Showing 1 - 6 of 6

Files Date: 2012-10-28 to 2012-10-29

HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow: Posted Oct 28, 2012; Authored by Luigi Auriemma, juan vazquez | Site metasploit.com; This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component (coda.exe) when parsing requests for the 0x8c opcode. This Metasploit module has been tested successfully on HP Operations Agent 11.00 over Windows XP SP3 and Windows 2003 SP2 (DEP bypass). The coda.exe components runs only for localhost by default, network access must be granted through its configuration to be remotely exploitable. On the other hand it runs on a random TCP port, to make easier reconnaissance a check function is provided.; tags | exploit, overflow, tcp; systems | windows; advisories | CVE-2012-2020, OSVDB-83674; SHA-256 | b17f8aa903e5e1fb8c11edc59aa31a5d56b46b6c73d9f2b8f5465c470c2951aa; Download | Favorite | View

HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow: Posted Oct 28, 2012; Authored by Luigi Auriemma, juan vazquez | Site metasploit.com; This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component (coda.exe) when parsing requests for the 0x34 opcode. This Metasploit module has been tested successfully on HP Operations Agent 11.00 over Windows XP SP3 and Windows 2003 SP2 (DEP bypass). The coda.exe components runs only for localhost by default, network access must be granted through its configuration to be remotely exploitable. On the other hand it runs on a random TCP port, to make easier reconnaissance a check function is provided.; tags | exploit, overflow, tcp; systems | windows; advisories | CVE-2012-2019, OSVDB-83673; SHA-256 | 809a9aac4f2a408b3f9058799cf1083d77ec0a7e8360fb3dc6acb06f3554aeee; Download | Favorite | View

ManageEngine Security Manager Plus 5.5 build 5505 SQL Injection: Posted Oct 28, 2012; Authored by egypt, sinn3r, xistence | Site metasploit.com; This Metasploit module exploits a SQL injection found in ManageEngine Security Manager Plus advanced search page, which results in remote code execution under the context of SYSTEM in Windows; or as the user in Linux. Authentication is not required in order to exploit this vulnerability.; tags | exploit, remote, code execution, sql injection; systems | linux, windows; SHA-256 | ae2e0907bda1eeb2906f4560caa8085b35712d1a7fe05eeb19dddd8fe8de7ac1; Download | Favorite | View

Xplico Network Forensic Analysis Tool 1.0.1: Posted Oct 28, 2012; Authored by Gianluca Costa, Andrea de Franceschi | Site xplico.org; Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages.; Changes: PCAP2WAV, RTP2WAV interface added. RTP dissector improved. IRC dissector improvements. nDPI integration. Various other additions and improvements.; tags | tool, imap, forensics; systems | linux; SHA-256 | f5025f8f3cf38601f02fc821e95e9ff7774909fa90c2605ec0dfe5c8b46ff0a5; Download | Favorite | View

Aladdin Knowledge System Ltd Buffer Overflow: Posted Oct 28, 2012; Authored by b33f; Aladdin Knowledge System Ltd PrivAgent.ocx ChooseFilePath buffer overflow proof of concept exploit.; tags | exploit, overflow, proof of concept; SHA-256 | 6b0e1f5b8ce0b43f6fe89b5aefc2eb998856bca69d78c4825813a7b9d9459d3d; Download | Favorite | View

Bypassing Avast Sandbox Using Alternate Data Streaming: Posted Oct 28, 2012; Authored by W1ckerMan; This is a brief whitepaper detailing how to bypass the Avast! sandbox using alternate data streaming.; tags | paper; SHA-256 | 586680dac0f8f3d57c5eef0b2ad0936aa1ccd4bdf17ed5704a5051a36a13ff3f; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days