Sctune is a small utility to generate copy/pasteable shellcode for various versions of Windows NT, 2000, 2003 and XP. Function addresses are automatically generated based on the system on which you run sctune.
96ea4749a6a8020dc858be3ec33579271dc0accd628460f40de07d2d3f9dfce6JavaMail is vulnerable to a directory-traversal attack where files can be written to an arbitrary location within the filesystem, by specifying a Content-Disposition header which contains a relative path.
0d8d9c543b406aa12fb6d97ffbe7d720e1c2adf4a994ee527ee49219e237ba7fProof-of-Concept exploit code for the MSIE DHTML object handling vulnerabilities (described in MS05-20).
c26eff210455c49cb3320cc55bf604d64f8ad0b37b6bea90265783cad726472fGentooo Linux Security Advisory GLSA 200504-09 - Axel FTP/HTTP download "accelerator" is vulnerable to a buffer-overflow in code contained in conn.c. Versions up to 1.0b are affected.
e3f733b6144971fec615a292f60e1dfd759fe0fe3ff210ea5a376814305abb30Centra is a system designed to "webcast" MS Office documents. It is vulnerable to Cross-site scripting attacks.
1ce38d6f6a3efaf44e1b13f23c7c28fecf51a925bea2d24b782b2bea8da69a13iDEFENSE Security Advisory 04.12.05 (d) - MSHTA vulnerabilities allow attacker-specified programs to be run by specifying a CLSID associated with the desired program.
0183c6a07bad05a514025166c46b084f13076710dd0012c9d26bfb0369209deaiDEFENSE Security Advisory 04.12.05 (c) - DHTML support in Internet Explorer is vulnerable to a number of attacks which may lead to arbitrary code execution.
349cb56fee747f2b20eee74590bc3f9f3010cd7f10c3092a7ade2a109b6d81dciDEFENSE Security Advisory 04.12.05 (b) - CSRSS.EXE (the core executable for the Windows Client/Server Runtime Server Subsystem, the process which manages most graphical commands in Windows) is vulnerable to a local stack-based buffer overflow.
1ed152806cb81fcfa39c72026fa271e195f5ccb4b3cf94eaa8a73449efe485a7MS Internet Explorer may allow execution of arbitrary code when it attempts to load a URL where the hostname is greater than 256 characters.
61ae937b6493920670582cd64f7974b18854fa5494ba3e3e5b676a4229ad939aUtility to decrypt stored passwords for the "Gadu-Gadu" Polish-language chat program.
9f2dfed7520e70d6af10fd7c6400092d3c95d885d27e8c23c210487c8196ea89eGroupWare contains a bug where mail attachments could be sent to the wrong recipient by mistake, due to eGroupWare caching attachments after a user decides to cancel a message.
749dead5a3d9e61cb8aeed7fe8e36c08cea5e025ab202d7a3da558e4ee54b64cRemote heap buffer overflow exploit for the Microsoft Windows Internet Name Service. Tested against Win2k SP4 Advanced Server English. This exploit can bind a shell to port 101 or will reverse a cmd shell back to a listener.
066ed83cc6f30f1fbe63953338c4c89426c0eae9a7ecfd5d398fd0ba8b78fe6eXAMPP contains multiple vulnerabilities, including default usernames / passwords and Cross-site scripting issues. Example exploit URLs provided as part of advisory.
1c1cffe32942fde51d981767af0ae64e1987d397b5288232d1cce12aa159380cIRM Security Advisory 011 - Sygate Security Agent (Sygate Secure Enterprise) Denial of Service - A flaw in the policy management component allows malicious users to configure the firewall to use a nonexistent policy, thereby causing a Denial of Service condition.
72d952c4b7b042946ac30effd501092f3529e35e766c45c48cb4373b4981cc38Bugger the Debugger is a whitepaper written by Brett Moore / Security Assessment describing how malicious code can be forced to run when a binary is loaded into a debugger / disassembler for analysis.
7851a9b8ea114b418d8c7b7f3062dfb64509d5da16aa5223a072c4f2c5333223Fake login screen emulating the normal Windows login screen. Logs username / password to a file. Requires the capability to install binaries on the affected system in the first place, and messages are apparently based on those in the Australian edition of Windows XP (so it would need to be modified if you plan on running this elsewhere without immediate detection).
d0e6171f9bc96f7e44e1752c58db80c238324b71b62fb1c4a65d507f4df203afSecunia Security Advisory - A vulnerability has been reported in Solaris, which potentially can be exploited by malicious, local users to gain escalated privileges.
88b730693431f4ca47a3ee4d543b9cbcd764499fcbb3fb93c39638e5075882edSecunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in Yager, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
1287bb39b948fc78b891ad33ec10921c259107645934c5d5a407c712e67d8dcdSecunia Security Advisory - Ilja van Sprundel has reported a vulnerability in FreeBSD, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information.
39e8f5051aff86bcf55f392022688aa213ee2d66f484dcd6d4fc00dc32d2a86dSecunia Security Advisory - Diabolic Crab has reported some vulnerabilities in OneWorldStore, which can be exploited by malicious people to conduct cross-site scripting, script insertion and SQL injection attacks.
5b371ad9a20303af0d17fcf981a69b68a9b8cbcb9af3c1c4f4dc1cb84124da81Secunia Security Advisory - Francisco Alisson has reported a vulnerability in All4WWW-
5e1dd3761c395bd70f918560425010145df96594eb6034751ede4b9156dbb118Secunia Security Advisory - Oliver Karow has reported a vulnerability in RSA Authentication Agent for Web for IIS, which can be exploited by malicious people to conduct cross-site scripting attacks.
cf79b70c8e48d19db8bf1140d7176e0e40dbbb57ed9052f443efaf21ba3ee33fSecunia Security Advisory - Some vulnerabilities have been reported in Monkey HTTP Daemon, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
992df6b4198f41aad659f70457f4892028decb42784e1d524f0234cd450c21f4Secunia Security Advisory - Shalom Carmel has reported a weakness in OS/400, which can be exploited by malicious people to identify valid user accounts.
bc5f955f1a9a2e0f5fd0769b4ac49f43cc111d7262dfe73873ac2546c860c9c2Secunia Security Advisory - Stefan Schmidt has reported a vulnerability in Postgrey, which can be exploited by malicious people to cause a DoS (Denial of Service).
135903cfee00b90523eb59ede98ddae014f52c13825b6d164aa5d1dc66ee162f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed