This archive contains all of the 378 exploits added to Packet Storm in July, 2010.
7465969e30fcae8c630319c2b0c34992UPlusFTP Server version 1.7.1.01 remote buffer overflow post authentication exploit.
60a3b2b94f3545e1846005844320d4f2Symantec Antivirus Corporate Edition AMS Intel Alert Handler service (hndlrsvc.exe) proof of concept command execution exploit.
99af1c5cdd484a0a3d2744bc9ee6a38dJira version 4.0.1 suffers from a cross site scripting vulnerability.
bd54a2222350829abde01d653c24d6a4Zemana AntiLogger with AntiLog32.sys versions 1.5.2.755 and below suffer from a local privilege escalation vulnerability.
3c52a66eb2c31dd73df27b7a44faf0b1Cetera eCommerce versions 14.0 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
2eaa26eb1f22884df3d3167bc069e4b0UTF-8 directory traversal /etc/passwd grabbing exploit for Apache Tomcat versions prior to 6.0.18.
be0f85711288d99a26465aac5493aec3Joomla PhotoMap Gallery version 1.6.0 suffers from multiple remote blind SQL injection vulnerabilities.
929ef26fbab0a2d1e5aa1b95348554d7AV Arcade version 3 suffers from insecure cookie and SQL injection vulnerabilities.
e24295757afa6e9f6b4a25d30a5fe4e7nuBuilder version 10.04.x suffers from a remote file inclusion vulnerability.
d451eae5886197e24dccb93485ece7eaPunBB versions 1.3.x and below with Pun_PM versions 1.2.6 and below remote blind SQL injection exploit.
6e2c0f3eee120f9b20dfae1d6ecb8956Joomla TTVideo component version 1.0 suffers from a remote SQL injection vulnerability.
804159f3c6ff44c128962d760a3b3e00Microsoft Visual Studio version 6.0 VCMUTL.dll unicode Active-X buffer overflow exploit.
d97606695742264600bae5e755755fa4Microsoft Internet Explorer versions 6 and 7 suffers from a denial of service vulnerability.
2752a461ecb310dd0db37c67b478c81eSocial Media version 2.0.0 suffers from a local file inclusion vulnerability.
cfecac432433c100c61e1b5bd2b280fdPHPKIT WCMS vesion 1.6.5 suffers from a reflected cross site scripting vulnerability.
1878fc386e65ab060cd9593ef9dd476cTheeta CMS suffers from cross site scripting and remote SQL injection vulnerabilities.
dbfc07930d0e37e7ee46e6f86ff96744The Joomla Appointinator component version 1.0.1 suffers from remote SQL injection vulnerabilities.
f3ba06cfcb83632d05900d500338dc58SyndeoCMS versions 2.9.0 and below suffer from multiple cross site scripting vulnerabilities.
7968a477727cac0314791654ba903d9fPHPKIT WCMS version 1.6.5 suffers from multiple cross site scripting vulnerabilities.
0703add159aebb090826a24794228ddeThis Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing 'MKD' commands, which leads to a stack based buffer overflow. NOTE: EasyFTP allows anonymous access by default. However, in order to access the 'MKD' command, you must have access to an account that can create directories. After version 1.7.0.12, this package was renamed "UplusFtp". This exploit utilizes a small piece of code that I\\'ve referred to as 'fixRet'. This code allows us to inject of payload of ~500 bytes into a 264 byte buffer by 'fixing' the return address post-exploitation. See references for more information.
a31ab6edcdb29318cc3ec1bcff1a522dThis Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11. credit goes to Karn Ganeshan. NOTE: Although, this is likely to exploit the same vulnerability as the 'easyftp_cwd_fixret' exploit, it uses a slightly different vector.
dd1158c4d3c385cf313352a66803a9f8This Metasploit module exploits a stack-based buffer overflow in EasyFTP Server 1.7.0.11 and earlier. EasyFTP fails to check input size when parsing the 'path' parameter supplied to an HTTP GET request, which leads to a stack based buffer overflow. EasyFTP allows anonymous access by default; valid credentials are typically unnecessary to exploit this vulnerability. After version 1.7.0.12, this package was renamed "UplusFtp". Due to limited space, as well as difficulties using an egghunter, the use of staged, ORD, and/or shell payloads is recommended.
e8e1ba35a15a4cce0d46cd0b3dd34996This Metasploit module exploits a stack-based buffer overflow within version 1.9.5.1 of Hyleos ChemView (HyleosChemView.ocx). By calling the 'SaveAsMolFile' or 'ReadMolFile' methods with an overly long first argument, an attacker can overrun a buffer and execute arbitrary code.
ba64d10e2eab24164863d5807b3b8829QQplayer versions 2.3.696.400p1 and below .smi file processing local buffer overflow exploit.
406fce05161dd97728004e5127e74900
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed