Section: .. / 0512-exploits /

Page 2 of 4
<< 1 2 3 4 >> Files 25 - 50 of 83

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	winCreateExp.txt
Description:	Microsoft Windows CreateRemoteThread denial of service exploit.
Author:	nima Salehi
Homepage:	http://www.Ashiyane.com
File Size:	4990
Last Modified:	Dec 2 17:56:21 2005
MD5 Checksum:	5802c87f4a75cb494ecd81206bc890ba

/// File Name:	MS05-053.c
Description:	Microsoft Windows Metafile (WMF) remote exploit which takes advantage of the bug known as ms05-053. This program creates a special .wmf file which crashes IE by overflowing the "mtNoObjects" header.
Author:	Winny Thomas
File Size:	4821
Last Modified:	Dec 14 11:12:31 2005
MD5 Checksum:	380f01f84a68f99123f0eaeefe547cc1

/// File Name:	hordeGraphic.txt
Description:	All versions of the Horde IMP Webmail client are susceptible to cross site scripting attacks.
Author:	Igor
File Size:	4751
Last Modified:	Dec 9 17:22:17 2005
MD5 Checksum:	557d9a6ec0002e632527b6ca8121083c

/// File Name:	bbs.c
Description:	SimpleBBS versions 1.1 and below remote command execution exploit.
Author:	unitedasia
File Size:	4424
Last Modified:	Dec 14 05:24:12 2005
MD5 Checksum:	153d8fadee80804f06dda5d29fad686a

/// File Name:	lyris_attachment_mssql.pm.txt
Description:	This Metasploit module exploits a SQL injection flaw in the Lyris ListManager software for Microsoft SQL Server. This flaw allows for arbitrary commands to be executed with administrative privileges by calling the xp_cmdshell stored procedure. Versions 5.0 through 8.8a are affected.
Author:	H D Moore
Homepage:	http://metasploit.com/
Related Exploit:	lyris-listmanager.txt"
File Size:	4399
Last Modified:	Dec 14 07:14:50 2005
MD5 Checksum:	f7190bb52ae23cbb1c9bd08505907146

/// File Name:	MilliScripts14.txt
Description:	MilliScripts version 1.4 is susceptible to cross site scripting attacks.
Author:	Luis Cortes, Vicente Perez
Homepage:	http://www.securitynation.com
File Size:	4178
Last Modified:	Dec 14 07:26:48 2005
MD5 Checksum:	543be3fa525bde43656e71efb7dcf4f2

/// File Name:	oracle9i_xdb_http.pm.txt
Description:	This Metasploit module exploits a stack overflow in the authorization code of the Oracle 9i HTTP XDB service.
Author:	y0
File Size:	4118
Last Modified:	Dec 14 09:23:36 2005
MD5 Checksum:	3904180db4222415f801532251f226a4

/// File Name:	cijfer-ccxpl.pl.txt
Description:	Remote command execution exploit for CubeCart versions 3.0.6 and below that makes use of an input sanitization flaw in orderSuccess.inc.php.
Author:	cijfer
File Size:	3721
Last Modified:	Dec 31 10:02:57 2005
MD5 Checksum:	4657be8ac1e8639b13575ee1bf77e75c

/// File Name:	perl-cal-29920.txt
Description:	Perl-Cal version 2.99.20, the CGI script written by Acme Software, is susceptible to cross site scripting.
Author:	Sumit Siddharth
File Size:	3690
Last Modified:	Dec 14 06:00:06 2005
MD5 Checksum:	b903eca64d8af5272644b0927b77790d

/// File Name:	Microsoft.IIS.Malformed.URI.cpp
Description:	Microsoft IIS 5.1 malformed URI denial of service exploit.
Author:	lympex
Homepage:	http://l-bytes.tk
File Size:	3649
Last Modified:	Dec 28 23:28:38 2005
MD5 Checksum:	33e4e92fc77d2514e825fa4956262cd3

/// File Name:	muts_mailenable_imap_examine.pm.txt
Description:	Metasploit exploit for a remote buffer overflow that exists in the MailEnable Enterprise 1.1 IMAP EXAMINE command. This vulnerability affects MailEnable Enterprise 1.1 without the ME-10009.EXE patch.
Author:	Mati Aharoni
Related File:	mailenable11.txt
File Size:	3621
Last Modified:	Dec 28 06:11:51 2005
MD5 Checksum:	0759dc48707c12312cfe8713c81d9517

/// File Name:	CounterDoS.c
Description:	Counter Strike 2D denial of service exploit that affects versions 0.1.0.1 and below.
Author:	Iman Karim
Homepage:	http://home.inf.fh-rhein-sieg.de/~ikarim2s/
File Size:	3615
Last Modified:	Dec 14 09:28:28 2005
MD5 Checksum:	d87083992aad727560be35d101326126

/// File Name:	ibm_css.txt
Description:	IBM Websphere 6 sample scripts are susceptible to cross site scripting vulnerabilities. Details provided.
Author:	dr_insane
File Size:	3434
Last Modified:	Dec 15 07:46:47 2005
MD5 Checksum:	6db36956f39a0952c9aaccb6b92359ef

