Section: .. / Last 20 Files /
| /// File Name: | httpdx-break.txt | Description:
| Httpdx version 1.5.3 remote break services exploit. | | Author: | Jonathan Salwan | | File Size: | 1513 | | Last Modified: | Mar 16 00:48:54 2010 | | MD5 Checksum: | 5dc4a8f716291ef5f6ee472c61c54e83 |
|
| /// File Name: | dojo-xss.txt | Description:
| Dojo Toolkit SDK versions 1.4.1 and below suffer from a cross site scripting vulnerability. | | Author: | Adam Bixby | | Homepage: | http://www.gdssecurity.com/ | | File Size: | 4343 | | Last Modified: | Mar 16 00:46:57 2010 | | MD5 Checksum: | 35c74e69700d51106381fc918fded8e4 |
|
| /// File Name: | plumbercon10-cfp.txt | Description:
| PlumberCon 10 Call For Papers - This convention will be taking place in Austria from July 9th through the 11th, 2010. | | Homepage: | http://plumbercon.org/ | | File Size: | 5213 | | Last Modified: | Mar 16 00:45:57 2010 | | MD5 Checksum: | 0e4053ecbfbfdb5f785a0768c3121f79 |
|
| /// File Name: | csice-xssxsrf.txt | Description:
| CSICE suffers from cross site request forgery and cross site scripting vulnerabilities. | | Author: | FB1H2S | | File Size: | 2046 | | Last Modified: | Mar 16 00:39:32 2010 | | MD5 Checksum: | 9cff76f6a49ec0dea4b4b1024a864414 |
|
| /// File Name: | buck-security_0.4.zip | Description:
| Buck-Security is a security scanner for Debian and Ubuntu Linux. It helps you to harden your system by running some important security checks. For example, it finds world-writable files and directories, setuid and setgid programs, superuser accounts, and installed attack tool packages. It also checks your umask and checks if the sticky bit is set for /tmp, among other checks. | | Homepage: | http://buck-security.sourceforge.net/ | | File Size: | 35181 | | Last Modified: | Mar 16 00:35:57 2010 | | MD5 Checksum: | d10b3410df616cea9b60b44a182debf2 |
|
| /// File Name: | iexploder-1.5.tgz | Description:
| iExploder is like a fire hydrant full of bad HTML and CSS code to test the stability and security of web browsers. Available as a standalone webserver or CGI script, it continuously feeds browsers bad data in the hope that they will eventually crash. It is designed to run for hours, or even days until the browser crashes. namebench was initially written as a QA tool for the Mozilla Project to test the Firefox 1.0 release, and is now included and used by Apple's Webkit project. | | Author: | Thomas Stromberg | | Homepage: | http://code.google.com/p/iexploder/ | | File Size: | 344463 | | Last Modified: | Mar 16 00:32:10 2010 | | MD5 Checksum: | a9f13caef6e05e60c287cb32bf4e5084 |
|
| /// File Name: | joomlaas-sql.txt | Description:
| The Joomla As component suffers from a remote SQL injection vulnerability. | | Author: | N2n-Hacker | | File Size: | 1177 | | Last Modified: | Mar 16 00:28:05 2010 | | MD5 Checksum: | 09707a55a39a42123137cd9512d4bc93 |
|
| /// File Name: | iphone_crash_2.py.txt | Description:
| iPhone Springboard crash proof of concept exploit. | | Author: | Chase Higgins | | File Size: | 1326 | | Last Modified: | Mar 16 00:26:32 2010 | | MD5 Checksum: | fe7fc2c53b3770143815e56cc0b9cd39 |
|
| /// File Name: | whatweb-0.4.tar.gz | Description:
| WhatWeb next generation web scanner identifies what websites are running. Released at the Kiwicon conference (kiwicon.org) in Wellington, New Zealand. Written in Ruby for Linux. Flexible plugin architecture with over 70 plugins so far. Passive plugins use information in the headers, cookies, HTML body and URL. Aggressive plugins can identify versions of Joomla, phpBB, etc by making extra requests to the webserver. Screenshots on the homepage. | | Author: | Andrew Horton (urbanadventurer) | | Homepage: | http://www.morningstarsecurity.com/research/whatweb | | Changes: | Added HTTPS support. Improved documentation. Various additions and updates. | | File Size: | 170740 | | Last Modified: | Mar 15 23:14:59 2010 | | MD5 Checksum: | e1e415bb7cb2c76ff4489232fff5a668 |
|
| /// File Name: | swingette-dos.txt | Description:
| Swingette version 1.1 buffer overflow denial of service exploit that creates a malicious .mp3 file. | | Author: | cr4wl3r | | File Size: | 3102 | | Last Modified: | Mar 16 00:22:33 2010 | | MD5 Checksum: | 1eef33283d881afdf0885f51df41ca63 |
|
| /// File Name: | embedthis-dos.txt | Description:
| Embedthis Appweb version 3.1.2 remote denial of service exploit. | | Author: | chr1x | | File Size: | 4192 | | Last Modified: | Mar 16 00:21:05 2010 | | MD5 Checksum: | 21b1af26a52d6bc36668e826d80f52a0 |
|
| /// File Name: | httpdx153b-crash.txt | Description:
| httpdx version 1.5.3b remote pre-authentication denial of service proof of concept exploit. | | Author: | loneferret | | File Size: | 3898 | | Last Modified: | Mar 16 00:19:41 2010 | | MD5 Checksum: | cd6eaf143dd7d6978809b8f9990e2645 |
|
| /// File Name: | mediaplayer-dos.txt | Description:
| Media Player version 6.4.9.1 with K-Lite Codec Pack denial of service exploit that creates a malicious .avi file. | | Author: | Enigma7 | | File Size: | 886 | | Last Modified: | Mar 16 00:17:06 2010 | | MD5 Checksum: | 0dfc40bacc39b136497d4969c1427b4d |
|
| /// File Name: | gomplayeravi-dos.txt | Description:
| GOM Player version 2.1.21 denial of service exploit that creates a malicious .avi file. | | Author: | Enigma7 | | File Size: | 550 | | Last Modified: | Mar 16 00:15:35 2010 | | MD5 Checksum: | e5fc437366d97e8499cadf910f1dcf1d |
|
| /// File Name: | quickzip_xpsp3.pl.txt | Description:
| QuickZip version 4.60.019 stack buffer overflow exploit for XP SP3. | | Author: | corelanc0d3r | | File Size: | 4363 | | Last Modified: | Mar 16 00:13:48 2010 | | MD5 Checksum: | 115495832ffe27ef0c37a2dfa4d3d799 |
|
| /// File Name: | sipwitch-0.7.3.tar.gz | Description:
| GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP rver, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate. | | Author: | David Sugar | | Homepage: | http://www.gnutelephony.org/ | | Changes: | Additional server management commands were added. Proper installation of the sipwitch CGI Web service is done to support introduction of a separately installable sipwitch-cgi package in Debian and RPM packaging. | | File Size: | 491035 | | Last Modified: | Mar 15 23:22:18 2010 | | MD5 Checksum: | 9ff32a00a623b77e65bb1c0f04dd6d08 |
|
| /// File Name: | ocftpd-overflow.rb.txt | Description:
| This Metasploit module exploits a stack overflow in the USER verb in Open & Compact FTPd version 1.2. The program will crash once the payload is sent, so bind shell payloads are not effective. | | Author: | Blake | | Homepage: | http://www.metasploit.com | | File Size: | 2154 | | Last Modified: | Mar 15 23:20:20 2010 | | MD5 Checksum: | 4a8214de5df6870ce41b4ddd3218d4f4 |
|
| /// File Name: | ads-xss.txt | Description:
| phpAdsNew, OpenAds and OpenX suffer from a cross site scripting vulnerability in banner.swf. | | Author: | MustLive | | File Size: | 2273 | | Last Modified: | Mar 15 23:18:33 2010 | | MD5 Checksum: | 147a3787722d88ea4263a8c894cecc5d |
|
| /// File Name: | sqlmap-0.8.tar.gz | Description:
| sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more. | | Author: | Bernardo Damele | | Homepage: | http://sqlmap.sourceforge.net | | Changes: | Support to enumerate and dump all database tables. Support to parse -C when fetching columns of a table. Support for takeover features on PostgreSQL 8.4. Various other improvements and tweaks. | | File Size: | 3811238 | | Last Modified: | Mar 15 23:12:07 2010 | | MD5 Checksum: | 1005e55af73b4368c4f70de54bea4d24 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
