Section: .. / 0704-exploits /
| /// File Name: |
irfanview-ani.txt |
Description:
|
IrfanView version 3.99 .ANI file local buffer overflow exploit. Tested against Windows XP SP2 FR. This is not related to the LoadAniIcon stack overflow.
| | Author: | Marsu | | File Size: | 3240 | | Last Modified: | Apr 2 19:54:11 2007 |
| MD5 Checksum: | 5563946777fa2ffd19cd8213024e4364 |
|
| /// File Name: |
ipswitch505-overflow.txt |
Description:
|
Local buffer overflow exploit for Ipswitch WS_FTP version 5.05 server manager that launches calc.exe.
| | Author: | Marsu | | File Size: | 3176 | | Last Modified: | Apr 2 19:55:25 2007 |
| MD5 Checksum: | 96368be76a319d7da33b8093901f63f2 |
|
| /// File Name: |
nmdeluxe-lfi.txt |
Description:
|
NMDeluxe version 1.0.1 suffers from a local file inclusion vulnerability in footer.php.
| | Author: | BeyazKurt | | File Size: | 3173 | | Last Modified: | Apr 17 00:27:19 2007 |
| MD5 Checksum: | 2ce99adf41be7bfe0177adb544ce650a |
|
| /// File Name: |
msani.c |
Description:
|
Microsoft Windows Animated Cursor (.ANI) local buffer overflow exploit.
| | Author: | Marsu | | File Size: | 3166 | | Related CVE(s): | CVE-2007-1765 | | Last Modified: | Apr 2 18:44:01 2007 |
| MD5 Checksum: | 8784081f135750715341646279e27e68 |
|
| /// File Name: |
exponent-multi.txt |
Description:
|
Exponent CMS versions 0.96.6-Alpha and below are susceptible to directory traversal and cross site scripting vulnerabilities.
| | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 3129 | | Last Modified: | Apr 22 23:46:09 2007 |
| MD5 Checksum: | 85634c828dad15e5ff38d57dff7a69c0 |
|
| /// File Name: |
vcdgear-local.txt |
Description:
|
VCDGear version 3.56 build 050213 local code execution exploit.
| | Author: | C-W-M | | Homepage: | http://www.meftunnet.com | | File Size: | 3110 | | Last Modified: | Apr 17 00:01:08 2007 |
| MD5 Checksum: | aa3a039bd043c499bca5c9b03040b365 |
|
| /// File Name: |
msani-cursor.txt |
Description:
|
.ANI exploit for Microsoft Windows XP SP2 Portuguese version. Binds a shell on TCP port 13579.
| | Author: | Breno Silva Pinto | | File Size: | 3108 | | Last Modified: | Apr 10 01:41:00 2007 |
| MD5 Checksum: | 0a71c67f66bfd0a06cfebf8fd3034ae5 |
|
| /// File Name: |
plphp-multi.txt |
Description:
|
pL-PHP beta version 0.9 suffers from SQL injection, administrative bypass, and local file inclusion vulnerabilities.
| | Author: | omnipresent | | File Size: | 3082 | | Last Modified: | Apr 11 00:29:48 2007 |
| MD5 Checksum: | b6d2deb59beacf98fb2cf9eac6ba58b1 |
|
| /// File Name: |
adv82-K-159-2007.txt |
Description:
|
WordPress plugin wp-Table versions 1.43 and below suffer from a remote file inclusion vulnerability.
| | Author: | K-159 | | Homepage: | http://k-159.echo.or.id/ | | File Size: | 2970 | | Last Modified: | May 2 22:42:02 2007 |
| MD5 Checksum: | 5b5e9808a8a5719ca673615c956713f6 |
|
| /// File Name: |
aol-activex.txt |
Description:
|
This Metasploit module exploits a flaw in the AOL Sb.SuperBuddy ActiveX control.
| | Author: | Krad Chad, leetpete | | File Size: | 2869 | | Related CVE(s): | CVE-2006-5820 | | Last Modified: | Apr 5 02:09:22 2007 |
| MD5 Checksum: | 02db186f1a1e4d7c58e84c27da8b6c6e |
|
| /// File Name: |
xoopswfsec-sql.txt |
Description:
|
Xoops module WF-Section versions 1.01 and below remote blind SQL injection exploit.
| | Author: | ajann | | File Size: | 2679 | | Last Modified: | Apr 2 20:04:32 2007 |
| MD5 Checksum: | 18ecb71834428390a71b2626bdb1f85e |
|
| /// File Name: |
advanced-rfi.txt |
Description:
|
Advanced Login versions 0.7 and below suffer from a remote file inclusion vulnerability.
