what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 72 RSS Feed

Files Date: 2009-07-17

Core Security Technologies Advisory 2009.0227
Posted Jul 17, 2009
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies Advisory - The Real Helix DNA RTSP and SETUP request handler suffers from multiple denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability
advisories | CVE-2009-2533, CVE-2009-2534
SHA-256 | cdff514d4f41c4b45e2a5462892a195bd759a59e2540efc5011f58cbf0636d02
Firefox 3.5 Heap Spray
Posted Jul 17, 2009
Authored by David Kennedy | Site securestate.com

Mozilla Firefox 3.5 heap spray exploit. Written in Python.

tags | exploit, python
SHA-256 | d1253f8edede8fa9f97227138d7df3490fea4cc39eb8c1282947c40659be1655
Whitepaper Called Image Authentication Injection
Posted Jul 17, 2009
Authored by petros

This is a whitepaper called Image Authentication Injection. Proof of concept code is included.

tags | paper, proof of concept
SHA-256 | d4a68cecd3dae6139f91157e6ef9e79417463b4b054b10498c792b2a524a904e
Soritong MP3 Player 1.0 Overflow
Posted Jul 17, 2009
Authored by ThE g0bL!N | Site h4ckf0ru.com

Soritong MP3 Player version 1.0 local stack overflow proof of concept exploit that creates a malicious .txt file.

tags | exploit, overflow, local, proof of concept
SHA-256 | 25fe222bbcd21b28545c415f9f6f354e0c9f8f4b5766e9a9c53af106ebede6c0
PulseAudio Local Race Condition
Posted Jul 17, 2009
Authored by Yorick Koster | Site akitasecurity.nl

PulseAudio suffers from a local race condition privilege escalation vulnerability. Proof of concept exploit included.

tags | exploit, local, proof of concept
advisories | CVE-2009-1894
SHA-256 | 426a9d852cba8a790cc64c95d7415f44eccf93c747b639ad6f192ca0c06f2302
NullSearchAccess Login Scanner
Posted Jul 17, 2009
Authored by Simpp

NullSearchAccess is a scanner that attempts default logins for various services like ftp, pop3, imap, mysql, and more.

Changes: Some functions fixed. Compiled without mysql lib.
tags | tool, scanner, imap
systems | unix
SHA-256 | a10a9044c809fd3349b9ec60b05ed552425f65705f4c73c9f835870f23fb0bbd
Streaming Audio Player 0.9 Stack Overflow
Posted Jul 17, 2009
Authored by ThE g0bL!N | Site h4ckf0ru.com

Streaming Audio Player version 0.9 local stack overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept
SHA-256 | e2ab28795513dbe62413f0ecead5a05853c3a82d38cc2a2677f58f24254e193a
RadLance Gold 7.5 SQL Injection / XSS
Posted Jul 17, 2009
Authored by Moudi

RadLance Gold version 7.5 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | a76101de6790702d1a27b74eb2fbf2ac1b4f10662675de0b936ce29525242dda
RadBIDS Gold 4 SQL Injection / XSS
Posted Jul 17, 2009
Authored by Moudi

RadBIDS Gold version 4 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 38eb537c78a7658704a6ede901a1a8b5c1068cd2ff64e16b4531a423322c7a9e
RadAFFILIATE Links Cross Site Scripting
Posted Jul 17, 2009
Authored by Moudi

RadAFFILIATE Links suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 26a328bcc81a95419415128fbf79a5eecf66933d44e60e27ca0887019a72eda5
RadNICS Gold 5 SQL Injection / XSS
Posted Jul 17, 2009
Authored by Moudi

RadNICS Gold version 5 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 96798a04b6348ca6e66d7138c2afd226f2db75cc50a5f8d9863afad39512c045
HUBScript 1 Cross Site Scripting
Posted Jul 17, 2009
Authored by Moudi

HUBScript version 1 suffers from cross site scripting and phpinfo() vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 1ff1eb39f17c36975c057674b80e92ef69de08c9ed1ddbe0f808270777c970cd
Honest Traffic Cross Site Scripting
Posted Jul 17, 2009
Authored by Moudi

Honest Traffic suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 908a5966468b6cda5e3d71e3211f33df4237e6f7e965314a159c782cc01d227d
Freelancers Script 1 Cross Site Scripting
Posted Jul 17, 2009
Authored by Moudi

