Section: .. / 0712-exploits /
| /// File Name: |
skyline.py.txt |
Description:
|
Sendmail/Postifx FORWARD remote exploit that leverages ftpd.
| | Author: | kcope | | File Size: | 2408 | | Last Modified: | Dec 14 14:30:41 2007 |
| MD5 Checksum: | a85306bce04364a75640d06afec500b0 |
|
| /// File Name: |
smb_mailslot.c |
Description:
|
Proof of concept denial of service exploit for Samba version 3.0.27a that makes use of the send_mailslot() remote buffer overflow vulnerability.
| | Author: | x86 | | File Size: | 5859 | | Last Modified: | Dec 17 20:13:51 2007 |
| MD5 Checksum: | 3485bae9e408f3c94dc69a10d99e5e75 |
|
| /// File Name: |
smf-xss.txt |
Description:
|
SimpleForum versions 4.6.2 and below suffer from a cross site scripting vulnerability.
| | Author: | JosS | | Homepage: | http://www.spanish-hackers.com/ | | File Size: | 612 | | Last Modified: | Dec 24 19:02:12 2007 |
| MD5 Checksum: | 3b8d71dc0c877952f0d71455db0cefa4 |
|
| /// File Name: |
snitz-sql.txt |
Description:
|
Snitz Forums 2000 suffers from a remote SQL injection vulnerability in Active.asp.
| | Homepage: | http://www.bugreport.ir/ | | File Size: | 1280 | | Last Modified: | Dec 3 23:51:40 2007 |
| MD5 Checksum: | bd4e072c15bfbb8f79608f8e8347ba97 |
|
| /// File Name: |
squirrel-inject.txt |
Description:
|
SquirrelMail G/PGP Plugin deletekey() command injection exploit.
| | Homepage: | http://backdoored.net/ | | File Size: | 1302 | | Last Modified: | Dec 11 22:18:03 2007 |
| MD5 Checksum: | bdcdcbf4669f1324020ff2f4f185a0b8 |
|
| /// File Name: |
teamcal-rfilfi.txt |
Description:
|
TeamCalpro version 3.1.000 suffers from multiple remote and local file inclusion vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 4627 | | Last Modified: | Dec 28 17:22:33 2007 |
| MD5 Checksum: | b4538f15fe51b92d7ea8c6340634d2d2 |
|
| /// File Name: |
tellmatic-rfi.txt |
Description:
|
tellmatic version 1.0.7 suffers from multiple remote inclusion vulnerabilities.
| | Author: | ShAy6oOoN | | File Size: | 1203 | | Last Modified: | Dec 2 16:01:45 2007 |
| MD5 Checksum: | c2cd6b401c905629cdaa951c8c2a0079 |
|
| /// File Name: |
themesitescript-rfi.txt |
Description:
|
ThemeSiteScript version 1.0 suffers from a remote file inclusion vulnerability.
| | Author: | Koller | | Homepage: | http://xaker.name/ | | File Size: | 1044 | | Last Modified: | Dec 24 14:37:17 2007 |
| MD5 Checksum: | eb4d8013f9baf6d709646f2271d94c75 |
|
| /// File Name: |
tikiwiki-traverse.txt |
Description:
|
The Tikiwiki CMS has a vulnerability that allows an attacker to get the first 1000 bytes from an arbitrary file through the tiki-listmovies.php script.
| | Author: | Jesus Olmos Gonzalez | | File Size: | 4142 | | Last Modified: | Dec 24 18:54:10 2007 |
| MD5 Checksum: | 5eee6c20979ac907f14a5250773f0b54 |
|
| /// File Name: |
trivantis-sql.txt |
Description:
|
The Trivantis CourseMill Enterprise Learning Management System version 4.1 SP4 suffers from a remote SQL injection vulnerability.
| | Author: | sasquatch | | Homepage: | http://www.securestate.com/ | | File Size: | 4257 | | Related CVE(s): | CVE-2007-6338 | | Last Modified: | Dec 13 18:12:06 2007 |
| MD5 Checksum: | d11f9998484219744a0afb2467c1aa7a |
|
| /// File Name: |
usb-blam.txt |
Description:
|
Simple schematic to make an extremely malicious USB denial of service tool.
| | Author: | Todd Troxell | | File Size: | 709 | | Last Modified: | Dec 28 19:32:41 2007 |
| MD5 Checksum: | 72e98a8f06d4ea54537e12ca29f1df29 |
|
| /// File Name: |
vantage-overflow.txt |
Description:
|
Vantage Linguistics AnswerWorks version 4 API ActiveX control buffer overflow exploit.
