Section:  .. / 0910-exploits  /

Page 6 of 9
<< 1 2 3 4 5 6 7 8 9 >> Files 125 - 150 of 210
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: novelldcon-xss.txt
Description:
 Novell Edirectory version 8.8 SP5 suffers from a cross site scripting vulnerability.
Author:Francis Provencher
File Size:1946
Last Modified:Oct 1 21:27:54 2009
MD5 Checksum:125cd2ded34c978cd6b8cfb2163c964b

 ///  File Name: NSOADV-2009-002.txt
Description:
 The Websense Email Security web administration frontend suffers from a remote denial of service vulnerability. Proof of concept code included.
Author:Nikolas Sotiriu
Homepage:http://sotiriu.de/
File Size:3700
Last Modified:Oct 20 23:36:39 2009
MD5 Checksum:1d5cceb962cb6f2a9fb10f6049ace65d

 ///  File Name: NSOADV-2009-003.txt
Description:
 Websense Email Security suffers from a cross site scripting vulnerability. Proof of concept code included.
Author:Nikolas Sotiriu
Homepage:http://sotiriu.de/
File Size:4611
Last Modified:Oct 20 23:38:57 2009
MD5 Checksum:dc4e383f65ff502591b67ad9deedb564

 ///  File Name: ntp_overflow.rb.txt
Description:
 This Metasploit module exploits a stack based buffer overflow in the ntpd and xntpd service. By sending an overly long 'readvar' request it is possible to execute code remotely. As the stack is corrupted, this module uses the Egghunter technique.
Author:patrick
Homepage:http://www.metasploit.com
File Size:2730
Related OSVDB(s):805
Related CVE(s):CVE-2001-0414
Last Modified:Oct 27 17:30:47 2009
MD5 Checksum:5e227b8fec1a9ac01b1964aa5e77f258

 ///  File Name: nttrans.rb.txt
Description:
 This Metasploit module exploits the nttrans overflow in Samba 2.2.x.
Author:H D Moore
Homepage:http://www.metasploit.com
File Size:3872
Related OSVDB(s):6323
Related CVE(s):CVE-2003-0085
Last Modified:Oct 27 20:39:08 2009
MD5 Checksum:92023b633def751a71eef92adf4f610f

 ///  File Name: obophix-xss.txt
Description:
 OBOphiX version 1.0 suffers from a cross site scripting vulnerability.
Author:drunken danish rednecks
File Size:719
Last Modified:Oct 14 19:29:45 2009
MD5 Checksum:2e669afc7104f620230de3c9a5bc5659

 ///  File Name: ONSEC-09-004.txt
Description:
 Amiro.CMS versions 5.4.0.0 and below suffer from cross site scripting vulnerabilities.
Author:Vladimir Vorontsov
File Size:4443
Last Modified:Oct 19 20:01:36 2009
MD5 Checksum:3d07b62c68d1c12d93fc8c635689910f

 ///  File Name: ONSEC-09-005.txt
Description:
 Amiro.CMS versions 5.4.0.0 and below suffer from a root folder disclosure vulnerability.
Author:Vladimir Vorontsov
File Size:1159
Last Modified:Oct 19 20:01:47 2009
MD5 Checksum:14a6af0d4d36680d7369efc1bcfd5d27

 ///  File Name: ONSEC-09-019.txt
Description:
 Mura CMS versions 5.1 and below suffer from a cross site scripting vulnerability.
Author:Vladimir Vorontsov
File Size:2745
Last Modified:Oct 29 19:10:24 2009
MD5 Checksum:c704de36c333d5d41d1a7322de40af60

 ///  File Name: ONSEC-09-020.txt
Description:
 Mura CMS versions 5.1 and below suffer from a remote root folder disclosure vulnerability.
Author:Vladimir Vorontsov
File Size:2745
Last Modified:Oct 29 19:10:05 2009
MD5 Checksum:c704de36c333d5d41d1a7322de40af60

 ///  File Name: opendocman-sqlxss.txt
Description:
 OpenDocMan version 1.2.5 suffers from cross site scripting and a remote SQL injection vulnerability that allows for authentication bypass.
Author:Amol Naik
Related Exploit:opendocman-1.2rc3.txt
File Size:2802
Last Modified:Oct 20 23:34:13 2009
MD5 Checksum:1244726c9da6f364e1b486bad736fd2e

 ///  File Name: openview_connectednodes_exec.rb.txt
Description:
 This Metasploit module exploits an arbitrary command execution vulnerability in the HP OpenView connectedNodes.ovpl CGI application. The results of the command will be displayed to the screen.
Author:Valerio Tesei
File Size:2211
Related OSVDB(s):19057
Related CVE(s):CVE-2005-2773
Last Modified:Oct 30 14:36:15 2009
MD5 Checksum:70212cc6ee078b781d5e49c11799122c

 ///  File Name: openview_omniback_exec.rb.txt
Description:
 This Metasploit module uses a vulnerability in the OpenView Omniback II service to execute arbitrary commands. This vulnerability was discovered by DiGiT and his code was used as the basis for this module.
Author:H D Moore,patrick
Homepage:http://www.metasploit.com
File Size:6055
Related OSVDB(s):6018
Related CVE(s):CVE-2001-0311
Last Modified:Oct 27 17:26:35 2009
MD5 Checksum:b269dc6f7984d396b3e5e9acaf44dd3c

 ///  File Name: opera_configoverwrite.rb.txt
Description:
 Opera web browser in versions 9.10 and below allows unrestricted script access to its configuration page, opera:config, allowing an attacker to change settings and potentially execute arbitrary code.
File Size:4463
Last Modified:Oct 27 17:08:05 2009
MD5 Checksum:a1c3a6e51e21635db81c032dda7ed33c

 ///  File Name: opera_historysearch.rb.txt
Description:
 Certain constructs are not escaped correctly by Opera's History Search results. These can be used to inject scripts into the page, which can then be used to modify configuration settings and execute arbitrary commands. Affects Opera versions between 9.50 and 9.61.
Author:Aviv Raff,Roberto Suggi Liverani Craig
File Size:4598
Related OSVDB(s):49472
Related CVE(s):CVE-2008-4696
Last Modified:Oct 27 17:10:14 2009
MD5 Checksum:b217cb641cbc6f7e36e3f249a2a4cc1e

 ///  File Name: oscailt33-lfi.txt
Description:
 Oscailt CMS version 3.3 suffers from a local file inclusion vulnerability.
Author:s4r4d0
File Size:1231
Last Modified:Oct 28 16:17:47 2009
MD5 Checksum:06121f5b7a550f3fa731f8dbec8a1d13

 ///  File Name: pajax_remote_exec.rb.txt
Description:
 RedTeam has identified two security flaws in PAJAX versions 0.5.1 and below. It is possible to execute arbitrary PHP code from unchecked user input. Additionally, it is possible to include arbitrary files on the server ending in ".class.php".
Author:Matteo Cantoni
File Size:2260
Related OSVDB(s):24618
Related CVE(s):CVE-2006-1551
Last Modified:Oct 30 14:40:19 2009
MD5 Checksum:5c46e5087345be555dac48b809d7b6d6

 ///  File Name: palmpre-dos.txt
Description:
 Palm Pre WebOS versions 1.1 and below suffer from a floating point exception vulnerability when attempting to view a specially crafted web page.
Author:Townsend Ladd Harris
File Size:1485
Last Modified:Oct 14 17:26:42 2009
MD5 Checksum:189abe37d0abe144eb8678dd680a5909

 ///  File Name: pbboard-xss.txt
Description:
 PBBoard versions 2.0.2 and below suffer from a cross site scripting vulnerability.
Author:rUnViRuS
Homepage:http://www.sec-area.com/
File Size:1096
Last Modified:Oct 6 19:30:56 2009
MD5 Checksum:72cb25bdcde64096807788470a9e1f1f

 ///  File Name: peercast_url.rb.txt
Description:
 This Metasploit module exploits a stack overflow in PeerCast versions 0.1216 and below. The vulnerability is caused due to a boundary error within the handling of URL parameters.
Author:MC
File Size:1737
Related OSVDB(s):23777
Related CVE(s):CVE-2006-1148
Last Modified:Oct 27 13:39:52 2009
MD5 Checksum:1c9cb1b1efa0dfa224662c3ae0c34aea

 ///  File Name: pegasusmc-dos.txt
Description:
 Pegasus Mail Client version 4.51 suffers from a remote buffer overflow vulnerability. Proof of concept denial of service code included.
Author:Francis Provencher
File Size:3085
Last Modified:Oct 23 14:11:49 2009
MD5 Checksum:6b9040c53e0c1197f0131e4112e3e806

 ///  File Name: pentaho-xss.txt
Description:
 Pentaho version 1.7.0.1062 and below suffer from cross site scripting and disclosure vulnerabilities.
Author:euronymous
File Size:6597
Last Modified:Oct 15 14:47:11 2009
MD5 Checksum:7657af02b25405d624bc4c3b68b2d6a7

 ///  File Name: php168-exec.txt
Description:
 PHP168 version 6.0 suffers from a remote command execution vulnerability.
Author:Securitylab Security Research
Homepage:http://securitylab.ir/
File Size:723
Last Modified:Oct 28 10:30:30 2009
MD5 Checksum:99e5919f30aee51e96f8f08662a44399

 ///  File Name: php_unserialize_zval_cookie.rb.txt
Description:
 This Metasploit module exploits an integer overflow vulnerability in the unserialize() function of the PHP web server extension.
Author:GML,H D Moore,Stefan Esser
Homepage:http://www.metasploit.com
File Size:12349
Related OSVDB(s):32771
Related CVE(s):CVE-2007-1286
Last Modified:Oct 27 17:32:23 2009
MD5 Checksum:5328f9ccf0fabc5d2f0900b7b86d6114

 ///  File Name: php_vbulletin_template.rb.txt
Description:
 This Metasploit module exploits an arbitrary PHP code execution flaw in the vBulletin web forum software. This vulnerability is only present when the "Add Template Name in HTML Comments" option is enabled. All versions of vBulletin prior to 3.0.7 are affected.
Author:str0ke
File Size:2990
Related OSVDB(s):14047
Related CVE(s):CVE-2005-0511
Last Modified:Oct 30 14:45:56 2009
MD5 Checksum:c83f9da07beaf589f9aa2e8ad6021a4f