This Metasploit module exploits a vulnerability in PhpMyAdmin's setup feature which allows an attacker to inject arbitrary PHP code into a configuration file. The original advisory says the vulnerability is present in phpMyAdmin versions 2.11.x < 2.11.9.5 and 3.x < 3.1.3.1; this module was tested on 3.0.1.1. The file where our payload is written (phpMyAdmin/config/config.inc.php) is not directly used by the system, so it may be a good idea to either delete it or copy the running config (phpMyAdmin/config.inc.php) over it after successful exploitation.
c6dcd3c567ac45d96e97a2bc40e1b5ef02017edab7e4eb3995b6fbcd852cad26The Avaya Intuity Audix LX suffers from remote command execution, cross site scripting, and cross site request forgery vulnerabilities.
1a3001936a103c3f421867c6c079d4255187d1bb1fb3aaea57235d8d2033c375phpMyAdmin /scripts/setup.php PHP code injection remote command execution proof of concept exploit. Versions 3.0.1.1 and below are affected.
248840c70012e11357ef99fad4231ced49b2b483705bbb3ca00997d5808a5a1bCracking into Embedded Devices and Beyond - The presentation covers cracking into embedded devices by exploiting vulnerabilities present on default software running on the target device.
b17e69cf657c3562c5c8244483120184a84061a080f2c346f2373b88d8170d3eCall Jacking: Phreaking The BT Home Hub.
8434889c58e6152602c9079e136c14b2c7bbd89c0fdc662f4f56dc3e14fbed91Information on pwning the BT Home Hub regarding the exploitation of IGDs remotely via UPnP.
cc12e6ccf90e535582c2741f87e8c2594e1580a93c102655f8b333c03ce6240fPwning the BT Home Hub details have been published. Various cross site scripting and cross site request forgery issues still exist.
ab1677aacfc1c74bee9c7cfe35b991c63e556b2ab40df41d807b2900002f9b3bIt appears that the BT Home Hub is susceptible to some critical vulnerabilities.
7a1d22a3d50174df5079afb9fddeb87643baa008c3b4fdb1c002960066a85ff9There is a trivially exploitable cross site scripting vulnerability on Google Urchin Web Analytics 5's login page. The vulnerability has been tested on versions 5.6.00r2, 5.7.01, 5.7.02 and 5.7.03 (latest). Previous versions are most likely affected as well.
ce3274e7eb56501ab425cb2bd6f2fdb2ee07e64757d3163190677f1bb8761e3fEarlier versions of the Wordpress 2.0 branch are susceptible to two vanilla cross site scripting vulnerabilities in wp-register.php.
926d18fafb32a71ceede629f6854b332e6b8a3443676de42044243d4caab339dluhn-check is a tool that determines whether or not a number follows Luhn's algorithm.
3025d44e5b10fc56612d185f05076c2b93f877ee1f13316c69e4f9b15861b092Full write up discussing password theft with Firefox using RCSR, aka Reverse Cross-Site Request attacks.
ae4f7b381219369a7cde2ec73988e91a25e4193c848436f3362179131786ab74Purple Paper: Exegesis Of Virtual Hosts Hacking - First paper written on the topic of virtual hosts hacking. It covers basic skills such as passive discovery techniques and (almost) stealth active discovery techniques. It also presents possible scenarios of exploitation.
6a45b8e7895fe76ca657fbbe88dec0c24eff9e9c15bb2b9647844931fd4e3168The Uniden UIP1868P VoIP phone/gateway comes with a default password of admin without any login necessary.
a78386fb85cd6e78792518d85ed37f59213f1019b4262f6d2924ae410421771eGoogle Talk stores proxy login credentials as cleartext in the Windows Registry.
3b3ae75d3315891b6d6432914b38f8c98f55e1c846e09288efbdfb69ff944a55Brief paper discussing the basics of cryptography and the difference between symmetric and asymmetric cryptography.
93735bfd1dfecd82ceb55801288ec1b11f69cb6aa350d743d7867aee56f469d7Avaya IP Office Phone Manager exploit that attempts to extract sensitive data from the Windows registry.
ff0a4079c402c4cf0790dcb6c7d725ce9160fd962b77a2c52670e8f2f6179804The Avaya IP Office Phone Manager stores sensitive user data in the Windows Registry.
a8ef610343d5e19f8fd31dbe3ee860e5f5b3f1434a04a7af1d434055215974f5WNMSB-LAN is a Windows Messenger Service Bomber. Includes C++ source and a windows executable.
e40365e6959bbb96dece8f2fe67c334965524cfb7facc28f04554e17152d1f2b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed