Section: .. / 0710-exploits /
| /// File Name: |
mobilemail_libtiff.rb.txt |
Description:
|
This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
| | Author: | H D Moore, KF | | Homepage: | http://metasploit.com/ | | File Size: | 5273 | | Last Modified: | Oct 22 23:43:19 2007 |
| MD5 Checksum: | 92e658f30a2a455067ca9db033446795 |
|
| /// File Name: |
safari_libtiff.rb.txt |
Description:
|
This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
| | Author: | H D Moore, KF | | Homepage: | http://metasploit.com/ | | File Size: | 4714 | | Last Modified: | Oct 22 23:41:50 2007 |
| MD5 Checksum: | a52fa90d5222ed2fd16f87b679276bad |
|
| /// File Name: |
vibrate.rb.txt |
Description:
|
Metasploit module that causes the iPhone to vibrate. Only works when the AudioToolkit library has been loaded.
| | Author: | H D Moore | | Homepage: | http://metasploit.com/ | | File Size: | 1153 | | Last Modified: | Oct 22 23:37:47 2007 |
| MD5 Checksum: | 77e829eb2a7f8d44954133a6161f2f54 |
|
| /// File Name: |
webif-xss.txt |
Description:
|
WEBIF from Ifnet.it suffers from a cross site scripting vulnerability.
| | Author: | SkyOut | | Homepage: | http://www.core-security.net/ | | File Size: | 2280 | | Last Modified: | Oct 22 23:32:33 2007 |
| MD5 Checksum: | b355bf36877233b1cca9813898fe16f8 |
|
| /// File Name: |
jeebles-lfi.txt |
Description:
|
Jeebles Directory suffers from a local file inclusion vulnerability.
| | Author: | hack2prison | | File Size: | 155 | | Last Modified: | Oct 22 23:25:30 2007 |
| MD5 Checksum: | a5a4c82f94cf93a09bc6304abb58b024 |
|
| /// File Name: |
spoofer2.pl.txt |
Description:
|
Full version of spoofer.pl.txt, a DNS recursion bandwidth amplification attack proof of concept. Written in Perl.
| | Author: | Shadow | | File Size: | 2205 | | Last Modified: | Oct 22 23:24:09 2007 |
| MD5 Checksum: | 8fc5b6602393ba74d6a3972b9f79d9ef |
|
| /// File Name: |
shoutbox-xss.txt |
Description:
|
Hackish Beta verison 1.1 suffers from a cross site scripting vulnerability.
| | Author: | Matrix86 | | Homepage: | http://www.rbt-4.net/ | | File Size: | 233 | | Last Modified: | Oct 22 23:22:17 2007 |
| MD5 Checksum: | e4c746db7ee73e982475c55c9c893be8 |
|
| /// File Name: |
dmcms-sql.txt |
Description:
|
DM CMS version 0.l7.0 suffers from a SQL injection vulnerability.
| | Author: | Outlaw | | Homepage: | http://aria-security.net/ | | File Size: | 229 | | Last Modified: | Oct 22 23:20:41 2007 |
| MD5 Checksum: | 62a778b39586165018a6134fe5458aed |
|
| /// File Name: |
reloadcms-lfi.txt |
Description:
|
Reload CMS version 1.2.7 suffers from a local file inclusion vulnerability.
| | File Size: | 715 | | Last Modified: | Oct 22 22:52:54 2007 |
| MD5 Checksum: | 311f2f42878b97e90ec0cf6904f63c9a |
|
| /// File Name: |
searchsimon-xss.txt |
Description:
|
SearchSimon Lite suffers from a cross site scripting vulnerability.
| | Author: | Outlaw | | Homepage: | http://aria-security.net/ | | File Size: | 313 | | Last Modified: | Oct 22 22:41:17 2007 |
| MD5 Checksum: | c739857176dc1019ec0292c280f9e78b |
|
| /// File Name: |
smf-blind.txt |
Description:
|
Simple Machines Forum aka SMF version 1.1.3 blind SQL injection exploit.
| | Author: | Michael Brooks | | File Size: | 11038 | | Last Modified: | Oct 22 22:40:20 2007 |
| MD5 Checksum: | dbf1801413aed2b58e04f05f6a61a52f |
|
| /// File Name: |
phone-sqlxss.txt |
Description:
|
A SQL injection vulnerability exist in asterisk-addons and cross site scripting vulnerabilities exist in the web applications of Areski, FreePBX, and Trixbox. Proof of concept exploit included.
| | Author: | Humberto J. Abdelnur, Olivier Festor, Radu State | | File Size: | 6813 | | Last Modified: | Oct 22 22:32:51 2007 |
| MD5 Checksum: | 9db2d65d58d26ed42170e08b50ec0eff |
|
| /// File Name: |
spoofer.pl.txt |
Description:
|
DNS recursion proof of concept exploit. Written in Perl.
| | Author: | Shadow | | File Size: | 1216 | | Last Modified: | Oct 22 22:29:10 2007 |
| MD5 Checksum: | 89c0dc972cbdcd4694b8bb0128f50685 |
|
| /// File Name: |
joomla-comalbum-rfi.txt |
Description:
|
The Joomla Photo Album component version 1.24 suffers from a remote file inclusion vulnerability.
| | Author: | vitux | | File Size: | 197 | | Last Modified: | Oct 22 21:25:38 2007 |
| MD5 Checksum: | 3bcce923ccdc390878059db631620914 |
|
| /// File Name: |
litespeed-disclose.txt |
Description:
|
LiteSpeed web server versions 3.2.3 and below suffers from a remote source code disclosure vulnerability.
| | Author: | Tr3mbl3r | | Homepage: | http://thedefaced.org/ | | File Size: | 6815 | | Last Modified: | Oct 22 18:28:08 2007 |
| MD5 Checksum: | 9047c038f2ec2728665d663e6540ae02 |
|
| /// File Name: |
tomcatwebdav-disclose.txt |
Description:
|
Apache Tomcat with WEBDAV remote file disclosure exploit that has SSL support.
| | Author: | h3rcul3s | | File Size: | 2921 | | Last Modified: | Oct 22 18:26:55 2007 |
| MD5 Checksum: | d82a4ac6d64823fa0433274a0c5258cb |
|
| /// File Name: |
php5x-bypass.txt |
Description:
|
PHP 5.x COM functions safe_mode and disable_function bypass proof of concept exploit.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 3036 | | Last Modified: | Oct 22 18:25:29 2007 |
| MD5 Checksum: | ec750a9bd37f3a6cbba0eae63cf96594 |
|
| /// File Name: |
weather-lfi.txt |
Description:
|
Weather for PHP version 1.0 suffers from a local file inclusion vulnerability.
| | Author: | BorN To K!LL | | File Size: | 502 | | Last Modified: | Oct 22 18:24:19 2007 |
| MD5 Checksum: | 190288b8f2e47c1b6c8e6742e2832806 |
|
| /// File Name: |
sphpblog051-multi.txt |
Description:
|
Simple PHP Blog versions 0.5.1 and below suffer from multiple vulnerabilities including cross site scripting, local file inclusion, and code execution flaws.
| | Author: | DarkFig | | File Size: | 26083 | | Last Modified: | Oct 22 18:23:37 2007 |
| MD5 Checksum: | 2a37aefcf9e7dcf6e6c20a3b4b70eb08 |
|
| /// File Name: |
socketmail-rfi.txt |
Description:
|
SocketMail version 2.2.8 suffers from a remote file inclusion vulnerability in fnc-readmail3.php.
| | Author: | BiNgZa | | File Size: | 706 | | Last Modified: | Oct 22 18:21:39 2007 |
| MD5 Checksum: | 838038911438edd6152726126c8ae9f1 |
|
| /// File Name: |
towels-rfi.txt |
Description:
|
TOWeLS version 0.1 suffers from a remote file inclusion vulnerability in scripture.php.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 225 | | Last Modified: | Oct 22 18:20:37 2007 |
| MD5 Checksum: | 1710a067647da2849c5a8a1c6ab69888 |
|
| /// File Name: |
phppm-rfilfi.txt |
Description:
|
PHP Project Management versions 0.8.10 and below suffer from multiple remote and local file inclusion vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 3952 | | Last Modified: | Oct 22 18:19:38 2007 |
| MD5 Checksum: | a8f04800c0cf54df5011b488004ae287 |
|
| /// File Name: |
vanilla-sql.txt |
Description:
|
Vanilla versions 1.1.3 and below remote blind SQL injection exploit.
| | Author: | InATeam | | Homepage: | http://inattack.ru/ | | File Size: | 6122 | | Last Modified: | Oct 22 18:18:23 2007 |
| MD5 Checksum: | 7b0a1cead2cd49e9281e8323d8077ddd |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