| | Author: | Elazar Broad | | File Size: | 6672 | | Last Modified: | Dec 31 16:40:24 2007 |
| MD5 Checksum: | 501d0e0cdb3ac6a5b8b743d7e07d6cd1 |
|
| /// File Name: |
viart-rfi.txt |
Description:
|
ViArt CMS version 3.3.2 suffers from a remote file inclusion vulnerability.
| | Author: | RoMaNcYxHaCkEr | | File Size: | 778 | | Last Modified: | Dec 12 17:45:49 2007 |
| MD5 Checksum: | 9d1b60b4b11d87b8ca3f41b9ff7e7d59 |
|
| /// File Name: |
vlcboffs.zip |
Description:
|
Proof of concept code that demonstrates format string and buffer overflow vulnerabilities in VideoLAN (VLC) versions 0.8.6d and below.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | vlcboffs.txt | | File Size: | 1225 | | Last Modified: | Dec 24 15:02:46 2007 |
| MD5 Checksum: | b7908e112e7acaa892b7c5240ba41697 |
|
| /// File Name: |
wallpaper-sql.txt |
Description:
|
Wallpaper Site version 1.0.09 suffers from a remote SQL injection vulnerability in category.php.
| | Author: | Koller | | Homepage: | http://xaker.name/ | | File Size: | 1457 | | Last Modified: | Dec 24 14:29:52 2007 |
| MD5 Checksum: | dcb7534ffe7afa48a0edb3a67840f144 |
|
| /// File Name: |
wbb-sql.txt |
Description:
|
Woltlab Burning Board Lite version 1.0.2 suffers from a SQL injection vulnerability.
| | Author: | NBBN | | File Size: | 2460 | | Last Modified: | Dec 20 16:29:57 2007 |
| MD5 Checksum: | 1bac4104c4eb59f4e39ecbb2862e56bb |
|
| /// File Name: |
wconnect-xss.txt |
Description:
|
The West Wind Web Connection tool is susceptible to multiple cross site scripting vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1691 | | Last Modified: | Dec 17 20:29:49 2007 |
| MD5 Checksum: | fb0dfa675c7017a718739b84cba8b75d |
|
| /// File Name: |
websihirbazi-sql.txt |
Description:
|
websihirbazi version 5.1.1 suffers from a remote blind SQL injection vulnerability.
| | Author: | bypass | | File Size: | 1586 | | Last Modified: | Dec 24 14:34:26 2007 |
| MD5 Checksum: | 9ce508c38df794abcc0010fe4506a72b |
|
| /// File Name: |
webspell-xss.txt |
Description:
|
webSPELL version 4.01.02 suffers from cross site scripting vulnerabilities in calendar.php and usergallery.php.
| | Author: | Brainhead | | File Size: | 843 | | Last Modified: | Dec 10 17:21:03 2007 |
| MD5 Checksum: | 26608ba1192411b0a18e03c73d70341f |
|
| /// File Name: |
WftpdExpPro_HeapPoC.py.txt |
Description:
|
WFTPD Explorer Pro version 1.0 proof of concept remote heap overflow exploit.
| | Author: | r4x | | File Size: | 2886 | | Last Modified: | Dec 18 20:02:26 2007 |
| MD5 Checksum: | 2a26124b59aa5a0e9ba91cbe0b78f911 |
|
| /// File Name: |
winuaebof.zip |
Description:
|
Proof of concept code for WinUAE versions 1.4.4 and below which suffer from a buffer overflow vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related File: | winuaebof.txt | | File Size: | 3146 | | Last Modified: | Dec 24 14:50:59 2007 |
| MD5 Checksum: | d8bf74aded38d89e7e952c929cdb3902 |
|
| /// File Name: |
wmp-overflow.txt |
Description:
|
Windows Media Player version 6.4 MP4 stack overflow exploit that spawns a shell on port 49152.
| | Author: | SYS 49152 | | File Size: | 15276 | | Last Modified: | Dec 8 17:36:11 2007 |
| MD5 Checksum: | 95283f2c7f560eaf7ee9319127e20411 |
|
| /// File Name: |
wordpresscharset-sql.txt |
Description:
|
WordPress suffers from a charset remote SQL injection vulnerability.
| | Author: | Abel Cheung | | File Size: | 1743 | | Last Modified: | Dec 10 19:45:28 2007 |
| MD5 Checksum: | 4831cb66e7db19c807d8a93c811947d4 |
|
| /// File Name: |
wppict-disclose.txt |
Description:
|
The Wordpress PictPress plugin versions 0.91 and below suffer from a remote file disclosure vulnerability.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 461 | | Last Modified: | Dec 7 12:39:56 2007 |
| MD5 Checksum: | 5fd1331960c2fc77e318b3afce656fba |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