Freelancers Script version 1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 89882e7707f80338361107d432711418784f389e5ee5971ad3e10f58f3527b7b
Mandriva Linux Security Advisory 2009-153
Posted Jul 17, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-153 - Integer overflow in the ISC dhcpd 3.0.x before 3.0.7 and 3.1.x before 3.1.1; and the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528; allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a malformed DHCP packet with a large dhcp-max-message-size that triggers a stack-based buffer overflow, related to servers configured to send many DHCP options to clients. This update provides fixes for this vulnerability.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2007-0062
SHA-256 | c6505a821af86ef94e58b06b54a047ef777eeca3029c106ce34aa9de69c61c2e
23 Bytes Small Win32 Shellcode
Posted Jul 17, 2009
Authored by Stack | Site v4-team.com

23 bytes small win32 XP shellcode that executes cmd.exe.

tags | shellcode
systems | windows
SHA-256 | 18b4f1a4f1ea7b2e6cccf1c44dd49d10c60e7b3b5ae2a386ae008789d93d09f9
Vopak Local File Inclusion
Posted Jul 17, 2009
Authored by St00pidMnky

Vopak.com suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 02e52d0b38ce0bb2713b19931d8a8710d258a1f82756ef44ba50318a0835c38e
Mandriva Linux Security Advisory 2009-152
Posted Jul 17, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-152 - Tavis Ormandy and Julien Tinnes of the Google Security Team discovered that pulseaudio, when installed setuid root, does not drop privileges before re-executing itself to achieve immediate bindings. This can be exploited by a user who has write access to any directory on the file system containing /usr/bin to gain local root access. The user needs to exploit a race condition related to creating a hard link. This update provides fixes for this vulnerability.

tags | advisory, local, root
systems | linux, mandriva
advisories | CVE-2009-1894
SHA-256 | efef538e5448dc71abb6142f0dac1a1ee4d7d0e7534491b4dea526851e048f60
htmldoc 1.8.27.1 Stack Overflow
Posted Jul 17, 2009
Authored by ksa04

htmldoc version 1.8.27.1 universal stack overflow exploit.

tags | exploit, overflow
SHA-256 | a35d868c42c328be76f332f60badf664789e506e25dc2e1dc4184951c9692c56
Easy RM To MP3 Converter Stack Overflow
Posted Jul 17, 2009
Authored by Stack | Site v4-team.com

Easy RM to MP3 Converter universal stack overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow
SHA-256 | a6c79f72fa7534bd1571a0879a0f13a4a742742f81da437fda8e1f9ca7bb5845
WebVision 2.1 SQL Injection
Posted Jul 17, 2009
Authored by Mr.tro0oqy

WebVision version 2.1 remote SQL injection exploit.

tags | exploit, remote, sql injection
SHA-256 | 25b9f9ce181828a4cb6fc1de3a9cafc2fdbc9feedbc4ec97d200250d944dc28b
COMRaider Insecure Method
Posted Jul 17, 2009
Authored by IRCRASH | Site ircrash.com

COMRaider CreateFolder() and Copy() insecure method hard disk filler exploit.

tags | exploit
SHA-256 | 6dc754186ff68f974317f5e7dbe75367f2be240d23e025ce07f6537f16294108
dB Masters Multimedia's Content Manager 4.5 SQL Injection
Posted Jul 17, 2009
Authored by 599eme Man

dB Masters Multimedia's Content Manager version 4.5 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 7cb186bd125e6a4123c29cadbebaf155e52ceb30a9898d85cb07234ea67cb6a3
Joomla Jobline 1.3.1 Blind SQL Injection
Posted Jul 17, 2009
Authored by ManhLuat93 | Site manhluat.com

Joomla Jobline versions 1.3.1 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 17f91f7d257c83e37c016b05114297310a5e82912cb9cb1fda72ed8629e3d103
VS Panel 7.5.5 SQL Injection
Posted Jul 17, 2009
Authored by 599eme Man

VS Panel version 7.5.5 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 37e9fd04e79da711f7a35cdf14fe1cf4b163daff38d13d05b7de5744650f6d97
Page 1 of 3
Back123Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close