Author : luigi auriemma
Page 1 of 218 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
HP Operations Agent Opcode coda.exe 0x34 Buffer Overflow | Luigi Auriemma | na | juan vazquez | This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component (coda.exe) when parsing requests for the 0x34 opcode. This Metasploit module has been tested successfully on HP Operations Agent 11.00 over Windows XP SP3 and Windows 2003 SP2 (DEP bypass). The coda.exe components runs only for localhost by default, network access must be granted through its configuration to be remotely exploitable. On the other hand it runs on a random TCP port, to make easier reconnaissance a check function is provided. | October 28 |
|
|
HP Operations Agent Opcode coda.exe 0x8c Buffer Overflow | Luigi Auriemma | na | juan vazquez | This Metasploit module exploits a buffer overflow vulnerability in HP Operations Agent for Windows. The vulnerability exists in the HP Software Performance Core Program component (coda.exe) when parsing requests for the 0x8c opcode. This Metasploit module has been tested successfully on HP Operations Agent 11.00 over Windows XP SP3 and Windows 2003 SP2 (DEP bypass). The coda.exe components runs only for localhost by default, network access must be granted through its configuration to be remotely exploitable. On the other hand it runs on a random TCP port, to make easier reconnaissance a check function is provided. | October 28 |
|
|
InduSoft Web Studio Arbitrary Upload Remote Code Execution | Luigi Auriemma | na | juan vazquez | This Metasploit module exploits a lack of authentication and authorization on the InduSoft Web Studio Remote Agent, that allows a remote attacker to write arbitrary files to the filesystem, by abusing the functions provided by the software. The module uses uses the Windows Management Instrumentation service to execute an arbitrary payload on vulnerable installations of InduSoft Web Studio on Windows pre Vista. It has been successfully tested on InduSoft Web Studio 6.1 SP6 over Windows XP SP3 and Windows 2003 SP2. | October 4 |
|
|
Novell ZENworks Configuration Management Preboot Service 0x6c Buffer Overflow | Luigi Auriemma | na | juan | This Metasploit module exploits a remote buffer overflow in the ZENworks Configuration Management. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted packet with the opcode 0x6c (PROXY_CMD_GET_NEXT_STEP) to port 998/TCP. The module has been successfully tested on Novell ZENworks Configuration Management 10 SP2 / SP3 and Windows Server 2003 SP2 (DEP bypass). | July 19 |
|
|
Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overflow | Luigi Auriemma | na | juan | This Metasploit module exploits a remote buffer overflow in the ZENworks Configuration Management. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted packet with the opcode 0x4c (PROXY_CMD_PREBOOT_TASK_INFO2) to port 998/TCP. The module has been successfully tested on Novell ZENworks Configuration Management 10 SP2 / SP3 and Windows Server 2003 SP2 (DEP bypass). | July 19 |
|
|
SpecView <= 2.5 build 853 Directory Traversal | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: SpecView http://www.specview.com Versions: <= 2.5 build 853 Platforms: Windows Bug: web server directory traversal Exploitation: | June 29 |
|
|
PowerNet Twin Client <= 8.9 (RFSync 1.0.0.1) Crash PoC | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: PowerNet Twin Client http://www.honeywellaidc.com/en-US/Pages/Product.aspx?category=Software&cat=HSM&pid=PowerNet%20Twin%20Client Versions: <= 8 | June 29 |
|
|
Sielco Sistemi Winlog 2.07.16 Multiple Vulnerabilities | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: Sielco Sistemi Winlog http://www.sielcosistemi.com/en/products/winlog_scada_hmi/ Versions: <= 2.07.16 Platforms: Windows Bugs: A] D | June 27 |
|
|
Samsung AllShare 2.1.1.0 NULL Pointer Deference | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: Samsung AllShare http://www.samsung.com/global/allshare/pcsw/ Versions: <= 2.1.1.0 Platforms: Windows Bug: NULL pointer Exploitat | June 19, 2012 |
|
|
Samsung NET-i viewer Multiple ActiveX BackupToAvi() Remote Overflow | Luigi Auriemma | na | juan vazquez | This Metasploit module exploits a vulnerability in the CNC_Ctrl.dll ActiveX installed with the Samsung NET-i viewer 1.37. Specifically, when supplying a long string for the fname parameter to the BackupToAvi method, an integer overflow occurs, which leads to a posterior buffer overflow due to the use of memcpy with an incorrect size, resulting in remote code execution under the context of the user. | June 7, 2012 |
|
|
RabidHamster R4 Log Entry sprintf() Buffer Overflow | Luigi Auriemma | na | sinn3r | This Metasploit module exploits a vulnerability found in RabidHamster R4's web server. By supplying a malformed HTTP request, it is possible to trigger a stack-based buffer overflow when generating a log, which may result in arbitrary code execution under the context of the user. | May 25, 2012 |
|
|
FlexNet License Server Manager lmgrd Buffer Overflow | Luigi Auriemma | na | sinn3r | This Metasploit module exploits a vulnerability in the FlexNet License Server Manager. The vulnerability is due to the insecure usage of memcpy in the lmgrd service when handling network packets, which results in a stack buffer overflow. In order to improve reliability, this module will make lots of connections to lmgrd during each attempt to maximize its success. | May 22, 2012 |
|
|
FlexNet License Server Manager Stack Overflow In lmgrd | Luigi Auriemma | multiple | exploit-db.com | Luigi Auriemma Application: FlexNet License Server Manager http://www.flexerasoftware.com/products/flexnet-publisher.htm http://www.globes.com/support/fnp_utiliti | May 14, 2012 |
|
|
Pro-face Pro-Server EX WinGP PC Runtime Multiple Vulnerabilities | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: Pro-face Pro-Server EX WinGP PC Runtime http://www.profaceamerica.com/cms/resource_library/products/9e3c2a7965a27592/index.html Versi | May 14, 2012 |
|
|
QNX phrelay/phindows/phditto Multiple Vulnerabilities | Luigi Auriemma | windows | exploit-db.com | Luigi Auriemma Application: QNX phrelay/phindows/phditto http://www.qnx.com http://www.qnx.com/developers/docs/6.5.0/topic/com.qnx.doc.phindows/topic/coverpage.ht | May 11, 2012 |