Section: .. / 0801-exploits /

Page 1 of 11
<< 1 2 3 4 5 6 7 8 9 10 11 >> Files 1 - 25 of 272

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	irfanview-corrupt.txt
Description:	IrfanView version 4.10 .FPX file memory corruption exploit that launches calc.exe.
Author:	Marsu
File Size:	434615
Last Modified:	Jan 29 21:36:54 2008
MD5 Checksum:	94b9718f865909a6ee2110608582a70b

/// File Name:	prdelka-vs-GNU-citadel.tar.gz
Description:	Citadel SMTP versions 7.10 and below remote overflow exploit.
Author:	prdelka
Homepage:	https://prdelka.blackart.org.uk/
File Size:	218165
Last Modified:	Jan 21 21:28:39 2008
MD5 Checksum:	fa27394dcf10b6b59b508ceb07097bd3

/// File Name:	ksdispatch_plugin.zip
Description:	K-Plugin for Kartoffel that exploits WDM Audio Drivers.
Author:	Ruben Santamarta
Homepage:	http://www.reversemode.com/
Related File:	paper-wdm.pdf
File Size:	156425
Last Modified:	Jan 7 14:34:27 2008
MD5 Checksum:	06f47998a1a23d7fcbb96b248761b2eb

/// File Name:	alice_gate2_pluswifi_PoC.zip
Description:	The Alice Gate 2 Plus Wifi ADSL modem suffers from a cross site request forgery vulnerability.
Author:	WarGame
File Size:	95117
Last Modified:	Jan 21 20:31:08 2008
MD5 Checksum:	19ab322520d8a42e1d57051cb6a45c8c

/// File Name:	gswsshit.zip
Description:	Proof of concept code that demonstrates format string and buffer overflow vulnerabilities in Georgia SoftWorks SSH2 Server versions 7.01.0003 and below.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	gswsshit.txt
File Size:	77423
Last Modified:	Jan 2 17:53:39 2008
MD5 Checksum:	f2be8cdd38695547a1d1d65bead4ef59

/// File Name:	quicktimebof.zip
Description:	The Apple Quicktime Player versions 7.3.1.70 and below HTTP error message buffer overflow exploit.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
File Size:	23540
Last Modified:	Jan 16 00:49:57 2008
MD5 Checksum:	582c598cb520c2e8aa051f3efe9ae9de

/// File Name:	yabb155-exec.txt
Description:	YaBB SE versions 1.5.5 and below remote command execution exploit.
Author:	1dt.w0lf
Homepage:	http://rst.void.ru
File Size:	13975
Last Modified:	Jan 23 23:38:51 2008
MD5 Checksum:	0bea1890ef10aeb966c41f458f9a8145

/// File Name:	igal207-sql.txt
Description:	Invision Gallery versions 2.0.7 and below remote SQL injection exploit.
Author:	1dt.w0lf
Homepage:	http://rst.void.ru
File Size:	12516
Last Modified:	Jan 23 23:44:12 2008
MD5 Checksum:	15d3847c56e4c60f5e8342582426e143

/// File Name:	vuln-summary.txt
Description:	A digest of vulnerabilities listing specific findings for WordPress, AwesomeTemplateEngine, PRO-Search, RotaBanner Local, and ExpressionEngine.
Homepage:	http://websecurity.com.ua/
File Size:	11787
Last Modified:	Jan 3 18:17:14 2008
MD5 Checksum:	9ebad34bd61e45aea07adcfe9fdbabcf

/// File Name:	mswinqueue-overflow.txt
Description:	Microsoft Windows Message Queueing Server RPC buffer overflow exploit that relates to MS07-065.
Author:	Marcin Kozlowski
File Size:	11774
Last Modified:	Jan 18 04:50:57 2008
MD5 Checksum:	2d7ee74e959b003854de19078715c9c8

/// File Name:	ruttorrent.zip
Description:	Proof of concept exploit for BitTorrent versions 6.0 and below and uTorrent versions 1.7.5 and below which suffer from a buffer overflow vulnerability.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	ruttorrent.txt
File Size:	11606
Last Modified:	Jan 17 00:41:24 2008
MD5 Checksum:	6ebba00cba1adb2be314da7800f7f2af

/// File Name:	hfshack.txt
Description:	Syhunt HFSHack version 1.0b is an exploit for various vulnerabilities found in HFS versions 1.5 through 2.3.
Author:	Felipe Aragon, Alec Storm
Homepage:	http://www.syhunt.com/
Related File:	hfs-manipulate.txt
File Size:	9630
Related CVE(s):	CVE-2008-0405, CVE-2008-0406, CVE-2008-0407, CVE-2008-0408, CVE-2008-0409, CVE-2008-0410
Last Modified:	Jan 23 23:58:06 2008
MD5 Checksum:	64d28d6f265b8d803a1dfc724ffdef7f

