[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ highlighted ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-16 Notepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow PoC (0day) 80737 R D fl0 fl0w
2009-09-14 Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit 22732 R D ikki
2009-09-11 IBM AIX 5.6/6.1 _LIB_INIT_DBG Arbitrary File Overwrite via Libc Debug 13208 R D Marco Ivaldi
2009-09-11 FreeRadius < 1.1.8 Remote Packet of Death Exploit (CVE-2009-3111) 17747 R D Matthew Gillespie
2009-09-10 Enlightenment - Linux Null PTR Dereference Exploit Framework 16981 R D spender
2009-09-09 Pidgin MSN <= 2.5.8 Remote Code Execution Exploit 55249 R D Pierre Nogues

[ remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-17 Quiksoft EasyMail 6 (AddAttachment) Remote Buffer Overflow Exploit 22933 R D X bmgsec
2009-09-17 Quiksoft EasyMail 6.0.3.0 imap connect() ActiveX BOF Exploit 12534 R D X Sebastian Wolfgarten
2009-09-16 NaviCOPA Web Server 3.01 Remote Source Code Disclosure Vulnerability 8980 R D Dr_IDE
2009-09-15 BigAnt Server 2.50 GET Request Remote BOF Exploit (SEH) Universal 9606 R D hack4love
2009-09-15 BRS Webweaver 1.33 /Scripts Access Restriction Bypass Vulnerability 7680 R D Usman Saeed
2009-09-15 BigAnt Server 2.50 GET Request Remote BOF Exploit (SEH) 0day 8734 R D Blake

[ local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-21 Winplot (.wp2 File) Local Buffer Overflow Exploit 18090 R D Rick
2009-09-17 Changetrack 4.3-3 Local Privilege Escalation Vulnerability 7212 R D Rick
2009-09-15 NetAccess IP3 (ping option) Command Injection Vulnerability (auth) 10428 R D r00t
2009-09-15 SAP Player 0.9 (.pla) Universal Local Buffer Overflow Exploit (SEH) 5968 R D mr_me
2009-09-15 Protector Plus Antivirus 8/9 Local Privilege Escalation Vulnerability 5419 R D Maxim A. Kulakov
2009-09-14 MP3 Studio 1.0 (.m3u File) Local Buffer Overflow Exploit 7699 R D dmc

[ web apps ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-21 Joomla com_mytube (user_id) Blind SQL Injection Exploit 73689 R D Chip D3 Bi0s
2009-09-21 Joomla com_jinc (newsid) Blind SQL Injection Vulnerability 37582 R D Chip D3 Bi0s
2009-09-21 WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities 22526 R D learn3r hacker
2009-09-21 Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities 24143 R D cr4wl3r
2009-09-21 ProdLer <= 2.0 (prodler.class.php sPath) RFI Vulnerability 20837 R D cr4wl3r
2009-09-21 CMScontrol 7.x (index.php id_menu) SQL Injection Vulnerability 25866 R D ph1l1ster

[ dos / poc ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-21 BigAnt Server <= 2.50 SP6 Local (ZIP File) Buffer Overflow PoC #2 18952 R D Dr_IDE
2009-09-21 Snort < 2.8.5 Unified1 Output Denial of Service Exploit 15473 R D Pablo Rincon Crespo
2009-09-18 Xerver HTTP Server 4.32 Remote Denial of Service Vulnerability 8377 R D Dr_IDE
2009-09-17 Ease Audio Cutter 1.20 (.wav file) Local Crash PoC 4613 R D zAx
2009-09-16 Notepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow PoC (0day) 80737 R D fl0 fl0w
2009-09-16 BigAnt Server <= 2.50 SP6 (ZIP File) Local Buffer Overflow PoC 4530 R D Dr_IDE

[ shellcode ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-15 linux/x86 shellcode that forks a HTTP Server on port tcp/8800 166 bytes 16824 R D XenoMuta
2009-09-15 linux/x86 Self-modifying shellcode for IDS evasion 64 bytes 7881 R D XenoMuta
2009-09-09 linux/x86 listens for shellcode on tcp/5555 and jumps to it 7666 R D XenoMuta
2009-08-26 linux/x86 Polymorphic shellcode disable Network Card 75 bytes 8038 R D Jonathan Salwan
2009-08-11 linux/x86 /bin/sh polymorphic shellcode 48 bytes 9914 R D Jonathan Salwan
2009-08-11 linux/x86 killall5 polymorphic shellcode 61 bytes 7042 R D Jonathan Salwan

[ papers ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-09-10[arabic] Simple SQL Injection27060DJiKo
2009-09-10[french] Faille Glob() & Curl()8120DThibow
2009-09-09Finding vulnerabilities in PHP scripts (FULL)29674DSirGod
2009-09-03SAP security: attacking sap clients9800DDSecRG
2009-09-03[french] ReadFile() Local File Disclosure6271DMoudi
2009-09-03[french] Protection contre le SQL Injection7254DMoudi

[ videos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-06-01HTTP Parameter Pollution - Yahoo! Mail classic attack 50799Stefano Di Paola
2009-05-20IIS WebDAV Vulnerability in Action 32382kcope
2009-05-12How to bypass Mikrotik Hotspot Login Page 44032Yehia Hamza
2009-04-30Desktop Phishing (The New Art of Phishing) 53645Zer0 Thunder
2009-04-27A textbook example of Blind SQL Injection 40674FBi
2009-04-23BeEF and PHProxy for web MITM with content modification 14380hkm


send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm