RSS Feed » January 17, 2010

• Home
• Portal
• Forums
• Search
• Admin

13629 items (0 unread) in 18 feeds

• security-focus
• secunia
• darkc0de
• remote-exploit
• darknet
• milw0rm
• hack-a-day
• register
• packetstorm-tools
• packetstorm-exploits
• packetstorm-headlines
• packetstorm-misc
• kernel-fun
• sophos-security
• sophos-top-viruses
• carnal0wnage
• securiteam
• wirevolution

• January 17, 2010
• 23:52

  supershop-disclose.txt

   » ‎ packetstorm-exploits
  Super Shop suffers from a database disclosure vulnerability.
• 23:52

  maxphotoalbum-shell.txt

   » ‎ packetstorm-exploits
  Max's Photo Album suffers from a shell upload vulnerability.
• 23:52

  maximageuploader-shell.txt

   » ‎ packetstorm-exploits
  Max's Image Uploader suffers from a shell upload vulnerability.
• 23:52

  ie_aurora.rb.txt

   » ‎ packetstorm-exploits
  This Metasploit module exploits a memory corruption flaw in Internet Explorer. This flaw was found in the wild and was a key component of the Operation Aurora attacks that lead to the compromise of a number of high profile companies. The exploit code is a direct port of the public sample published to the Wepawet malware analysis site. The technique used by this module is currently identical to the public sample, as such, only Internet Explorer 6 can be reliably exploited.
• 23:52

  maxsiteprotector-xss.txt

   » ‎ packetstorm-exploits
  Max Site Protector suffers from a cross site scripting vulnerability.
• 23:52

  aspsurportal-disclose.txt

   » ‎ packetstorm-exploits
  ASP Sur Portal suffers from a database disclosure vulnerability.

• 23:52

  If I Owned Darkc0de:

   » ‎ darkc0de
  If I Owned Darkc0de:
• 23:52

  0day Wordpress DOS

   » ‎ darkc0de
  0day Wordpress DOS

• 22:34

  Programming an internet usage monitor.

   » ‎ remote-exploit

  Tags:  Programming  

  I want to write something which monitors internet usage and emails it to me. I know that there are plenty of these programs available for download but I am more interested in how it all works than actually using it. If anyone can give me some direction it would be much appreciated. Google yields a lot of commercial results, which are not very fruitful to this particular endeavor. Many thanks.

• 22:21

  aspfiyat-disclose.txt

   » ‎ packetstorm-exploits
  ASP Fiyat 2 suffers from a database disclosure vulnerability.
• 22:21

  aspeticare-disclose.txt

   » ‎ packetstorm-exploits
  ASP E-Ticare suffers from a database disclosure vulnerability.
• 22:21

  mmp-dos.txt

   » ‎ packetstorm-exploits
  MediaMonkey Player suffers from a denial of service vulnerability.
• 22:21

  audiotran141-overflow.txt

   » ‎ packetstorm-exploits
  Audiotran version 1.4.1 direct RET buffer overflow exploit.
• 22:21

  NGENUITY-2010-002.txt

   » ‎ packetstorm-exploits
  Zenoss versions 2.3.3 suffers from a cross site request forgery vulnerability.
• 22:21

  rosoftmp444-overflow.txt

   » ‎ packetstorm-exploits
  Rosoft Media Player version 4.4.4 buffer overflow exploit that creates a malicious .m3u file.
• 22:21

  safecentral-unharden-v2.c

   » ‎ packetstorm-exploits
  Authentium SafeCentral versions 2.6 and below shdrv.sys local kernel ring0 SYSTEM proof of concept exploit. Version 2 of this exploit.
• 22:21

  safecentral-unharden.c

   » ‎ packetstorm-exploits
  Authentium SafeCentral versions 2.6 and below shdrv.sys local kernel ring0 SYSTEM proof of concept exploit.
• 22:21

  joomlapc-lfi.txt

   » ‎ packetstorm-exploits
  The Joomla PC component suffers from a local file inclusion vulnerability.
• 22:21

  ie_aurora.py.txt

   » ‎ packetstorm-exploits
  This program acts as a web server that generates an exploit to target a vulnerability in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP2. The exploit's payload spawns the calculator.

• 22:21

  call_gate_exploitation.pdf

   » ‎ packetstorm-misc
  Whitepaper called GDT and LDT in Windows kernel vulnerability exploit. This paper discusses using 1 or 4 byte write-what-where conditions to convert a custom Data-Segment Descriptor entry in LDT of a process into a Call-Gate (with DPL set to 3 and RPL to 0).
• 22:21

  chmod.asm.txt

   » ‎ packetstorm-misc
  27 bytes small Linux/x86 chmod 666 /etc/shadow shellcode.

• 22:21

  bf3.tar.gz

   » ‎ packetstorm-tools
  Browser Fuzzer 3 (bf3) is a comprehensive web browser fuzzer that fuzzes CSS, DOM, HTML and JavaScript.

• 22:21

  toolza1.0 pl....very cool tools

   » ‎ darkc0de
  toolza1.0 pl....very cool tools
• 22:21

  Kaspersky [sql]

   » ‎ darkc0de
  Kaspersky [sql]
• 22:21

  Dork injection sql

   » ‎ darkc0de
  Dork injection sql