Section:  .. / 0510-exploits  /

Page 1 of 4
<< 1 2 3 4 >> Files 1 - 25 of 75
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: cirt-39-advisory.pdf
Description:
The Novell ZENworks Patch Management Server version 6.0.0.52 is vulnerable to SQL injection attacks in the management console. Details provided.
Author:Dennis Rand
Homepage:http://www.cirt.dk/
File Size:132240
Last Modified:Oct 30 23:43:06 2005
MD5 Checksum:57b33786dec8c9d43b1c15a0cd5614d7

 ///  File Name: wagora420_xpl.txt
Description:
W-agora 4.2.0 Remote code execution and cross site scripting poc exploit.
Author:rgod
Homepage:http://rgod.altervista.org/
File Size:21847
Last Modified:Oct 19 00:43:07 2005
MD5 Checksum:a0bc36b9431ca350449b1e492bf3335b

 ///  File Name: MS05-047-DoS.c
Description:
Remote denial of service exploit that makes of a length checking issue in the Microsoft UMPNPMGR PNP_GetDeviceList. This code crashes services.exe.
Author:Winny Thomas
File Size:19026
Last Modified:Oct 30 23:51:10 2005
MD5 Checksum:d44d6f25706a4763f50ad2705945e957

 ///  File Name: versatile100RC2_xpl.html
Description:
Proof of concept SQL injection / board takeover exploit for versatileBulletinBoard version 1.0.0 RC.
Author:rgod
Homepage:http://rgod.altervista.org
Related Exploit:versatile100RC2.html"
File Size:15971
Last Modified:Oct 11 07:01:57 2005
MD5 Checksum:5e8f35f2283c780d9d471e365a8ecdde

 ///  File Name: e107remote.txt
Description:
e107 content management system versions 0.617, 0.6171, 0.6172 resetcore.php utility SQL Injection, login bypass, remote code execution, and cross site scripting exploit.
Author:rgod
Homepage:http://rgod.altervista.org/
File Size:13639
Last Modified:Oct 19 00:57:19 2005
MD5 Checksum:1afb10565cdecd8b9578a76d39580ddd

 ///  File Name: lucid_cms_1011_expl.txt
Description:
Exploit for Lucid CMS 1.0.11 SQL Injection, Login Bypass, and remote code execution vulnerabilities written in php.
Author:rgod
Homepage:http://rgod.altervista.org/lucid_cms_1011_expl.html
Related File:lucid1011.txt
File Size:13278
Last Modified:Oct 4 06:54:52 2005
MD5 Checksum:32d764f6be44cac1d49836a09c80a0e9

 ///  File Name: UMPNPMGR.c
Description:
Windows UMPNPMGR wsprintfW Stack Buffer Overflow Vulnerability PoC exploit.
Author:ppwd25
File Size:12900
Last Modified:Oct 26 19:39:00 2005
MD5 Checksum:e1758df67010fd97b4137615fa138867

 ///  File Name: phpnuke78sql.txt
Description:
PHPNuke 7.8 SQL INjection and remote commands execution poc exploit.
Author:rgod
Homepage:http://rgod.altervista.org/phpnuke78sql.html
File Size:12779
Last Modified:Oct 27 00:22:01 2005
MD5 Checksum:8ba2cc7bd2edf2b2699106975a371fa0

 ///  File Name: mailenable.cpp
Description:
MailEnable proof of concept exploit for the W3C logging vulnerability. The shellcode used actually renames the vulnerable binary to disable the system from being vulnerable.
File Size:12469
Last Modified:Oct 8 18:34:00 2005
MD5 Checksum:69cfa64e42bd717da95037ca93d691e1

 ///  File Name: cyphor019.html
Description:
Cyphor version 0.19 suffers from SQL injection and cross site scripting flaws. Full proof of concept exploit provided.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:12027
Last Modified:Oct 8 20:36:21 2005
MD5 Checksum:447053d0d8b68ea69e51c55648493cad

 ///  File Name: mybloggie213b.txt
Description:
Exploit for MyBloggie 2.1.3beta Login Bypass vulnerability.
Author:rgod
Homepage:http://rgod.altervista.org/
File Size:10156
Last Modified:Oct 4 06:58:25 2005
MD5 Checksum:6447a7a4c22c35745e4921300ad419b0

 ///  File Name: THCsnortbo.c
Description:
THCsnortbo 0.3 - Remote Snort ping exploit that makes use of a stack-based overflow vulnerability in Snort's Back Orifice preprocessor.
Author:rd
Homepage:http://www.thc.org/
File Size:9871
Last Modified:Oct 27 06:34:09 2005
MD5 Checksum:6b9bc3163959d212600e9272212e50cf

 ///  File Name: r57phpbb_admin2exec.pl.txt
Description:
Remote phpBB 2.0.13 command execution exploit that makes use of admin_styles.php.
Author:1dt.w0lf
Homepage:http://rst.void.ru
File Size:9467
Last Modified:Oct 12 09:31:19 2005
MD5 Checksum:4f327a00d59422d8bc4cc1bfcd7dfe7d

