Section: .. / 0609-exploits /

Page 1 of 7
<< 1 2 3 4 5 6 7 >> Files 1 - 25 of 154

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	0609-exploits.tgz
Description:	Packet Storm new exploits for September, 2006.
Homepage:	http://packetstormsecurity.org/
File Size:	353032
Last Modified:	Oct 5 09:51:28 2006
MD5 Checksum:	0206dc67a401156ae56b31893ce3eef2

/// File Name:	smartstore.pdf
Description:	SmartStore.biz versions 3.5.11 and 3.5.13 suffer from a price manipulation flaw. Advisory is in both German and English.
Author:	Amir Alsbih
Homepage:	http://www.informatik.uni-freiburg.de/~alsbiha
File Size:	114806
Last Modified:	Sep 13 10:28:32 2006
MD5 Checksum:	e464a79d94f268e02071d5549129bc7f

/// File Name:	poc_fli.zip
Description:	Proof of concept exploit for Apple Quicktime versions 7.1 and below that are prone to a heap overflow vulnerability.
Author:	Rubén
Homepage:	http://www.reversemode.com/
Related File:	aq71.txt
File Size:	90371
Last Modified:	Sep 16 10:58:25 2006
MD5 Checksum:	cf1f6b5f5945620bad701434615c9817

/// File Name:	tibco_POC.c
Description:	TIBCO RendezVous versions 7.4.11 and below remote buffer overflow proof of concept exploit for Win32.
Author:	Andres Tarasco
Homepage:	http://www.514.es
Related Exploit:	TibcoPasswordExtractor.c"
File Size:	14535
Last Modified:	Sep 7 09:03:25 2006
MD5 Checksum:	2a6d0eee8828fee023939a3a92287c0d

/// File Name:	PHPQuiz-v.1.2.txt
Description:	PHPQuiz versions less than or equal 1.2 remote SQL injection exploit.
Author:	MorX Security Reseach Team
Homepage:	http://www.morx.org
File Size:	9336
Last Modified:	Sep 26 22:46:42 2006
MD5 Checksum:	fccfbd2b1d73ee814d44a73cfe00647a

/// File Name:	raptor_xkb.c
Description:	X11R6 versions 6.4 and below XKEYBOARD local buffer overflow exploit for Solaris on Sparc.
Author:	Marco Ivaldi
File Size:	9218
Last Modified:	Sep 14 09:13:40 2006
MD5 Checksum:	e6ebb1bba91c4d89a82f920ecd3acec6

/// File Name:	SiteSchool2.4.02.txt
Description:	Site@School 2.4.02 and below suffers from multiple remote command execution vulnerabilities.
Author:	Simo Ben youssef
Homepage:	http://www.morx.org/school.txt
File Size:	8153
Last Modified:	Sep 26 22:30:57 2006
MD5 Checksum:	cc6518c3af1fef29c314e1a959ac5591

/// File Name:	netapi_win2003.pm.txt
Description:	This Metasploit module exploits the MS Windows NetplsRemote() remote overflow as described in MS06-040. This particular exploit is for Windows Server 2003 SP0.
Author:	Trirat Puttaraksa
Homepage:	http://sf-freedom.blogspot.com/
File Size:	6474
Last Modified:	Sep 14 09:16:24 2006
MD5 Checksum:	326acdf5b6cc7c7827d7dd8c68138d4d

/// File Name:	oscommerce22-php.txt
Description:	Proof of concept exploit written in PHP for osCommerce versions 2.2 Milestone 2 and below with suffer from a SQL injection vulnerability.
Author:	Perseus
File Size:	6202
Last Modified:	Sep 7 07:38:47 2006
MD5 Checksum:	ec4802d58080be82a80a9ff1eeed2cd6

/// File Name:	powerzip-exp.txt
Description:	PowerZip versions 7.06.3895 and below long filename handling buffer overflow exploit.
Author:	bratax
Homepage:	http://www.bratax.be/
File Size:	5798
Last Modified:	Sep 7 09:43:08 2006
MD5 Checksum:	2689417d7edee712bf8337a175455d84

/// File Name:	sol-sparc-xkb.c
Description:	Proof of concept code for the X11R6 XKEYBOARD extension strcmp() buffer overflow vulnerability. Written for Solaris 8, 9, and 10 on the SPARC architecture.
Author:	RISE Security, Ramon de Carvalho Valle
Homepage:	http://www.risesecurity.org/
Related File:	RISE-2006001.txt
File Size:	5782
Last Modified:	Sep 8 09:03:28 2006
MD5 Checksum:	d519d3c2e1c4a250425f76b723ca6a87

/// File Name:	phpfusion6014.txt
Description:	PHPFusion versions 6.01.4 and below extract()/_SERVER[REMOTE_ADDR] SQL injection exploit.
Author:	rgod
Homepage:	http://retrogod.altervista.org/
File Size:	5747
Last Modified:	Sep 8 07:58:12 2006
MD5 Checksum:	d11b1b0c9e05e6f2dc0ea42ffb301312