| | Author: | Zeni Susanto | | File Size: | 2671 | | Last Modified: | Apr 2 17:05:10 2007 |
| MD5 Checksum: | 3c444eff4749aac5aac05651d3620fd3 |
|
| /// File Name: |
backendcms-rfi.txt |
Description:
|
Back-End CMS Database Tables version 0.4.7 suffers from a remote file inclusion vulnerability.
| | Author: | the_Edit0r | | Homepage: | http://www.xmors-security.com/ | | File Size: | 2658 | | Last Modified: | Apr 16 23:58:30 2007 |
| MD5 Checksum: | 052675d1831a148f9ac4b62c1781dc9c |
|
| /// File Name: |
xoopszmag-sql.txt |
Description:
|
Xoops module Zmagazine version 1.0 remote SQL injection exploit that makes use of print.php.
| | Author: | ajann | | File Size: | 2653 | | Last Modified: | Apr 2 20:07:04 2007 |
| MD5 Checksum: | 7ef70ea218c2d1d04467b05712c18483 |
|
| /// File Name: |
xoopsvirii-rfi.txt |
Description:
|
Xoops module Virii Info versions 1.10 and below remote file inclusion exploit that makes use of index.php.
| | Author: | ajann | | File Size: | 2547 | | Last Modified: | Apr 2 20:03:19 2007 |
| MD5 Checksum: | 558ef94f655c805d65ffcbdbdbe7deb0 |
|
| /// File Name: |
xoopswflinks-sql.txt |
Description:
|
XOOPS module WF-Links versions 1.03 and below remote SQL injection exploit.
| | Author: | ajann | | File Size: | 2538 | | Last Modified: | Apr 7 20:26:28 2007 |
| MD5 Checksum: | a03334cc9de9699184b5babe9be2ff6b |
|
| /// File Name: |
xoops-rha-sql.txt |
Description:
|
Xoops module Rha7 Downloads versions 1.0 remote SQL injection exploit that makes use of visit.php.
| | Author: | ajann | | File Size: | 2525 | | Last Modified: | Apr 5 01:54:23 2007 |
| MD5 Checksum: | 4da51d0e739db4b41ef39349fca35fa1 |
|
| /// File Name: |
xoopsjobs-sql.txt |
Description:
|
XOOPS module Jobs versions 2.4 and below remote SQL injection exploit.
| | Author: | ajann | | File Size: | 2473 | | Last Modified: | Apr 7 20:30:21 2007 |
| MD5 Checksum: | abf1a07ff1a25dd5d58dcffda60a4fe6 |
|
| /// File Name: |
aroundme-rfi.txt |
Description:
|
AROUNDMe version 0.7.7 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | kezzap66345 | | File Size: | 2457 | | Last Modified: | Apr 5 01:46:58 2007 |
| MD5 Checksum: | 2fd6af395b5c22ef4ccdbb13bc794e3e |
|
| /// File Name: |
qdblog-lfisql.txt |
Description:
|
QDBlog version 0.4 suffers from SQL injection and local file inclusion vulnerabilities.
| | Author: | omnipresent | | File Size: | 2449 | | Last Modified: | Apr 17 00:17:45 2007 |
| MD5 Checksum: | 901e3e776176de59b593756574c2ed5e |
|
| /// File Name: |
ivan-rfi.txt |
Description:
|
Ivan Gallery Script version 0.1 remote file inclusion exploit.
| | Author: | seko | | File Size: | 2404 | | Last Modified: | Apr 17 12:33:26 2007 |
| MD5 Checksum: | d3561bc6d5a17086c2e530fd547f8b93 |
|
| /// File Name: |
cyboards-rfi.txt |
Description:
|
CyBoards PHP Lite version 1.21 suffers from a remote file inclusion vulnerability.
| | Author: | bd0rk | | Homepage: | http://www.soh-crew.it.tt/ | | File Size: | 2374 | | Last Modified: | Apr 5 01:48:12 2007 |
| MD5 Checksum: | 5af22b4184d0a4c0145d5a9f2c310db1 |
|
| /// File Name: |
vbul-sql.txt |
Description:
|
vBulletin version 3.6.5 and DeluxeBB remote SQL injection exploit.
| | Author: | seko | | File Size: | 2339 | | Last Modified: | Apr 16 23:53:31 2007 |
| MD5 Checksum: | f8856579a76119b6b33310b60a8c612d |
|
| /// File Name: |
bibtex-rfi.txt |
Description:
|
bibtex mase beta version 2.0 is susceptible to a remote file inclusion vulnerability.
| | Author: | InyeXion | | Homepage: | http://www.inyexion.com.ar/ | | File Size: | 2328 | | Last Modified: | Apr 24 03:20:21 2007 |
| MD5 Checksum: | 3dd707a5c83d5ca91f27cc925a1a09d1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
