Section: .. / 0701-exploits /

Page 2 of 8
<< 1 2 3 4 5 6 7 8 >> Files 25 - 50 of 195

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	makit-sql.txt
Description:	makit news/blog poster versions 3 and below suffer from a remote SQL injection vulnerability in news_page.asp.
Author:	ajann
File Size:	635
Last Modified:	Jan 27 04:24:53 2007
MD5 Checksum:	8e70a155264cec17ec06d28f1d885477

/// File Name:	aspedge12b-sql.txt
Description:	ASP EDGE versions 1.2b and below suffer from a remote SQL injection vulnerability in user.asp.
Author:	ajann
File Size:	695
Last Modified:	Jan 27 04:24:09 2007
MD5 Checksum:	4b88ee9cef640c3a96c691623ec2b85d

/// File Name:	aspnews3-sql.txt
Description:	ASP NEWS version 3 suffers from a remote SQL injection vulnerability in news_detail.asp.
Author:	ajann
File Size:	606
Last Modified:	Jan 27 04:23:27 2007
MD5 Checksum:	347e116bf84c101508f8a4fc47d454c5

/// File Name:	gps12-sql.txt
Description:	GPS version 1.2 suffers from a remote SQL injection vulnerability in print.asp.
Author:	ajann
File Size:	791
Last Modified:	Jan 27 04:22:44 2007
MD5 Checksum:	b5d43c741acbe643beecef36350fafc0

/// File Name:	xero-rfi.txt
Description:	Xero Portal version 1.2 local file inclusion exploit.
Author:	XORON
File Size:	2204
Last Modified:	Jan 27 04:19:32 2007
MD5 Checksum:	756c7e0650eeb11ea0d4ba52e3936bf9

/// File Name:	PR06-14.txt
Description:	IP Phones based on the Centrality Communications/Aredfox PA168 chipset suffer from a weak session management vulnerability. Exploit included.
Author:	Adrian Pastor
File Size:	5708
Last Modified:	Jan 27 02:59:10 2007
MD5 Checksum:	e8e6296bf1fa46c2daa609be5b7276e3

/// File Name:	adv62-y3dips-2007.txt
Description:	Upload Service version 1.0 suffers from a remote file inclusion flaw.
Author:	y3dips
Homepage:	http://echo.or.id/
File Size:	1787
Last Modified:	Jan 24 07:42:09 2007
MD5 Checksum:	6d3348f6b4f7cb170691af62ef746048

/// File Name:	bitweaver-xss.txt
Description:	Bitweaver version 1.3.1 is susceptible to cross site scripting attacks.
Author:	CorryL
Homepage:	http://www.x0n3-h4ck.org
File Size:	2255
Last Modified:	Jan 24 07:00:32 2007
MD5 Checksum:	31e2f77c874db26053b7f2fcac26e80a

/// File Name:	mssploit.txt
Description:	Microsoft Visual C++ 6.0 is prone to a stack based memory corruption vulnerability during the processing of .RC resource files. Exploit included.
Author:	porkythepig
File Size:	8997
Last Modified:	Jan 24 06:56:36 2007
MD5 Checksum:	9f277dc650b5010dbe226aa45d3de9cd

/// File Name:	checkpoint-bypass.txt
Description:	Check Point Connectra End Point is susceptible to a bypass flaw.
Author:	Roni Bachar, Nir Goldshlager
File Size:	3462
Last Modified:	Jan 24 06:48:43 2007
MD5 Checksum:	b40c5ea6144c7d9a9583cbe7dcb2ad48

/// File Name:	fishcart-sql.txt
Description:	Fish Cart is susceptible to SQL injection attacks.
Author:	laurent gaffie
Homepage:	http://s-a-p.ca/
File Size:	292
Last Modified:	Jan 24 06:38:33 2007
MD5 Checksum:	b0db478fb1b5e24d29831a79f47dfc60

/// File Name:	MOAB-23-01-2007.pct
Description:	Month of Apple Bugs - A vulnerability exists in the handling of ARGB records (Alpha RGB) within PICT images, that leads to an exploitable memory corruption condition. This is the proof of concept exploit in .pct format that demonstrates this vulnerability.
Author:	LMH
Homepage:	http://projects.info-pull.com/moab/
File Size:	814
Related CVE(s):	CVE-2007-0462
Last Modified:	Jan 24 06:26:41 2007
MD5 Checksum:	fcae7cb4702799a0830019747e1aba01

