toto

12 exploits Active since Sep 2005
CVE-2007-6507 METASPLOIT ruby WORKING POC
Trend Micro ServerProtect <5.58 - RCE
SpntSvc.exe daemon in Trend Micro ServerProtect 5.58 for Windows, before Security Patch 4, exposes unspecified dangerous sub-functions from StRpcSrv.dll in the DCE/RPC interface, which allows remote attackers to obtain "full file system access" and execute arbitrary code.
CVE-2005-2852 METASPLOIT ruby WORKING POC
Novell Netware 6.5 SP2/SP3, 5.1, 6.0 - Denial of Service via Incorrect CIFS Password Length
Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and SP3, 5.1, and 6.0 allows remote attackers to cause a denial of service (ABEND) via an incorrect password length, as exploited by the "worm.rbot.ccc" worm.
CVE-2008-1365 METASPLOIT ruby WORKING POC
Trend Micro OfficeScan Corporate Edition <= 7.3 Patch 3 - Stack-Based Buffer Overflow
Stack-based buffer overflow in Trend Micro OfficeScan Corporate Edition 8.0 Patch 2 build 1189 and earlier, and 7.3 Patch 3 build 1314 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long encrypted password, which triggers the overflow in (1) cgiChkMasterPwd.exe, (2) policyserver.exe as reachable through cgiABLogon.exe, and other vectors.
CVE-2007-1868 METASPLOIT ruby WORKING POC
IBM Tivoli Provisioning Manager for OS Deployment - Remote Code Execution via Malformed Multipart Form Data
The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via crafted POST requests to port 8080/tcp or 443/tcp.
CVE-2007-5082 METASPLOIT ruby WORKING POC
BrightStor Hierarchical Storage Manager - Remote Code Execution via CsAgent Service Command
Multiple stack-based buffer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter.
CVE-2007-2139 METASPLOIT ruby WORKING POC
CA BrightStor ARCserve Backup 9.01-11.5 SP2 - Remote Code Execution via Malformed RPC Strings
Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785.
CVE-2008-1365 EXPLOITDB ruby WORKING POC
Trend Micro OfficeScan Corporate Edition <= 7.3 Patch 3 - Stack-Based Buffer Overflow
Stack-based buffer overflow in Trend Micro OfficeScan Corporate Edition 8.0 Patch 2 build 1189 and earlier, and 7.3 Patch 3 build 1314 and earlier, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long encrypted password, which triggers the overflow in (1) cgiChkMasterPwd.exe, (2) policyserver.exe as reachable through cgiABLogon.exe, and other vectors.
CVE-2007-1868 EXPLOITDB ruby WORKING POC
IBM Tivoli Provisioning Manager for OS Deployment - Remote Code Execution via Malformed Multipart Form Data
The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via crafted POST requests to port 8080/tcp or 443/tcp.
CVE-2007-2139 EXPLOITDB ruby WORKING POC
CA BrightStor ARCserve Backup 9.01-11.5 SP2 - Remote Code Execution via Malformed RPC Strings
Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785.
CVE-2007-5082 EXPLOITDB ruby WORKING POC
BrightStor Hierarchical Storage Manager - Remote Code Execution via CsAgent Service Command
Multiple stack-based buffer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter.
CVE-2005-2852 EXPLOITDB ruby WORKING POC
Novell Netware 6.5 SP2/SP3, 5.1, 6.0 - Denial of Service via Incorrect CIFS Password Length
Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and SP3, 5.1, and 6.0 allows remote attackers to cause a denial of service (ABEND) via an incorrect password length, as exploited by the "worm.rbot.ccc" worm.
EIP-2026-104537 EXPLOITDB ruby WORKING POC
Novell NetWare 6.5 SP2-SP7 - LSASS CIFS.NLM Overflow (Metasploit)