Section: .. / 0808-exploits /

Page 1 of 10
<< 1 2 3 4 5 6 7 8 9 10 >> Files 1 - 25 of 242

Currently sorted by: File Size Sort By: File Name, Last Modified

/// File Name:	ipb235-multi.txt
Description:	Invision Power Board versions 2.3.5 and below remote exploit that brute forces, attempts IDS evasion, and more.
Author:	DarkFig
File Size:	41160
Last Modified:	Aug 29 11:51:33 2008
MD5 Checksum:	a4f25aaae79e8aa14fd8d1ea7af1c1d9

/// File Name:	PuttyHijackV1.0.rar
Description:	PuttyHijack is a proof of concept tool that injects a dll into the Putty process to hijack an existing, or soon to be created, connection. This can be useful during penetration tests when a windows box that has been compromised is used to SSH/Telnet into other servers. The injected DLL installs some hooks and creates a socket for a callback connection that is then used for input/output redirection. It does not kill the current connection, and will cleanly uninject if the socket or process is stopped.
Author:	Brett Moore
Homepage:	http://www.insomniasec.com/
File Size:	29632
Last Modified:	Aug 1 18:04:03 2008
MD5 Checksum:	03b47e35a515d93ba711dea00d84ba5d

/// File Name:	halocombatloop.tgz
Description:	Denial of service proof of concept exploits for Halo: Combat Evolved versions 1.0.7.0615 and below which suffer from endless loop and resource consumption vulnerabilities.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	halocombatloop.txt
File Size:	29322
Last Modified:	Aug 8 16:36:14 2008
MD5 Checksum:	f4d111d179e753cba010d9cdb008b1e0

/// File Name:	dns_mre-v1.0.tar.gz
Description:	The DNS Multiple Race Exploiting Tool exploits an inherent bug in the implementation of DNS Cache. The result of this exploitation is cache poisoning/overwriting with new entries.
Author:	AR
Homepage:	http://www.securebits.org/
File Size:	21958
Related CVE(s):	CVE-2008-1447
Last Modified:	Aug 1 17:51:13 2008
MD5 Checksum:	a080cf0d3d5faa5bc1351c55d9f43415

/// File Name:	acoustica-overflow.txt
Description:	Acoustica Mixcraft versions 4.2 Build 98 and below mx4 file local buffer overflow exploit.
Author:	Koshi
File Size:	19185
Last Modified:	Aug 29 00:51:25 2008
MD5 Checksum:	88d4635a1cb1ff5e03e8fe080c837dd4

/// File Name:	CORE-2008-0624.txt
Description:	Core Security Technologies Advisory - Anzio Web Print Object (WePO) is a Windows ActiveX web page component that suffers from a buffer overflow vulnerability.
Author:	Francisco Falcon
Homepage:	http://www.coresecurity.com/corelabs/
File Size:	13206
Related CVE(s):	CVE-2008-3480
Last Modified:	Aug 21 00:33:42 2008
MD5 Checksum:	2f9bb16efa2c023574ae39cd5fde147b

/// File Name:	dnsbind-10hrs.tgz
Description:	BIND version 9.5.0-P2 randomized ports remote DNS cache poisoning exploit. Takes about 10 hours to perform the attack.
Author:	Zbr
Homepage:	http://tservice.net.ru/~s0mbre/
File Size:	13052
Last Modified:	Aug 13 19:15:39 2008
MD5 Checksum:	1a06b6b8d31398af1eda2c970af433a1

/// File Name:	CORE-2008-0716.txt
Description:	Core Security Technologies Advisory - The Sun xVM VirtualBox suffers from a privilege escalation vulnerability due to insufficient input validation in VboxDrv.sys. Proof of concept code included.
Author:	Anibal Sacco
Homepage:	http://www.coresecurity.com/corelabs/
File Size:	12280
Related CVE(s):	CVE-2008-3431
Last Modified:	Aug 4 19:18:35 2008
MD5 Checksum:	f3f07889b0717e36d5c22836fe132842

/// File Name:	DSECRG-08-038.txt
Description:	ezContents CMS version 2.0.3 suffers from multiple local file inclusion vulnerabilities.
Author:	Digital Security Research Group
Homepage:	http://www.dsec.ru/
File Size:	12050
Last Modified:	Aug 25 20:53:05 2008
MD5 Checksum:	8fe839a4a7d6a995587c81d9a5a0dffe

/// File Name:	irfanviewiff-overflow.txt
Description:	IrfanView versions 3.99 and below .IFF file local stack buffer overflow exploit that spawns calc.exe.
Author:	fl0 fl0w
Homepage:	http://fl0-fl0w.docspages.com/
Related Exploit:	irfanview-corrupt.txt
File Size:	11801
Last Modified:	Aug 1 15:42:49 2008
MD5 Checksum:	9c7d41e2a908fa87d3352302cb0e5057

/// File Name:	ventrilobotomy.zip
Description:	Proof of concept exploit for Ventrilo versions 3.0.2 and below which suffer from a NULL pointer vulnerability.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	ventrilobotomy.txt
File Size:	10600
Last Modified:	Aug 13 19:08:42 2008
MD5 Checksum:	bfa1c5868a512f9cb7ad08990ede3f18

