Anibal Sacco

8 exploits Active since Aug 2008
CVE-2013-4975 EXPLOITDB HIGH WORKING POC
Hikvision DS-2CD7153-E - Privilege Escalation
Hikvision DS-2CD7153-E IP Camera has Privilege Escalation
CVSS 8.8
CVE-2013-4976 EXPLOITDB CRITICAL WORKING POC
Hikvision DS-2CD7153-E - Auth Bypass
Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials
CVSS 9.8
CVE-2013-4980 EXPLOITDB WORKING POC
AVTECH AVN801 DVR <1017-1003-1009-1003 - Buffer Overflow
Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the URI in an RTSP SETUP request.
CVE-2013-4981 EXPLOITDB WORKING POC
AVTECH AVN801 DVR <1017-1003-1009-1003 - Buffer Overflow
Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the Network.SMTP.Receivers parameter.
CVE-2008-3431 EXPLOITDB HIGH text WORKING POC
Sun xVM VirtualBox <1.6.4 - Privilege Escalation
The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \\.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.
CVSS 8.8
CVE-2009-0949 EXPLOITDB HIGH python WORKING POC
CUPS < 1.3.10 - Denial of Service via IPP Request with Consecutive UNSUPPORTED Tags
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
CVSS 7.5
CVE-2013-4977 EXPLOITDB text WORKING POC
Hikvision DS-2CD7153-E <4.1.0 b130111 - Buffer Overflow
Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote attackers to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long string in the Range header field in an RTSP transaction.
CVE-2013-4982 EXPLOITDB CRITICAL text WORKING POC
AVTECH AVN801 DVR Firmware - Authentication Bypass via Captcha
AVTECH AVN801 DVR has a security bypass via the administration login captcha
CVSS 9.8