Section:  .. / 0512-exploits  /

Page 1 of 4
<< 1 2 3 4 >> Files 1 - 25 of 83
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: 0512-exploits.tgz
Description:
Packet Storm new exploits for December, 2005.
Homepage:http://packetstormsecurity.org/
File Size:173367
Last Modified:Jan 1 22:36:42 2006
MD5 Checksum:fda394a1e54f4abf73962ed66d26dc3b

 ///  File Name: k-rad3.c
Description:
Linux kernel 2.6.11 and below CPL 0 local exploit. Third version/variant of this exploit.
Author:sd, alert7
Homepage:http://www.xfocus.org/
File Size:17113
Last Modified:Dec 31 10:05:55 2005
MD5 Checksum:fe97c08a01073659a768232db8f502ef

 ///  File Name: cijfer-ccxpl.pl.txt
Description:
Remote command execution exploit for CubeCart versions 3.0.6 and below that makes use of an input sanitization flaw in orderSuccess.inc.php.
Author:cijfer
File Size:3721
Last Modified:Dec 31 10:02:57 2005
MD5 Checksum:4657be8ac1e8639b13575ee1bf77e75c

 ///  File Name: ie_xp_pfv_metafile.pm.txt
Description:
This Metasploit module exploits a vulnerability in the Windows Picture and Fax Viewer found in Windows XP and 2003. This vulnerability uses a corrupt Windows Metafile to execute arbitrary code.
Author:H D Moore
Homepage:http://www.metasploit.com
File Size:50588
Last Modified:Dec 31 09:59:58 2005
MD5 Checksum:41f7cfba418309a3d955d808ee079bd6

 ///  File Name: kapda-18.txt
Description:
KAPDA Advisory #18 - Various WebWiz scripts suffer from SQL injection vulnerabilities due to a lack of input sanitization in check_user.asp. Details on exploitation provided.
Author:DevilBox
Homepage:http://www.KAPDA.ir
File Size:2925
Last Modified:Dec 31 08:16:23 2005
MD5 Checksum:23b2a1ef85c18c71cc4d9a6678fedfaa

 ///  File Name: ie_6_sp2_crash.html
Description:
Internet Explorer Version 6.0.2900.2180.xpsp_sp2 mshtml.dll <div> denial of service exploit.
Author:rgod
Homepage:http://rgod.altervista.org/
File Size:800
Last Modified:Dec 31 03:28:07 2005
MD5 Checksum:b5a6124e8c38eeed20d5355a60984a7e

 ///  File Name: phpdocumentor_130rc4_incl_expl.txt
Description:
Remote command execution exploit for phpDocumentor versions 1.3.0 rc4 and below.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:10691
Last Modified:Dec 31 03:26:14 2005
MD5 Checksum:2fd6773ad972fc55747644a9248f2869

 ///  File Name: gmailXSSinject.txt
Description:
Google's GMailSite script is susceptible to cross site scripting attacks. Details provided. Versions 1.0.4 and below are affected.
Author:Lostmon
Homepage:http://lostmon.blogspot.com/
File Size:7393
Last Modified:Dec 31 03:24:35 2005
MD5 Checksum:b30b60462a746c3ee07d8b8ef9512402

 ///  File Name: dBpowerAMPv11.5.txt
Description:
BpowerAMP Music Converter v11.5 and prior local buffer overflow exploit.
Author:fRoGGz SecuBox Labs
Homepage:http://secubox.shadock.net/dBpowerAMP_Music_Converter_v11.5_Local_Buffer_Overflow_Issue.html
File Size:3420
Last Modified:Dec 29 03:16:47 2005
MD5 Checksum:07cdccb20d13c9120729756bbdc1d4ee

 ///  File Name: Dev_15_sql_xpl.php.txt
Description:
Dev Web versions less than of equal to 1.5 'cat' SQL injection and admin MD5 password hash disclosure exploit.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:12762
Last Modified:Dec 29 01:47:54 2005
MD5 Checksum:4e8ecca6f99911710c2e7703c1042181

 ///  File Name: Microsoft.IIS.Malformed.URI.cpp
Description:
Microsoft IIS 5.1 malformed URI denial of service exploit.
Author:lympex
Homepage:http://l-bytes.tk
File Size:3649
Last Modified:Dec 28 23:28:38 2005
MD5 Checksum:33e4e92fc77d2514e825fa4956262cd3

 ///  File Name: mIRCexploitXPSP2eng.c
Description:
mIRC exploit for versions 6.16 and below. Proof of concept exploit that does not actually increase privileges but could be useful in restricted environments.
Author:Jordi Corrales
File Size:7749
Last Modified:Dec 28 23:23:55 2005
MD5 Checksum:f42e9afc57363d0249b6b3aa0790d5ed

