what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 54 RSS Feed

Files

Servu2.c
Posted Mar 4, 2004
Authored by Lion | Site cnhonker.com

Serv-U FTPD 2.x/3.x/4.x/5.x MDTM remote command buffer overflow exploit. Tested against Windows 2000 and XP en/cn.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 971af3ae699a87cfda98262f022d27b79d9091273909f6803bec8bc73a25f046
0402-exploits.tgz
Posted Mar 4, 2004
Authored by Todd J. | Site packetstormsecurity.com

Packet Storm new exploits for February, 2004.

tags | exploit
SHA-256 | eaeb49e26e34807dbf429d7665b585b06e121bbf3fef3a146ed9759cfa380e38
xp_wftpd.zip
Posted Feb 29, 2004
Authored by Axl

Exploit for WFTPD server versions 3.1 through 3.21 and Pro server versions 3.2x that makes use of a stack based buffer overflow.

tags | exploit, overflow
SHA-256 | a57bebe6f1b27bc7da42783916b3a84a28681d61b69b68dca9abdbcc05f6ff60
invisionPB.txt
Posted Feb 28, 2004
Authored by Knight Commander | Site security.com.vn

Invision Power Board is susceptible to a SQL injection vulnerability in its search.php script.

tags | exploit, php, sql injection
SHA-256 | d8c4c4a478f2f5a37f2f0b0241c4cc23ec20627875f2ca4105794ca7d97cd20a
ex_servu.c
Posted Feb 27, 2004
Authored by Sam Chen | Site 0x557.org

Serv-U FTPD 3.x/4.x/5.x MDTM remote command buffer overflow exploit. Tested on Windows 2000 and XP.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 3478cd244b21b32e8c447890c0eaf59dcf6629881d4d91708d1536ceff485b5c
serv-u-mdtm-expl.c
Posted Feb 26, 2004
Authored by Shaun Colley aka shaun2k2

Remote denial of service exploit that makes use of a command buffer overrun in Serv-U MDTM versions 5.0.0.4 and below.

tags | exploit, remote, denial of service, overflow
SHA-256 | b2d3006fc0646e31f2974ba75991ad575fe9b9f0032eb41efccfeb84a3983900
psoproxy-exploit.c
Posted Feb 25, 2004
Authored by Johnny Mast | Site rosiello.org

Remote exploit that makes use of a buffer overflow during GET requests in the PSOProxy server version 0.91. This version support the following operating systems: Windows XP Home Edtion SP1, Windows XP Pro Edtion SP1, Win2k Pro Edtion.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 62202900b3384ce959dde0cd62c292867091c117c07c81cfffbd72ae412dbd85
Flexwatch22.txt
Posted Feb 24, 2004
Authored by Rafel Ivgi | Site theinsider.deep-ice.com

FlexWATCH-Webs versions 2.2 (NTSC) and below suffer from an authorization bypass via double slashes and also a cross site scripting attack.

tags | exploit, web, xss
SHA-256 | 30f2d7d384b06c83532dccf7d1af6e57c41375c5a13abfadfe0e4861c59106a0
waraxe-2004-SA004.txt
Posted Feb 24, 2004
Authored by Janek Vind aka waraxe

Extreme Messageboard aka XMB version 1.8 Partagium Final SP2 is vulnerable to multiple SQL injection and cross site scripting attacks.

tags | exploit, xss, sql injection
SHA-256 | 94202bebf3a32f786fd685a5f8e27fde71d3af5d8268b3550c55c6d9a2fd6d7f
ZH2004-09SA.txt
Posted Feb 23, 2004
Authored by G00db0y | Site zone-h.org

PhpNewsManager version 1.46 allows for arbitrary file reading due to being susceptible to a directory traversal attack.

tags | exploit, arbitrary
SHA-256 | 340c2bf12eaf6e9a64fbb3a6e669b7646c444d064e1d432c3c336d3153659923
GateKeeper.c
Posted Feb 23, 2004
Authored by Kralor | Site coromputer.net

GateKeeper Pro 4.7 on the win32 platform has a buffer overflow vulnerability when processing GET requests. Full remote exploit included. Tested against Microsoft Windows 2000 Pro and Microsoft Windows XP.

tags | exploit, remote, overflow
systems | windows
SHA-256 | 22417fdf4aa577d2e8c2e2119dcb08754e7078a4aad8cb318d882381d9f6dd0c
3com-DoS.c
Posted Feb 23, 2004
Authored by Shaun Colley aka shaun2k2

Proof of concept DoS exploit for 3Com OfficeConnect DSL Routers. Successful exploitation of the vulnerability should cause the router to reboot.

tags | exploit, denial of service, proof of concept
SHA-256 | 254023ca8d4768c04c5c20cfa49d209a6bbc5b70b7a80ccd6bf8833bff56ebcb
lbreakout2-exp.c
Posted Feb 21, 2004
Authored by Li0n7

lbreakout2 versions 2.4beta-2 and below local exploit.

tags | exploit, local
SHA-256 | 51e14a7159f51e0c9c23bf324116ff606ddd4adc0e76e11198615b14ef9e8a41
PSOProxy-exp.c
Posted Feb 21, 2004
Authored by Li0n7

Remote exploit that makes use of a buffer overflow during GET requests in the PSOProxy server version 0.91.

tags | exploit, remote, overflow
SHA-256 | 73f0d6e8adffd79bbf923eab06a241c867975c0e85912c18f2cc7a407730bc67
PSOProxy.c
Posted Feb 20, 2004
Authored by Kralor | Site coromputer.net

Remote exploit that makes use of a buffer overflow during GET requests in the PSOProxy server version 0.91.

