Section: .. / 0607-exploits /
| /// File Name: |
outpostPwn.txt |
Description:
|
All current available Outpost Firewall versions suffer from severe vulnerabilities that allow any local user to gain access to the LocalSystem account.
| | Author: | H. Wiedemann | | File Size: | 1706 | | Last Modified: | Jul 24 02:13:49 2006 |
| MD5 Checksum: | 4e95f622d248c4d3659dba20ec386004 |
|
| /// File Name: |
rs_prctl_kernel.c |
Description:
|
Local root exploit for the linux kernel PRCTL core dump handling vulnerability. Affected kernel versions greater than or equal to 2.6.13 and below version 2.6.17.4.
| | Author: | dreyer, RoMaNSoFt | | File Size: | 1684 | | Related CVE(s): | CVE-2006-2451 | | Last Modified: | Jul 12 05:34:06 2006 |
| MD5 Checksum: | 8e388d91e0c6ffa9ed3232431cb72255 |
|
| /// File Name: |
freewebshop21.txt |
Description:
|
FreeWebShop version 2.1 is susceptible to cross site scripting and SQL injection vulnerabilities.
| | Author: | LBDT | | Homepage: | http://newangels-team.eu/ | | File Size: | 1647 | | Last Modified: | Jul 9 08:36:23 2006 |
| MD5 Checksum: | 38782dc92237ff58b8561f0d89ca7bef |
|
| /// File Name: |
solpot-adv-02.txt |
Description:
|
Advanced Poll version 2.02 suffers from a remote inclusion vulnerability.
| | Author: | Solpot | | Homepage: | http://www.solpotcrew.org/ | | File Size: | 1589 | | Last Modified: | Jul 24 00:53:45 2006 |
| MD5 Checksum: | f64f8e3f00c270d2757215d315a518bd |
|
| /// File Name: |
chameleonLE.txt |
Description:
|
Chameleon LE versions 1.203 and below suffer from a classic directory traversal flaw.
| | Author: | kicktd | | File Size: | 1520 | | Last Modified: | Jul 24 00:37:59 2006 |
| MD5 Checksum: | 02d2d0c9299756fa1d36feaf624f1251 |
|
| /// File Name: |
mgm095.txt |
Description:
|
Mambo Gallery Manager version 095.r3 suffers from remote file inclusion vulnerabilities.
| | Author: | A-S-T TEAM | | Homepage: | http://www.lezr.com | | File Size: | 1516 | | Last Modified: | Aug 3 01:37:49 2006 |
| MD5 Checksum: | 68a093279c55204c8bad157f45cf0f49 |
|
| /// File Name: |
Nanika.tgz |
Description:
|
Proof of concept Excel 2000/XP/2003 exploit.
| | Author: | nanika | | Related File: | excel-ohday.txt | | File Size: | 1512 | | Last Modified: | Jul 9 05:46:46 2006 |
| MD5 Checksum: | 30dd32262cbd0e0fe08cbea394e84ec5 |
|
| /// File Name: |
itts_sharedex2.c |
Description:
|
Heartbeat versions below 2.0.6 insecure shared memory local denial of service exploit.
| | Author: | Nash Leon | | Homepage: | http://www.intruders.org.br/ | | File Size: | 1503 | | Last Modified: | Jul 27 23:37:02 2006 |
| MD5 Checksum: | cc0cb06c57f9ec4230223cd6444e5749 |
|
| /// File Name: |
calendar157.txt |
Description:
|
Calendar Module versions 1.5.7 and below suffer from remote file inclusion vulnerabilities.
| | Author: | Matdhule | | File Size: | 1502 | | Last Modified: | Jul 19 01:38:13 2006 |
| MD5 Checksum: | 212ffba628991c38009d3a6feb801514 |
|
| /// File Name: |
StudIP1302.txt |
Description:
|
Stud.IP versions 1.3.0-2 and below are susceptible to multiple remote file inclusion vulnerabilities.
| | Author: | Hamid Ebadi | | Homepage: | http://www.hamid.ir/security/ | | File Size: | 1451 | | Last Modified: | Jul 2 04:27:33 2006 |
| MD5 Checksum: | 7911fef889d7a8d60bacddbd7aba67b2 |
|
| /// File Name: |
solaris-sysinfo.c |
Description:
|
Solaris versions 10 and below sysinfo() local kernel memory disclosure exploit.
| | Author: | prdelka | | Homepage: | http://prdelka.blackart.org/ | | File Size: | 1429 | | Last Modified: | Jul 26 02:54:55 2006 |
| MD5 Checksum: | 5d7063eefb83cf328df1947e3ba23499 |
|
| /// File Name: |
extcalendar.txt |
Description:
|
ExtCalendar versions 2 and below suffer from a remote file inclusion vulnerability.
| | Author: | OLiBekaS | | Homepage: | http://bekas.6te.net/ | | File Size: | 1358 | | Last Modified: | Jul 9 08:50:57 2006 |
| MD5 Checksum: | 5d6b2937c140e76be19f390a2f6f3e60 |
|
| /// File Name: |
prctl.sh.txt |
Description:
|
Local root exploit for the linux kernel PRCTL core dump handling vulnerability. Affected kernel versions greater than or equal to 2.6.13 and below version 2.6.17.4. Tested by author on 2.6.9-22.ELsmp.
