Section: .. / 0904-exploits /
| /// File Name: |
malware-sql.txt |
Description:
|
The affiliate group that controls many rogue anti-malware software has a SQL injection vulnerability in their control panel that hosts all their sites. This control panel, is also hosted on a domain that is controlled by the rogue group. On the control panel, resides a user list, malware search, definition search, settings, statistics, archives, various databases, and TODO lists.
| | Author: | Xia Shing Zee | | File Size: | 2311 | | Last Modified: | Apr 8 14:40:46 2009 |
| MD5 Checksum: | dc9a9aacd2bc15ed1d00991bcfca2e57 |
|
| /// File Name: |
map121-overflow.txt |
Description:
|
Mercury Audio Player version 1.21 local stack overflow exploit that creates a malicious .b4s file.
| | Author: | His0k4 | | File Size: | 3736 | | Last Modified: | Apr 30 21:29:52 2009 |
| MD5 Checksum: | f798598afbfab079a41a66f1dbfd80a6 |
|
| /// File Name: |
map121-overwrite.txt |
Description:
|
Mercury Audio Player version 1.21 local SEH overwrite exploit that creates a malicious .pls file.
| | Author: | His0k4 | | File Size: | 1927 | | Last Modified: | Apr 30 21:31:46 2009 |
| MD5 Checksum: | 357fea45c6f6221915f9bec4d0354a81 |
|
| /// File Name: |
map121meu-overflow.txt |
Description:
|
Mercury Audio Player version 1.21 local stack overflow proof of concept exploit that creates a malicious .m3u file.
| | Author: | SirGod | | Homepage: | http://www.insecurity.ro/ | | File Size: | 504 | | Last Modified: | Apr 30 21:38:00 2009 |
| MD5 Checksum: | 5b83e41243e20543ddf2cfff77a94b0d |
|
| /// File Name: |
matachat-xss.txt |
Description:
|
MataChat suffers from multiple cross site scripting vulnerabilities.
| | Author: | Am!r | | Homepage: | http://www.irist.ir/ | | File Size: | 2770 | | Last Modified: | Apr 27 22:39:12 2009 |
| MD5 Checksum: | d284e3b903971cd5681f275aa13fdcab |
|
| /// File Name: |
miminfinix-sql.txt |
Description:
|
MIM:InfiniX version 1.2.003 suffers from multiple remote SQL injection vulnerabilities.
| | Author: | YEnH4ckEr | | File Size: | 3274 | | Last Modified: | Apr 28 18:27:11 2009 |
| MD5 Checksum: | 38d2d353380eca5c01021b5fecf728a9 |
|
| /// File Name: |
ministream-overflow.txt |
Description:
|
Mini-Stream Ripper local stack overflow proof of concept exploit that creates a malicious .m3u file.
| | Author: | Cyber-Zone | | Homepage: | http://www.iq-ty.com/ | | File Size: | 944 | | Last Modified: | Apr 14 16:15:22 2009 |
| MD5 Checksum: | 34203ec5ea76d6e078841adb67ad9d08 |
|
| /// File Name: |
miniweb-disclose.txt |
Description:
|
The Miniweb webserver suffers from source disclosure vulnerabilities.
| | Author: | e.wiZz! | | File Size: | 965 | | Last Modified: | Apr 16 18:27:37 2009 |
| MD5 Checksum: | a6bd24d83103eba57b49aeeadf61d941 |
|
| /// File Name: |
miniweb-overflow.txt |
Description:
|
The Miniweb webserver suffers from a buffer overflow vulnerability when a URI longer than 120 bytes is requested.
| | Author: | e.wiZz! | | File Size: | 1372 | | Last Modified: | Apr 16 18:29:19 2009 |
| MD5 Checksum: | a19152f8054041359a0c0cb34d61f6c5 |
|
| /// File Name: |
mixedcms-lfiuploadbypass.txt |
Description:
|
MixedCMS version 1.0 suffers from local file inclusion, shell upload, authentication bypass, and file disclosure vulnerabilities.
| | Author: | YEnH4ckEr | | File Size: | 2106 | | Last Modified: | Apr 21 20:04:45 2009 |
| MD5 Checksum: | 5d3cd2168c63228fe9abd66226615a6a |
|
| /// File Name: |
modperl-xss.txt |
Description:
|
The perl-status utility as included with Mod_perl suffers from a cross site scripting vulnerability.
| | Author: | Richard Brain | | Homepage: | http://www.procheckup.com/ | | File Size: | 2915 | | Related CVE(s): | CVE-2009-0796 | | Last Modified: | Apr 15 17:10:50 2009 |
| MD5 Checksum: | 84e5fd895e5ab4684a212527d6eede11 |
|
| /// File Name: |
mongoose24-traversal.txt |
Description:
|
MonGoose version 2.4 suffers from a remote directory traversal vulnerability.
