Section: .. / 0706-exploits /
| /// File Name: |
safenet-dos.c |
Description:
|
Proof of concept remote denial of service exploit for IPSecDrv.sys as shipped with SafeNET High Assurance Remote and SoftRemote versions 10.4.0.12.
| | Author: | mu-b | | Homepage: | http://www.digit-labs.org/ | | File Size: | 3189 | | Last Modified: | Jun 10 20:07:44 2007 |
| MD5 Checksum: | e407b63b3016a3dc000844ea409ac074 |
|
| /// File Name: |
screen-unlock.txt |
Description:
|
Screen versions 4.0.3 and below suffer from an authentication bypass vulnerability when it is locked.
| | Author: | Rembrandt | | File Size: | 1909 | | Last Modified: | Jun 7 02:29:33 2007 |
| MD5 Checksum: | eeda083511574864504159edd54c6767 |
|
| /// File Name: |
sendcard341-lfi.txt |
Description:
|
Sendcard versions 3.4.1 and below local file inclusion exploit that allows for remote code execution.
| | Author: | Silentz | | Homepage: | http://www.w4ck1ng.com/ | | File Size: | 6014 | | Last Modified: | Jun 7 01:34:28 2007 |
| MD5 Checksum: | 0d44d3c70ed6bf02bf7b390f2f736ffa |
|
| /// File Name: |
serweb094-rfi.txt |
Description:
|
SerWeb version 0.9.4 remote file inclusion exploit that takes advantage of load_lang.php.
| | Author: | Kw3rLn | | Homepage: | http://rst-crew.net/ | | File Size: | 1755 | | Last Modified: | Jun 21 15:44:53 2007 |
| MD5 Checksum: | ae2ad0e3f93aaed562d0471b628c0b5a |
|
| /// File Name: |
shnew31-rfi.txt |
Description:
|
SH-News version 3.1 suffers from a remote file inclusion vulnerability.
| | Author: | Hasadya Raed | | File Size: | 601 | | Last Modified: | Jun 14 23:14:49 2007 |
| MD5 Checksum: | a3b88a7daafb8ffa3b12ddf0009e9345 |
|
| /// File Name: |
shop-xss.txt |
Description:
|
www.shopathometv.com suffers from a cross site scripting vulnerability.
| | Author: | suckure | | File Size: | 1065 | | Last Modified: | Jun 10 20:43:03 2007 |
| MD5 Checksum: | 478b6f904a2a22a42dd378b10d16b14f |
|
| /// File Name: |
si2007-sql.txt |
Description:
|
Simple Invoices 2007 05 25 remote SQL injection exploit that makes use of index.php.
| | Author: | Kacper | | Homepage: | http://www.rahim.webd.pl/ | | File Size: | 4659 | | Last Modified: | Jun 26 16:19:34 2007 |
| MD5 Checksum: | 55a5836353a45c7ada038666304d9015 |
|
| /// File Name: |
sitedepth-lfi.txt |
Description:
|
SiteDepth CMS version 3.44 suffers from a classic local file inclusion vulnerability in ShowImage.php.
| | Author: | H4 / Team XPK | | File Size: | 1228 | | Last Modified: | Jun 26 16:29:12 2007 |
| MD5 Checksum: | ecafe17cbab96ff844f0d453c06b446f |
|
| /// File Name: |
sitellitecms-rfi.txt |
Description:
|
Sitellite CMS versions 4.2.12 and below suffer from a remote file inclusion vulnerability in 559668.php.
| | Author: | o0xxdark0o | | File Size: | 1236 | | Last Modified: | Jun 14 23:26:27 2007 |
| MD5 Checksum: | c9559a8da467665c575a864fab8250fa |
|
| /// File Name: |
smf112-multi.tgz |
Description:
|
Simple Machines Forum (aka SMF) version 1.1.2 suffers from PHP injection and a weak CAPTCHA system. Exploit included to break the CAPTCHA.
| | Author: | ShAnKaR | | Homepage: | http://securityvulns.com/ | | File Size: | 2819 | | Last Modified: | Jun 19 16:39:00 2007 |
| MD5 Checksum: | e8f3b46e8d545baea77e9826adfefea5 |
|
| /// File Name: |
snmpc-meta.txt |
Description:
|
SNMPc versions 7.0.18 and below remote denial of service exploit. This is for the Metasploit framework.
| | Author: | En Douli | | File Size: | 1589 | | Last Modified: | Jun 6 17:52:17 2007 |
| MD5 Checksum: | f3b3c816bc21236cb9dbe467298f1c8f |
|
| /// File Name: |
sony-heap.txt |
Description:
|
Sony Network Camera SNC-P5 version 1.0 ActiveX viewer heap overflow proof of concept denial of service exploit.