| | Author: | Sunix | | File Size: | 1346 | | Related CVE(s): | CVE-2006-2451 | | Last Modified: | Jul 14 03:22:04 2006 |
| MD5 Checksum: | 66375768233b6a02a248078184388cd5 |
|
| /// File Name: |
webmin.php.txt |
Description:
|
Webmin / Usermin arbitrary file disclosure exploit for versions below 1.290.
| | Author: | joffer | | Homepage: | http://securitydot.net/ | | File Size: | 1346 | | Last Modified: | Jul 12 04:12:09 2006 |
| MD5 Checksum: | 349991402e696667f37b5e220c73ad0a |
|
| /// File Name: |
coppermine122.txt |
Description:
|
Coppermine Photo Gallery version 1.2.2b-Nuke suffers from remote file inclusion vulnerabilities.
| | Author: | A-S-T TEAM | | Homepage: | http://www.lezr.com | | File Size: | 1333 | | Last Modified: | Aug 3 01:38:47 2006 |
| MD5 Checksum: | 8fe9b4110d65a2d11c2046ca6c29b897 |
|
| /// File Name: |
sNews13.txt |
Description:
|
sNews version 1.3 suffers from cross site scripting and SQL injection vulnerabilities.
| | Homepage: | http://www.ellsec.org/ | | File Size: | 1320 | | Last Modified: | Jul 9 07:20:24 2006 |
| MD5 Checksum: | cdb70c271383d63e531ce77dbeba826a |
|
| /// File Name: |
smf.txt |
Description:
|
smf forum for Mambo CMS versions 1.3 and below suffer from a remote file inclusion flaw.
| | Author: | OLiBekaS | | Homepage: | http://bekas.6te.net/ | | File Size: | 1313 | | Last Modified: | Jul 12 04:22:17 2006 |
| MD5 Checksum: | 68ce5b1f4a78273bfa7ed751670a546f |
|
| /// File Name: |
VanillaCMS.txt |
Description:
|
Vanilla CMS versions 1.0.1 and below suffer from a remote file inclusion vulnerability.
| | Author: | MFox | | Homepage: | http://hackerz.ir/ | | File Size: | 1289 | | Last Modified: | Jul 26 02:58:30 2006 |
| MD5 Checksum: | bc1318654cec9815b484e0c0a0a61143 |
|
| /// File Name: |
BlueSpy-adv-multibanners.txt |
Description:
|
Com Multibanners suffers from a remote file inclusion vulnerability.
| | Author: | Blue|Spy | | File Size: | 1288 | | Last Modified: | Jul 24 00:28:21 2006 |
| MD5 Checksum: | 14733beea740b5b9092d8f99723a0c1c |
|
| /// File Name: |
msie-heap.txt |
Description:
|
Microsoft Internet Explorer 6 denial of service exploit that makes use of a heap overflow.
| | Author: | H D Moore | | File Size: | 1243 | | Last Modified: | Jul 12 05:57:02 2006 |
| MD5 Checksum: | 4e0d98b76f39b9afe58c5d8f2e8b8658 |
|
| /// File Name: |
dieselJoke.txt |
Description:
|
Diesel Joke Site is susceptible to SQL injection attacks.
| | Author: | black-code | | File Size: | 1228 | | Last Modified: | Jul 2 05:51:55 2006 |
| MD5 Checksum: | ca08c8dcb3a292d234deb80d1bf130e6 |
|
| /// File Name: |
bl4ck_cyrus-imapd.tgz |
Description:
|
Functioning cyrus-imapd pop3d exploit that will bypass VA Randomization. Written in Ruby.
| | Author: | bannedit | | Homepage: | http://www.blacksecurity.org/ | | File Size: | 1224 | | Last Modified: | Jul 24 01:51:14 2006 |
| MD5 Checksum: | f84801fcc93afb13ad40576388598633 |
|
| /// File Name: |
newangels-11.txt |
Description:
|
CommonSense CMS version 5.0 is susceptible to a cross site scripting flaw.
| | Author: | LBDT | | Homepage: | http://newangels-team.eu/ | | File Size: | 1215 | | Last Modified: | Jul 12 04:55:29 2006 |
| MD5 Checksum: | 7be85cf300a20dad983fd52967c19974 |
|
| /// File Name: |
MultipleDisclose.txt |
Description:
|
MP3netbox Beta 1, efone versions 20000723 and below, Kamikaze-QSCM versions 0.1 and below, Blueboy versions 1.0.3 and below, and Foros version 1.0 all suffer from a remote database password disclosure flaw.
| | Author: | Darkfig | | File Size: | 1156 | | Last Modified: | Jul 9 05:49:55 2006 |
| MD5 Checksum: | 953d68f3becf55753aaa78760c7366c8 |
|
| /// File Name: |
phorum5114local.txt |
Description:
|
Phorum version 5.1.14 is susceptible to cross site scripting and local file inclusion attacks.
| | Author: | Meftun | | File Size: | 1147 | | Last Modified: | Jul 27 23:22:20 2006 |
| MD5 Checksum: | 0f036b3d8f0e0a5f4189fa5fcab6e25a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
