Latest Exploits / Tools

Latest Exploits

  • Wed, 26 Nov 2014 15:46:29 +0000: Pandora FMS SQL Injection Remote Code Execution - Exploit Files ≈ Packet Storm
    This Metasploit module attempts to exploit multiple issues in order to gain remote code execution under Pandora FMS versions equal to and prior to 5.0 SP2. First, an attempt to authenticate using default credentials is performed. If this method fails, a SQL injection vulnerability is leveraged in order to extract the "Auto Login" password hash. If this value is not set, the module will then extract the administrator account's MD5 password hash.
  • Wed, 26 Nov 2014 15:41:06 +0000: xEpan 1.0.1 Cross Site Request Forgery - Exploit Files ≈ Packet Storm
    xEpan version 1.0.1 suffers from a cross site request forgery vulnerability.
  • Wed, 26 Nov 2014 15:39:52 +0000: Android WAPPushManager SQL Injection - Exploit Files ≈ Packet Storm
    Android versions prior to 5.0 suffer from a remote SQL injection vulnerability in the opt module WAPPushManager.
  • Wed, 26 Nov 2014 15:38:00 +0000: Android SMS Resend - Exploit Files ≈ Packet Storm
    Android versions prior to 5.0 allow an unprivileged application the ability to resend all the SMS's stored in the users phone.
  • Wed, 26 Nov 2014 15:34:33 +0000: Android Settings Pendingintent Leak - Exploit Files ≈ Packet Storm
    In Android versions prior to 5.0 and possibly greater than and equal to 4.0, Settings application leaks Pendingintent with a blank base intent (neither the component nor the action is explicitly set) to third party applications. Due to this, a malicious app can use this to broadcast intent with the same permissions and identity of the Settings application, which runs as SYSTEM uid.
  • Wed, 26 Nov 2014 15:32:30 +0000: Device42 Embedded Credentials - Exploit Files ≈ Packet Storm
    Device42 DCIM Appliance Manager versions 5.10 and 6.0 have hardcoded credentials and also suffer from remote command injection vulnerabilities.
  • Wed, 26 Nov 2014 15:27:59 +0000: Device42 Traceroute Command Injection - Exploit Files ≈ Packet Storm
    Device42 DCIM Appliance Manager versions 5.10 and 6.0 with WAN emulator version 2.3 remote command injection exploit for Metasploit that leverages traceroute.
  • Wed, 26 Nov 2014 15:27:58 +0000: Advertisement: SolarWinds Log & Event Manager - Exploit Files ≈ Packet Storm
    Need root-cause analysis, log management, and compliance monitoring? SolarWinds(r) LEM is smart security for any IT pro. Download a free trial
  • Wed, 26 Nov 2014 15:27:57 +0000: Device42 Ping Command Injection - Exploit Files ≈ Packet Storm
    Device42 DCIM Appliance Manager versions 5.10 and 6.0 with WAN emulator version 2.3 remote command injection exploit for Metasploit that leverages ping.
  • Wed, 26 Nov 2014 10:32:32 +0000: MyBB 1.8.2 unset_globals() Bypass / Remote Code Execution - Exploit Files ≈ Packet Storm
    MyBB versions 1.8.2 and below suffer from an unset_globals() function bypass and remote code execution vulnerabilities.
  • Wed, 26 Nov 2014 10:32:32 +0000: phpBB 3.1.1 deregister_globals() Bypass - Exploit Files ≈ Packet Storm
    phpBB versions 3.1.1 and below suffer from a deregister_globals() bypass vulnerability.
  • Wed, 26 Nov 2014 10:32:22 +0000: Slider Revolution/Showbiz Pro Shell Upload - Exploit Files ≈ Packet Storm
    Slider Revolution versions 3.0.95 and below and Showbiz Pro versions 1.7.1 and below suffer from a remote shell upload vulnerability.
  • Wed, 26 Nov 2014 10:00:22 +0000: WordPress Sexy Squeeze Pages Cross Site Scripting - Exploit Files ≈ Packet Storm
    WordPress Sexy Squeeze Pages plugin suffers from a cross site scripting vulnerability.
  • Wed, 26 Nov 2014 09:32:32 +0000: Apadana CMS SQL Injection - Exploit Files ≈ Packet Storm
    Apadana CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
  • Wed, 26 Nov 2014 09:32:32 +0000: WordPress Html5 Mp3 Player Full Path Disclosure - Exploit Files ≈ Packet Storm
    WordPress Html5 Mp3 Player with Playlist plugin suffers from a path disclosure vulnerability.
  • Tue, 25 Nov 2014 15:45:15 +0000: TRENDnet SecurView Wireless Network Camera TV-IP422WN Buffer Overflow - Exploit Files ≈ Packet Storm
    The TRENDnet UltraCam ActiveX Control UltraCamX.ocx suffers from a stack buffer overflow vulnerability when parsing large amount of bytes to several functions in UltraCamLib, resulting in memory corruption overwriting several registers including the SEH. An attacker can gain access to the system of the affected node and execute arbitrary code. Versions TV-IP422WN and TV-IP422W are affected.
  • Tue, 25 Nov 2014 15:36:38 +0000: Mozilla Firefox 3.6 mChannel Use-After-Free - Exploit Files ≈ Packet Storm
    Mozilla Firefox 3.6 is prone to a use-after-free vulnerability in OBJECT mChannel that allows an attacker to execute arbitrary code.
  • Tue, 25 Nov 2014 04:44:44 +0000: KMPlayer 3.9.1.130 Denial Of Service - Exploit Files ≈ Packet Storm
    KMPlayer version 3.9.1.130 suffers from an integer division by zero denial of service vulnerability.
  • Tue, 25 Nov 2014 03:33:33 +0000: PHP 5.x / Bash Shellshock Proof Of Concept - Exploit Files ≈ Packet Storm
    This is a proof of concept that demonstrates how the Bash shellshock vulnerability can be used in PHP to bypass disable_functions, safe_mode, etc.
  • Sun, 23 Nov 2014 17:32:32 +0000: WordPress wpDataTables 1.5.3 SQL Injection - Exploit Files ≈ Packet Storm
    WordPress wpDataTables plugin versions 1.5.3 and below suffer from a remote SQL injection vulnerability.

