Section: .. / 0710-exploits /
| /// File Name: |
mobilemail_libtiff.rb.txt |
Description:
|
This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
| | Author: | H D Moore, KF | | Homepage: | http://metasploit.com/ | | File Size: | 5273 | | Last Modified: | Oct 22 23:43:19 2007 |
| MD5 Checksum: | 92e658f30a2a455067ca9db033446795 |
|
| /// File Name: |
NDSA20071016.txt |
Description:
|
Nth Dimension Security Advisory (NDSA20071016) - The SiteBar application has single high risk issues with its translation module. It can can be made to retrieve any file to which the web server user has read access. The SiteBar application has multiple high risk issues with its translation module. It can be made to execute arbitrary code to gain remote access as the web server user typically nobody. The SiteBar application has multiple medium risk issues where it is vulnerable to Javascript injection within the requested URL. The SiteBar application has single medium risk issue where it is vulnerable to malicious redirects within the requested URL. Version 3.3.8 is affected.
| | Author: | Tim Brown | | Homepage: | http://www.nth-dimension.org.uk/ | | File Size: | 4740 | | Related CVE(s): | CVE-2006-3320, CVE-2007-5492, CVE-2007-5491 | | Last Modified: | Oct 22 18:00:34 2007 |
| MD5 Checksum: | c400d008b511f86b29c1a277f583eb66 |
|
| /// File Name: |
safari_libtiff.rb.txt |
Description:
|
This Metasploit module exploits a buffer overflow in the version of libtiff shipped with firmware versions 1.00, 1.01, 1.02, and 1.1.1 of the Apple iPhone. iPhones which have not had the BSD tools installed will need to use a special payload.
| | Author: | H D Moore, KF | | Homepage: | http://metasploit.com/ | | File Size: | 4714 | | Last Modified: | Oct 22 23:41:50 2007 |
| MD5 Checksum: | a52fa90d5222ed2fd16f87b679276bad |
|
| /// File Name: |
phpwcms-rfi.txt |
Description:
|
php wcms XT version 0.0.7 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | kezzap66345 | | File Size: | 4370 | | Last Modified: | Oct 2 00:25:21 2007 |
| MD5 Checksum: | e706c0bff11a0fe5e89279531430e6db |
|
| /// File Name: |
egg-serv.c |
Description:
|
Eggdrop server module message handling remote buffer overflow exploit for Eggdrop version 1.6.18.
| | Author: | bangbus/magnum, Bow Sineath | | File Size: | 4332 | | Last Modified: | Oct 10 23:44:57 2007 |
| MD5 Checksum: | c740b2a5596d457930802785ee85e1b2 |
|
| /// File Name: |
opg-exec.txt |
Description:
|
Original Photo Gallery versions 0.11.2 and below suffer from a remote command execution vulnerability.
| | Author: | Francesco Ongaro, Antonio Parata | | Homepage: | http://www.ush.it/ | | File Size: | 4076 | | Last Modified: | Oct 2 20:51:26 2007 |
| MD5 Checksum: | d8de2d84d9e87e2e7b7cad36e23374c2 |
|
| /// File Name: |
multicart-sql.txt |
Description:
|
MultiCart version 1.0 remote blind SQL injection exploit.
| | Author: | k1tk4t | | Homepage: | http://newhack.org/ | | File Size: | 4059 | | Last Modified: | Oct 2 20:14:11 2007 |
| MD5 Checksum: | c337eaf6e910efa17b13e40db1ce03d2 |
|
| /// File Name: |
phppm-rfilfi.txt |
Description:
|
PHP Project Management versions 0.8.10 and below suffer from multiple remote and local file inclusion vulnerabilities.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 3952 | | Last Modified: | Oct 22 18:19:38 2007 |
| MD5 Checksum: | a8f04800c0cf54df5011b488004ae287 |
|
| /// File Name: |
segue-rfi.txt |
Description:
|
Segue CMS versions 1.8.4 and below suffer from a remote file inclusion vulnerability in index.php.
| | Author: | kezzap66345 | | File Size: | 3366 | | Last Modified: | Oct 2 00:24:28 2007 |
| MD5 Checksum: | 57b7867616446c2734a247734ff058b1 |
|
| /// File Name: |
sip-pwn.txt |
Description:
|
The Linksys SPA-941 version 5.1.8 is susceptible to a cross site scripting vulnerability using SIP as a vector of attack.
