Section:  .. / 0701-exploits  /

Page 4 of 8
<< 1 2 3 4 5 6 7 8 >> Files 75 - 100 of 195
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: gmx-xss.txt
Description:
The German free mail provider, GMX, suffers from a cross site scripting vulnerability.
Author:commander keen
File Size:2127
Last Modified:Jan 5 07:57:04 2007
MD5 Checksum:92169507c46934f5bd707ff904f8846e

 ///  File Name: tftpdwin042.txt
Description:
TFTPDWIN version 0.4.2 remote buffer overflow exploit.
Author:acaro
File Size:2095
Last Modified:Jan 16 04:29:45 2007
MD5 Checksum:99964cb405827681deff02aa17331ce9

 ///  File Name: devc4992.py.txt
Description:
Dev-C++ version 4.9.9.2 CPP file parsing local stack overflow proof of concept exploit.
Author:shinnai
Homepage:http://shinnai.altervista.org/
File Size:1983
Last Modified:Jan 31 05:09:05 2007
MD5 Checksum:3b200e9a5cfbe00a7c1ee6305f3aab23

 ///  File Name: MOAB-14-01-2007.c
Description:
Month of Apple Bugs - Proof of concept exploit for the _ATPsndrsp function. The _ATPsndrsp function is vulnerable to a heap-based buffer overflow condition, due to insufficient checking of user input. This leads to a denial of service condition and potential arbitrary code execution by unprivileged users.
Author:LMH
Homepage:http://projects.info-pull.com/moab/
File Size:1894
Related CVE(s):CVE-2007-0236
Last Modified:Jan 20 04:09:05 2007
MD5 Checksum:d8a22e613c075522ee7d1a0b3bdf1403

 ///  File Name: MOAB-28-01-2007.rb.txt
Description:
Month of Apple Bugs - crashdump follows symlinks within the /Library/Logs/CrashReporter/ directory, allowing admin-group users to execute arbitrary code and overwrite files with elevated privileges. In couple with a specially crafted Mach-O binary, this can be used to write a malicious crontab entry, which will run with root privileges. This ruby code demonstrates this vulnerability.
Author:LMH,Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/
File Size:1848
Related CVE(s):CVE-2007-0467
Last Modified:Jan 29 17:59:01 2007
MD5 Checksum:d2a1cdd08b0f39cc9d815a3572650b30

 ///  File Name: rapidkill.txt
Description:
RapidKill remote command execution exploit.
Author:Red_Dragon
Homepage:http://www.onhackerline.ir/
File Size:1837
Last Modified:Jan 24 05:59:53 2007
MD5 Checksum:f2d5f3eba36f433a29a46dc3e9eb29a9

 ///  File Name: googlePwned.txt
Description:
It is possible to access Google's blacklisted URL database which contains some juicy real logins and passwords.
Author:Rajesh Sethumadhavan
Homepage:http://www.xdisclose.com/
File Size:1820
Last Modified:Jan 4 03:52:00 2007
MD5 Checksum:a57451a6327efff092a654acb6b30374

 ///  File Name: lcs11-rfi.txt
Description:
Local Calendar System version 1.1 suffers from a remote file inclusion flaw.
Author:Tr_ZiNDaN
File Size:1796
Last Modified:Jan 29 17:29:32 2007
MD5 Checksum:c1397db7851ddeaef4bb0baff9e654ad

 ///  File Name: adv62-y3dips-2007.txt
Description:
Upload Service version 1.0 suffers from a remote file inclusion flaw.
Author:y3dips
Homepage:http://echo.or.id/
File Size:1787
Last Modified:Jan 24 07:42:09 2007
MD5 Checksum:6d3348f6b4f7cb170691af62ef746048

 ///  File Name: phpxd03-rfi.txt
Description:
phpXD versions 0.3 and below remote file inclusion exploit.
Author:Dr Max Virus
File Size:1714
Last Modified:Jan 24 06:09:45 2007
MD5 Checksum:72fb1eb373124bdab06b785a4cf82561

 ///  File Name: rediffbol.txt
Description:
Rediff Bol's ActiveX control allows any webpage to download and spawn any file.
Author:Gregory R. Panakkal
Homepage:http://www.infogreg.com/
File Size:1705
Last Modified:Jan 2 04:01:10 2007
MD5 Checksum:0c2edf49fb404cf977c80e16027985be

 ///  File Name: MOAB-04-01-2007.rb.txt
Description:
Proof of concept exploit for a format string vulnerability in the handling of iPhoto XML feeds title field that allows for potential remote arbitrary code execution.
Author:Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/index.html
Related File:DMA-2007-0104a.txt
File Size:1690
Last Modified:Jan 5 08:32:27 2007
MD5 Checksum:43c08a1cc97fc323401c9da3bb5e0083