/// File Name:	MOAB-22-01-2007.rb.txt
Description:	Month of Apple Bugs - InputManager provided by the user. Code within the input manager will run under wheel privileges. In combination with diskutil and a wheel-writable setuid binary, this allows unprivileged users to gain root privileges. This is the proof of concept exploit that demonstrates this vulnerability.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	1510
Related CVE(s):	CVE-2007-0023
Last Modified:	Jan 24 06:24:54 2007
MD5 Checksum:	0822f8f385381a6dada4f24b194e032f

/// File Name:	MOAB-21-01-2007.rb.txt
Description:	Month of Apple Bugs - The preference panes setuid helper, writeconfig, makes use of a shell script which lacks of PATH sanitization, allowing users to execute arbitrary binaries under root privileges. This is the proof of concept exploit that demonstrates this vulnerability.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	1034
Related CVE(s):	CVE-2007-0022
Last Modified:	Jan 24 06:23:36 2007
MD5 Checksum:	c16f4b258d9bb1185318cdd04d6a3967

/// File Name:	MOAB-20-01-2007.tgz
Description:	Month of Apple Bugs - Apple iChat AIM URI scheme (referred as the 'url handler') handling is affected by a classic format string vulnerability, allowing remote users to cause a denial of service condition or arbitrary code execution. This is the proof of concept exploit that demonstrates this vulnerability.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	407
Related CVE(s):	CVE-2007-0021
Last Modified:	Jan 24 06:22:31 2007
MD5 Checksum:	63c02efdb8962b52b3440ecb316ff35b

/// File Name:	MOAB-19-01-2007.tgz
Description:	Month of Apple Bugs - Transmit does not allocate enough space when dealing with the string passed on via the ftps:// URL handler, leading to an exploitable heap-based buffer overflow condition. This is the proof of concept exploit.
Author:	LMH,Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/
File Size:	585
Related CVE(s):	CVE-2007-0020
Last Modified:	Jan 24 06:19:49 2007
MD5 Checksum:	7370fba31d7c89633f6e4ad90a5ccc4a

/// File Name:	oracle10g-3.txt
Description:	Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL SQL injection exploit.
Author:	Joxean Koret
File Size:	783
Last Modified:	Jan 24 06:15:39 2007
MD5 Checksum:	cdfc10dc1336a499c185b532bc08da26

/// File Name:	oracle10g-2.txt
Description:	Oracle 10g SYS.KUPW$WORKER.MAIN PL SQL injection exploit.
Author:	Joxean Koret
File Size:	629
Last Modified:	Jan 24 06:14:52 2007
MD5 Checksum:	2806eef20abda4f9f473aeef06537bf7

/// File Name:	oracle10g-1.txt
Description:	Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL SQL injection exploit.
Author:	Joxean Koret
File Size:	653
Last Modified:	Jan 24 06:13:30 2007
MD5 Checksum:	e171f4cf083bf77791913273a9874716

/// File Name:	votepro40-exec.txt
Description:	Vote-Pro version 4.0 remote code execution exploit that makes use of poll_frame.php.
Author:	r0ut3r
File Size:	2932
Last Modified:	Jan 24 06:11:50 2007
MD5 Checksum:	77fd1fc711a31cbbaf61d993e5dae923

/// File Name:	bbclone-rfi.txt
Description:	BBClone version 0.31 suffers from a remote file inclusion vulnerability in selectlang.php.
Author:	Dr Max Virus
File Size:	1115
Last Modified:	Jan 24 06:10:43 2007
MD5 Checksum:	31741c2736b05fd8e448bbebe0919141

/// File Name:	phpxd03-rfi.txt
Description:	phpXD versions 0.3 and below remote file inclusion exploit.
Author:	Dr Max Virus
File Size:	1714
Last Modified:	Jan 24 06:09:45 2007
MD5 Checksum:	72fb1eb373124bdab06b785a4cf82561

/// File Name:	sami-dos.txt
Description:	Sami HTTP Server version 2.0.1 remote denial of service exploit.
Author:	shinnai
Homepage:	http://shinnai.altervista.org/
File Size:	1165
Last Modified:	Jan 24 06:08:36 2007
MD5 Checksum:	2d6c62525975eb3ba152376a50f73523

/// File Name:	JvmGifVulPoc.java.txt
Description:	Sun Microsystems Java GIF file parsing memory corruption vulnerability proof of concept exploit.
Author:	luoluo
File Size:	43107
Last Modified:	Jan 24 06:07:17 2007
MD5 Checksum:	412821d74eeff2204657e555982ab394

/// File Name:	freeforum090-rfi.txt
Description:	FreeForum version 0.9.0 suffers from a remote file inclusion vulnerability in index.php.
Author:	BorN To K!LL
File Size:	806
Last Modified:	Jan 24 06:05:41 2007
MD5 Checksum:	789b2ca3e8f51c521f3cdd365cb45810