 ///  File Name: Tolva.txt
Description:
Tolva PHP website system version 0.1.0 suffers from a remote php include vulnerability.
Author:bedford
File Size:1596
Last Modified:Dec 28 22:23:23 2005
MD5 Checksum:705140a6f6d6ea29bfc9c58f9fba1c14

 ///  File Name: Acidcat-bypass.txt
Description:
Several vulnerabilities in Acidcat CMS v 2.1.13 and below have been found which can be used to discover the admin credentials or download the database.
Author:Hamid Network Security Team
Homepage:http://hamid.ir
File Size:1748
Last Modified:Dec 28 21:46:38 2005
MD5 Checksum:d683870ab3c64aa5edc3f729683b6aa5

 ///  File Name: PHPGedView.php.txt
Description:
PHPGedView versions less than or equal to 3.3.7 arbitrary local and remote code execution and php injection exploit.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:15014
Last Modified:Dec 28 21:40:01 2005
MD5 Checksum:1c536361235cf3a330b3e3b7f98d107f

 ///  File Name: ACSSEC-2005-11-25-3.txt
Description:
FTGate 4.4 [Build 4.4.000 Oct 26 2005] is vulnerable to specially crafted XSS requests. A remote attacker could trick a user into viewing a vulnerable page which could then lead to remote compromise.
Author:Tim Shelton
File Size:1941
Last Modified:Dec 28 06:25:00 2005
MD5 Checksum:e008f66c82dc31ff0cacce9d393a4d6e

 ///  File Name: muts_mailenable_imap_examine.pm.txt
Description:
Metasploit exploit for a remote buffer overflow that exists in the MailEnable Enterprise 1.1 IMAP EXAMINE command. This vulnerability affects MailEnable Enterprise 1.1 without the ME-10009.EXE patch.
Author:Mati Aharoni
Related File:mailenable11.txt
File Size:3621
Last Modified:Dec 28 06:11:51 2005
MD5 Checksum:0759dc48707c12312cfe8713c81d9517

 ///  File Name: mailenable-imap-examine.py.txt
Description:
Python exploit for a remote buffer overflow that exists in the MailEnable Enterprise 1.1 IMAP EXAMINE command. This vulnerability affects MailEnable Enterprise 1.1 without the ME-10009.EXE patch.
Author:Mati Aharoni
Related Exploit:muts_mailenable_imap_examine.pm.txt"
File Size:5147
Last Modified:Dec 28 06:10:21 2005
MD5 Checksum:4d2052261c05aa5f9b5f8999662a166c

 ///  File Name: excelBugs.tgz
Description:
Two Microsoft Excel xls files that demonstrate null pointer bugs.
Author:ad
File Size:2041
Last Modified:Dec 28 05:56:46 2005
MD5 Checksum:0564e730901ee39f705c3811eb423ef6

 ///  File Name: cerberusHelp.txt
Description:
Cerberus HelpDesk is susceptible to SQL injection and cross site scripting flaws. cerberus-gui 2.649 is affected. support-center 2.649 through 3.2.0pr2 is also affected. Full exploitation details provided.
Author:A. Ramos
Homepage:http://www.unsec.net
File Size:5752
Last Modified:Dec 27 09:31:57 2005
MD5 Checksum:4e8068a82c40d05baeb62691157db870

 ///  File Name: phpBB2018.txt
Description:
phpBB 2.0.18 is susceptible to cross site scripting and path disclosure issues.
Author:Maksymilian Arciemowicz
Homepage:http://securityreason.com/
File Size:2227
Last Modified:Dec 27 09:22:48 2005
MD5 Checksum:efaa7a3cf341f9cd6b6b794e94f020b6

 ///  File Name: playsmsXSS.txt
Description:
PlaySMS is susceptible to cross site scripting attacks.
Author:mohajali2k4
File Size:213
Last Modified:Dec 27 09:21:26 2005
MD5 Checksum:5771d887aad81790eb546ae09bbfb7b2

 ///  File Name: phpMyAdminSQL.txt
Description:
phpMyAdmin version 2.7.0 is susceptible to SQL injection attacks via the server_privileges.php script. Details provided.
Author:Alice Bryson
File Size:1798
Last Modified:Dec 27 09:20:32 2005
MD5 Checksum:16bc082433656f2e812665cc5bc17ad0

 ///  File Name: webcalXSS.txt
Description:
WebCal versions 1.11 through 3.04 are susceptible to cross site scripting attacks.
Author:Stan Bubrouski
File Size:1612
Last Modified:Dec 27 09:14:08 2005
MD5 Checksum:515d21f55e70bd7e6756fcf17e9feda3

 ///  File Name: ag22sql.txt
Description:
Advanced Guestbook version 2.2 suffers from a SQL injection flaw in the username variable. The SQL injection flaw for the password variable was discovered for this same version back in April of 2004.
Author:BHST
Related Exploit:advguest.txt"
File Size:785
Last Modified:Dec 26 19:50:00 2005
MD5 Checksum:3cc8c772fdccc7a409005cb7a75c6eef