/// File Name:	dokuwiki20060309b.txt
Description:	DokuWiki versions 2006-03-09b and below /bin/dwpage.php remote command execution exploit.
Author:	rgod
Homepage:	http://retrogod.altervista.org/
File Size:	5146
Last Modified:	Sep 8 08:44:29 2006
MD5 Checksum:	41ec6ac54289d0383555f64d716f513a

/// File Name:	0013.txt
Description:	Mailman version 2.1.8 suffers from cross site scripting and log file injection vulnerabilities.
Author:	Moritz Naumann
Homepage:	http://moritz-naumann.com/
File Size:	5134
Last Modified:	Sep 14 09:40:20 2006
MD5 Checksum:	3ef385a1243c6f1375e6bb6be8f1fcb7

/// File Name:	ROXIO_RACE_NETRAGARD-20060624.txt
Description:	Deja Vu, which is bundled with Roxio Toast 7, creates ruby scripts in the /tmp directory. These scripts contain commands which are executed with escalated privileges. A race condition exists which makes it possible to execute arbitrary commands against the system or gain root level access.
Author:	Adriel T. Desautels
Homepage:	http://www.netragard.com/
File Size:	4970
Last Modified:	Sep 13 10:56:24 2006
MD5 Checksum:	b664c1e14707b5901996489b95fbd02e

/// File Name:	phpunity.txt
Description:	phpunity.postcard suffers from a remote file inclusion vulnerability in gallery_path.
Author:	Rivertam
File Size:	4960
Last Modified:	Sep 14 09:10:55 2006
MD5 Checksum:	bf78e2f75270ec266a7e8aa020157851

/// File Name:	softbb01.txt
Description:	SoftBB version 0.1 remote PHP code execution exploit.
Author:	DarkFig
File Size:	4869
Last Modified:	Sep 7 10:16:30 2006
MD5 Checksum:	b6694c818b76e4eac4be4541e2ac21e6

/// File Name:	zipcentral.txt
Description:	ZipCentral version 4.01 ZIP file handling local buffer overflow exploit.
Author:	bratax
Homepage:	http://www.bratax.be/
File Size:	4805
Last Modified:	Sep 7 09:41:37 2006
MD5 Checksum:	48c74e9b2526d025c0a6b716e7aea55e

/// File Name:	sqlledger.txt
Description:	SQL-Ledger uses a fundamentally flawed approach to session authentication. All versions of SQL-Ledger from 2.4.4 to the present (2.6.17 as of this writing) are vulnerable.
Author:	Chris Travers
File Size:	4607
Last Modified:	Sep 8 07:50:44 2006
MD5 Checksum:	4c66054153089898e475c523e3a009ee

/// File Name:	secunia-taggerle.txt
Description:	Secunia Research has discovered some vulnerabilities in Tagger LE, which can be exploited by malicious people to compromise a vulnerable system.
Author:	Andreas Sandblad
Homepage:	http://secunia.com/
File Size:	4548
Related CVE(s):	CVE-2006-4437
Last Modified:	Sep 16 08:56:23 2006
MD5 Checksum:	744b9c9612e24b0bb20b92238f0bc9a6

/// File Name:	jupiterCMS-sql.txt
Description:	The Jupiter CMS suffers from SQL injection, full path disclosure, and cross site scripting vulnerabilities.
Author:	HACKERS PAL
Homepage:	http://www.soqor.net
File Size:	4507
Last Modified:	Sep 16 09:50:18 2006
MD5 Checksum:	9cbbfd6b9fc2d80a9509c041497ad69d

/// File Name:	TibcoPasswordExtractor.c
Description:	TIBCO RendezVous versions 7.4.11 and below local password extractor exploit.
Author:	Andres Tarasco
Homepage:	http://www.514.es
Related Exploit:	tibco_POC.c"
File Size:	4499
Last Modified:	Sep 7 09:04:17 2006
MD5 Checksum:	3ca032c8c903aa681f17fd3ad07c0b47

/// File Name:	simpleblog0day.txt
Description:	SimpleBlog versions 2.3 and below remote SQL injection exploit.
Author:	MurderSkillz, Vipsta
File Size:	4377
Last Modified:	Sep 7 10:17:52 2006
MD5 Checksum:	b80f30e4a75445ba182bb05333f64210

/// File Name:	daxctle2.c
Description:	Internet Explorer COM object heap overflow download execution exploit.
Author:	nop
Homepage:	http://www.xsec.org/
File Size:	4178
Last Modified:	Sep 14 09:17:55 2006
MD5 Checksum:	164bd6dd02aa557a8de6030b1555f0d7

/// File Name:	phpBypass.txt
Description:	PHP versions 5.1.6 and below and versions 4.4.4 and below suffer from a php_admin* bypass via ini_restore().
Author:	Maksymilian Arciemowicz
Homepage:	http://securityreason.com/
File Size:	4157
Related CVE(s):	CVE-2006-4625
Last Modified:	Sep 13 09:20:47 2006
MD5 Checksum:	1878f69c3fe05dbb63ef2f4d81c628ff