Showing 1 - 5 of 5

Files from Project Zero Labs

First Active	2013-12-20
Last Active	2015-04-28

Libarchive Malformed cpio Archive Crash: Posted Apr 28, 2015; Authored by Project Zero Labs, Paris Zoumpouloglou; Using a crafted tar file bsdtar can perform an out-of-bounds memory read which will lead to a SEGFAULT. The issue exists when the executable skips data in the archive. The amount of data to skip is defined in byte offset [16-19]. If ASLR is disabled, the issue can lead to high CPU load, and potential CPU exhaustion in single-core hosts.; tags | exploit, denial of service; systems | linux; SHA-256 | fd0fb753afd7d4f8141a07df1844dc319539bc557bf657925079de4444885e9a; Download | Favorite | View

Libtiff 4.0.3 Integer Overflow: Posted Dec 22, 2014; Authored by Project Zero Labs, Paris Zoumpouloglou; Libtiff version 4.0.3 suffers from an integer overflow vulnerability that results in an out-of-bounds memory read.; tags | advisory, overflow; SHA-256 | 9fe0f92666d1dda0f8fc69edc3f1572b6a7eddcaf75f93240712c87c6704def8; Download | Favorite | View

Ajenti 1.2.13 Cross Site Scripting: Posted Jan 16, 2014; Authored by Project Zero Labs; Ajenti version 1.2.13 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | f2384d32b3cba7169334e5e7866064ae6d12640e7c4f7b1f468bed3c547f1f20; Download | Favorite | View

CMS Afroditi 1.0 Blind SQL Injection: Posted Dec 30, 2013; Authored by Project Zero Labs | Site projectzero.gr; CMS Afroditi version 1.0 suffers from a remote blind SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 24268d032758b3a26e8d832ca265c267accb897a59979da9cb5ffc116dcf3625; Download | Favorite | View

Codiad 2.0.7 Cross Site Scripting: Posted Dec 20, 2013; Authored by Project Zero Labs; Codiad version 2.0.7 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 6fd396ea8dd173caabd6c81d45224dd5d0b1746c6bb28918a6904caa9714cd8c; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days