Section: .. / 0712-exploits /

Page 1 of 8
<< 1 2 3 4 5 6 7 8 >> Files 1 - 25 of 188

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	efsup.zip
Description:	Easy File Sharing Web Server versions 4.5 and below upload directory traversal proof of concept exploit.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	efsup.txt
File Size:	39218
Last Modified:	Dec 7 20:18:01 2007
MD5 Checksum:	416f4f6626f3a06483fa8b1d4d11c396

/// File Name:	hc-multi.txt
Description:	Hosting Controller versions 6.1 Hot fix through 3.3 suffer from multiple vulnerabilities including administrative takeover and SQL injection.
Author:	AmnPardaz Security Research Team
Homepage:	http://www.bugreport.ir/
File Size:	20789
Last Modified:	Dec 13 17:56:02 2007
MD5 Checksum:	2d44d806bd7d909749d5246b551ee1a2

/// File Name:	jetaudio-overflow.txt
Description:	jetAudio version 7.0.5 COWON Media Center MP4 stack overflow exploit that spawns a shell on port 49152.
Author:	SYS 49152
File Size:	16617
Last Modified:	Dec 17 21:12:30 2007
MD5 Checksum:	037fd230a1e13221c3dd4465671cefc8

/// File Name:	wmp-overflow.txt
Description:	Windows Media Player version 6.4 MP4 stack overflow exploit that spawns a shell on port 49152.
Author:	SYS 49152
File Size:	15276
Last Modified:	Dec 8 17:36:11 2007
MD5 Checksum:	95283f2c7f560eaf7ee9319127e20411

/// File Name:	samba_nmbddos.c
Description:	Denial of service exploit for Samba versions below 3.0.27 that makes use of the NetBIOS replies stack-based buffer overflow vulnerability.
Author:	Gill Bates
File Size:	10790
Related CVE(s):	CVE-2007-5398
Last Modified:	Dec 17 20:23:26 2007
MD5 Checksum:	3e4b89f27e0d7b8b5b04028a306ac357

/// File Name:	hpcompaq-exec.txt
Description:	Multiple Hewlett-Packard notebook series are prone to a remote code execution attack. The manufacturer's preinstalled software contains a critical flaw within the software built to support one-touch button quick feature access. This exploit takes advantage of this issue.
Author:	porkythepig
File Size:	10396
Last Modified:	Dec 11 22:21:41 2007
MD5 Checksum:	9391f4d9db579653c77665250f2e00bf

/// File Name:	phpsf-multi.txt
Description:	The PHP Security Framework Beta 1 is susceptible to remote file inclusion and SQL injection vulnerabilities.
Author:	DarkFig
File Size:	8702
Last Modified:	Dec 17 20:31:12 2007
MD5 Checksum:	e07bfb80e877c580185c4b1ab451a873

/// File Name:	2007-MessageQueue.zip
Description:	Microsoft Windows 2000 AS SP4 Message Queue exploit that takes advantage of the vulnerability noted in MS07-065.
Author:	Mario Ballano, Andres Tarasco
Homepage:	http://www.514.es/
File Size:	7890
Related CVE(s):	CVE-2007-3039
Last Modified:	Dec 24 14:25:10 2007
MD5 Checksum:	d4a9641e4844b339993313f345494b11

/// File Name:	hp-activex.txt
Description:	Yet another remotely exploitable flaw has been discovered in the HP notebook preinstalled software. This particular vulnerability takes advantage of an Active-X control. Exploits included.
Author:	porkythepig
File Size:	7830
Last Modified:	Dec 19 21:07:57 2007
MD5 Checksum:	e945db8b2b9562a1edc4b1eb697f4465

/// File Name:	dosboxxx.zip
Description:	Proof of concept exploit for DOSBox versions 0.72 and below which suffer from a full filesystem access vulnerability.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	dosboxxx.txt
File Size:	7644
Last Modified:	Dec 10 20:11:29 2007
MD5 Checksum:	eb79708fbc974a763631865111a510bd

/// File Name:	auracms-admin.txt
Description:	AuraCMS version 2.2 remote administrator addition exploit that makes use of admin_users.php.
Author:	k1tk4t
Homepage:	http://newhack.org/
File Size:	7634
Last Modified:	Dec 28 17:24:01 2007
MD5 Checksum:	df158ce4f30ceec91a6626743af2fce6

/// File Name:	cutenews-hash.txt
Description:	CuteNews versions 1.45 and below administrative password hash fetch exploit.
Author:	Janek Vind aka waraxe
Homepage:	http://www.waraxe.us/
File Size:	7487
Last Modified:	Dec 24 14:36:35 2007
MD5 Checksum:	49bb7b44ed9464814afa08db6c1c9f0b

/// File Name:	inotes6w2-overwrite.txt
Description:	IBM Domino Web Access upload module inotes6.dll SEH overwrite exploit that has the same offset as the dwa7w exploit but the same class id as the original inotes6 exploit.
Author:	Elazar Broad
File Size:	7485
Related CVE(s):	CVE-2007-4474
Last Modified:	Dec 31 16:53:07 2007
MD5 Checksum:	7863b8221e3df7b886199ab050f46507

/// File Name:	inotes6-overwrite.txt
Description:	IBM Domino Web Access upload module inotes6.dll SEH overwrite exploit.
Author:	Elazar Broad
File Size:	7348
Related CVE(s):	CVE-2007-4474
Last Modified:	Dec 31 16:47:10 2007
MD5 Checksum:	e3301b99f05548fbfc7f9e67001a61cd

/// File Name:	dwa7w-overwrite.txt
Description:	IBM Domino Web Access upload module dwa7w.dll SEH overwrite exploit.
Author:	Elazar Broad
File Size:	7107
Related CVE(s):	CVE-2007-4474
Last Modified:	Dec 31 16:50:16 2007
MD5 Checksum:	4796c09a1f5d2d690f5db02ac5901906

/// File Name:	macrovision-overwrite.txt
Description:	Macrovision Installshield isusweb.dll version 5.1.100.47363 SEH overwrite exploit.
Author:	Elazar Broad
File Size:	7051
Last Modified:	Dec 31 16:49:21 2007
MD5 Checksum:	5093abfdd8d60b5b23257a1bf99f9a8c

/// File Name:	applesmb-overflow.txt
Description:	Apple Mac OS X mount_smbf stack based buffer overflow exploit.
Author:	Subreption LLC.
Homepage:	http://subreption.com/
File Size:	6870
Related CVE(s):	CVE-2007-3876
Last Modified:	Dec 19 19:33:21 2007
MD5 Checksum:	1ac4be4b505f47dcdef975d29eb55086

/// File Name:	persists-addfolder.txt
Description:	Exploit that will spawn winexec or a bindshell when making use of a buffer overflow vulnerability in the AddFolder() method of the Persists Software XUpload control version 2.1.0.1.
Author:	Elazar Broad
File Size:	6784
Last Modified:	Dec 28 19:39:53 2007
MD5 Checksum:	df4a253830283d22460d93d3c1b40c92

/// File Name:	appleupdate-exec.txt
Description:	Apple Mac OS X Software Update suffers from a remote command execution vulnerability. Full Metasploit module included.
Author:	Moritz Jodeit
File Size:	6702
Related CVE(s):	CVE-2007-5863
Last Modified:	Dec 17 21:20:24 2007
MD5 Checksum:	673d6161670d6122a530c953272d0532

/// File Name:	vantage-overflow.txt
Description:	Vantage Linguistics AnswerWorks version 4 API ActiveX control buffer overflow exploit.
Author:	Elazar Broad
File Size:	6672
Last Modified:	Dec 31 16:40:24 2007
MD5 Checksum:	501d0e0cdb3ac6a5b8b743d7e07d6cd1

/// File Name:	nullsoft-overflow.txt
Description:	Nullsoft Winamp MP4 tags stack overflow exploit. Tuned for version 5.32. Spawns a shell on port 49152.
Author:	SYS 49152
File Size:	6512
Last Modified:	Dec 8 17:35:08 2007
MD5 Checksum:	715c0d7d777fc6bc1e246e7fb86ab62c

/// File Name:	PR07-39.txt
Description:	Directory traversal, cross site scripting, and SQL injection vulnerabilities exist in the Absolute News Manager .NET version 5.1.
Author:	Adrian Pastor, Jan Fry, Richard Brain
Homepage:	http://www.procheckup.com/
File Size:	6437
Last Modified:	Dec 5 23:01:08 2007
MD5 Checksum:	684697b6b76075b8a430cdfae765642b

/// File Name:	peercasthof.zip
Description:	Demonstration exploit for PeerCast versions 0.1217 and below which suffer from a heap overflow vulnerability.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	peercasthof.txt
File Size:	6263
Last Modified:	Dec 17 21:14:55 2007
MD5 Checksum:	8d0618fd0df19daa84101c681e64f52e

/// File Name:	runcms-sql.txt
Description:	RunCMS version 1.6 get admin cookie remote blind SQL injection exploit.
Author:	Sh2kerr
Homepage:	http://www.dsec.ru/
File Size:	6020
Last Modified:	Dec 28 17:25:14 2007
MD5 Checksum:	087b777aa997d970867589f82d3062e7

/// File Name:	smb_mailslot.c
Description:	Proof of concept denial of service exploit for Samba version 3.0.27a that makes use of the send_mailslot() remote buffer overflow vulnerability.
Author:	x86
File Size:	5859
Last Modified:	Dec 17 20:13:51 2007
MD5 Checksum:	3485bae9e408f3c94dc69a10d99e5e75