Section: .. / 0704-exploits /
| /// File Name: |
mpp112-rfi.txt |
Description:
|
MobilePublisherphp version 1.1.2 suffers from a remote file inclusion vulnerability.
| | Author: | the_Edit0r | | Homepage: | http://www.xmors-security.com/ | | File Size: | 1750 | | Last Modified: | Apr 16 23:57:50 2007 |
| MD5 Checksum: | ba1de1155a99a71180e3131c96cbdb73 |
|
| /// File Name: |
msani-cursor.txt |
Description:
|
.ANI exploit for Microsoft Windows XP SP2 Portuguese version. Binds a shell on TCP port 13579.
| | Author: | Breno Silva Pinto | | File Size: | 3108 | | Last Modified: | Apr 10 01:41:00 2007 |
| MD5 Checksum: | 0a71c67f66bfd0a06cfebf8fd3034ae5 |
|
| /// File Name: |
msani.c |
Description:
|
Microsoft Windows Animated Cursor (.ANI) local buffer overflow exploit.
| | Author: | Marsu | | File Size: | 3166 | | Related CVE(s): | CVE-2007-1765 | | Last Modified: | Apr 2 18:44:01 2007 |
| MD5 Checksum: | 8784081f135750715341646279e27e68 |
|
| /// File Name: |
msdns_zonename.rb.txt |
Description:
|
This Metasploit module exploits a stack overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name is supplied that contains escaped characters. This exploit will NOT work on Windows 2003 SP1 or SP2 if hardware DEP is enabled.
| | Author: | H D Moore | | Homepage: | http://metasploit.com/ | | File Size: | 4618 | | Related CVE(s): | CVE-2007-1748 | | Last Modified: | Apr 17 12:24:55 2007 |
| MD5 Checksum: | 5eaf4ad4892980ab9394b2204f8b0a6f |
|
| /// File Name: |
mswin-dns-meta.txt |
Description:
|
Remote exploit for the Microsoft Windows DNS RPC service vulnerability. Tested on Windows 2000 SP4. Binds a shell to TCP port 4444.
| | Author: | Winny Thomas | | File Size: | 4837 | | Last Modified: | Apr 17 00:39:07 2007 |
| MD5 Checksum: | 59a3274fb97bad7d806445dbcd5c4d08 |
|
| /// File Name: |
mswin-dns-overflow.txt |
Description:
|
Microsoft Windows DNS DnssrvQuery() stack overflow exploit. Binds a shell to TCP port 4444.
| | Author: | devcode | | File Size: | 7706 | | Related CVE(s): | CVE-2007-1748 | | Last Modified: | Apr 17 00:42:18 2007 |
| MD5 Checksum: | 4a2e7876cfab200e59d3ea8bb266a13d |
|
| /// File Name: |
mutant-rfi.txt |
Description:
|
Mutant version 0.9.2 suffers from a remote file inclusion vulnerability in mutant_functions.php.
| | Author: | bd0rk | | Homepage: | http://www.soh-crew.it.tt/ | | File Size: | 1967 | | Last Modified: | Apr 5 01:49:06 2007 |
| MD5 Checksum: | 97d25eb548eaf7b9873d7e961623a8da |
|
| /// File Name: |
mybb-exec.txt |
Description:
|
MyBulletinBoard aka MyBB versions 1.2.3 and below remote code execution exploit.
| | Author: | DarkFig | | Homepage: | http://www.acid-root.new.fr/ | | File Size: | 10892 | | Last Modified: | Apr 4 18:48:41 2007 |
| MD5 Checksum: | 9f62415a2c97c74174c70e1aeba91341 |
|
| /// File Name: |
mybb-traverse.html |
Description:
|
The MyBB Hot Editor plugin version 4.0 suffers from a local file inclusion vulnerability in the "first" variable in keyboard.php.
