Alexander Klink

14 exploits Active since May 2006
CVE-2011-4858 METASPLOIT ruby WORKING POC
Apache Tomcat < 5.5.35, 6.x < 6.0.35, 7.x < 7.0.23 - Denial of Service via Hash Collision in Form Parameters
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
CVE-2011-5035 METASPLOIT ruby WORKING POC
Oracle Glassfish < 3.1.1 - Denial of Service via Predictable Hash Collisions
Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
CVE-2011-5034 METASPLOIT ruby WORKING POC
Apache Geronimo < 2.2.1 - Denial of Service via Predictable Hash Collisions
Apache Geronimo 2.2.1 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters. NOTE: this might overlap CVE-2011-4461.
CVE-2013-4426 WRITEUP WRITEUP
pyxtrlock < 0.1 - Lock Screen Bypass via Authentication Crash
pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which trigger a crash.
CVE-2013-4427 WRITEUP WRITEUP
pyxtrlock < 0.2 - Unauthenticated Screen Lock Bypass via XCB Grab Function Return Value Mismanagement
pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate attackers to gain access to the keyboard or mouse without unlocking the screen via unspecified vectors.
CVE-2011-4885 METASPLOIT ruby WORKING POC
PHP < 5.3.9 - Denial of Service via Hash Collision in Form Parameter Handling
PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
EIP-2026-118781 EXPLOITDB text WRITEUP
Microsoft Crypto API X.509 Certificate Validation - Remote Information Disclosure
CVE-2006-2109 EXPLOITDB text WORKING POC
JSBoard < 2.0.12 - Cross-Site Scripting via parse_query_str Function
Cross-site scripting (XSS) vulnerability in the parse_query_str function in include/print.php in JSBoard 2.0.10 and 2.0.11, and possibly other versions before 2.0.12, allows remote attackers to inject arbitrary web script or HTML via parameters that are set as global variables within the program, as demonstrated using the table parameter to login.php.
CVE-2007-1363 EXPLOITDB text WORKING POC
dropafew < 0.2 - SQL Injection via id or calories Parameter
Multiple SQL injection vulnerabilities in DropAFew before 0.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in the delete action in (a) search.php or (b) search-pda.php, or the (2) calories parameter in a save action in editlogcal.php.
CVE-2007-1364 EXPLOITDB text WORKING POC
dropafew < 0.2 - Arbitrary User Creation and Information Disclosure
DropAFew before 0.2.1 does not require authorization for certain privileged actions, which allows remote attackers to (1) view the logged calorie information of arbitrary users via the id parameter in editlogcal.php, (2) add arbitrary links via links.php, or (3) create arbitrary users via newaccount2.php.
CVE-2007-1363 EXPLOITDB text WORKING POC
dropafew < 0.2 - SQL Injection via id or calories Parameter
Multiple SQL injection vulnerabilities in DropAFew before 0.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in the delete action in (a) search.php or (b) search-pda.php, or the (2) calories parameter in a save action in editlogcal.php.
CVE-2008-7017 EXPLOITDB text WORKING POC
CAcert - Cross-Site Scripting via X.509 Certificate CommonName Field
Cross-site scripting (XSS) vulnerability in analyse.php in CAcert 20080921, and possibly other versions before 20080928, allows remote attackers to inject arbitrary web script or HTML via the CN (CommonName) field in the subject of an X.509 certificate.
EIP-2026-103659 EXPLOITDB text WORKING POC
Splunk 4.3.1 - Denial of Service
CVE-2007-1465 EXPLOITDB WORKING POC
dproxy 0.1-0.5 - Remote Code Execution via Long DNS Query Packet
Stack-based buffer overflow in dproxy.c for dproxy 0.1 through 0.5 allows remote attackers to execute arbitrary code via a long DNS query packet to UDP port 53.