Section:  .. / 1008-exploits  /

Page 3 of 17
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 >> Files 50 - 75 of 422
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: avastlf-dllhijack.txt
Description:
Avast! versions 5.0.594 and below license files DLL hijacking exploit.
Author:Bruno Filipe
File Size:959
Last Modified:Aug 25 23:13:56 2010
MD5 Checksum:5d51ceef3701ff8fc05f973e3330a47b

 ///  File Name: aventail_epi_activex.rb.txt
Description:
This Metasploit module exploits a format string vulnerability within version 10.0.4.x and 10.5.1 of the SonicWALL Aventail SSL-VPN Endpoint Interrogator/Installer ActiveX control (epi.dll). By calling the 'AuthCredential' method with a specially crafted Unicode format string, an attacker can cause memory corruption and execute arbitrary code. Unfortunately, it does not appear to be possible to indirectly re-use existing stack data for more reliable exploitation. This is due to several particulars about this vulnerability. First, the format string must be a Unicode string, which uses two bytes per character. Second, the buffer is allocated on the stack using the 'alloca' function. As such, each additional format specifier (%x) will add four more bytes to the size allocated. This results in the inability to move the read pointer outside of the buffer. Further testing showed that using specifiers that pop more than four bytes does not help. Any number of format specifiers will result in accessing the same value within the buffer. NOTE: It may be possible to leverage the vulnerability to leak memory contents. However, that has not been fully investigated at this time.
Author:Nikolas Sotiriu,jduck
Homepage:http://www.metasploit.com
File Size:5441
Related OSVDB(s):67286
Last Modified:Aug 20 20:37:48 2010
MD5 Checksum:ed696145b958ba72cb078d78d73be31f

 ///  File Name: avmusic-dos.txt
Description:
AV Music Morpher Gold version 5.0.38 denial of service exploit that creates a malicious .m3u file.
Author:b0telh0
File Size:643
Last Modified:Aug 20 21:02:27 2010
MD5 Checksum:d38f84aa8bbcda4b0db44d30c109cb78

 ///  File Name: barcodewiz329-overflow.txt
Description:
BarCodeWiz Barcode Active-X control version 3.29 buffer overflow exploit.
Author:loneferret
File Size:2428
Last Modified:Aug 3 01:14:56 2010
MD5 Checksum:472752f0a8463012748ebb440ebfd712

 ///  File Name: barcodewiz329-poc.txt
Description:
BarCodeWiz BarCode version 3.29 Active-X proof of concept exploit.
Author:loneferret
File Size:2111
Last Modified:Aug 3 01:18:45 2010
MD5 Checksum:204b098027df1cb4b22c2700e35fc43f

 ///  File Name: bcw-heapspray.txt
Description:
Barcodewiz version 3.29 Barcode Active-X control remote heap spray exploit for IE6 / IE7.
Author:Dr_IDE
File Size:1581
Last Modified:Aug 3 01:53:41 2010
MD5 Checksum:60f4f3a1dcfaf33975ebcccc5a39fcf0

 ///  File Name: bitlocker-dllhijack.tgz
Description:
Microsoft Vista BitLocker Drive Encryption API hijacking exploit.
Author:Beenu Arora
File Size:155127
Last Modified:Aug 26 01:39:31 2010
MD5 Checksum:7679032b85ba1d0307ce5832f0d8480f

 ///  File Name: blastchat-xss.txt
Description:
BlastChat Chat Client component version 3.3 suffers from a cross site scripting vulnerability.
Author:Aung Khant
Homepage:http://yehg.net/
File Size:2989
Last Modified:Aug 26 02:07:40 2010
MD5 Checksum:266e7d235ff52dee7ed28dd2bdebc98d

 ///  File Name: blogman071-sql.txt
Description:
Blogman version 0.7.1 suffers from a remote SQL injection vulnerability in profile.php.
Author:Ptrace Security
File Size:2496
Last Modified:Aug 30 15:33:50 2010
MD5 Checksum:b671fc30e6344139ec40ec760c464552

 ///  File Name: bloodshed-hijack.txt
Description:
Bloodshed Dev-C++ version 4.9.9.2 binary hijacking exploit.
Author:storm
File Size:649
Last Modified:Aug 26 00:16:58 2010
MD5 Checksum:5cff261eb80c08564afef77679284764

 ///  File Name: brazip-overflow.txt
Description:
Brazip version 9.0 .zip file buffer overflow proof of concept exploit.
Author:ItSecTeam
File Size:1703
Last Modified:Aug 17 19:20:08 2010
MD5 Checksum:54b87970861932254867fb4d2faf2fae

 ///  File Name: bsplayer-dllhijack.txt
Description:
BS.Player versions 2.56 build 1043 and below DLL hijacking exploit that leverages mfc71loc.dll.
Author:Bruno Filipe
File Size:936
Last Modified:Aug 25 23:09:45 2010
MD5 Checksum:77ee260d604f0e6ca0a6a9dcedee86b3

