[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-11-23 Microsoft XML Core Services DTD Cross-Domain Scripting PoC MS08-069 7308 R D X Jerome Athias
2008-11-21 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability 4082 R D v4lkyrius
2008-11-21 KVIrc 3.4.2 Shiny (uri handler) Remote Command Execution Exploit 3440 R D X Nine:Situations:Group
2008-11-20 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit 2639 R D X Nine:Situations:Group
2008-11-18 No-IP DUC <= 2.1.7 Remote Code Execution Exploit 7806 R D XenoMuta
2008-11-17 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Vulnerability 2416 R D Nine:Situations:Group

[ local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-01 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC 1511 R D Paul Szabo
2008-11-30 Cain & Abel <= v4.9.24 .RDP Stack Overflow Exploit 1498 R D SkD
2008-11-28 Apache Tomcat runtime.getRuntime().exec() Privilege Escalation (win) 1700 R D Abysssec
2008-11-20 Oracle Database Vault ptrace(2) Privilege Escalation Exploit 3263 R D Jakub Wartak
2008-11-20 PHP 5.2.6 (error_log) safe_mode Bypass Vulnerability 4973 R D SecurityReason
2008-11-17 Opera 9.62 file:// Local Heap Overflow Exploit 5292 R D Guido Landi

[ web apps ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-01 PacPoll 4.0 (poll.mdb/poll97.mdb) Database Disclosure Vulnerability 430 R D OffensiveTrack
2008-12-01 bcoos 1.0.13 (viewcat.php cid) Remote SQL Injection Exploit 612 R D CWH Underground
2008-12-01 ASPPortal 3.2.5 (ASPPortal.mdb) Database Disclosure Vulnreability 492 R D CWH Underground
2008-12-01 E.Z. Poll v.2 (Auth Bypass) Remote SQL Injection Vulnerability 487 R D !-BUGJACK-!
2008-12-01 Andy's PHP Knowledgebase 0.92.9 Arbitrary File Upload Vulnerability 747 R D CWH Underground
2008-12-01 z1exchange 1.0 (edit.php site) Remote SQL Injection Vulnerability 803 R D JiKo

[ dos / poc ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-01 Maxum Rumpus 6.0 Multiple Remote Buffer Overflow Vulnerabilities 368 R D BLUE MOON
2008-11-30 Electronics Workbench (EWB File) Local Stack Overflow PoC 533 R D Underz0ne Crew
2008-11-30 Cain & Abel 4.9.23 (rdp file) Buffer Overflow PoC 1121 R D Encrypt3d.M!nd
2008-11-30 Itunes 8.0.2.20/Quicktime 7.5.5 (.mov File) Multiple Off By Overflow PoC 792 R D laurent gaffiƩ
2008-11-28 Microsoft Office Communicator (SIP) Remote Denial of Service Exploit 989 R D Praveen Darshanam
2008-11-27 i.Scribe SMTP Client <= 2.00b (wscanf) Remote Format String PoC 694 R D Alfons Luja

[ shellcode ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-11-28 linux/amd64 flush iptables rules shellcode 84 bytes 496 R D gat3way
2008-11-23 linux/x86 append rsa key to /root/.ssh/authorized_keys2 295 bytes 1453 R D XenoMuta
2008-11-23 linux/x86 connect-back port UDP/54321 live packet capture 151 bytes 744 R D XenoMuta
2008-11-22 linux/x86 setuid(0) & execve(/bin/sh,0,0) shellcode 25 bytes 738 R D sch3m4
2008-11-19 linux/x86 edit /etc/sudoers for full access 86 bytes 1708 R D Rick
2008-11-18 Ho' Detector (Promiscuous mode detector shellcode) 56 bytes 1291 R D XenoMuta

[ papers ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-01Format String Exploitation Demonstration [LINUX]54DJeremy Brown
2008-12-01Frame Pointer Overwrite Demonstration [LINUX]42DJeremy Brown
2008-12-01Ins and outs SQL injection699DDon
2008-11-20cracking the basics4639DLivewire
2008-11-19Java 2 Micro Edition Based Computer Malware Propagation Technique1423DAodrulez
2008-11-17[ezine] RTM essential #5 2219DOpTix

[ videos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-04-17Packet sniffing with Ettercap (arp spoofing basics) 153826eXeCuTeR
2008-04-15Anonymous Voice Vlan Hack 54474CwG GeNiuS
2008-04-10How to Make File Undetected by AVs 47992LynxEffect
2008-04-09Howto using aircrack-ptw WEP cracking tool 32547br0ken rlz
2008-04-02ICQ 6 HTML EXECUTION AND CRASH 25612UnDef0x00
2008-03-31Advanced Mysql Injection in Joomla 49475gsy


send all submissions to submit[at]milw0rm.com [gpg]

Copyright © 2004-2008 milw0rm