 ///  File Name: AVCraftedArchive.txt
Description:
An Anti-Virus bypass flaw has been discovered that slightly varies from CAN-2004-0932 and CAN-2004-0937. It makes use of a specially crafted archive. Full exploitation details provided. Appears to possibly affect all anti-virus products.
Author:fRoGGz
Homepage:http://shadock.net/secubox/AVCraftedArchive.html
File Size:9378
Last Modified:Oct 8 20:27:59 2005
MD5 Checksum:705b5d261986d37d1a7b22621692481a

 ///  File Name: utopia113.html
Description:
Utopia News Pro version 1.1.3 is susceptible to SQL Injection and cross site scripting attacks. Proof of concept administrative credential disclosure exploit included.
Author:rgod
Homepage:http://rgod.altervista.org
File Size:8843
Last Modified:Oct 7 06:59:47 2005
MD5 Checksum:8f9ba5681d49ffd33a7d7fada90a99b4

 ///  File Name: XH-Hasbani-HTTPD-DoS.c
Description:
Exploit for a remote denial of service flaw for HTTP GET in Hasbani-WindWeb version 2.0.
Author:Expanders
Homepage:http://www.x0n3-h4ck.org
File Size:8772
Last Modified:Oct 31 00:12:27 2005
MD5 Checksum:62411e2cbf277383b98e1096a7b2e2c7

 ///  File Name: Fusionv-6.00.109.txt
Description:
Exploit for PHP-Fusion v6.00.109 SQL Injection / credentials disclosure vulnerability. Written in php.
Author:rgod
Homepage:http://rgod.altervista.org/
File Size:8447
Last Modified:Oct 4 07:25:57 2005
MD5 Checksum:0ab5f674038013c3308b5a06752874fe

 ///  File Name: phpMyAdminLocal.txt
Description:
phpMyAdmin 2.6.4-pl1 is susceptible to a local file inclusion vulnerability.
Author:Maksymilian Arciemowicz
Homepage:http://securityreason.com
File Size:8149
Last Modified:Oct 11 06:34:28 2005
MD5 Checksum:6af123949f333b3d2883db675b30c812

 ///  File Name: ong_bak-0.9.c
Description:
Updated and improved version of the local root exploit for the Linux kernel code that has the Bluetooth related flaw.
Author:qobaiashi
Related File:adv1.pdf
File Size:6221
Last Modified:Oct 31 00:27:24 2005
MD5 Checksum:07d7f431a44a04e36697686663a1216b

 ///  File Name: ethereal_slimp3_bof.py.txt
Description:
Ethereal SLIMP3 protocol dissector remote buffer overflow proof of concept exploit that crashes the program. Tested with Ethereal 0.10.12, WinPcap 3.1 beta4, WinXP SP2.
Author:Sowhat
Homepage:http://secway.org
Related File:ethereal-0.10.13.tar.bz2
File Size:5906
Last Modified:Oct 31 00:48:44 2005
MD5 Checksum:8079fdf507021e269a350b1e0f4f8dd2

 ///  File Name: VERITAS-Win32.pl.txt
Description:
VERITAS Netbackup remote format string exploit for Win32.
Author:johnh
Homepage:http://www.digitalmunition.com/
File Size:5795
Last Modified:Oct 31 00:43:29 2005
MD5 Checksum:11ed9502250aaf16e593f90f9b662354

 ///  File Name: phpBB-IE-gif.txt
Description:
phpBB 2.0.17 (and other BB systems as well) Cookie disclosure exploit - This exploit details a method which uses the Gif bug in IE to perform a XSS attack.
Author:alphakgen
File Size:5183
Last Modified:Oct 26 23:36:29 2005
MD5 Checksum:d3b60fc922ba41f7ceb8914929d20f21

 ///  File Name: mybbpr2.pl.txt
Description:
MyBB Preview Release 2 sql injection proof of concept exploit.
Author:cOre
File Size:4972
Last Modified:Oct 27 08:18:01 2005
MD5 Checksum:40b801a07add54caa862ba4d1f969fe0

 ///  File Name: secunia-ATutor.txt
Description:
Secunia Research has discovered some vulnerabilities in ATutor, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system. The vulnerabilities have been confirmed in version 1.5.1-pl1. Other versions may also be affected.
Author:Andreas Sandblad
Homepage:http://www.secunia.com
File Size:4841
Last Modified:Oct 30 23:44:51 2005
MD5 Checksum:cb2e39612b6178817ab884e23fe1aab3

 ///  File Name: versatile100RC2.html
Description:
versatileBulletinBoard version 1.0.0 RC2 is susceptible to multiple SQL injection, login bypass, cross site scripting, and information disclosure flaws.
Author:rgod
Homepage:http://rgod.altervista.org
Related Exploit:versatile100RC2_xpl.html"
File Size:4622
Last Modified:Oct 11 06:59:10 2005
MD5 Checksum:465b32241af9219dcaa556013e1a0ab1