Luca "ikki" Carettoni

2 exploits Active since Sep 2007

CVE-2007-4915 METASPLOIT ruby WORKING POC

Boa Webserver - Improper Input Validation

The Intersil isl3893 extensions for Boa 0.93.15, as used on the FreeLan RO80211G-AP and other devices, do not prevent stack writes from entering memory locations used for string constants, which allows remote attackers to change the admin password stored in memory via a long username in an HTTP Basic Authentication request.

View Code

CVE-2007-4980 EXPLOITDB perl WORKING POC

Gcaldaemon - Numeric Error

The readRequest method in org/gcaldaemon/core/http/HTTPListener.java in GCALDaemon 1.0-beta13 allows remote attackers to cause a denial of service via a large integer value in the Content-Length HTTP header, which triggers a fatal Java OutOfMemoryError.

View Code