Section: .. / 0709-exploits /
| /// File Name: |
mssql-bof.txt |
Description:
|
Microsoft SQL Server Distributed Management Objects buffer overflow exploit that launches calc.exe.
| | Author: | 96sysim | | File Size: | 2686 | | Last Modified: | Sep 13 19:26:28 2007 |
| MD5 Checksum: | 7ef7cc080ad75b1d50f0aa822933819d |
|
| /// File Name: |
joomlaradio-rfi.txt |
Description:
|
The Joomla Radio component version 5 suffers from a remote file inclusion vulnerability.
| | Author: | Morgan | | Homepage: | http://www.ehmorgan.net/ | | File Size: | 536 | | Last Modified: | Sep 13 19:24:51 2007 |
| MD5 Checksum: | b3fe6bf189d8767e8277dfe67292bc27 |
|
| /// File Name: |
kwsphp-sql.txt |
Description:
|
The KwsPHP module suffers from a remote SQL injection vulnerability.
| | Author: | H-T Team | | Homepage: | http://no-hack.fr/ | | File Size: | 1083 | | Last Modified: | Sep 13 19:23:46 2007 |
| MD5 Checksum: | 9310b13774e9deadaaaee2cec8bd8162 |
|
| /// File Name: |
jetcast-dos.txt |
Description:
|
JetCast Server version 2.0.0.4308 remote denial of service exploit.
| | Author: | vCore | | File Size: | 1491 | | Last Modified: | Sep 13 19:19:30 2007 |
| MD5 Checksum: | 37892e9c804086df28233ed587114396 |
|
| /// File Name: |
boinc-xss.txt |
Description:
|
Boinc Forum versions 5.10.20 and below suffer from cross site scripting vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1195 | | Last Modified: | Sep 12 20:11:00 2007 |
| MD5 Checksum: | 9caceec96ca29858ae7f5857610e6025 |
|
| /// File Name: |
hackersafe-plesk.txt |
Description:
|
Plesk for Windows versions 7.6.1, 8.1.0, 8.1.1, and 8.2.0 suffer from a SQL injection vulnerability.
| | Author: | Nick Merritt | | Homepage: | http://www.hackersafe.com/ | | File Size: | 2016 | | Last Modified: | Sep 12 20:00:12 2007 |
| MD5 Checksum: | f422dc43a2d2337d90b9e8966bdf2cba |
|
| /// File Name: |
ibmatom-xss.txt |
Description:
|
The Atom feed in www.ibm.com is susceptible to cross site scripting attacks.
| | Author: | HASEGAWA Yosuke | | File Size: | 2029 | | Last Modified: | Sep 11 18:59:48 2007 |
| MD5 Checksum: | 26f9b1f118e7cd065f82288a58f60b58 |
|
| /// File Name: |
OS2A_1010.txt |
Description:
|
A denial of service flaw exists in RealPlayer and HelixPlayer when a user tries to open a malformed .au file. The flaw is due to a Division by Zero error when processing a malformed AU file. An attacker must entice an unsuspecting user to open a maliciously crafted AU file. Realplayer versions 10.1.0.3114 and below and Helixplayer version 1.0.6.778 are affected. Proof of concept included.
| | Author: | Nagendra Kumar G, Chandan S, Arun Kethipelly | | File Size: | 3217 | | Last Modified: | Sep 11 18:56:33 2007 |
| MD5 Checksum: | fca01d40368ad29db7a2e5c1162e3153 |
|
| /// File Name: |
nuclearbb-rfi.txt |
Description:
|
NuclearBB Alpha 2 suffers from a remote file inclusion vulnerability.
| | Author: | Rootshell Security Team | | File Size: | 570 | | Last Modified: | Sep 11 18:53:02 2007 |
| MD5 Checksum: | 3a9017b3f7d0982f3473dc9fcd6a2c8e |
|
| /// File Name: |
msvb-vbto.txt |
Description:
|
Microsoft Visual Studio version 6.0 file overwrite exploit that makes use of VBTOVSI.DLL version 1.0.0.0.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 1543 | | Last Modified: | Sep 11 18:49:11 2007 |
| MD5 Checksum: | 4e500eeb605be4be4bf1a6b39aa98203 |
|
| /// File Name: |
msvs-pdwiz.txt |
Description:
|
Microsoft Visual Studio version 6.0 remote command execution exploit that makes use of PDWizard.ocx versions 6.0.0.9782 and below.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 1780 | | Last Modified: | Sep 11 18:48:03 2007 |
| MD5 Checksum: | 7d1a1764788d082cd6294ef7104b411a |
|
| /// File Name: |
xcart-rfi.txt |
Description:
|
X-Cart suffers from remote file inclusion vulnerabilities.