| | Author: | Radu State | | File Size: | 3185 | | Last Modified: | Oct 10 02:11:44 2007 |
| MD5 Checksum: | 2abafc8f32aea3759986777274e40e8f |
|
| /// File Name: |
saxon-sql.txt |
Description:
|
SAXON version 5.4 is susceptible to a SQL injection vulnerability.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 3160 | | Related CVE(s): | CVE-2007-4863 | | Last Modified: | Oct 29 16:01:39 2007 |
| MD5 Checksum: | dceaa951132307f07f9c85e02598c610 |
|
| /// File Name: |
vimpx-overflow.txt |
Description:
|
VImpX ActiveX remote buffer overflow exploit that takes advantage of VImpX.ocx version 4.7.3.0.
| | Author: | Saw13 | | File Size: | 3107 | | Last Modified: | Oct 15 18:35:00 2007 |
| MD5 Checksum: | e2854441edcc2a266b2816cd9c0dca96 |
|
| /// File Name: |
php5x-bypass.txt |
Description:
|
PHP 5.x COM functions safe_mode and disable_function bypass proof of concept exploit.
| | Author: | shinnai | | Homepage: | http://shinnai.altervista.org/ | | File Size: | 3036 | | Last Modified: | Oct 22 18:25:29 2007 |
| MD5 Checksum: | ec750a9bd37f3a6cbba0eae63cf96594 |
|
| /// File Name: |
flatnuke3-fm.txt |
Description:
|
Flatnuke 3 suffers from remote command execution and privilege escalation vulnerabilities.
| | Author: | KiNgOfThEwOrLd | | Homepage: | http://www.inj3ct-it.org/ | | File Size: | 3008 | | Last Modified: | Oct 23 17:56:18 2007 |
| MD5 Checksum: | e6a70aa9348521c875f71a3918b54dab |
|
| /// File Name: |
gomplayer-overflow.txt |
Description:
|
GOM Player version 2.1.6.3499 remote overflow exploit that makes use of GomWeb3.dll version 1.0.0.12. Spawns calc.exe.
| | Author: | rgod | | Homepage: | http://retrogod.altervista.org/ | | File Size: | 3003 | | Last Modified: | Oct 29 16:28:17 2007 |
| MD5 Checksum: | 1a969f1e631cb5f7a248e6899e0ec867 |
|
| /// File Name: |
saxon-xss.txt |
Description:
|
SAXON version 5.4 is susceptible to a cross site scripting vulnerability.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 2981 | | Related CVE(s): | CVE-2007-4862 | | Last Modified: | Oct 29 16:01:00 2007 |
| MD5 Checksum: | 1e0202d3a8c8e4462972c4f33bb5ee32 |
|
| /// File Name: |
tomcatwebdav-disclose.txt |
Description:
|
Apache Tomcat with WEBDAV remote file disclosure exploit that has SSL support.
| | Author: | h3rcul3s | | File Size: | 2921 | | Last Modified: | Oct 22 18:26:55 2007 |
| MD5 Checksum: | d82a4ac6d64823fa0433274a0c5258cb |
|
| /// File Name: |
joomlajcon-rfi.txt |
Description:
|
The Joomla JContentSubscription component version 1.5.8 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | NoGe | | File Size: | 2775 | | Last Modified: | Oct 10 23:35:49 2007 |
| MD5 Checksum: | 7b9d6d1ccda2d8ca86ba61afd368ea32 |
|
| /// File Name: |
fsfdt-overflow.txt |
Description:
|
FSFDT version 3.000 d9 remote buffer overflow exploit that spawns a reverse shell to 10.0.0.100:4321.
| | Author: | weak | | File Size: | 2690 | | Last Modified: | Oct 5 01:32:29 2007 |
| MD5 Checksum: | 968b5f8d999e018b1a86b8c7e98e4002 |
|
| /// File Name: |
phpfaber-rfi.txt |
Description:
|
phpFaber URLInn version 2.0.5 is susceptible to a remote file inclusion vulnerability.
| | Author: | BiNgZa | | File Size: | 2619 | | Last Modified: | Oct 30 20:09:12 2007 |
| MD5 Checksum: | aa3ec3909a003ef50aefc9885845f05e |
|
| /// File Name: |
phpfusionex-sql.txt |
Description:
|
PHP-Fusion module Expanded Calendar 2.x remote SQL injection exploit.
| | Author: | Matrix86 | | Homepage: | http://www.rbt-4.net/ | | File Size: | 2617 | | Last Modified: | Oct 2 00:23:29 2007 |
| MD5 Checksum: | 51242bf351a2a4ccb550c8ee0472abf0 |
|
| /// File Name: |
oracle10g-sql.txt |
Description:
|
Oracle 10g CTX_DOC.MARKUP SQL injection exploit that grants DBA to an unprivileged user.
| | Author: | Sh2kerr | | Homepage: | http://www.dsec.ru/ | | Related File: | NISR17102007A.txt | | File Size: | 2603 | | Last Modified: | Oct 23 19:12:58 2007 |
| MD5 Checksum: | 6e7c39fec3a9942e7563964725d8bd49 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
