Showing 1 - 7 of 7

Files Date: 2013-06-23

Novell Client 4.91 SP4 nwfs.sys Local Privilege Escalation: Posted Jun 23, 2013; Authored by Ruben Santamarta, juan vazquez | Site metasploit.com; This Metasploit module exploits a flaw in the nwfs.sys driver to overwrite data in kernel space. The corruption occurs while handling ioctl requests with code 0x1438BB, where a 0x00000009 dword is written to an arbitrary address. An entry within the HalDispatchTable is overwritten in order to execute arbitrary code when NtQueryIntervalProfile is called. The module has been tested successfully on Windows XP SP3 with Novell Client 4.91 SP4.; tags | exploit, arbitrary, kernel; systems | windows; advisories | OSVDB-46578; SHA-256 | 02221705500fa599274361e29583fc85f5bc7d9c953dfd6c235f742e5c0948a8; Download | Favorite | View

ZPanel 10.0.0.2 htpasswd Module Username Command Execution: Posted Jun 23, 2013; Authored by sinn3r, shachibista | Site metasploit.com; This Metasploit module exploits a vulnerability found in ZPanel's htpasswd module. When creating .htaccess using the htpasswd module, the username field can be used to inject system commands, which is passed on to a system() function for executing the system's htpasswd's command. Please note: In order to use this module, you must have a valid account to login to ZPanel. An account part of any of the default groups should suffice, such as: Administrators, Resellers, or Users (Clients). By default, there's already a 'zadmin' user, but the password is randomly generated.; tags | exploit; advisories | OSVDB-94038; SHA-256 | b0c8395da4e46b664fc003dfc79c486c7be07dfe55feabb0ac541c4e867a7236; Download | Favorite | View

Elemata CMS RC3.0 SQL Injection: Posted Jun 23, 2013; Authored by CWH Underground; Elemata CMS version RC3.0 suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 443a7fa25dbcb64b6c45d3b60b8d94b3efa8d77348711bef3b594d0ec5f393ff; Download | Favorite | View

PodHawk 1.85 Shell Upload: Posted Jun 23, 2013; Authored by CWH Underground; PodHawk version 1.85 suffers from a remote shell upload vulnerability.; tags | exploit, remote, shell; SHA-256 | 66127ace927c9b025512d07ab5c3b575ddacf360ed2d83034adf295a340d4e7e; Download | Favorite | View

TRENDnet TE100-P1U Authentication Bypass: Posted Jun 23, 2013; Authored by Chako; TRENDnet TE100-P1U with print server firmware 4.11 suffers from an authentication bypass vulnerability that allows reset to factory settings or IP address change.; tags | exploit, bypass; SHA-256 | b7ef6475979c2c1961911c4513a6c54bf0f40d588de215f5dc1a34f2f4ef99d6; Download | Favorite | View

Burp Suite Pro Real-Life Tips And Tricks: Posted Jun 23, 2013; Authored by Nicolas Gregoire; These are the presentation slides given at Hack in Paris 2013 giving tips and tricks for using Burp Suite Pro.; tags | paper; SHA-256 | 6eb93e4f370bae913fe79dd342c4f800b20b1c02177cbc5a77b10acdf66ce7e3; Download | Favorite | View

CyberKendra Search Bar Cross Site Scripting: Posted Jun 23, 2013; Authored by Prakhar Prasad, Rafay Baloch; The CyberKendra Search Bar script suffered from a cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | 4a5361a17f69d745e0fb5aa52190ed508bceb7f198b3fd490a70d9e77ed8a4eb; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days