Services Vulnerabilities Exploits Publications News Blog About DSecRG


RSS RSS

03.05.2010 [17] ProSSHD v 1.2. Remote bind shell exploit (w/ASLR and DEP bypass using ROP)

05.03.2010 [16] SAP GUI 7.10 WebViewer3D ActiveX - JIT-Spray Exploit

05.03.2010 [15] Oracle Document Capture (EasyMail Objects EMSMTP.DLL 6.0.1) ActiveX Control BOF - JIT-Spray Exploit

15.02.2010 [14] Oracle Document Capture (EasyMail Objects EMSMTP.DLL 6.0.1) ActiveX Control BOF - hardware DEP bypass

15.02.2010 [13] Oracle Document Capture (EasyMail Objects EMSMTP.DLL 6.0.1) ActiveX Control BOF

18.02.2009 [12] Oracle Database SQL Injection in MDSYS.SDO_TOPO_DROP_FTBL Trigger (metasploit module)

06.01.2009 [11] Oracle 10g SYS.LT.COMPRESSWORKSPACE SQL Injection Exploit (Grant DBA + create OS user using scheduler)

06.01.2009 [10] Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit (Grant DBA+create OS user using java)

06.01.2009 [9] Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit (Grant DBA+create OS user using advanced extproc)

23.12.2008 [8] Oracle 10g R1 xdb.xdb_pitrig_pkg PLSQL Injection (change sys password)

23.12.2008 [7] Oracle 10g R1 xdb.xdb_pitrig_pkg Buffer Overflow Exploit (PoC)

23.12.2008 [6] Oracle 10g R1 pitrig_truncate PLSQL Injection (get users hash)

23.12.2008 [5] Oracle 10g R1 pitrig_drop PLSQL Injection (get users hash)

23.12.2008 [4] RunCMS 1.6 Stored XSS Injection and XSRF Exploit Change Password

23.12.2008 [3] RunCMS 1.6 Remote Blind SQL Injection Exploit (IDS evasion)

23.12.2008 [2] RunCMS 1.6 Get Admin Cookie Remote Blind SQL Injection Exploit

19.12.2008 [1] Oracle 10g LT.FINDRICSET Local SQL Injection Exploit (IDS evasion)


© 2002—2014, ERPScan
For quoting or using materials from this site
link is obligatory

+44 (20) 81334493    e-mail: research@dsecrg.com
Rss: Vulnerabilities, Exploits, News, Publications, Summary
Search