exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 10 of 10

Files from Bahaa Naamnmeh

mcwOverflow.txt

Posted Aug 14, 2005

Authored by Bahaa Naamnmeh | Site bsecurity.tk

A Unicode buffer overflow exists in the handling of .mcw files in Microsoft Word.

tags | advisory, overflow

SHA-256 | bd6af65a00560736f607e17816c217de9f27ad59f1769adbd5fa1f8de4ff8e02

Download | Favorite | View

RUMBA.txt

Posted Apr 17, 2005

Authored by Bahaa Naamnmeh | Site bsecurity.tk

There are several buffer overflow vulnerabilities that can be triggered when loading a specially crafted profile into RUMBA Office 7.3.

tags | advisory, overflow, vulnerability

SHA-256 | ddc021caa5195851b76ce25e60084b865be505a0a82d133687d33b9815e75145

Download | Favorite | View

winshadow.zip

Posted Oct 1, 2003

Authored by Peter Winter-Smith, Bahaa Naamnmeh | Site elitehaven.net

OmniCon WinShadow version 2.0 exploit that makes use of a buffer overflow in the client handling of hostnames in host files.

tags | exploit, overflow

SHA-256 | 86813402c8fb4dfc3ce919ffaaa3d42a89d9a501b49144029fa04d5764e3e764

Download | Favorite | View

winshadow.txt

Posted Oct 1, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

OmniCon WinShadow version 2.0 suffers from a buffer overflow in the client handling of hostnames in host files. A denial of service also exists whenever an excessively long username or password is used.

tags | advisory, denial of service, overflow

SHA-256 | 1ab3f35a2cae652c184347381e282940b2819ed0fa2fd143dfdca37f01511eb9

Download | Favorite | View

ReBootSQLinject.txt

Posted Sep 25, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

Re-Boot Design ASP Forum is vulnerable to a SQL injection attack that allows remote accessing of a user account without prior knowledge of their password.

tags | advisory, remote, sql injection, asp

SHA-256 | e678d70617cc30fc5813f731c6760853903497a982dccceee63e02e782e18f04

Download | Favorite | View

threadITsql.txt

Posted Sep 25, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

Thread-ITSQL is susceptible to cross site scripting attacks in its Topic Title, Name and Message fields.

tags | advisory, xss

SHA-256 | a8673828a2c183f9ff8049970d8dbf6c66a148d78e082ca0072c4acc741f989a

Download | Favorite | View

threadIT.txt

Posted Sep 25, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

The Thread-IT Message board is vulnerable to cross site scripting injection via the Topic Title, Name and Message fields.

tags | advisory, xss

SHA-256 | 10e3db50f48b3886d5c8ae6c8e46cadf3fa8ec612cab4d818e88e79ee5f0385f

Download | Favorite | View

commentxss.txt

Posted Sep 25, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

Comment Board is susceptible to cross site scripting attacks in the Topic Title, Name, and Message fields.

tags | advisory, xss

SHA-256 | 827dc62fdf35b1cc001920e7959315e067206ab13b453f97e6841f66fd718d36

Download | Favorite | View

pandpdos.txt

Posted Sep 18, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

The Plug and Play Web Server version 1.0002c is susceptible to multiple buffer overflow attacks that cause the server to crash.

tags | exploit, web, overflow

SHA-256 | 2b68d648120147ab8417ee871e9d52d166dd19a55bd2cd64fc864ba5ce18e676

Download | Favorite | View

pandpdt.txt

Posted Sep 18, 2003

Authored by Bahaa Naamnmeh | Site bsecurity.tk

The Plug and Play Web Server version 1.0002c is susceptible to multiple directory traversal attacks allowing a remote attacker to gain access to internal system files.

tags | exploit, remote, web

SHA-256 | 08a1508555f21666773d5967a389f637ade7bd17986669a075b9984c763bda51

Download | Favorite | View