 ///  File Name: ebp2x-rfi.txt
Description:
Easy Banner Pro version 2.x suffers from a remote file inclusion vulnerability.
Author:rUnViRuS
Homepage:http://www.sec-area.com/
File Size:1684
Last Modified:Jan 13 23:51:32 2007
MD5 Checksum:2ff922507439118ead78bc86c203e733

 ///  File Name: tlm-rfi.txt
Description:
TLM CMS versions 1.1 and below suffer from a remote file inclusion vulnerability.
Author:GolD_M
File Size:1681
Last Modified:Jan 14 01:01:05 2007
MD5 Checksum:eda173b0a50608ae27ba01a380445f34

 ///  File Name: cmsms102-xss.txt
Description:
CMS Made Simple version 1.0.2 suffers from multiple cross site scripting vulnerabilities.
Author:nanoymaster
Homepage:http://www.nanoy.org/
File Size:1605
Last Modified:Jan 5 09:00:15 2007
MD5 Checksum:45b660cfd50cbfca60bd1965aa475e17

 ///  File Name: lmmhi-xss.txt
Description:
Login Manager version 3.0 suffers from cross site scripting and SQL injection flaws.
Author:Doz
Homepage:http://www.hackerscenter.com/
File Size:1536
Last Modified:Jan 24 04:54:27 2007
MD5 Checksum:1f64f390ba8100bc42f0664757c05707

 ///  File Name: pdf-xss.txt
Description:
It appears that PDF has a flaw in it that allows arbitrary javascript to be executed.
Author:petko d. petkov
Homepage:http://www.gnucitizen.org/
File Size:1527
Last Modified:Jan 4 03:57:05 2007
MD5 Checksum:c3a253982d48edc846cc9203972f3cb2

 ///  File Name: MOAB-22-01-2007.rb.txt
Description:
Month of Apple Bugs - InputManager provided by the user. Code within the input manager will run under wheel privileges. In combination with diskutil and a wheel-writable setuid binary, this allows unprivileged users to gain root privileges. This is the proof of concept exploit that demonstrates this vulnerability.
Author:LMH,Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/
File Size:1510
Related CVE(s):CVE-2007-0023
Last Modified:Jan 24 06:24:54 2007
MD5 Checksum:0822f8f385381a6dada4f24b194e032f

 ///  File Name: MOAB-18-01-2007.rb.txt
Description:
Month of Apple Bugs - Proof of concept exploit rumpusd. rumpusd is vulnerable to different remotely exploitable heap-based buffer overflows, denial of service conditions and local privilege escalation issues.
Author:LMH,Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/
File Size:1448
Related CVE(s):CVE-2007-0019
Last Modified:Jan 20 04:17:46 2007
MD5 Checksum:f346f828f0229f5d5c055f66c3cc0e16

 ///  File Name: mybloggie215-xss.txt
Description:
myBloggie version 2.1.5 is susceptible to cross site scripting attacks.
Author:CorryL
Homepage:http://www.x0n3-h4ck.org
File Size:1427
Last Modified:Jan 20 02:40:26 2007
MD5 Checksum:748ad0ef345953a0fe74ecf6b9ea2c1c

 ///  File Name: VLCMediaSlayer-x86.pl.txt
Description:
Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code.
Author:LMH, Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/index.html
File Size:1422
Related CVE(s):CVE-2007-0017
Last Modified:Jan 4 09:15:18 2007
MD5 Checksum:7be8a31aa5f26b9929610d23d102a6bc

 ///  File Name: mpsw-rfi.txt
Description:
The Magic Photo Storage website suffers from a remote file inclusion vulnerability.
Author:k1tk4t
File Size:1406
Last Modified:Jan 13 22:57:30 2007
MD5 Checksum:c874f011c71475bc4ea69e02693e9658

 ///  File Name: VLCMediaSlayer-ppc.pl.txt
Description:
Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This is just a vanilla format string exploit for OSX on ppc.
Author:LMH, Kevin Finisterre
Homepage:http://projects.info-pull.com/moab/index.html
File Size:1403
Related CVE(s):CVE-2007-0017
Last Modified:Jan 4 09:15:37 2007
MD5 Checksum:a2bdc5495f04b820780a295997ff9d4c

 ///  File Name: ashopcom-xss.txt
Description:
Ashop Commerce suffers from multiple cross site scripting vulnerabilities.
Author:DoZ
Homepage:http://www.hackerscenter.com/
File Size:1398
Last Modified:Jan 2 04:10:24 2007
MD5 Checksum:7b63705346ac3a4050db334c4c17e528

 ///  File Name: openpinboard-rfi.txt
Description:
OpenPinboard version 2.0 suffers from a remote file inclusion vulnerability.
Author:ZooZ
File Size:1380
Last Modified:Jan 4 03:55:26 2007
MD5 Checksum:bda44ea4348866f6be4d39492cfb3b14