| | Author: | str0ke | | Homepage: | http://www.milw0rm.com/ | | File Size: | 589 | | Last Modified: | Jun 27 21:28:46 2007 |
| MD5 Checksum: | 7f6ec6c790d64e72e75a8d885aa218e2 |
|
| /// File Name: |
space4k-xss.txt |
Description:
|
Space4k suffers from a cross site scripting vulnerability.
| | Author: | Florian Stinglmayr | | File Size: | 1601 | | Last Modified: | Jun 10 19:40:40 2007 |
| MD5 Checksum: | 58059b577e86bd4a1a7337b16d27cbe3 |
|
| /// File Name: |
TISA2007-01.txt |
Description:
|
TeamIntell has reported a vulnerability in the Letterman Subscriber Module (mod_letterman) for Joomla! CMS which can be exploited by malicious people to conduct script insertion attacks. Version 1.2.4-RC1 is reported vulnerable. Other versions may be susceptible as well.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 2230 | | Last Modified: | Jun 14 23:09:32 2007 |
| MD5 Checksum: | c81165bf300204d663aba3c6cba96228 |
|
| /// File Name: |
utopia-xss.txt |
Description:
|
Utopia News Pro version 1.4.0 suffers from a cross site scripting vulnerability.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 2608 | | Related OSVDB(s): | 34165 | | Related CVE(s): | CVE-2007-3129 | | Last Modified: | Jun 19 16:35:12 2007 |
| MD5 Checksum: | fba3ea5c54fc78539067e653c97f04cd |
|
| /// File Name: |
vbulinclude-xss.txt |
Description:
|
vBulletin version 3.x suffers from a persistent cross site scripting bug due to a file inclusion vulnerability.
| | Author: | rUnViRuS | | Homepage: | http://www.sec-area.com/ | | File Size: | 1392 | | Last Modified: | Jun 21 15:07:49 2007 |
| MD5 Checksum: | 0ab5e54fee4833ab95276facb748d1d7 |
|
| /// File Name: |
vbultop-xss.txt |
Description:
|
vBulletin version 3.x suffers from a persistent cross site scripting bug due to a file inclusion vulnerability related to new topics.
| | Author: | rUnViRuS | | Homepage: | http://www.sec-area.com/ | | File Size: | 1506 | | Last Modified: | Jun 21 15:08:57 2007 |
| MD5 Checksum: | 3ab479da180bd88f35eda75f716b35c2 |
|
| /// File Name: |
vbzoom-sql.txt |
Description:
|
VBZooM version 1.12 suffers from a SQL injection vulnerability.
| | Author: | Hasadya Raed | | File Size: | 338 | | Last Modified: | Jun 29 22:49:07 2007 |
| MD5 Checksum: | 4b80d4c45e974162b7270da7e2cc7d95 |
|
| /// File Name: |
vonage-default.txt |
Description:
|
It appears that the Vonage VoIP telephone adapter comes with an embedded login of user with a password of user.
| | Author: | John Martinelli | | Homepage: | http://john-martinelli.com/ | | File Size: | 538 | | Last Modified: | Jun 6 19:23:11 2007 |
| MD5 Checksum: | 287152eb5053927b6c94ea0ba0415035 |
|
| /// File Name: |
vsupportits-sql.txt |
Description:
|
vSupport Integrated Ticket System version 3.x suffers from a SQL injection vulnerability.
| | Author: | rUnViRuS | | Homepage: | http://www.sec-area.com/ | | File Size: | 2730 | | Last Modified: | Jun 10 20:40:38 2007 |
| MD5 Checksum: | 7c1c602e4261cd531100dca659708a99 |
|
| /// File Name: |
w3filer-overflow.txt |
Description:
|
W3Filer version 2.1.3 remote stack overflow denial of service exploit.
| | Author: | r0ut3r | | File Size: | 1575 | | Last Modified: | Jun 29 23:23:56 2007 |
| MD5 Checksum: | f9883ae6ed53977343346b0f757b7433 |
|
| /// File Name: |
webapp-exec.txt |
Description:
|
The Menu Manager Mod for WebAPP is susceptible to arbitrary command execution on the underlying system.
| | File Size: | 1080 | | Last Modified: | Jun 12 21:30:01 2007 |
| MD5 Checksum: | 25c738a3b467bb5c2fdd5e56b5e40fa7 |
|
| /// File Name: |
webchat-sql.txt |
Description:
|
WebChat version 0.78 suffers from a remote SQL injection vulnerability in login.php.
| | Author: | ROOT[ATI] | | File Size: | 1419 | | Last Modified: | Jun 29 01:12:47 2007 |
| MD5 Checksum: | 50bb1ba14795269346632ba50a1f71d8 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