/// File Name:	runcmsnewbb-sql.txt
Description:	RunCMS Newbb_plus versions 0.92 and below client IP remote SQL injection exploit.
Author:	Eugene Minaev
Homepage:	http://itdefence.ru/
File Size:	9162
Last Modified:	Jan 6 19:50:32 2008
MD5 Checksum:	181ae0b31f2b5ff64f1c2620448c6bad

/// File Name:	webportalcms-passwd.txt
Description:	WebPortal CMS version 0.6-beta remote password change exploit.
Author:	The:Paradox
Homepage:	http://www.inj3ct-it.org/
File Size:	9033
Last Modified:	Jan 4 19:16:33 2008
MD5 Checksum:	88e2e1713b4925ec108abad4ecc74897

/// File Name:	sapone.zip
Description:	Remote exploit for SAP MaxDB versions 7.6.03 build 007 and below which suffer from a pre-authentication remote code execution vulnerability. Launches cmd.exe.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	sapone.txt
File Size:	8941
Last Modified:	Jan 9 13:21:31 2008
MD5 Checksum:	aaac074fd56fd46ab2c8f96970e4fa1c

/// File Name:	prdelka-vs-MS-rshd.tar.gz
Description:	Windows RSH daemon versions 1.8 and below remote buffer overflow exploit.
Author:	prdelka
Homepage:	https://prdelka.blackart.org.uk/
File Size:	8716
Last Modified:	Jan 21 21:26:04 2008
MD5 Checksum:	2df046b9b1e8f48d5cd5f4aec6ec05a8

/// File Name:	domphp-admin.txt
Description:	DomPHP versions 0.81 and below remote add administrator exploit.
Author:	j0j0
File Size:	8488
Last Modified:	Jan 10 03:36:36 2008
MD5 Checksum:	50034623ab2708b9b329d6da333fcc8e

/// File Name:	crystal-dos.txt
Description:	Crystal Reports XI Release 2 suffers from an ActiveX buffer overflow denial of service condition.
Author:	shinnai
Homepage:	http://shinnai.altervista.org/
File Size:	8179
Last Modified:	Jan 18 04:27:18 2008
MD5 Checksum:	09647ec0a169af8b5521bca79986a57b

/// File Name:	urlevasion.txt
Description:	URL filtering bypass proof of concept exploit that demonstrates Fortinet's filtering vulnerability.
Author:	Danux
File Size:	8138
Last Modified:	Jan 4 19:21:02 2008
MD5 Checksum:	b79df8379509e8f6001d8c846497cd62

/// File Name:	waraxe-2008-SA-062.txt
Description:	MyBulletinBoard aka MyBB version 1.2.10 suffers from remote SQL injection vulnerabilities.
Author:	Janek Vind aka waraxe
Homepage:	http://www.waraxe.us/
File Size:	8135
Last Modified:	Jan 17 00:46:33 2008
MD5 Checksum:	7d0750cdd145145eaeef42144eb6a8b2

/// File Name:	CORE-2007-1219.txt
Description:	Core Security Technologies Advisory - The Firebird database manager contains an integer overflow in the processing of certain tags on the XDR protocol used for communication with the server. Version vulnerable include Firebird SQL 1.0.3 and before, 1.5.5 and before, 2.0.3 and before, and 2.1.0 Beta 2 and before.
Author:	Damian Frizza, Alfredo Ortega
Homepage:	http://www.coresecurity.com/corelabs/
File Size:	8027
Related CVE(s):	CVE-2008-0387
Last Modified:	Jan 28 13:51:20 2008
MD5 Checksum:	ac209dad40c1355525544bb9deffc4b0

/// File Name:	candypress-multi.txt
Description:	CandyPress eCommerce Suite version 4.1.1.26 suffers from multiple vulnerabilities including SQL injection and cross site scripting.
Author:	AmnPardaz Security Research Team
Homepage:	http://www.bugreport.ir/
File Size:	7964
Last Modified:	Jan 25 19:02:57 2008
MD5 Checksum:	b4784e6ee69933f0437dab3b67c951ab

/// File Name:	mysqlo.zip
Description:	MySQL versions 6.0.3 and below pre-auth buffer overflow exploit that makes use of a vulnerability in yaSSL versions 1.7.5 and below.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	yasslick.txt
File Size:	7903
Last Modified:	Jan 4 20:26:12 2008
MD5 Checksum:	62f25e67c23e48895b17ef6e46434908

/// File Name:	cpg1414-sql.txt
Description:	Coppermine Photo Gallery versions 1.4.14 and below remote SQL injection exploit.
Author:	RST/GHC
Homepage:	http://rst.void.ru
File Size:	7869
Last Modified:	Jan 23 23:18:21 2008
MD5 Checksum:	be067643f7a5d5516f37c3536f5e999f

/// File Name:	yasslick.zip
Description:	Proof of concept code that demonstrates invalid memory access and buffer overflow vulnerabilities in yaSSL versions 1.75 and below.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	yasslick.txt
File Size:	7813
Last Modified:	Jan 4 20:23:20 2008
MD5 Checksum:	a33ae8f79e61ca61b15b6ccb143cf840