[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-11-23 Microsoft XML Core Services DTD Cross-Domain Scripting PoC MS08-069 9169 R D X Jerome Athias
2008-11-21 verlihub <= 0.9.8d-RC2 Remote Command Execution Vulnerability 4779 R D v4lkyrius
2008-11-21 KVIrc 3.4.2 Shiny (uri handler) Remote Command Execution Exploit 3956 R D X Nine:Situations:Group
2008-11-20 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Exploit 2977 R D X Nine:Situations:Group
2008-11-18 No-IP DUC <= 2.1.7 Remote Code Execution Exploit 8627 R D XenoMuta
2008-11-17 Exodus 0.10 (uri handler) Arbitrary Parameter Injection Vulnerability 2642 R D Nine:Situations:Group

[ local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-03 RadAsm <= 2.2.1.4 (.RAP File) WindowCallProcA Pointer Hijack Exploit 915 R D DATA_SNIPER
2008-12-03 Cain & Abel 4.9.23 (rdp file) Buffer overflow Exploit 1250 R D Encrypt3d.M!nd
2008-12-01 Debian GNU/Linux (symlink attack in login) Arbitrary File Ownership PoC 3311 R D Paul Szabo
2008-11-30 Cain & Abel <= v4.9.24 .RDP Stack Overflow Exploit 2522 R D SkD
2008-11-28 Apache Tomcat runtime.getRuntime().exec() Privilege Escalation (win) 2296 R D Abysssec
2008-11-20 Oracle Database Vault ptrace(2) Privilege Escalation Exploit 3570 R D Jakub Wartak

[ web apps ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-04 BNCwi <= 1.04 Local File Inclusion Vulnerability 215 R D dun
2008-12-04 Gravity GTD <= 0.4.5 (rpc.php objectname) LFI/RCE Vulnerability 186 R D dun
2008-12-04 Joomla Component mydyngallery 1.4.2 (directory) SQL Injection Vuln 603 R D R3d.W0rm
2008-12-04 My Simple Forum 3.0 (index.php action) Local File Inclusion Vulnerability 413 R D cOndemned
2008-12-04 lcxbbportal 0.1 Alpha 2 Remote File Inclusion Vulnerability 348 R D NoGe
2008-12-04 Easy News Content Management (News.mdb) Database Disclosure Vuln 283 R D BeyazKurt

[ dos / poc ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-03 ClamAV < 0.94.2 (JPEG Parsing) Recursive Stack Overflow PoC 1221 R D ilja van sprundel
2008-12-01 Maxum Rumpus 6.0 Multiple Remote Buffer Overflow Vulnerabilities 913 R D BLUE MOON
2008-11-30 Electronics Workbench (EWB File) Local Stack Overflow PoC 760 R D Underz0ne Crew
2008-11-30 Cain & Abel 4.9.23 (rdp file) Buffer Overflow PoC 1646 R D Encrypt3d.M!nd
2008-11-30 Itunes 8.0.2.20/Quicktime 7.5.5 (.mov File) Multiple Off By Overflow PoC 1132 R D laurent gaffié
2008-11-28 Microsoft Office Communicator (SIP) Remote Denial of Service Exploit 1332 R D Praveen Darshanam

[ shellcode ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-02 solaris/x86 - setuid(0), execve(/bin/cat, /etc/shadow), exit(0) 59 bytes 433 R D sm4x
2008-12-02 solaris/x86 setuid(0), execve(//bin/sh); exit(0) NULL Free 39 bytes 247 R D sm4x
2008-11-28 linux/amd64 flush iptables rules shellcode 84 bytes 768 R D gat3way
2008-11-23 linux/x86 append rsa key to /root/.ssh/authorized_keys2 295 bytes 1750 R D XenoMuta
2008-11-23 linux/x86 connect-back port UDP/54321 live packet capture 151 bytes 946 R D XenoMuta
2008-11-19 linux/x86 edit /etc/sudoers for full access 86 bytes 1963 R D Rick

[ papers ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-12-02Reverse Engineering “Microsoft F#”1223DAodrulez
2008-12-01Format String Exploitation Demonstration [LINUX]721DJeremy Brown
2008-12-01Frame Pointer Overwrite Demonstration [LINUX]529DJeremy Brown
2008-12-01Ins and outs SQL injection1608DDon
2008-11-20cracking the basics5300DLivewire
2008-11-19Java 2 Micro Edition Based Computer Malware Propagation Technique1619DAodrulez

[ videos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2008-04-17Packet sniffing with Ettercap (arp spoofing basics) 154652eXeCuTeR
2008-04-15Anonymous Voice Vlan Hack 56297CwG GeNiuS
2008-04-10How to Make File Undetected by AVs 48459LynxEffect
2008-04-09Howto using aircrack-ptw WEP cracking tool 32893br0ken rlz
2008-04-02ICQ 6 HTML EXECUTION AND CRASH 25856UnDef0x00
2008-03-31Advanced Mysql Injection in Joomla 50029gsy


send all submissions to submit[at]milw0rm.com [gpg]

Copyright © 2004-2008 milw0rm