Showing 1 - 7 of 7

Files from Peter Osterberg

OP5 license.php Remote Command Execution: Posted Jan 11, 2012; Authored by Peter Osterberg | Site metasploit.com; This Metasploit module exploits an arbitrary root command execution vulnerability in the OP5 Monitor license.php. Ekelow has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.; tags | exploit, arbitrary, root, php; advisories | CVE-2012-0261, OSVDB-78064; SHA-256 | d2105e1f89c2f28bca22b1adedc6a39012c035a0e29a2b290c1600b2eb85c472; Download | Favorite | View

OP5 welcome Remote Command Execution: Posted Jan 11, 2012; Authored by Peter Osterberg | Site metasploit.com; This Metasploit module exploits an arbitrary root command execution vulnerability in OP5 Monitor welcome. Ekelow AB has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.; tags | exploit, arbitrary, root; advisories | CVE-2012-0262, OSVDB-78065; SHA-256 | c351feb8d2465ec452647ebc76a51ac184772093b2251154fbd643ab54b4fa12; Download | Favorite | View

OP5 Command Execution / Information Disclosure: Posted Jan 9, 2012; Authored by Peter Osterberg; OP5 suffers from poor session management, credential leakage and multiple remote root command execution vulnerabilities.; tags | exploit, remote, root, vulnerability; advisories | CVE-2012-0261, CVE-2012-0262, CVE-2012-0263, CVE-2012-0264; SHA-256 | 2da3429a912610984fa7c1f7306b7c0ae2a0a2ae5db72bdf33c2b822f10a3258; Download | Favorite | View

Ability Server 2.34 STOR Command Stack Buffer Overflow: Posted Dec 7, 2011; Authored by muts, Dark Eagle, Peter Osterberg | Site metasploit.com; This Metasploit module exploits a stack-based buffer overflow in Ability Server 2.34. Ability Server fails to check input size when parsing STOR and APPE commands, which leads to a stack based buffer overflow. This plugin uses the STOR command. The vulnerability has been confirmed on version 2.34 and has also been reported in version 2.25 and 2.32. Other versions may also be affected.; tags | exploit, overflow; SHA-256 | 2f42268540b9e7a1b27be7be2665ffceb81143ab10130f7b317339dcd4c523c5; Download | Favorite | View

Updated SAP MaxDB 7.6.03 Build 007 Pre-Auth Code Execution: Posted Feb 9, 2010; Authored by Luigi Auriemma, Peter Osterberg | Site aluigi.org; Remote exploit for SAP MaxDB versions 7.6.03 build 007 and below which suffer from a pre-authentication remote code execution vulnerability. This version has been updated by FortConsult A/S to use the same byte code as the Nessus plugin.; tags | exploit, remote, code execution; SHA-256 | 05af56508525edf0cf99ea659ff6d05ca91fd9083283f2d88a196e7beafa974b; Download | Favorite | View

Advisory-DWR.pdf: Posted Jul 10, 2008; Authored by Peter Osterberg | Site fortconsult.net; Direct Web Rendering (DWR) version 2.0.1 suffers from a cross site scripting vulnerability.; tags | advisory, web, xss; advisories | CVE-2008-2740; SHA-256 | f28ec0ceb8f160cab1326b00711ead1f5eeaf1365e622032d55cf49a026321ed; Download | Favorite | View

site_wide_xss.pdf: Posted Jul 10, 2008; Authored by Peter Osterberg, Anders H Salling | Site fortconsult.net; Whitepaper discussing site wide cross site scripting which is a technique to make injected code stay resident in the user's browser even after he leaves the vulnerable URL.; tags | paper, web, xss; SHA-256 | 6258e00949f5b6cb8f9e23f69428ac64474db6d9a58918e12106fc921cb6ab39; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days