| | Author: | e.wiZz! | | File Size: | 682 | | Last Modified: | Apr 14 19:58:10 2009 |
| MD5 Checksum: | 8bbe9f8a485485f76a57e00a720bcbd2 |
|
| /// File Name: |
mozillaff-poc.txt |
Description:
|
Mozilla Firefox XSL parsing remote memory corruption proof of concept exploit.
| | Author: | DATA_SNIPER | | File Size: | 1285 | | Last Modified: | Apr 6 16:38:45 2009 |
| MD5 Checksum: | af632fa1ab486f44ccc3f233d8becfec |
|
| /// File Name: |
mozilocms-lfixss.txt |
Description:
|
mozilloCMS version 1.11 suffers from local file inclusion, path disclosure, and cross site scripting vulnerabilities.
| | Author: | SirGod | | Homepage: | http://www.insecurity.ro/ | | File Size: | 1053 | | Last Modified: | Apr 10 20:44:40 2009 |
| MD5 Checksum: | b3f3f1f304317f105f69b33f0c791090 |
|
| /// File Name: |
mpegable-overflow.txt |
Description:
|
mpegable Player version 2.12 local stack overflow proof of concept exploit that creates a malicious .yuv file.
| | Author: | GolD_M | | Homepage: | http://www.tryag.cc/ | | File Size: | 403 | | Last Modified: | Apr 29 17:37:53 2009 |
| MD5 Checksum: | deb56882f8b6864fffe2ccdf8deb861c |
|
| /// File Name: |
msieembed-poc.txt |
Description:
|
Microsoft Internet Explorer EMBED memory corruption proof of concept exploit that leverages the vulnerability discussed in MS09-014.
| | Author: | SkyLined | | File Size: | 15928 | | Last Modified: | Apr 20 15:19:15 2009 |
| MD5 Checksum: | 391d92a335a4f4a3cb4864d4d763c9cb |
|
| /// File Name: |
msripperuniv-overflow.txt |
Description:
|
Mini-Stream Ripper version 3.0.1.1 local universal stack overflow exploit that creates a malicious .m3u file.
| | Author: | Stack | | Homepage: | http://v4-team.com/ | | File Size: | 1929 | | Last Modified: | Apr 14 16:26:32 2009 |
| MD5 Checksum: | a4dbe66aa19f8cca5fe1a1a60ffa1860 |
|
| /// File Name: |
mswinmp-overflow.txt |
Description:
|
Microsoft Windows Media Player integer overflow proof of concept exploit that creates a malicious .mid file.
| | Author: | HuoFu | | File Size: | 673 | | Last Modified: | Apr 15 15:11:24 2009 |
| MD5 Checksum: | 1d7feda73f2022177d55214fa0610f77 |
|
| /// File Name: |
multilingual-lfiupload.txt |
Description:
|
Multi-Lingual E-Commerce System version 0.2 suffers from local file inclusion, information disclosure, and arbitrary file upload vulnerabilities.
| | Author: | Salvatore Fresta | | File Size: | 1770 | | Last Modified: | Apr 20 16:10:16 2009 |
| MD5 Checksum: | 18fb92f7a887b5ab1789f670735157c8 |
|
| /// File Name: |
mydealercms-sql.txt |
Description:
|
My Dealer CMS version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
| | Author: | ThE g0bL!N | | Homepage: | http://h4ckf0ru.com/ | | File Size: | 1132 | | Last Modified: | Apr 9 17:39:39 2009 |
| MD5 Checksum: | bf44bff8efa217268539e62d6f7075e2 |
|
| /// File Name: |
nanocms-multi.txt |
Description:
|
This is a security evaluation of NanoCMS version 0.4_final. It suffers from credential leakage, cross site scripting, and various other vulnerabilities.
| | Author: | Justin C. Klein Keane | | File Size: | 5623 | | Last Modified: | Apr 14 19:29:10 2009 |
| MD5 Checksum: | 04f5d9f6826fa2f63053d6c7c82989ed |
|
| /// File Name: |
net2ftp-xssxsrf.txt |
Description:
|
net2ftp versions 0.97 and below suffer from cross site scripting and cross site request forgery vulnerabilities.
| | Author: | C1c4Tr1Z | | File Size: | 9040 | | Last Modified: | Apr 8 19:49:21 2009 |
| MD5 Checksum: | 878c8b680314f01ef8d4941131ec29f3 |
|
| /// File Name: |
nethoteles-sql.txt |
Description:
|
NetHoteles version 3.0 suffers from a remote SQL injection vulnerability in ficha.php.
| | Author: | Snakespc | | Homepage: | http://www.snakespc.com/sc | | File Size: | 1216 | | Last Modified: | Apr 16 16:58:04 2009 |
| MD5 Checksum: | aa88c327061a102595cd408261368af7 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