tags | exploit, remote, overflow
SHA-256 | ebb77334f93a0da0a47c9f0b9eeadbfd93710550e91f8cdd62436719f01c0594
ldaped.c
Posted Feb 19, 2004
Authored by Kralor | Site coromputer.net

iMail 8.05 LDAP service remote exploit.

tags | exploit, remote
SHA-256 | 9308795e0e2b70dc27363fc26273fbb06ce2f88366c5c9995195e1f558830ebf
xploit_dbg.cpp.txt
Posted Feb 19, 2004
Authored by randnut

Exploit that tests for several vulnerabilities in one of Windows XP kernel's native API functions.

tags | exploit, kernel, vulnerability
systems | windows
SHA-256 | c8b58e5f68561dfb961a121c815bb7e3491dd98dec183140d1decc563346e63c
Adv-20040218.txt
Posted Feb 18, 2004
Authored by Nick Gudov | Site s-quadra.com

S-Quadra Advisory #2004-02-18 - WebCortex Webstores2000 version 6.0 has a SQL injection vulnerability that allows a remote attacker to add an administrative account and it also has a cross site scripting flaw.

tags | exploit, remote, xss, sql injection
SHA-256 | 413be3fc56f6d324062e5d7d79c97bdd9b708064513a7e39c078ee57bbf3f793
ZH2004-08SA.txt
Posted Feb 18, 2004
Authored by G00db0y | Site zone-h.org

OWLS version 1.0 allows for remote file retrieval via directory traversal attacks.

tags | exploit, remote
SHA-256 | 13843490796feb811f362b4296313ee648e9ac12354d4bc7831e144c1b2970a5
Adv-20040216.txt
Posted Feb 18, 2004
Authored by Nick Gudov | Site s-quadra.com

S-Quadra Advisory #2004-02-16 - EarlyImpact ProductCart shopping cart software incorrectly makes use of cryptography, is susceptible to a cross site scripting attack, and allows for SQL injection attacks as well.

tags | exploit, xss, sql injection
SHA-256 | 3330d8b93aad8afb29f6c2680fb973686c8aec2837cc6efd89d60eb6b3d896ca
ZH2004-07SA.txt
Posted Feb 18, 2004
Authored by G00db0y | Site zone-h.org

In the Online Store Kit 3.0 Products, problems exist where user-supplied data is not properly sanitized, allowing for a remote attacker to influence SQL queries and gain sensitive information.

tags | exploit, remote
SHA-256 | 91655534097ed426223b3cbc07ebef79a74c042776ee4f6fd5ddc69f2150cfa5
brokerFTP.txt
Posted Feb 18, 2004
Authored by Aviram Jenik | Site securiteam.com

Two security vulnerabilities in Broker FTP server version 6.1.0.0 cause the server to crash and utilize 100 percent of the systems CPU cycles.

tags | exploit, vulnerability
SHA-256 | 468c4ebd2f2d3bba08b987b1bfbe71803d631e237f34b3603b7a4170a7b0d3ac
ZH2004-06SA.txt
Posted Feb 17, 2004
Authored by G00db0y | Site zone-h.org

ShopCartCGI version 2.3 has multiple directory traversal vulnerabilities that allow for remote attackers to gain access to files outside of the webroot.

tags | exploit, remote, vulnerability
SHA-256 | 3eeebaf9d2b5e316af46dacc9f5e43e3514a13a208d6dd32174dafe0c219bc6d
rsync_local.c
Posted Feb 17, 2004
Authored by abhisek

Local exploit for rsync 2.5.7 and below. Note: This exploit only escalates privileges if rsync is setuid, which it is not by default.

tags | exploit, local
SHA-256 | 270bdea5748826ce67adcc4b529f6cd1b686e05b8b2e8c44d1da806d67bad852
sp-advisory-x10.txt
Posted Feb 17, 2004
Authored by Badpack3t | Site security-protocols.com

A specifically crafted HTTP GET request which contains over 4096 bytes of data will cause the KarjaSoft Sami HTTP server to crash. Versions affected: 1.0.4, possibly earlier versions as well.

tags | exploit, web
SHA-256 | dc2928c9421bbb30e94ea02193251f37fba7827280f552f237e486db9b59936f
Page 1 of 3
Back123Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Microsoft Power Pages Misconfigurations Exposing Sensitive Data
Posted Nov 15, 2024

tags | headline, privacy, microsoft, data loss
Man Gets 5 Years For Laundering Crypto From Bitfinex Hack
Posted Nov 15, 2024

tags | headline, hacker, data loss, fraud, cryptography
Five Eyes Infosec Agencies List 2024's Most Exploited Software Flaws
Posted Nov 14, 2024

tags | headline, government, usa, canada, britain, australia, flaw, new zealand
CISA, FBI Confirm China Hacked Telecoms To Spy
Posted Nov 14, 2024

tags | headline, government, privacy, usa, phone, china, data loss, cyberwar, spyware, backdoor
Two Men Charged For Hacking US Tax Preparation Firms
Posted Nov 14, 2024

tags | headline, hacker, privacy, usa, fraud, identity theft
Iranian Threat Group Targets Aerospace Workers With Fake Job Lures
Posted Nov 14, 2024

tags | headline, hacker, fraud, phish, iran
Air National Guardsman Gets 15 Years For Leaking Docs On Discord
Posted Nov 13, 2024

tags | headline, government, usa, data loss, military
Citrix, Cisco, Fortinet Zero-Days Among 2023's Most Exploited Vulnerabilities
Posted Nov 13, 2024

tags | headline, hacker, flaw, cisco, zero day
Ivanti Patches 50 Vulnerabilities Across Several Products
Posted Nov 13, 2024

tags | headline, flaw, patch
Intel And AMD Have Released Many Advisories
Posted Nov 13, 2024

tags | headline, flaw, patch, intel
View More News →
packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close