// File Name:	playsmsXSS.txt
Description:	PlaySMS is susceptible to cross site scripting attacks.
Author:	mohajali2k4
File Size:	213
Last Modified:	Dec 27 09:21:26 2005
MD5 Checksum:	5771d887aad81790eb546ae09bbfb7b2

/// File Name:	phpMyAdminSQL.txt
Description:	phpMyAdmin version 2.7.0 is susceptible to SQL injection attacks via the server_privileges.php script. Details provided.
Author:	Alice Bryson
File Size:	1798
Last Modified:	Dec 27 09:20:32 2005
MD5 Checksum:	16bc082433656f2e812665cc5bc17ad0

/// File Name:	webcalXSS.txt
Description:	WebCal versions 1.11 through 3.04 are susceptible to cross site scripting attacks.
Author:	Stan Bubrouski
File Size:	1612
Last Modified:	Dec 27 09:14:08 2005
MD5 Checksum:	515d21f55e70bd7e6756fcf17e9feda3

/// File Name:	ag22sql.txt
Description:	Advanced Guestbook version 2.2 suffers from a SQL injection flaw in the username variable. The SQL injection flaw for the password variable was discovered for this same version back in April of 2004.
Author:	BHST
Related Exploit:	advguest.txt"
File Size:	785
Last Modified:	Dec 26 19:50:00 2005
MD5 Checksum:	3cc8c772fdccc7a409005cb7a75c6eef