SmadAV 9.1 Null Pointer Dereference Vulnerability
SmadAV antivirus 9.1 is susceptible to null pointer exploitation. The application does not properly filter the scanner input that processed into smadengine.dll. The successful exploitation of this vulnerability could potentially result a crash on the application, since it will refer to a null pointer, EAX = 0000000. The vulnerable function itself lay on the smadengine.dll file. SmadEngine.dll .text:100051B2 mov [ebp+var_414], ebx .text:100051B8 cmp word ptr [ebp+var_3DC], 0 .text:100051C0 jbe loc_1000530D .text:100051C6 call sub_100060C0 .text:100051CB push 4 ; ucb .text:100051CD lea ecx,...
read moreScriptFTP <=3.3 Remote Buffer Overflow Exploit (0day)
ScriptFTP client is vulnerable against remote buffer overflow vulnerability. The condition is triggered while processing LIST FTP command with excessive length. The vulnerability is confirmed in version 3.3. Other version may also be affected. Software Description ScriptFTP is a FTP client designed to automate file transfers. It follows the commands written on a text file (also called script file) and makes the uploads or downloads automatically. Writing the script file is very easy, take a look at the script samples section. Crash/Exploit Information ScriptFTP follows the commands...
read moreQuickShare File Server 1.2.1 FTP Directory Traversal Vulnerability
QuickShare File Server is prone to a FTP directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to modify files outside the destination directory and possibly gain access to the system. Software Description QuickShare File Server is a easy to use file sharing software helps you build your own file server. Users could access your server through web browsers or FTP client softwares (In most case, they need not to install any extra softwares). Users could send or receive large files to or from you. You could...
read moreHttpBlitz Web Server Denial Of Service Exploit
#!/usr/bin/python # Title: HttpBlitz DOS # Date: 12/24/2010 # Author: otoy # Software Link: http://sourceforge.net/projects/httpblitz/files/HttpBlitz.msi/download # Tested on: Windows XP SP3 # # ====================================================================== # ___ _ __ __ __ _ __ # ____/ (_)___ _(_) /_____ _/ / ___ _____/ /_ (_)___/ /___ ____ _ # / __ / / __ `/ / __/ __ `/ / / _ / ___/ __ / / __ / __ / __ `/ # / /_/ / / /_/ / / /_/ /_/ / / / __/ /__/ / / / / /_/ / / / / /_/ / # __,_/_/__,...
read moreSolarFTP 2.0 Multiple Commands Denial of Service Vulnerability
SolarFTP Server 2.0 is prone to a denial of service condition. It fails to properly sanitize user-supplied input resulting in a denial of service. With a specially crafted ‘USER’, ‘APPE’, ‘GET’, ‘PUT’, and ‘NLST’ command, a remote attacker can potentially disable the FTP service. Software Description Solar FTP Server is a handy and easy to use personal FTP server with features like virtual directories, simple and intuitive user interface, real-time activity monitoring and management. Testing and Fuzzing Using Very Simple FTP...
read more