Результаты поиска

NTP 4.2.8p3 - Denial of Service #!/usr/bin/env python # Exploit Title: ntpd 4.2.8p3 remote DoS # Date: 2015-10-21 # Bug Discovery: John D "Doug" Birdwell # Exploit Author: Magnus Klaaborg Stubman (@magnusstubman) # Website: http://support.ntp.org/bin/view/Main/NtpBug2922 # Vendor Homepage...

Microsoft Internet Explorer 8 - MSHTML 'SRunPointer::SpanQualifier/RunType' Out-Of-Bounds Read (MS15-009) <!-- Source: http://blog.skylined.nl/20161122001.html Synopsis A specially crafted web-page can cause Microsoft Internet Explorer 8 to attempt to read data beyond the boundaries of a...

Disk Sorter Enterprise 9.1.12 - 'Login' Remote Buffer Overflow #!/usr/bin/python print "Disk Sorter Enterprise 9.1.12 Login Buffer Overflow" print "Author: Tulpa / tulpa[at]tulpa-security[dot]com" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land...

Disk Savvy Enterprise 9.1.14 - 'Login' Remote Buffer Overflow #!/usr/bin/python print "Disk Savvy Enterprise 9.1.14 Login Buffer Overflow" print "Author: Tulpa / tulpa[at]tulpa-security[dot]com" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land you...

Disk Pulse Enterprise 9.1.16 - 'Login' Remote Buffer Overflow #!/usr/bin/python print \"Disk Pulse Enterprise 9.1.16 Login Buffer Overflow\" print \"Author: Tulpa / tulpa[at]tulpa-security[dot]com\" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land...

VX Search Enterprise 9.1.12 - 'Login' Remote Buffer Overflow #!/usr/bin/python print "VX Search Enterprise 9.1.12 Login Buffer Overflow" print "Author: Tulpa / tulpa[at]tulpa-security[dot]com" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land you NT...

Morris Worm - fingerd Stack Buffer Overflow (Metasploit) ## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking # This is so one-off that...

Sync Breeze Enterprise 9.1.16 - 'Login' Remote Buffer Overflow #!/usr/bin/python print "Sync Breeze Enterprise 9.1.16 Login Buffer Overflow" print "Author: Tulpa / tulpa[at]tulpa-security[dot]com" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land...

Dup Scout Enterprise 9.1.14 - 'Login' Remote Buffer Overflow #!/usr/bin/python print "Dup Scout Enterprise 9.1.14 Login Buffer Overflow" print "Author: Tulpa / tulpa[at]tulpa-security[dot]com" #Author website: www.tulpa-security.com #Author twitter: @tulpa_security #Exploit will land you NT...

Morris Worm - sendmail Debug Mode Shell Escape (Metasploit) ## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'expect' class MetasploitModule < Msf::Exploit::Remote # cmd/unix/reverse spams the...

Core FTP LE 2.2 - 'SSH/SFTP' Remote Buffer Overflow (PoC) [+] Credits: John Page aka hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/CORE-FTP-REMOTE-SSH-SFTP-BUFFER-OVERFLOW.txt [+] ISR: ApparitionSec Vendor: ===============...

blueimp's jQuery 9.22.0 - (Arbitrary) File Upload (Metasploit) ## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include...

FaceTime - 'readSPSandGetDecoderParams' Stack Corruption There are a variety of problems that occur when processing malformed H264 streams in readSPSandGetDecoderParams, leading to OOB read, OOB write and stack_chk crashes. I think the root cause is stack corruption. This issue can occur if...

osTicket 1.9.14 - 'X-Forwarded-For' Cross-Site Scripting # Exploit Title: Osticket 1.9.14 and below (X-Forwarded-For) Stored XSS. # Date: 24-11-2016 # Exploit Author: Joaquin Ramirez Martinez [ i0-SEC ] # Software Link: http://osticket.com/ # Vendor: Osticket """ ============== DESCRIPTION...

FaceTime - 'VCPDecompressionDecodeFrame' Memory Corruption There is a heap corruption vulnerability in VCPDecompressionDecodeFrame which is called by FaceTime. This bug can be reached if a user accepts a call from a malicious peer. The issue can be reproduced using the attached sequence of...

GNU Wget < 1.18 - Access List Bypass / Race Condition ''' ============================================= - Discovered by: Dawid Golunski - dawid[at]legalhackers.com - https://legalhackers.com - https://legalhackers.com/advisories/Wget-Exploit-ACL-bypass-RaceCond-CVE-2016-7098.html -...

Remote Utilities Host 6.3 - Denial of Service # Exploit Title: Remote Utilities - Host 6.3 - Denial of Service # Date: 2016-11-25 # Exploit Author: Peter Baris # Vendor Homepage: www.remoteutilities.com # Software Link: http://saptech-erp.com.au/resources/executables/host6.3.zip # Version...

FaceTime - RTP Video Processing Heap Corruption There is a memory corruption issue when processing a malformed RTP video stream in FaceTime that leads to a kernel panic due to a corrupted heap cookie or data abort. This bug can be reached if a user accepts a call from a malicious caller. This...

EasyPHP Devserver 16.1.1 - Cross-Site Request Forgery / Remote Command Execution [+] Credits: John Page aka hyp3rlinx [+] Website: hyp3rlinx.altervista.org [+] Source: http://hyp3rlinx.altervista.org/advisories/EASYPHP-DEV-SERVER-REMOTE-CMD-EXECUTION.txt [+] ISR: ApparitionSec Vendor...

Crestron AM-100 - Multiple Vulnerabilities ================================================================= # Crestron AM-100 (Multiple Vulnerabilities) ================================================================= # Date: 2016-08-01 # Exploit Author: Zach Lanier # Vendor Homepage...

TP-LINK TDDP - Multiple Vulnerabilities 1. Advisory Information Title: TP-LINK TDDP Multiple Vulnerabilities Advisory ID: CORE-2016-0007 Advisory URL: http://www.coresecurity.com/advisories/tp-link-tddp-multiple-vulnerabilities Date published: 2016-11-21 Date of last update: 2016-11-18...

I Know Where Your Page Lives - De-randomizing the latest Windows 10 Kernel 40822.pdf

D-Link DIR-Series Routers - HNAP Login Stack Buffer Overflow (Metasploit) ## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' # Payload working status: # MIPS: # - all valid payloads...

NTP 4.2.8p8 - Denial of Service #!/usr/bin/env python # Exploit Title: ntpd remote pre-auth Denial of Service # Date: 2016-11-21 # Exploit Author: Magnus Klaaborg Stubman (@magnusstubman) # Website: http://dumpco.re/cve-2016-7434/ # Vendor Homepage: http://www.ntp.org/ # Software Link...

Huawei UTPS - Unquoted Service Path Privilege Escalation # Exploit Title: Unquoted Service Path Vulnerability in Huawei UTPS Software # Date: Nov 16 2016 # Author: Dhruv Shah (@Snypter) # Website: http://security-geek.in # Contact: [email protected] # Category: local # Vendor Homepage...