This HTML page includes a JavaScript file from a GitLab repository. The specific JavaScript file is 986.js (also known as 05072005.js) and it is loaded using the script tag. The purpose and functionality of this script are unknown as the code is not provided in the given text. The author of this HTML page is mentioned as 'str0ke'.
There is an interesting vulnerability in the code of ajaxfilemanager/ajax_save_name.php. The vulnerability allows for the disclosure of the admin password.
The SMB dissector in Ethereal versions 0.9.0 to 0.10.10 could cause a segmentation fault and throw assertions, leading to a denial of service.
The com_tupinambis component in Mambo/Joomla is vulnerable to SQL Injection. An attacker can exploit this vulnerability by sending a malicious request to the verproyecto function, allowing them to extract sensitive information from the database.
Avast's aswMon2.sys Driver does not sanitize user supplied input IOCTL, leading to a kernel memory corruption that propagates on the system with a BSOD and potential risk of Privilege Escalation.
The DataTrac Activity Console is vulnerable to a Denial of Service (DoS) attack. This exploit sends a malicious procedure to the server, causing it to become unresponsive and effectively denying service to legitimate users. The exploit code is written in C and uses the winsock2 library for network communication. It resolves the host, establishes a connection, and sends the bad procedure, resulting in the server being DoS'ed.
This exploit targets the Sun Solaris 10 RPC dmispd service, causing it to consume excessive resources. The exploit is executed by restarting the dmi service, which triggers the resource consumption. The exploit is demonstrated with a command sequence and the resulting resource usage is shown. The exploit was developed by Jeremy Brown and was published in September 2009.
The worm exploits a vulnerability in ZeroBoard, allowing an attacker to inject arbitrary PHP code.
This is a proof-of-concept exploit for a remote stack overflow vulnerability in VLC Media Player version 1.0.2. The vulnerability occurs when handling smb:// URIs. By sending a specially crafted URI, an attacker can trigger a stack overflow and potentially execute arbitrary code on the target system.
The vulnerability exists due to insufficient sanitization of user-supplied input passed via the 'tID' parameter to '/index.asp' script. A remote attacker can send a specially crafted request to the vulnerable script and execute arbitrary SQL commands in application's database, cause denial of service, access or modify sensitive data, exploit latent vulnerabilities in the underlying database and compromise the system.
Services By CQR