Inge Henriksen

6 exploits Active since Nov 2005
EIP-2026-118794 EXPLOITDB text WORKING POC
Microsoft IIS 5.1 - WebDAV HTTP Request Source Code Disclosure
CVE-2005-4360 EXPLOITDB c WORKING POC
Microsoft Internet Information Services 5.1 - Remote Code Execution via DLL URL Parser
The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctly handled by IIS, as demonstrated using "/_vti_bin/.dll/*/~0". NOTE: the consequence was originally believed to be only a denial of service (application crash and reboot).
EIP-2026-115689 EXPLOITDB text WORKING POC
Microsoft Internet Explorer 5.0.1 - Malformed .IMG / .XML Parsing Denial of Service
EIP-2026-115715 EXPLOITDB html STUB
Microsoft Internet Explorer 6.x - IMG / XML elements Denial of Service
CVE-2005-3589 EXPLOITDB c++ WORKING POC
FileZilla Server Terminal 0.9.4d - Denial of Service via Long USER FTP Command
Buffer overflow in FileZilla Server Terminal 0.9.4d may allow remote attackers to cause a denial of service (terminal crash) via a long USER ftp command.
CVE-2006-6865 EXPLOITDB text WORKING POC
SoftArtisans FileUp <5.0.14 - Path Traversal
Directory traversal vulnerability in SAFileUpSamples/util/viewsrc.asp in SoftArtisans FileUp (SAFileUp) 5.0.14 allows remote attackers to read arbitrary files via a %c0%ae. (Unicode dot dot) in the path parameter, which bypasses the checks for ".." sequences.