/// File Name:	dBpowerAMPv11.5.txt
Description:	BpowerAMP Music Converter v11.5 and prior local buffer overflow exploit.
Author:	fRoGGz SecuBox Labs
Homepage:	http://secubox.shadock.net/dBpowerAMP_Music_Converter_v11.5_Local_Buffer_Overflow_Issue.html
File Size:	3420
Last Modified:	Dec 29 03:16:47 2005
MD5 Checksum:	07cdccb20d13c9120729756bbdc1d4ee

/// File Name:	AD20051202.txt
Description:	WinEggDropShell Eternity version 1.7 is susceptible to preauth stack overflows. Proof of concept denial of service exploit included.
Author:	Sowhat
Homepage:	http://secway.org/
File Size:	3352
Last Modified:	Dec 3 06:40:55 2005
MD5 Checksum:	e2a03f701231a1f11975df0e44fadadb

/// File Name:	kapda-18.txt
Description:	KAPDA Advisory #18 - Various WebWiz scripts suffer from SQL injection vulnerabilities due to a lack of input sanitization in check_user.asp. Details on exploitation provided.
Author:	DevilBox
Homepage:	http://www.KAPDA.ir
File Size:	2925
Last Modified:	Dec 31 08:16:23 2005
MD5 Checksum:	23b2a1ef85c18c71cc4d9a6678fedfaa

/// File Name:	fireburn.txt
Description:	Proof of concept exploit for Firefox 1.0.4 for the InstallVersion.compareTo() vulnerability. Needs functional shellcode to work.
Author:	Aviv Raff
Homepage:	http://aviv.raffon.net/
File Size:	2912
Last Modified:	Dec 14 09:18:31 2005
MD5 Checksum:	a7b9197c7c69f746d4d5c68ef60627c1

/// File Name:	openview_connectednodes_exec.pm.txt
Description:	This Metasploit module exploits an arbitrary command execution vulnerability in the HP OpenView connectedNodes.ovpl CGI application. The results of the command will not be displayed to the screen.
Author:	Valerio Tesei
File Size:	2731
Related OSVDB(s):	19057
Related CVE(s):	CVE-2005-2773
Last Modified:	Dec 14 09:26:31 2005
MD5 Checksum:	ae5ae0d62af26ea683bce8a720fc56eb

/// File Name:	VPNcheckpoint.txt
Description:	Checkpoint SecureClient NGX Security Policy can be easily disabled.
Author:	Viktor Steinmann
File Size:	2511
Last Modified:	Dec 14 05:18:25 2005
MD5 Checksum:	87814a3c0a01296907ec97561588d477

/// File Name:	ThWboard.txt
Description:	ThWboard version 3 beta 2.8 is susceptible to HTML injection, cross site scripting, and SQL injection attacks. Details provided.
Author:	trueend5
Homepage:	http://kapda.ir/
File Size:	2349
Last Modified:	Dec 14 05:22:53 2005
MD5 Checksum:	83304c54e2bbb7b0fe3c031772285bab

/// File Name:	phpcoin122.html
Description:	PhpCOIN version 1.2.2 is susceptible to arbitrary file inclusion, blind SQL injection, and path disclosure attacks.
Author:	rgod
Homepage:	http://rgod.altervista.org
Related Exploit:	phpcoin_122_incl_xpl.html"
File Size:	2291
Last Modified:	Dec 14 08:36:11 2005
MD5 Checksum:	06e0f015908740a626e9fcdad2aa017a

/// File Name:	phpBB2018.txt
Description:	phpBB 2.0.18 is susceptible to cross site scripting and path disclosure issues.
Author:	Maksymilian Arciemowicz
Homepage:	http://securityreason.com/
File Size:	2227
Last Modified:	Dec 27 09:22:48 2005
MD5 Checksum:	efaa7a3cf341f9cd6b6b794e94f020b6

/// File Name:	freeHelpInject.txt
Description:	It appears that the Free Help Desk software by Help Desk Reloaded leaves the install.php file in place post installation, allowing remote attackers to create accounts without any authentication or access.
Author:	BiPi_HaCk
Homepage:	http://www.NightmareSecurity.net
File Size:	2210
Last Modified:	Dec 3 07:19:51 2005
MD5 Checksum:	59d3001cc14911fe89d6c74dc9fab115

/// File Name:	webCalSQL.txt
Description:	WebCalendar version 0.1.0 is susceptible to SQL injection attacks via activity_log.php and edit_report_handler.php. layers_toggle.php is susceptible to CRLF injection. Exploitation details provided.
Author:	lwang
File Size:	2068
Last Modified:	Dec 2 17:57:58 2005
MD5 Checksum:	46ca1f68ff71adaff29ee3145854d376

/// File Name:	arabPortalSQL.txt
Description:	Arab Portal System version 2 Beta 2 is susceptible to SQL injection attacks.
Author:	Devil-00
File Size:	2062
Last Modified:	Dec 14 08:12:40 2005
MD5 Checksum:	fb558b6b1217c312052d18162d60388d