Linux/x86 nc -lvve/bin/sh -p13377 shellcode.
5087da60dad719fa86a58f7745885b72PTK version 1.0.5 suffers from cross site scripting and direct access bypass vulnerabilities.
98fdf253d0acd63cd486dcc7ecbf8621Outlook Web Access 2003 suffers from a cross site request forgery vulnerability.
062596341e21c0942751da93fef3908aUbuntu PAM MOTD local root exploit.
6ef7bf45e7458acadcc39a3877753c45This Metasploit module exploits a memory corruption vulnerability in the Internet Explorer Tabular Data ActiveX Control. Microsoft reports that version 5.01 and 6 of Internet Explorer are vulnerable. By specifying a long value as the "DataURL" parameter to this control, it is possible to write a NUL byte outside the bounds of an array. By targeting control flow data on the stack, an attacker can execute arbitrary code.
2e9bd9ce20838396b564cc155722af3eThis Metasploit module exploits a stack overflow in eDirectory 8.7.3 iMonitor service. This vulnerability was discovered by Peter Winter-Smith of NGSSoftware.
3647ad263efbff68ea649c52101eca7aThis Metasploit module exploits a buffer overflow in the CRAM-MD5 authentication of the MDaemon IMAP service. This vulnerability was discovered by Muts.
70f92a2245512a9a831eeff9a9bd282eThis Metasploit module exploits a stack overflow in the Sybase EAServer Web Console. The offset to the SEH frame appears to change depending on what version of Java is in use by the remote server, making this exploit somewhat unreliable.
022610843921f687d371180e3385f1ebThis Metasploit module exploits a heap overflow in the Novell ZENworks Desktop Management agent. This vulnerability was discovered by Alex Wheeler.
dad0db6e05b5a4b18644f0d8493a3b47DirectAdmin versions below 1.33.4 suffer from a local file overwrite and local root escalation vulnerabilities.
0fdab3b9458253098248dea88959b50fCNN.com suffers from cross site scripting and content modification vulnerabilities.
92c84de2d5d9b7b3c25913b34e95cdefASM that provides a win32 reverse connect shell with no null bytes.
1bfd3fd03f18efaca58c6f08c193b27cSimple multi-threaded code that spawns a command prompt on win32.
834c980dbe58b2f1f4ebf599534b38bbThe Joomla Players component suffers from a SQL injection vulnerability.
d8e23e93eee62d39783a8e0642b7a4d2The Joomla Football component suffers from a SQL injection vulnerability.
0da4ecb91d39a48ac8902c7cd277eaa8http://forums.microsoft.com/ appears to suffer from another cross site scripting vulnerability.
1c8c1f493a3ee87500b1ad85583c88b9Microsoft's Terminal Server on Windows 2003 Server with all of the current service packs fails to enforce its own settings.
43225560381e4dcb7faf779e29d8bb6bRemote denial of service exploit for Asterisk PBX that makes use of a bug in the SIP channel driver. Versions below 1.2.16 and below 1.4.1 are affected.
7bc997a83ca3b9c66f2f973b835daed5Various vulnerabilities exist in the FON free wifi service.
2e9289fc1eccf99bca80bc79a6667d28A huge list of IP space for various Federal agencies. Interesting to cross reference to logs and see who may be accessing your web sites, etc.
5d5736c50c7c383e3c25ea5e53723186Remote exploit that will change an IP address for the D-Link DCS-900 IP camera, due to the fact that it listens for a 62976/udp broadcast packet telling it what IP address to use without any authentication.
cda6badab6d0afdafacc7b3bff56b715UPNP mass infector exploit.
89913b84303ba309853fdf491d28198cThis document details the procedure for performing microcode updates on the AMD K8 processors. It also gives background information on the K8 microcode design and provides information on altering the microcode and loading the altered update for those who are interested in microcode hacking. Source code is included for a simple Linux microcode update driver for those who want to update their K8's microcode without waiting for the motherboard vendor to add it to the BIOS. The latest microcode update blocks are included in the driver.
925bf1b56a160a7d79d11e38398da7d2THC-RUT (aRe yoU There) is a local network discovery tool developed to brute force its way into wvlan access points. It offers arp-request on ip-ranges and identifies the vendor of the NIC, spoofed DHCP, BOOTP and RARP requests, icmp-address mask request and router discovery techniques. This tool should be 'your first knife' on a foreign network.
190f08ce6839aecb0fa0ce8d5ddd09eeBind-tsig.c is a trojan which pretends to be a Bind 8 exploit, but actually attacks dns1.nai.com.
cd4a8638d718185f1f26451e0817ef66
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed