Section:  .. / 0712-exploits  /

Page 1 of 8
<< 1 2 3 4 5 6 7 8 >> Files 1 - 25 of 188
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: efsup.zip
Description:
Easy File Sharing Web Server versions 4.5 and below upload directory traversal proof of concept exploit.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related File:efsup.txt
File Size:39218
Last Modified:Dec 7 20:18:01 2007
MD5 Checksum:416f4f6626f3a06483fa8b1d4d11c396

 ///  File Name: hc-multi.txt
Description:
Hosting Controller versions 6.1 Hot fix through 3.3 suffer from multiple vulnerabilities including administrative takeover and SQL injection.
Author:AmnPardaz Security Research Team
Homepage:http://www.bugreport.ir/
File Size:20789
Last Modified:Dec 13 17:56:02 2007
MD5 Checksum:2d44d806bd7d909749d5246b551ee1a2

 ///  File Name: jetaudio-overflow.txt
Description:
jetAudio version 7.0.5 COWON Media Center MP4 stack overflow exploit that spawns a shell on port 49152.
Author:SYS 49152
File Size:16617
Last Modified:Dec 17 21:12:30 2007
MD5 Checksum:037fd230a1e13221c3dd4465671cefc8

 ///  File Name: wmp-overflow.txt
Description:
Windows Media Player version 6.4 MP4 stack overflow exploit that spawns a shell on port 49152.
Author:SYS 49152
File Size:15276
Last Modified:Dec 8 17:36:11 2007
MD5 Checksum:95283f2c7f560eaf7ee9319127e20411

 ///  File Name: samba_nmbddos.c
Description:
Denial of service exploit for Samba versions below 3.0.27 that makes use of the NetBIOS replies stack-based buffer overflow vulnerability.
Author:Gill Bates
File Size:10790
Related CVE(s):CVE-2007-5398
Last Modified:Dec 17 20:23:26 2007
MD5 Checksum:3e4b89f27e0d7b8b5b04028a306ac357

 ///  File Name: hpcompaq-exec.txt
Description:
Multiple Hewlett-Packard notebook series are prone to a remote code execution attack. The manufacturer's preinstalled software contains a critical flaw within the software built to support one-touch button quick feature access. This exploit takes advantage of this issue.
Author:porkythepig
File Size:10396
Last Modified:Dec 11 22:21:41 2007
MD5 Checksum:9391f4d9db579653c77665250f2e00bf

 ///  File Name: phpsf-multi.txt
Description:
The PHP Security Framework Beta 1 is susceptible to remote file inclusion and SQL injection vulnerabilities.
Author:DarkFig
File Size:8702
Last Modified:Dec 17 20:31:12 2007
MD5 Checksum:e07bfb80e877c580185c4b1ab451a873

 ///  File Name: 2007-MessageQueue.zip
Description:
Microsoft Windows 2000 AS SP4 Message Queue exploit that takes advantage of the vulnerability noted in MS07-065.
Author:Mario Ballano, Andres Tarasco
Homepage:http://www.514.es/
File Size:7890
Related CVE(s):CVE-2007-3039
Last Modified:Dec 24 14:25:10 2007
MD5 Checksum:d4a9641e4844b339993313f345494b11

 ///  File Name: hp-activex.txt
Description:
Yet another remotely exploitable flaw has been discovered in the HP notebook preinstalled software. This particular vulnerability takes advantage of an Active-X control. Exploits included.
Author:porkythepig
File Size:7830
Last Modified:Dec 19 21:07:57 2007
MD5 Checksum:e945db8b2b9562a1edc4b1eb697f4465

 ///  File Name: dosboxxx.zip
Description:
Proof of concept exploit for DOSBox versions 0.72 and below which suffer from a full filesystem access vulnerability.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related File:dosboxxx.txt
File Size:7644
Last Modified:Dec 10 20:11:29 2007
MD5 Checksum:eb79708fbc974a763631865111a510bd

 ///  File Name: auracms-admin.txt
Description:
AuraCMS version 2.2 remote administrator addition exploit that makes use of admin_users.php.
Author:k1tk4t
Homepage:http://newhack.org/
File Size:7634
Last Modified:Dec 28 17:24:01 2007
MD5 Checksum:df158ce4f30ceec91a6626743af2fce6

 ///  File Name: cutenews-hash.txt
Description:
CuteNews versions 1.45 and below administrative password hash fetch exploit.
Author:Janek Vind aka waraxe
Homepage:http://www.waraxe.us/
File Size:7487
Last Modified:Dec 24 14:36:35 2007
MD5 Checksum:49bb7b44ed9464814afa08db6c1c9f0b

 ///  File Name: inotes6w2-overwrite.txt
Description:
IBM Domino Web Access upload module inotes6.dll SEH overwrite exploit that has the same offset as the dwa7w exploit but the same class id as the original inotes6 exploit.
Author:Elazar Broad
File Size:7485
Related CVE(s):CVE-2007-4474
Last Modified:Dec 31 16:53:07 2007
MD5 Checksum:7863b8221e3df7b886199ab050f46507

 ///  File Name: inotes6-overwrite.txt
Description:
IBM Domino Web Access upload module inotes6.dll SEH overwrite exploit.
Author:Elazar Broad
File Size:7348
Related CVE(s):CVE-2007-4474
Last Modified:Dec 31 16:47:10 2007
MD5 Checksum:e3301b99f05548fbfc7f9e67001a61cd

 ///  File Name: dwa7w-overwrite.txt
Description:
IBM Domino Web Access upload module dwa7w.dll SEH overwrite exploit.
Author:Elazar Broad
File Size:7107
Related CVE(s):CVE-2007-4474
Last Modified:Dec 31 16:50:16 2007
MD5 Checksum:4796c09a1f5d2d690f5db02ac5901906

 ///  File Name: macrovision-overwrite.txt
Description:
Macrovision Installshield isusweb.dll version 5.1.100.47363 SEH overwrite exploit.
Author:Elazar Broad
File Size:7051
Last Modified:Dec 31 16:49:21 2007
MD5 Checksum:5093abfdd8d60b5b23257a1bf99f9a8c

 ///  File Name: applesmb-overflow.txt
Description:
Apple Mac OS X mount_smbf stack based buffer overflow exploit.
Author:Subreption LLC.
Homepage:http://subreption.com/
File Size:6870
Related CVE(s):CVE-2007-3876
Last Modified:Dec 19 19:33:21 2007
MD5 Checksum:1ac4be4b505f47dcdef975d29eb55086

 ///  File Name: persists-addfolder.txt
Description:
Exploit that will spawn winexec or a bindshell when making use of a buffer overflow vulnerability in the AddFolder() method of the Persists Software XUpload control version 2.1.0.1.
Author:Elazar Broad
File Size:6784
Last Modified:Dec 28 19:39:53 2007
MD5 Checksum:df4a253830283d22460d93d3c1b40c92

 ///  File Name: appleupdate-exec.txt
Description:
Apple Mac OS X Software Update suffers from a remote command execution vulnerability. Full Metasploit module included.
Author:Moritz Jodeit
File Size:6702
Related CVE(s):CVE-2007-5863
Last Modified:Dec 17 21:20:24 2007
MD5 Checksum:673d6161670d6122a530c953272d0532

 ///  File Name: vantage-overflow.txt
Description:
Vantage Linguistics AnswerWorks version 4 API ActiveX control buffer overflow exploit.
Author:Elazar Broad
File Size:6672
Last Modified:Dec 31 16:40:24 2007
MD5 Checksum:501d0e0cdb3ac6a5b8b743d7e07d6cd1

 ///  File Name: nullsoft-overflow.txt
Description:
Nullsoft Winamp MP4 tags stack overflow exploit. Tuned for version 5.32. Spawns a shell on port 49152.
Author:SYS 49152
File Size:6512
Last Modified:Dec 8 17:35:08 2007
MD5 Checksum:715c0d7d777fc6bc1e246e7fb86ab62c

 ///  File Name: PR07-39.txt
Description:
Directory traversal, cross site scripting, and SQL injection vulnerabilities exist in the Absolute News Manager .NET version 5.1.
Author:Adrian Pastor, Jan Fry, Richard Brain
Homepage:http://www.procheckup.com/
File Size:6437
Last Modified:Dec 5 23:01:08 2007
MD5 Checksum:684697b6b76075b8a430cdfae765642b

 ///  File Name: peercasthof.zip
Description:
Demonstration exploit for PeerCast versions 0.1217 and below which suffer from a heap overflow vulnerability.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related File:peercasthof.txt
File Size:6263
Last Modified:Dec 17 21:14:55 2007
MD5 Checksum:8d0618fd0df19daa84101c681e64f52e

 ///  File Name: runcms-sql.txt
Description:
RunCMS version 1.6 get admin cookie remote blind SQL injection exploit.
Author:Sh2kerr
Homepage:http://www.dsec.ru/
File Size:6020
Last Modified:Dec 28 17:25:14 2007
MD5 Checksum:087b777aa997d970867589f82d3062e7

 ///  File Name: smb_mailslot.c
Description:
Proof of concept denial of service exploit for Samba version 3.0.27a that makes use of the send_mailslot() remote buffer overflow vulnerability.
Author:x86
File Size:5859
Last Modified:Dec 17 20:13:51 2007
MD5 Checksum:3485bae9e408f3c94dc69a10d99e5e75