/// File Name:	fileutility.txt
Description:	This Metasploit exploit attacks multiple file manipulation vulnerabilities in the Kyocera Mita Scanner File Utility version 3.3.0.1.
Author:	Seth Fogle
Homepage:	http://www.whitewolfsecurity.com/
Related File:	kyocera-upload.txt
File Size:	10161
Last Modified:	Aug 26 22:42:23 2008
MD5 Checksum:	b9cc2a9b04bb9971365bc2eb05b812f3

/// File Name:	h0dns_spoof.c
Description:	BIND 9.x remote DNS cache poisoning flaw exploit for use with ircd.
Author:	zmda
File Size:	9923
Last Modified:	Aug 4 15:04:52 2008
MD5 Checksum:	16f8184a39d5c2a283eb48161aa0fa9c

/// File Name:	armynchia.zip
Description:	Remote denial of service exploit for America's Army versions 2.8.3.1 and below which suffer from a remote server termination vulnerability.
Author:	Luigi Auriemma
Homepage:	http://aluigi.org/
Related File:	armynchia.txt
File Size:	9826
Last Modified:	Aug 4 15:15:45 2008
MD5 Checksum:	012765fd47f402575abe5148e3cef7a0

/// File Name:	cyboards-rfilfixss.txt
Description:	CyBoards PHP Lite version 1.21 suffers from cross site scripting, local file inclusion, and remote file inclusion vulnerabilities.
Author:	CraCkEr
File Size:	8047
Last Modified:	Aug 14 01:53:54 2008
MD5 Checksum:	1522780f977357ce1b9dea3a99b31fa0

/// File Name:	hoagie_snoop.c
Description:	Sun Solaris 8/9/10 and OpenSolaris versions below snv_96 snoop utility remote exploit.
Author:	Andi
Homepage:	http://www.void.at/
File Size:	7935
Last Modified:	Aug 29 11:47:06 2008
MD5 Checksum:	808193e9a074d86648b31609b4886635

/// File Name:	DSECRG-08-036.txt
Description:	Freeway eCommerce version 1.4.1.171 suffers from remote file inclusion, multiple local file inclusion, and cross site scripting vulnerabilities.
Author:	Digital Security Research Group
Homepage:	http://www.dsec.ru/
File Size:	7237
Last Modified:	Aug 18 20:04:41 2008
MD5 Checksum:	5b7d4cd901bfd8340ac4a81e7fbf189d

/// File Name:	intelled.c
Description:	IntelliTamper versions 2.07 and 2.08 Beta 4 "A HREF" remote buffer overflow exploit.
Author:	kralor
File Size:	7074
Last Modified:	Aug 13 18:54:32 2008
MD5 Checksum:	b6f0c489f9fdbcb6018435e23c4cf1bd

/// File Name:	eset-escalate.txt
Description:	ESET Smart Security version 3.0.667.0 privilege escalation proof of concept exploit.
Author:	g_
File Size:	6905
Last Modified:	Aug 18 18:26:19 2008
MD5 Checksum:	1900f0c79a340ced59e42df8a0424710

/// File Name:	vim-sanitize.txt
Description:	Vim version 3 suffers from multiple arbitrary code execution vulnerabilities.
Author:	Jan Minar
File Size:	6128
Last Modified:	Aug 22 18:04:24 2008
MD5 Checksum:	743819ed6f6edc557eb5e0a21ba43aec

/// File Name:	mybb1211-sql.txt
Description:	MyBulletinBoard (MyBB) versions 1.2.11 and below SQL injection exploit that leverages private.php.
Author:	c411k
Homepage:	https://forum.antichat.ru/
File Size:	5794
Last Modified:	Aug 26 22:32:58 2008
MD5 Checksum:	2b8c0145ecb2c5255a32519df1daeffe

/// File Name:	danairc-overflow.txt
Description:	Dana IRC version 1.4a remote buffer overflow exploit.
Author:	k'sOSe
Homepage:	http://www.pornosecurity.org/
File Size:	5442
Last Modified:	Aug 25 20:24:23 2008
MD5 Checksum:	ce78e866e21035b1d75c8e6ed56a451f

/// File Name:	hpsnh-xss.txt
Description:	Further analysis regarding the HP System Management Homepage (SMH) cross site scripting vulnerability.
Author:	Luca Carettoni,Claudio Criscione,Lavakumar Kuppan
Homepage:	http://www.ikkisoft.com/
Related File:	SSRT080039-2.txt
File Size:	5415
Related CVE(s):	CVE-2008-1663
Last Modified:	Aug 26 22:01:57 2008
MD5 Checksum:	10441eb7ff70f0b1f1b38bdfe4afb273

/// File Name:	DSECRG-08-037.txt
Description:	Pluck CMS version 4.5.2 suffers from multiple local file inclusion vulnerabilities.
Author:	Digital Security Research Group
Homepage:	http://www.dsec.ru/
File Size:	5373
Last Modified:	Aug 25 20:51:50 2008
MD5 Checksum:	569ec165bf63e88aa064daa5c376d909

/// File Name:	realestateman-sql.txt
Description:	The Real Estate Manager script suffers from a remote SQL injection vulnerability.
Author:	CraCkEr
File Size:	5202
Last Modified:	Aug 12 22:22:28 2008
MD5 Checksum:	2830dafb816a0c4f5c55cf0e67927b12