 ///  File Name: bsplayer-vuln-ehtraceDLL.txt
Description:
BS Player version 2.56 DLL hijacking exploit.
Author:Classity Security Scans
Homepage:http://www.classity.nl/
File Size:661
Last Modified:Aug 30 18:07:47 2010
MD5 Checksum:35c98e79724baf98aa0880e4afedff7c

 ///  File Name: bugtracker-sql.txt
Description:
BugTracker.NET versions 3.4.3 and below suffer from a remote SQL injection vulnerability.
Author:Mark van Tilburg
File Size:1799
Last Modified:Aug 26 22:21:35 2010
MD5 Checksum:208654e02bbbbb68f97cd98eafa40daa

 ///  File Name: bxr-sqlxssxsrf.txt
Description:
BXR version 0.6.8 suffers from cross site request forgery, cross site scripting and remote SQL injection vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:7099
Last Modified:Aug 6 13:21:30 2010
MD5 Checksum:bb585a7edc6a318b787430817da5d3c6

 ///  File Name: caadvantageingres-dos.txt
Description:
Computer Associates Advantage Ingres version 2.6 suffers from multiple denial of service vulnerabilities.
Author:fdisk
File Size:1059
Related CVE(s):CVE-2007-3334, CVE-2007-3336, CVE-2007-3337, CVE-2007-3338
Last Modified:Aug 16 21:35:50 2010
MD5 Checksum:41af6ac355a91b5f428409f9f5da40fb

 ///  File Name: campsite-xss.txt
Description:
Campsite version 3.3.6 suffers from multiple cross site scripting vulnerabilities.
Author:High-Tech Bridge SA
Homepage:http://www.htbridge.ch/
File Size:3333
Last Modified:Aug 3 02:56:19 2010
MD5 Checksum:4615de4eacb3ae8683fe3b656038cbda

 ///  File Name: cartxpress-shelldisclose.txt
Description:
CartXpress suffers from backup related, file disclosure and shell upload vulnerabilities.
Author:indoushka
File Size:4270
Last Modified:Aug 31 19:53:35 2010
MD5 Checksum:d0cde3459bec460f5333b1b809fff27d

 ///  File Name: cctiddly176-rfi.txt
Description:
ccTiddly version 1.7.6 suffers from a remote file inclusion vulnerability. This was already discovered in 1.7.4 but they apparently have not fixed it.
Author:eidelweiss
Related Exploit:cctiddly-rfi.txt
File Size:2730
Last Modified:Aug 6 13:45:38 2010
MD5 Checksum:73c2fe1ab1eb9ac42ae07cc84029ee1c

 ///  File Name: cfimage-rfi.txt
Description:
CF Image Hosting Script version 1.3.8 suffers from a remote file inclusion vulnerability.
Author:FoX HaCkEr
File Size:865
Last Modified:Aug 30 15:42:00 2010
MD5 Checksum:7f07c6d5afd8fe1568354e49856d15f7

 ///  File Name: cfimagehosting-disclose.txt
Description:
CF Image Hosting Script version 1.3 suffers from a database disclosure vulnerability.
Author:Dr.Saudi
File Size:549
Last Modified:Aug 30 18:11:23 2010
MD5 Checksum:7973b8d7314f0256d73262283b3dc3df

 ///  File Name: Chimichurri-CVE-2010-2554.zip
Description:
Microsoft Windows tracing register key ACL privilege escalation demonstration code.
Author:Cesar Cerrudo
File Size:14302
Related CVE(s):CVE-2010-2554
Last Modified:Aug 12 02:57:20 2010
MD5 Checksum:69bfbae5eedd0e4a8cbb13490de57eb9

 ///  File Name: chordpulse-dos.txt
Description:
ChordPulse version 1.4 suffers from a denial of service vulnerability.
Author:MadjiX
File Size:1214
Last Modified:Aug 3 02:15:29 2010
MD5 Checksum:61faaa0472145d8b3ee51c10612a2fb6

 ///  File Name: ciscopackettracer-dllhijack.txt
Description:
Cisco Packet Tracer version 5.2 DLL hijacking exploit that leverages wintab32.dll.
Author:CCNA
File Size:3765
Last Modified:Aug 26 02:08:51 2010
MD5 Checksum:1434735d3a31aa73dd1217e119be3a49

 ///  File Name: clansphere2010-sqlxss.txt
Description:
Clansphere 2010 suffers from cross site scripting and remote SQL injection vulnerabilities.
Author:Sweet
File Size:2382
Last Modified:Aug 25 23:21:24 2010
MD5 Checksum:4df6701b6671dc52aa2ff134c05a54bc