Latest Tools

  • Mon, 24 Nov 2014 23:03:33 +0000: AIEngine 1.0 - Security Tool Files ≈ Packet Storm
    AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
  • Mon, 24 Nov 2014 22:22:22 +0000: Maligno 1.4 - Security Tool Files ≈ Packet Storm
    Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
  • Wed, 19 Nov 2014 16:56:59 +0000: Capstone 3.0 - Security Tool Files ≈ Packet Storm
    Capstone is a multi-architecture, multi-platform disassembly framework. It has a simple and lightweight architecture-neutral API, thread-safe by design, provides details on disassembled instruction, and more.
  • Wed, 19 Nov 2014 16:56:59 +0000: Clam AntiVirus Toolkit 0.98.5 - Security Tool Files ≈ Packet Storm
    Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
  • Tue, 18 Nov 2014 11:11:11 +0000: DAVOSET 1.2.3 - Security Tool Files ≈ Packet Storm
    DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.
  • Tue, 18 Nov 2014 00:02:53 +0000: Fwknop Port Knocking Utility 2.6.4 - Security Tool Files ≈ Packet Storm
    fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
  • Mon, 10 Nov 2014 18:14:56 +0000: Packet Fence 4.5.1 - Security Tool Files ≈ Packet Storm
    PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
  • Mon, 10 Nov 2014 18:14:55 +0000: Advertisement: SolarWinds Log & Event Manager - Security Tool Files ≈ Packet Storm
    Need root-cause analysis, log management, and compliance monitoring? SolarWinds(r) LEM is smart security for any IT pro. Download a free trial
  • Fri, 07 Nov 2014 14:44:44 +0000: Hesperbot Detection Scanner 1.0 - Security Tool Files ≈ Packet Storm
    Hesperbot Scanner is a windows binary that is able to detect the Hesperbot banking trojan by fingerprinting memory and looking for things that traditional antivirus software fails to catch early during the malware campaigns.
  • Thu, 06 Nov 2014 03:33:33 +0000: DAVOSET 1.2.2 - Security Tool Files ≈ Packet Storm
    DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.
  • Wed, 05 Nov 2014 23:36:17 +0000: ROP Gadget Tool 5.3 - Security Tool Files ≈ Packet Storm
    This tool lets you search your gadgets on your binaries (ELF format) to facilitate your ROP exploitation. The gadgets are found on executable segments.
  • Wed, 05 Nov 2014 03:41:45 +0000: Web-Based Firewall Logging Tool 1.01 - Security Tool Files ≈ Packet Storm
    Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG target.
  • Wed, 05 Nov 2014 03:29:29 +0000: Lynis Auditing Tool 1.6.4 - Security Tool Files ≈ Packet Storm
    Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
  • Tue, 04 Nov 2014 00:23:27 +0000: SSLsplit 0.4.9 - Security Tool Files ≈ Packet Storm
    SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.
  • Tue, 04 Nov 2014 00:20:21 +0000: I2P 0.9.16 - Security Tool Files ≈ Packet Storm
    I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.
  • Tue, 04 Nov 2014 00:16:27 +0000: Samhain File Integrity Checker 3.1.3 - Security Tool Files ≈ Packet Storm
    Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
  • Sun, 02 Nov 2014 15:44:44 +0000: Xingyiquan Linux 2.6.x / 3.x Rootkit - Security Tool Files ≈ Packet Storm
    Xingyiquan rootkit for Linux kernel versions 2.6.x and 3.x. It hides processes, files, directories, processes, network connections, adds backdoors, and more.
  • Tue, 28 Oct 2014 10:11:11 +0000: DAVOSET 1.2.1 - Security Tool Files ≈ Packet Storm
    DAVOSET is a tool for committing distributed denial of service attacks using execution on other sites.
  • Mon, 27 Oct 2014 23:02:22 +0000: FireHOL 2.0.0 - Security Tool Files ≈ Packet Storm
    FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.
  • Fri, 24 Oct 2014 20:52:22 +0000: TOR Virtual Network Tunneling Tool 0.2.5.10 - Security Tool Files ≈ Packet Storm
    Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

@Risk Exploits

  • : SANSFIRE 2011 - @RISK: The Consensus Security Alert
    SANSFIRE 2011

ExploitDB