| | Author: | aLiiF | | Homepage: | http://www.debuteam.net/ | | File Size: | 2203 | | Last Modified: | Sep 11 18:46:30 2007 |
| MD5 Checksum: | b97db473e0565943b6b81005a2ef2d2e |
|
| /// File Name: |
ultra-acquire.txt |
Description:
|
Ultra Crypto Component remote buffer overflow exploit that makes use of CryptoX.dll versions 2.0 and below using the AcquireContext() function.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 3443 | | Last Modified: | Sep 10 17:38:42 2007 |
| MD5 Checksum: | 051f8ca58a195bafd8aecfbb1be103b1 |
|
| /// File Name: |
ultra-cryptox20.txt |
Description:
|
Ultra Cryto Component suffers from an insecure method vulnerability in CryptoX.dll versions 2.0 and below in the SaveToFile() function.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 1386 | | Last Modified: | Sep 10 17:37:21 2007 |
| MD5 Checksum: | c69b58cb545cf1e6de078a045961074c |
|
| /// File Name: |
auracms21-lfi.txt |
Description:
|
AuraCMS version 2.1 suffers from remote file attachment and local file inclusion vulnerabilities.
| | Author: | k1tk4t | | File Size: | 4579 | | Last Modified: | Sep 10 17:36:05 2007 |
| MD5 Checksum: | 6a11e2a3e0c7174a284a7b0512f3cb50 |
|
| /// File Name: |
phpreality-rfi.txt |
Description:
|
phpReality version 0.02 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | QTRinux | | Homepage: | http://www.root-qtr.com/ | | File Size: | 1018 | | Last Modified: | Sep 10 17:35:05 2007 |
| MD5 Checksum: | 78ccb4572dda50ec0d35f7b399bfd7b8 |
|
| /// File Name: |
PUPET-SisfoKampus2006.txt |
Description:
|
Sisfo Kampus 2006 suffers from a remote file download vulnerability in dwoprn.php.
| | Author: | k-one | | File Size: | 1633 | | Last Modified: | Sep 10 17:34:08 2007 |
| MD5 Checksum: | 427ac6bb88be7355381ffa3f1b7caa17 |
|
| /// File Name: |
php524-basedir.txt |
Description:
|
PHP versions 5.2.4 and below suffer from open_basedir bypass, code execution, and denial of service vulnerabilities.
| | Author: | laurent gaffi | | File Size: | 1884 | | Last Modified: | Sep 10 17:25:55 2007 |
| MD5 Checksum: | 7d5a1b5d66cdaeda46cf0a46000290f0 |
|
| /// File Name: |
socialnet-sql.txt |
Description:
|
The myprofile.php code from www.social-networking.tv is susceptible to a SQL injection vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 515 | | Last Modified: | Sep 10 15:11:12 2007 |
| MD5 Checksum: | ee808f7e2c53c073da109211c3ba8a5b |
|
| /// File Name: |
husrev-sql.txt |
Description:
|
Husrev Forums version 2.0.1:PoWerBoard suffers from a SQL injection vulnerability.
| | Author: | Yollubunlar | | Homepage: | http://yollubunlar.org/ | | File Size: | 655 | | Last Modified: | Sep 10 15:04:20 2007 |
| MD5 Checksum: | 3eb81738b81ec016fda1397073191177 |
|
| /// File Name: |
proxyanket-sql.txt |
Description:
|
Proxy Anket version 3.0.1 suffers from a SQL injection vulnerability.
| | Author: | Yollubunlar | | Homepage: | http://yollubunlar.org/ | | File Size: | 609 | | Last Modified: | Sep 10 15:03:27 2007 |
| MD5 Checksum: | 43e7d044756aa211fec8f5615c1443c3 |
|
| /// File Name: |
phpmyquote-sqlxss.txt |
Description:
|
phpMyQuote version 0.20 suffers from multiple SQL injection and cross site scripting vulnerabilities.
| | Author: | Yollubunlar | | Homepage: | http://yollubunlar.org/ | | File Size: | 671 | | Last Modified: | Sep 10 15:02:53 2007 |
| MD5 Checksum: | 9c29ffd969afa6468d764d04fd6b7df4 |
|
| /// File Name: |
auracms15-sql.txt |
Description:
|
AuraCMS version 1.5rc suffers from multiple SQL injection vulnerabilities.
| | Author: | k1tk4t | | File Size: | 3139 | | Last Modified: | Sep 9 17:01:45 2007 |
| MD5 Checksum: | 5b9696e071d91b345c399452db80ed8d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