| | Author: | Liz0ziM | | Homepage: | http://www.expw0rm.com/ | | File Size: | 919 | | Last Modified: | Apr 10 02:16:44 2007 |
| MD5 Checksum: | 0236d30a736712c5b86a7e37f5e9d59c |
|
| /// File Name: |
mydns-rr-smash.c |
Description:
|
Remote heap smash exploit for mydns versions 1.1.0 and below.
| | Author: | mu-b | | Homepage: | http://www.digit-labs.org/ | | File Size: | 3604 | | Last Modified: | May 2 20:39:13 2007 |
| MD5 Checksum: | 274b37368d8dc2f5b79d524cbae37f53 |
|
| /// File Name: |
mygal-rfi.txt |
Description:
|
The WordPress myGallery plugin versions 1.4b4 and below suffer from a remote file inclusion vulnerability.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 1157 | | Last Modified: | May 2 20:25:03 2007 |
| MD5 Checksum: | 5ce50606bb0a578877430883443889da |
|
| /// File Name: |
myspeach-inclusion.txt |
Description:
|
MySpeach versions 3.0.7 and below remote/local file inclusion exploit.
| | Author: | Xst3nZ | | File Size: | 7029 | | Last Modified: | Apr 5 01:43:26 2007 |
| MD5 Checksum: | 8c490b8475fe4ac2f59aeedbd343d19f |
|
| /// File Name: |
nctaudio.txt |
Description:
|
Internet Explorer NCTAudioFile2.AudioFile Active-X remote overflow exploit.
| | Author: | InTeL | | File Size: | 5994 | | Last Modified: | Apr 17 00:36:59 2007 |
| MD5 Checksum: | 59f94064307fdf81b44d7a9eaad77f59 |
|
| /// File Name: |
nmdeluxe-lfi.txt |
Description:
|
NMDeluxe version 1.0.1 suffers from a local file inclusion vulnerability in footer.php.
| | Author: | BeyazKurt | | File Size: | 3173 | | Last Modified: | Apr 17 00:27:19 2007 |
| MD5 Checksum: | 2ce99adf41be7bfe0177adb544ce650a |
|
| /// File Name: |
nuke-bypass.txt |
Description:
|
NukeSentinel suffers from a flaw that allows its SQL injection protection to be bypassed thus allowing for SQL injection attacks. Details provided.
| | Author: | Aleksandar aka sale83 | | File Size: | 5574 | | Last Modified: | Apr 19 00:05:30 2007 |
| MD5 Checksum: | dfa2ef4445fc406a4955108d203532e1 |
|
| /// File Name: |
openmairie-lfi.txt |
Description:
|
openMairie version 1.10 suffers from a local file inclusion vulnerability.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 351 | | Last Modified: | Apr 17 00:29:57 2007 |
| MD5 Checksum: | 6f38e2ae30dbb97ef659d3c04556126f |
|
| /// File Name: |
papoo-sql.txt |
Description:
|
Papoo versions 3.02 and below remote SQL injection exploit.
| | Author: | Kacper | | Homepage: | http://www.rahim.webd.pl/ | | File Size: | 4770 | | Last Modified: | Apr 17 00:25:33 2007 |
| MD5 Checksum: | 714df45c45ed23bea86a7c36313a74d2 |
|
| /// File Name: |
pathoscms-rfi.txt |
Description:
|
Pathos CMS versions 0.92-2 suffers from a remote file inclusion vulnerability.
| | Author: | kezzap66345 | | File Size: | 1258 | | Last Modified: | Apr 10 01:37:41 2007 |
| MD5 Checksum: | 586d299d0e3fc28f7c216984f70a3fab |
|
| /// File Name: |
pbm-rfi.txt |
Description:
|
phpBandManager version 0.8 suffers from a remote file inclusion vulnerability.
| | Author: | koray | | File Size: | 262 | | Last Modified: | May 2 20:17:43 2007 |
| MD5 Checksum: | 71cd7a071b565d4de4610e8b86bb421d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
