[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-01-01 Megacubo 5.0.7 (mega://) Remote File Download and Execute Exploit 4422 R D X JJunior
2008-12-30 Megacubo 5.0.7 (mega://) Remote eval() Injection Exploit 3066 R D X Nine:Situations:Group
2008-12-29 SasCam WebCam Server 2.6.5 ActiveX Remote BOF Exploit 2389 R D X callAX
2008-12-28 Chilkat FTP ActiveX (SaveLastError) Insecure Method Exploit 1765 R D X callAX
2008-12-28 Amaya Web Browser <= 11.0.1 Remote Buffer Overflow Exploit (vista) 1698 R D SkD
2008-12-28 MS Internet Explorer XML Parsing Buffer Overflow Exploit 5779 R D Jeremy Brown

[ local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-01-06 Rosoft Media Player 4.2.1 Local Buffer Overflow Exploit 48 R D Encrypt3d.M!nd
2009-01-06 Debian GNU/Linux XTERM (DECRQSS/comments) Weakness Vulnerability 544 R D Paul Szabo
2009-01-06 Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit 399 R D Sh2kerr
2009-01-06 Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit 262 R D Sh2kerr
2009-01-06 Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit 334 R D Sh2kerr
2009-01-05 VUPlayer 2.49 (.wax File) Local Buffer Overflow Exploit 769 R D Houssamix

[ web apps ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-01-06 Goople <= 1.8.2 (frontpage.php) Blind SQL Injection Exploit 106 R D darkjoker
2009-01-06 RiotPix <= 0.61 (Auth Bypass) SQL Injection Vulnerability 332 R D ZoRLu
2009-01-06 ezPack 4.2b2 (XSS/SQL) Multiple Remote Vulnerabilities 271 R D !-BUGJACK-!
2009-01-06 RiotPix <= 0.61 (forumid) Blind SQL Injection Exploit 353 R D cOndemned
2009-01-06 PHPAuctionSystem Multiple Remote File Inclusion Vulnerabilities 438 R D darkmasking
2009-01-05 PHPAuctionSystem Insecure Cookie Handling Vulnerability 1048 R D ZoRLu

[ dos / poc ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-01-05 Safari (Arguments) Array Integer Overflow PoC (New Heap Spray) 1135 R D X SkyLined
2009-01-03 Destiny Media Player 1.61 (lst File) Local Buffer overflow PoC 660 R D Encrypt3d.M!nd
2009-01-02 Destiny Media Player 1.61 (.m3u File) Local Buffer Overflow PoC 898 R D aBo MoHaMeD
2009-01-02 VMware <= 2.5.1 (Vmware-authd) Remote Denial of Service Exploit 1805 R D laurent gaffiƩ
2009-01-01 Konqueror 4.1 XSS / Remote Crash Vulnerabilities 1367 R D StAkeR
2009-01-01 Elecard MPEG Player 5.5 (.m3u File) Stack Buffer Overflow PoC 648 R D aBo MoHaMeD

[ shellcode ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-09 linux x86 shellcode obfuscator 4707 R D sm4x
2008-12-02 solaris/x86 setuid(0), execve(/bin/cat, /etc/shadow), exit(0) 59 bytes 2331 R D sm4x
2008-12-02 solaris/x86 setuid(0), execve(//bin/sh); exit(0) NULL Free 39 bytes 1494 R D sm4x
2008-11-28 linux/amd64 flush iptables rules shellcode 84 bytes 2441 R D gat3way
2008-11-23 linux/x86 append rsa key to /root/.ssh/authorized_keys2 295 bytes 3658 R D XenoMuta
2008-11-23 linux/x86 connect-back port UDP/54321 live packet capture 151 bytes 2360 R D XenoMuta

[ papers ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-29The Clickjacking meets XSS: a state of art2775DNex
2008-12-28Discussing Secure Input Solutions for Web Applications953DAngelo Rosiello
2008-12-28w3af UserGuide French621DJerome Athias
2008-12-12IGUJV - Infection Guide Using Java/VbScript3546DAnalyseR
2008-12-12Linux Slab Allocator Buffer Overflow Vulnerabilities (pt_BR)2119DRISE Security
2008-12-08LFI to RCE Exploit with Perl Script4201DCWH Underground

[ videos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-04-17Packet sniffing with Ettercap (arp spoofing basics) 163675eXeCuTeR
2008-04-15Anonymous Voice Vlan Hack 70693CwG GeNiuS
2008-04-10How to Make File Undetected by AVs 53951LynxEffect
2008-04-09Howto using aircrack-ptw WEP cracking tool 36610br0ken rlz
2008-04-02ICQ 6 HTML EXECUTION AND CRASH 28237UnDef0x00
2008-03-31Advanced Mysql Injection in Joomla 55335gsy


send all submissions to submit[at]milw0rm.com [gpg]

Copyright © 2004-2009 milw0rm