Metasploit框架中包涵数百个模块,没有人能用脑子把它们的名字全部记下来。在MSF终端中运行show命令会把所有的模块显示出来,也可以指定模块的类型来缩小搜索范围。
1. msf > show exploits Exploits
========Name Disclosure Date Rank Description---- --------------- ---- -----------aix/rpc_cmsd_opcode21 2009-10-07 great AIX Calendar Manager Service Daemon (rpc.cmsd) Opcode 21 Buffer Overflowaix/rpc_ttdbserverd_realpath 2009-06-17 great ToolTalk rpc.ttdbserverd _tt_internal_realpath Buffer Overflow (AIX)apple_ios/browser/safari_libtiff 2006-08-01 good Apple iOS MobileSafari LibTIFF Buffer Overflowapple_ios/email/mobilemail_libtiff 2006-08-01 good Apple iOS MobileMail LibTIFF Buffer Overflowapple_ios/ssh/cydia_default_ssh 2007-07-02 excellent Apple iOS Default SSH Password Vulnerabilitybsdi/softcart/mercantec_softcart 2004-08-19 great Mercantec SoftCart CGI Overflowdialup/multi/login/manyargs 2001-12-12 good System V Derived /bin/login Extraneous Arguments Buffer Overflowfreebsd/ftp/proftp_telnet_iac 2010-11-01 great ProFTPD 1.3.2rc3 - 1.3.3b Telnet IAC Buffer Overflow (FreeBSD)freebsd/samba/trans2open 2003-04-07 great Samba trans2open Overflow (*BSD x86)freebsd/tacacs/xtacacsd_report 2008-01-08 average XTACACSD <= 4.1.2 report() Buffer Overflowfreebsd/telnet/telnet_encrypt_keyid 2011-12-23 great FreeBSD Telnet Service Encryption Key ID Buffer Overflowhpux/lpd/cleanup_exec 2002-08-28 excellent HP-UX LPD Command Executionirix/lpd/tagprinter_exec 2001-09-01 excellent Irix LPD tagprinter Command Executionlinux/browser/adobe_flashplayer_aslaunch 2008-12-17 good Adobe Flash Player ActionScript Launch Command Execution Vulnerabilitylinux/ftp/proftp_sreplace 2006-11-26 great ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)linux/ftp/proftp_telnet_iac 2010-11-01 great ProFTPD 1.3.2rc3 - 1.3.3b Telnet IAC Buffer Overflow (Linux)linux/games/ut2004_secure 2004-06-18 good Unreal Tournament 2004 "secure" Overflow (Linux)linux/http/alcatel_omnipcx_mastercgi_exec 2007-09-09 manual Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Executionlinux/http/ddwrt_cgibin_exec 2009-07-20 excellent DD-WRT HTTP Daemon Arbitrary Command Executionlinux/http/dolibarr_cmd_exec 2012-04-06 excellent Dolibarr ERP & CRM 3 Post-Auth OS Command Injectionlinux/http/esva_exec 2012-08-16 excellent E-Mail Security Virtual Appliance learn-msg.cgi Command Injectionlinux/http/gpsd_format_string 2005-05-25 average Berlios GPSD Format String Vulnerabilitylinux/http/linksys_apply_cgi 2005-09-13 great Linksys WRT54 Access Point apply.cgi Buffer Overflowlinux/http/openfiler_networkcard_exec 2012-09-04 excellent Openfiler v2.x NetworkCard Command Executionlinux/http/peercast_url 2006-03-08 average PeerCast <= 0.1216 URL Handling Buffer Overflow (linux)linux/http/piranha_passwd_exec 2000-04-04 excellent RedHat Piranha Virtual Server Package passwd.php3 Arbitrary Command Executionlinux/http/symantec_web_gateway_exec 2012-05-17 excellent Symantec Web Gateway 5.0.2.8 ipchange.php Command Injectionlinux/http/symantec_web_gateway_file_upload 2012-05-17 excellent Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerabilitylinux/http/symantec_web_gateway_lfi 2012-05-17 excellent Symantec Web Gateway 5.0.2.8 relfile File Inclusion Vulnerabilitylinux/http/symantec_web_gateway_pbcontrol 2012-07-23 excellent Symantec Web Gateway 5.0.2.18 pbcontrol.php Command Injectionlinux/http/vcms_upload 2011-11-27 excellent V-CMS PHP File Upload and Executelinux/http/wanem_exec 2012-08-12 excellent WAN Emulator v2.3 Command Executionlinux/http/webcalendar_settings_exec 2012-04-23 excellent WebCalendar 1.2.4 Pre-Auth Remote Code Injectionlinux/http/webid_converter 2011-07-05 excellent WeBid converter.php Remote PHP Code Injectionlinux/http/zen_load_balancer_exec 2012-09-14 excellent ZEN Load Balancer Filelog Command Executionlinux/http/zenoss_showdaemonxmlconfig_exec 2012-07-30 good Zenoss 3 showDaemonXMLConfig Command Executionlinux/ids/snortbopre 2005-10-18 good Snort Back Orifice Pre-Preprocessor Buffer Overflowlinux/imap/imap_uw_lsub 2000-04-16 good UoW IMAP server LSUB Buffer Overflowlinux/local/sock_sendpage 2009-08-13 great Linux Kernel Sendpage Local Privilege Escalationlinux/local/udev_netlink 2009-04-16 great Linux udev Netlink Local Privilege Escalationlinux/madwifi/madwifi_giwscan_cb 2006-12-08 average Madwifi SIOCGIWSCAN Buffer Overflowlinux/misc/accellion_fta_mpipe2 2011-02-07 excellent Accellion File Transfer Appliance MPIPE2 Command Executionlinux/misc/drb_remote_codeexec 2011-03-23 excellent Distributed Ruby Send instance_eval/syscall Code Executionlinux/misc/gld_postfix 2005-04-12 good GLD (Greylisting Daemon) Postfix Buffer Overflowlinux/misc/hp_data_protector_cmd_exec 2011-02-07 excellent HP Data Protector 6 EXEC_CMD Remote Code Executionlinux/misc/hplip_hpssd_exec 2007-10-04 excellent HPLIP hpssd.py From Address Arbitrary Command Executionlinux/misc/ib_inet_connect 2007-10-03 good Borland InterBase INET_connect() Buffer Overflowlinux/misc/ib_jrd8_create_database 2007-10-03 good Borland InterBase jrd8_create_database() Buffer Overflowlinux/misc/ib_open_marker_file 2007-10-03 good Borland InterBase open_marker_file() Buffer Overflowlinux/misc/ib_pwd_db_aliased 2007-10-03 good Borland InterBase PWD_db_aliased() Buffer Overflowlinux/misc/lprng_format_string 2000-09-25 normal LPRng use_syslog Remote Format String Vulnerabilitylinux/misc/netsupport_manager_agent 2011-01-08 average NetSupport Manager Agent Remote Buffer Overflowlinux/misc/novell_edirectory_ncp_bof 2012-12-12 normal Novell eDirectory 8 Buffer Overflowlinux/misc/zabbix_server_exec 2009-09-10 excellent Zabbix Server Arbitrary Command Executionlinux/mysql/mysql_yassl_getname 2010-01-25 good MySQL yaSSL CertDecoder::GetName Buffer Overflowlinux/mysql/mysql_yassl_hello 2008-01-04 good MySQL yaSSL SSL Hello Message Buffer Overflowlinux/pop3/cyrus_pop3d_popsubfolders 2006-05-21 normal Cyrus IMAPD pop3d popsubfolders USER Buffer Overflowlinux/postgres/postgres_payload 2007-06-05 excellent PostgreSQL for Linux Payload Executionlinux/pptp/poptop_negative_read 2003-04-09 great Poptop Negative Read Overflowlinux/proxy/squid_ntlm_authenticate 2004-06-08 great Squid NTLM Authenticate Overflowlinux/samba/chain_reply 2010-06-16 good Samba chain_reply Memory Corruption (Linux x86)linux/samba/lsa_transnames_heap 2007-05-14 good Samba lsa_io_trans_names Heap Overflowlinux/samba/setinfopolicy_heap 2012-04-10 normal Samba SetInformationPolicy AuditEventsInfo Heap Overflowlinux/samba/trans2open 2003-04-07 great Samba trans2open Overflow (Linux x86)linux/ssh/f5_bigip_known_privkey 2012-06-11 excellent F5 BIG-IP SSH Private Key Exposurelinux/ssh/symantec_smg_ssh 2012-08-27 excellent Symantec Messaging Gateway 9.5 Default SSH Password Vulnerabilitylinux/telnet/telnet_encrypt_keyid 2011-12-23 great Linux BSD-derived Telnet Service Encryption Key ID Buffer Overflowmulti/browser/firefox_escape_retval 2009-07-13 normal Firefox 3.5 escape() Return Value Memory Corruptionmulti/browser/firefox_queryinterface 2006-02-02 normal Firefox location.QueryInterface() Code Executionmulti/browser/firefox_xpi_bootstrapped_addon 2007-06-27 excellent Mozilla Firefox Bootstrapped Addon Social Engineering Code Executionmulti/browser/itms_overflow 2009-06-01 great Apple OS X iTunes 8.1.1 ITMS Overflowmulti/browser/java_atomicreferencearray 2012-02-14 excellent Java AtomicReferenceArray Type Violation Vulnerabilitymulti/browser/java_calendar_deserialize 2008-12-03 excellent Sun Java Calendar Deserialization Privilege Escalationmulti/browser/java_getsoundbank_bof 2009-11-04 great Sun Java JRE getSoundbank file:// URI Buffer Overflowmulti/browser/java_jre17_exec 2012-08-26 excellent Java 7 Applet Remote Code Executionmulti/browser/java_jre17_glassfish_averagerangestatisticimpl 2012-10-16 excellent Java Applet AverageRangeStatisticImpl Remote Code Executionmulti/browser/java_jre17_jaxws 2012-10-16 excellent Java Applet JAX-WS Remote Code Executionmulti/browser/java_jre17_jmxbean 2013-01-10 excellent Java Applet JMX Remote Code Executionmulti/browser/java_jre17_jmxbean_2 2013-01-19 excellent Java Applet JMX Remote Code Executionmulti/browser/java_jre17_method_handle 2012-10-16 excellent Java Applet Method Handle Remote Code Executionmulti/browser/java_rhino 2011-10-18 excellent Java Applet Rhino Script Engine Remote Code Executionmulti/browser/java_rmi_connection_impl 2010-03-31 excellent Java RMIConnectionImpl Deserialization Privilege Escalationmulti/browser/java_setdifficm_bof 2009-11-04 great Sun Java JRE AWT setDiffICM Buffer Overflowmulti/browser/java_signed_applet 1997-02-19 excellent Java Signed Applet Social Engineering Code Executionmulti/browser/java_trusted_chain 2010-03-31 excellent Java Statement.invoke() Trusted Method Chain Privilege Escalationmulti/browser/java_verifier_field_access 2012-06-06 excellent Java Applet Field Bytecode Verifier Cache Remote Code Executionmulti/browser/mozilla_compareto 2005-07-13 normal Mozilla Suite/Firefox InstallVersion->compareTo() Code Executionmulti/browser/mozilla_navigatorjava 2006-07-25 normal Mozilla Suite/Firefox Navigator Object Code Executionmulti/browser/opera_configoverwrite 2007-03-05 excellent Opera 9 Configuration Overwritemulti/browser/opera_historysearch 2008-10-23 excellent Opera historysearch XSSmulti/browser/qtjava_pointer 2007-04-23 excellent Apple QTJava toQTPointer() Arbitrary Memory Accessmulti/fileformat/adobe_u3d_meshcont 2009-10-13 good Adobe U3D CLODProgressiveMeshDeclaration Array Overrunmulti/fileformat/maple_maplet 2010-04-26 excellent Maple Maplet File Creation and Command Executionmulti/fileformat/peazip_command_injection 2009-06-05 excellent PeaZip <= 2.6.1 Zip Processing Command Injectionmulti/ftp/wuftpd_site_exec_format 2000-06-22 great WU-FTPD SITE EXEC/INDEX Format String Vulnerabilitymulti/handler manual Generic Payload Handlermulti/http/activecollab_chat 2012-05-30 excellent Active Collab "chat module" <= 2.3.8 Remote PHP Code Injection Exploitmulti/http/ajaxplorer_checkinstall_exec 2010-04-04 excellent AjaXplorer checkInstall.php Remote Command Executionmulti/http/apprain_upload_exec 2012-01-19 excellent appRain CMF Arbitrary PHP File Upload Vulnerabilitymulti/http/auxilium_upload_exec 2012-09-14 excellent Auxilium RateMyPet Arbitrary File Upload Vulnerabilitymulti/http/axis2_deployer 2010-12-30 excellent Axis2 / SAP BusinessObjects Authenticated Code Execution (via SOAP)multi/http/cuteflow_upload_exec 2012-07-27 excellent CuteFlow v2.11.2 Arbitrary File Upload Vulnerabilitymulti/http/eaton_nsm_code_exec 2012-06-26 excellent Network Shutdown Module <= 3.21 (sort_values) Remote PHP Code Injectionmulti/http/extplorer_upload_exec 2012-12-31 excellent eXtplorer v2.1 Arbitrary File Upload Vulnerabilitymulti/http/familycms_less_exec 2011-11-29 excellent Family Connections less.php Remote Command Executionmulti/http/freenas_exec_raw 2010-11-06 great FreeNAS exec_raw.php Arbitrary Command Executionmulti/http/gitorious_graph 2012-01-19 excellent Gitorious Arbitrary Command Executionmulti/http/glassfish_deployer 2011-08-04 excellent Sun/Oracle GlassFish Server Authenticated Code Executionmulti/http/glossword_upload_exec 2013-02-05 excellent Glossword v1.8.8 - 1.8.12 Arbitrary File Upload Vulnerabilitymulti/http/horde_href_backdoor 2012-02-13 excellent Horde 3.3.12 Backdoor Arbitrary PHP Code Executionmulti/http/hp_sitescope_uploadfileshandler 2012-08-29 good HP SiteScope Remote Code Executionmulti/http/jboss_bshdeployer 2010-04-26 excellent JBoss JMX Console Beanshell Deployer WAR Upload and Deploymentmulti/http/jboss_deploymentfilerepository 2010-04-26 excellent JBoss Java Class DeploymentFileRepository WAR Deploymentmulti/http/jboss_invoke_deploy 2007-02-20 excellent JBoss DeploymentFileRepository WAR Deployment (via JMXInvokerServlet)multi/http/jboss_maindeployer 2007-02-20 excellent JBoss JMX Console Deployer Upload and Executemulti/http/jenkins_script_console 2013-01-18 good Jenkins Script-Console Java Executionmulti/http/kordil_edms_upload_exec 2013-02-22 excellent Kordil EDMS v2.2.60rc3 Unauthenticated Arbitrary File Upload Vulnerabilitymulti/http/lcms_php_exec 2011-03-03 excellent LotusCMS 3.0 eval() Remote Command Executionmulti/http/log1cms_ajax_create_folder 2011-04-11 excellent Log1 CMS writeInfo() PHP Code Injectionmulti/http/manageengine_search_sqli 2012-10-18 excellent ManageEngine Security Manager Plus 5.5 build 5505 SQL Injectionmulti/http/mobilecartly_upload_exec 2012-08-10 excellent MobileCartly 1.0 Arbitrary File Creation Vulnerabilitymulti/http/movabletype_upgrade_exec 2013-01-07 normal Movable Type 4.2x, 4.3x Web Upgrade Remote Code Executionmulti/http/netwin_surgeftp_exec 2012-12-06 good Netwin SurgeFTP Remote Command Executionmulti/http/op5_license 2012-01-05 excellent OP5 license.php Remote Command Executionmulti/http/op5_welcome 2012-01-05 excellent OP5 welcome Remote Command Executionmulti/http/openfire_auth_bypass 2008-11-10 excellent Openfire Admin Console Authentication Bypassmulti/http/php_cgi_arg_injection 2012-05-03 excellent PHP CGI Argument Injectionmulti/http/php_volunteer_upload_exec 2012-05-28 excellent PHP Volunteer Management System v1.0.2 Arbitrary File Upload Vulnerabilitymulti/http/phpldapadmin_query_engine 2011-10-24 excellent phpLDAPadmin <= 1.2.1.1 (query_engine) Remote PHP Code Injectionmulti/http/phpmyadmin_3522_backdoor 2012-09-25 normal phpMyAdmin 3.5.2.2 server_sync.php Backdoormulti/http/phpscheduleit_start_date 2008-10-01 excellent phpScheduleIt PHP reserve.php start_date Parameter Arbitrary Code Injectionmulti/http/phptax_exec 2012-10-08 excellent PhpTax pfilez Parameter Exec Remote Code Injectionmulti/http/plone_popen2 2011-10-04 excellent Plone and Zope XMLTools Remote Command Executionmulti/http/pmwiki_pagelist 2011-11-09 excellent PmWiki <= 2.2.34 pagelist.php Remote PHP Code Injection Exploitmulti/http/qdpm_upload_exec 2012-06-14 excellent qdPM v7 Arbitrary PHP File Upload Vulnerabilitymulti/http/rails_json_yaml_code_exec 2013-01-28 excellent Ruby on Rails JSON Processor YAML Deserialization Code Executionmulti/http/rails_xml_yaml_code_exec 2013-01-07 excellent Ruby on Rails XML Processor YAML Deserialization Code Executionmulti/http/sflog_upload_exec 2012-07-06 excellent Sflog! CMS 1.0 Arbitrary File Upload Vulnerabilitymulti/http/sit_file_upload 2011-11-10 excellent Support Incident Tracker <= 3.65 Remote Command Executionmulti/http/snortreport_exec 2011-09-19 excellent Snortreport nmap.php/nbtscan.php Remote Command Executionmulti/http/sonicwall_gms_upload 2012-01-17 excellent SonicWALL GMS 6 Arbitrary File Uploadmulti/http/splunk_mappy_exec 2011-12-12 excellent Splunk Search Remote Code Executionmulti/http/splunk_upload_app_exec 2012-09-27 good Splunk 5.0 Custom App Remote Code Executionmulti/http/spree_search_exec 2011-10-05 excellent Spreecommerce 0.60.1 Arbitrary Command Executionmulti/http/spree_searchlogic_exec 2011-04-19 excellent Spreecommerce < 0.50.0 Arbitrary Command Executionmulti/http/struts_code_exec 2010-07-13 good Apache Struts < 2.2.0 Remote Command Executionmulti/http/struts_code_exec_exception_delegator 2012-01-06 excellent Apache Struts <= 2.2.1.1 Remote Command Executionmulti/http/sun_jsws_dav_options 2010-01-20 great Sun Java System Web Server WebDAV OPTIONS Buffer Overflowmulti/http/testlink_upload_exec 2012-08-13 excellent TestLink v1.9.3 Arbitrary File Upload Vulnerabilitymulti/http/tomcat_mgr_deploy 2009-11-09 excellent Apache Tomcat Manager Application Deployer Authenticated Code Executionmulti/http/traq_plugin_exec 2011-12-12 excellent Traq admincp/common.php Remote Code Executionmulti/http/vbseo_proc_deutf 2012-01-23 excellent vBSEO <= 3.6.0 proc_deutf() Remote PHP Code Injectionmulti/http/webpagetest_upload_exec 2012-07-13 excellent WebPageTest Arbitrary PHP File Uploadmulti/http/wikka_spam_exec 2011-11-30 excellent WikkaWiki 1.3.2 Spam Logging PHP Injectionmulti/ids/snort_dce_rpc 2007-02-19 good Snort 2 DCE/RPC preprocessor Buffer Overflowmulti/misc/batik_svg_java 2012-05-11 excellent Squiggle 1.7 SVG Browser Java Code Executionmulti/misc/hp_vsa_exec 2011-11-11 excellent HP StorageWorks P4000 Virtual SAN Appliance Command Executionmulti/misc/indesign_server_soap 2012-11-11 excellent Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Executionmulti/misc/java_rmi_server 2011-10-15 excellent Java RMI Server Insecure Default Configuration Java Code Executionmulti/misc/openview_omniback_exec 2001-02-28 excellent HP OpenView OmniBack II Command Executionmulti/misc/pbot_exec 2009-11-02 excellent PHP IRC Bot pbot eval() Remote Code Executionmulti/misc/veritas_netbackup_cmdexec 2004-10-21 excellent VERITAS NetBackup Remote Command Executionmulti/misc/wireshark_lwres_getaddrbyname 2010-01-27 great Wireshark LWRES Dissector getaddrsbyname_request Buffer Overflowmulti/misc/wireshark_lwres_getaddrbyname_loop 2010-01-27 great Wireshark LWRES Dissector getaddrsbyname_request Buffer Overflow (loop)multi/misc/zend_java_bridge 2011-03-28 great Zend Server Java Bridge Arbitrary Java Code Executionmulti/ntp/ntp_overflow 2001-04-04 good NTP daemon readvar Buffer Overflowmulti/php/php_unserialize_zval_cookie 2007-03-04 average PHP 4 unserialize() ZVAL Reference Counter Overflow (Cookie)multi/realserver/describe 2002-12-20 great RealServer Describe Buffer Overflowmulti/samba/nttrans 2003-04-07 average Samba 2.2.2 - 2.2.6 nttrans Buffer Overflowmulti/samba/usermap_script 2007-05-14 excellent Samba "username map script" Command Executionmulti/svn/svnserve_date 2004-05-19 average Subversion Date Svnservemulti/upnp/libupnp_ssdp_overflow 2013-01-29 normal Portable UPnP SDK unique_service_name() Remote Code Executionmulti/wyse/hagent_untrusted_hsdata 2009-07-10 excellent Wyse Rapport Hagent Fake Hserver Command Executionnetware/smb/lsass_cifs 2007-01-21 average Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflownetware/sunrpc/pkernel_callit 2009-09-30 good NetWare 6.5 SunRPC Portmapper CALLIT Stack Buffer Overflowosx/afp/loginext 2004-05-03 average AppleFileServer LoginExt PathName Overflowosx/arkeia/type77 2005-02-18 average Arkeia Backup Client Type 77 Overflow (Mac OS X)osx/browser/mozilla_mchannel 2011-05-10 normal Mozilla Firefox 3.6.16 mChannel Use-After-Freeosx/browser/safari_file_policy 2011-10-12 normal Apple Safari file:// Arbitrary Code Executionosx/browser/safari_metadata_archive 2006-02-21 excellent Safari Archive Metadata Command Executionosx/browser/software_update 2007-12-17 excellent Apple OS X Software Update Command Executionosx/email/mailapp_image_exec 2006-03-01 manual Mail.app Image Attachment Command Executionosx/ftp/webstar_ftp_user 2004-07-13 average WebSTAR FTP Server USER Overflowosx/http/evocam_webserver 2010-06-01 average MacOS X EvoCam HTTP GET Buffer Overflowosx/mdns/upnp_location 2007-05-25 average Mac OS X mDNSResponder UPnP Location Overflowosx/misc/ufo_ai 2009-10-28 average UFO: Alien Invasion IRC Client Buffer Overflowosx/rtsp/quicktime_rtsp_content_type 2007-11-23 average MacOS X QuickTime RTSP Content-Type Overflowosx/samba/lsa_transnames_heap 2007-05-14 average Samba lsa_io_trans_names Heap Overflowosx/samba/trans2open 2003-04-07 great Samba trans2open Overflow (Mac OS X PPC)solaris/dtspcd/heap_noir 2002-07-10 great Solaris dtspcd Heap Overflowsolaris/lpd/sendmail_exec 2001-08-31 excellent Solaris LPD Command Executionsolaris/samba/lsa_transnames_heap 2007-05-14 average Samba lsa_io_trans_names Heap Overflowsolaris/samba/trans2open 2003-04-07 great Samba trans2open Overflow (Solaris SPARC)solaris/sunrpc/sadmind_adm_build_path 2008-10-14 great Sun Solaris sadmind adm_build_path() Buffer Overflowsolaris/sunrpc/sadmind_exec 2003-09-13 excellent Solaris sadmind Command Executionsolaris/sunrpc/ypupdated_exec 1994-12-12 excellent Solaris ypupdated Command Executionsolaris/telnet/fuser 2007-02-12 excellent Sun Solaris Telnet Remote Authentication Bypass Vulnerabilitysolaris/telnet/ttyprompt 2002-01-18 excellent Solaris in.telnetd TTYPROMPT Buffer Overflowunix/ftp/proftpd_133c_backdoor 2010-12-02 excellent ProFTPD-1.3.3c Backdoor Command Executionunix/ftp/vsftpd_234_backdoor 2011-07-03 excellent VSFTPD v2.3.4 Backdoor Command Executionunix/http/contentkeeperweb_mimencode 2009-02-25 excellent ContentKeeper Web Remote Command Executionunix/http/ctek_skyrouter 2011-09-08 average CTEK SkyRouter 4200 and 4300 Command Executionunix/http/freepbx_callmenum 2012-03-20 manual FreePBX 2.10.0 / 2.9.0 callmenum Remote Code Executionunix/http/lifesize_room 2011-07-13 excellent LifeSize Room Command Injectionunix/irc/unreal_ircd_3281_backdoor 2010-06-12 excellent UnrealIRCD 3.2.8.1 Backdoor Command Executionunix/local/setuid_nmap 2012-07-19 excellent Setuid Nmap Exploitunix/misc/distcc_exec 2002-02-01 excellent DistCC Daemon Command Executionunix/misc/qnx_qconn_exec 2012-09-04 excellent QNX QCONN Remote Command Execution Vulnerabilityunix/misc/spamassassin_exec 2006-06-06 excellent SpamAssassin spamd Remote Command Executionunix/misc/zabbix_agent_exec 2009-09-10 excellent Zabbix Agent net.tcp.listen Command Injectionunix/smtp/clamav_milter_blackhole 2007-08-24 excellent ClamAV Milter Blackhole-Mode Remote Code Executionunix/smtp/exim4_string_format 2010-12-07 excellent Exim4 <= 4.69 string_format Function Heap Buffer Overflowunix/ssh/tectia_passwd_changereq 2012-12-01 excellent Tectia SSH USERAUTH Change Request Password Reset Vulnerabilityunix/webapp/awstats_configdir_exec 2005-01-15 excellent AWStats configdir Remote Command Executionunix/webapp/awstats_migrate_exec 2006-05-04 excellent AWStats migrate Remote Command Executionunix/webapp/awstatstotals_multisort 2008-08-26 excellent AWStats Totals =< v1.14 multisort Remote Command Executionunix/webapp/barracuda_img_exec 2005-09-01 excellent Barracuda IMG.PL Remote Command Executionunix/webapp/base_qry_common 2008-06-14 excellent BASE base_qry_common Remote File Includeunix/webapp/basilic_diff_exec 2012-06-28 excellent Basilic 1.5.14 diff.php Arbitrary Command Executionunix/webapp/cacti_graphimage_exec 2005-01-15 excellent Cacti graph_view.php Remote Command Executionunix/webapp/cakephp_cache_corruption 2010-11-15 excellent CakePHP <= 1.3.5 / 1.2.8 Cache Corruption Code Executionunix/webapp/citrix_access_gateway_exec 2010-12-21 excellent Citrix Access Gateway Command Executionunix/webapp/coppermine_piceditor 2008-01-30 excellent Coppermine Photo Gallery <= 1.4.14 picEditor.php Command Executionunix/webapp/datalife_preview_exec 2013-01-28 excellent DataLife Engine preview.php PHP Code Injectionunix/webapp/dogfood_spell_exec 2009-03-03 excellent Dogfood CRM spell.php Remote Command Executionunix/webapp/egallery_upload_exec 2012-07-08 excellent EGallery PHP File Upload Vulnerabilityunix/webapp/foswiki_maketext 2012-12-03 excellent Foswiki MAKETEXT Remote Command Executionunix/webapp/generic_exec 1993-11-14 excellent Generic Web Application Unix Command Executionunix/webapp/google_proxystylesheet_exec 2005-08-16 excellent Google Appliance ProxyStyleSheet Command Executionunix/webapp/guestbook_ssi_exec 1999-11-05 excellent Matt Wright guestbook.pl Arbitrary Command Executionunix/webapp/hastymail_exec 2011-11-22 excellent Hastymail 2.1.1 RC1 Command Injectionunix/webapp/invision_pboard_unserialize_exec 2012-10-25 excellent Invision IP.Board <= 3.3.4 unserialize() PHP Code Executionunix/webapp/joomla_tinybrowser 2009-07-22 excellent Joomla 1.5.12 TinyBrowser File Upload Code Executionunix/webapp/mambo_cache_lite 2008-06-14 excellent Mambo Cache_Lite Class mosConfig_absolute_path Remote File Includeunix/webapp/mitel_awc_exec 2010-12-12 excellent Mitel Audio and Web Conferencing Command Injectionunix/webapp/mybb_backdoor 2011-10-06 excellent myBB 1.6.4 Backdoor Arbitrary Command Executionunix/webapp/nagios3_history_cgi 2012-12-09 great Nagios3 history.cgi Host Command Executionunix/webapp/nagios3_statuswml_ping 2009-06-22 excellent Nagios3 statuswml.cgi Ping Command Executionunix/webapp/nagios_graph_explorer 2012-11-30 excellent Nagios XI Network Monitor Graph Explorer Component Command Injectionunix/webapp/narcissus_backend_exec 2012-11-14 excellent Narcissus Image Configuration Passthru Vulnerabilityunix/webapp/openemr_upload_exec 2013-02-13 excellent OpenEMR PHP File Upload Vulnerabilityunix/webapp/openview_connectednodes_exec 2005-08-25 excellent HP Openview connectedNodes.ovpl Remote Command Executionunix/webapp/openx_banner_edit 2009-11-24 excellent OpenX banner-edit.php File Upload PHP Code Executionunix/webapp/oracle_vm_agent_utl 2010-10-12 excellent Oracle VM Server Virtual Server Agent Command Injectionunix/webapp/oscommerce_filemanager 2009-08-31 excellent osCommerce 2.2 Arbitrary PHP Code Executionunix/webapp/pajax_remote_exec 2006-03-30 excellent PAJAX Remote Command Executionunix/webapp/php_charts_exec 2013-01-16 excellent PHP-Charts v1.0 PHP Code Execution Vulnerabilityunix/webapp/php_eval 2008-10-13 manual Generic PHP Code Evaluationunix/webapp/php_include 2006-12-17 normal PHP Remote File Include Generic Code Executionunix/webapp/php_vbulletin_template 2005-02-25 excellent vBulletin misc.php Template Name Arbitrary Code Executionunix/webapp/php_wordpress_foxypress 2012-06-05 excellent WordPress plugin Foxypress uploadify.php Arbitrary Code Executionunix/webapp/php_wordpress_lastpost 2005-08-09 excellent WordPress cache_lastpostdate Arbitrary Code Executionunix/webapp/php_xmlrpc_eval 2005-06-29 excellent PHP XML-RPC Arbitrary Code Executionunix/webapp/phpbb_highlight 2004-11-12 excellent phpBB viewtopic.php Arbitrary Code Executionunix/webapp/phpmyadmin_config 2009-03-24 excellent PhpMyAdmin Config File Code Injectionunix/webapp/projectpier_upload_exec 2012-10-08 excellent Project Pier Arbitrary File Upload Vulnerabilityunix/webapp/qtss_parse_xml_exec 2003-02-24 excellent QuickTime Streaming Server parse_xml.cgi Remote Executionunix/webapp/redmine_scm_exec 2010-12-19 excellent Redmine SCM Repository Arbitrary Command Executionunix/webapp/sphpblog_file_upload 2005-08-25 excellent Simple PHP Blog <= 0.4.0 Remote Command Executionunix/webapp/squirrelmail_pgp_plugin 2007-07-09 manual SquirrelMail PGP Plugin command execution (SMTP)unix/webapp/sugarcrm_unserialize_exec 2012-06-23 excellent SugarCRM <= 6.3.1 unserialize() PHP Code Executionunix/webapp/tikiwiki_graph_formula_exec 2007-10-10 excellent TikiWiki tiki-graph_formula Remote PHP Code Executionunix/webapp/tikiwiki_jhot_exec 2006-09-02 excellent TikiWiki jhot Remote Command Executionunix/webapp/tikiwiki_unserialize_exec 2012-07-04 excellent Tiki Wiki <= 8.3 unserialize() PHP Code Executionunix/webapp/trixbox_langchoice 2008-07-09 manual Trixbox langChoice PHP Local File Inclusionunix/webapp/twiki_history 2005-09-14 excellent TWiki History TWikiUsers rev Parameter Command Executionunix/webapp/twiki_maketext 2012-12-15 excellent TWiki MAKETEXT Remote Command Executionunix/webapp/twiki_search 2004-10-01 excellent TWiki Search Function Arbitrary Command Executionunix/webapp/webmin_show_cgi_exec 2012-09-06 excellent Webmin /file/show.cgi Remote Command Executionunix/webapp/wp_advanced_custom_fields_exec 2012-11-14 excellent WordPress Plugin Advanced Custom Fields Remote File Inclusionunix/webapp/wp_asset_manager_upload_exec 2012-05-26 excellent WordPress Asset-Manager PHP File Upload Vulnerabilityunix/webapp/wp_google_document_embedder_exec 2013-01-03 normal WordPress Plugin Google Document Embedder Arbitrary File Disclosureunix/webapp/wp_property_upload_exec 2012-03-26 excellent WordPress WP-Property PHP File Upload Vulnerabilityunix/webapp/xoda_file_upload 2012-08-21 excellent XODA 0.4.5 Arbitrary PHP File Upload Vulnerabilityunix/webapp/zoneminder_packagecontrol_exec 2013-01-22 excellent ZoneMinder Video Server packageControl Command Executionwindows/antivirus/ams_hndlrsvc 2010-07-26 excellent Symantec System Center Alert Management System (hndlrsvc.exe) Arbitrary Command Executionwindows/antivirus/ams_xfr 2009-04-28 excellent Symantec System Center Alert Management System (xfr.exe) Arbitrary Command Executionwindows/antivirus/symantec_iao 2009-04-28 good Symantec Alert Management System Intel Alert Originator Service Buffer Overflowwindows/antivirus/symantec_rtvscan 2006-05-24 good Symantec Remote Management Buffer Overflowwindows/antivirus/trendmicro_serverprotect 2007-02-20 good Trend Micro ServerProtect 5.58 Buffer Overflowwindows/antivirus/trendmicro_serverprotect_createbinding 2007-05-07 good Trend Micro ServerProtect 5.58 CreateBinding() Buffer Overflowwindows/antivirus/trendmicro_serverprotect_earthagent 2007-05-07 good Trend Micro ServerProtect 5.58 EarthAgent.EXE Buffer Overflowwindows/arkeia/type77 2005-02-18 good Arkeia Backup Client Type 77 Overflow (Win32)windows/backdoor/energizer_duo_payload 2010-03-05 excellent Energizer DUO Trojan Code Executionwindows/backupexec/name_service 2004-12-16 average Veritas Backup Exec Name Service Overflowwindows/backupexec/remote_agent 2005-06-22 great Veritas Backup Exec Windows Remote Agent Overflowwindows/brightstor/ca_arcserve_342 2008-10-09 average Computer Associates ARCserve REPORTREMOTEEXECUTECML Buffer Overflowwindows/brightstor/discovery_tcp 2005-02-14 average CA BrightStor Discovery Service TCP Overflowwindows/brightstor/discovery_udp 2004-12-20 average CA BrightStor Discovery Service Stack Buffer Overflowwindows/brightstor/etrust_itm_alert 2008-04-04 average Computer Associates Alert Notification Buffer Overflowwindows/brightstor/hsmserver 2007-09-27 great CA BrightStor HSM Buffer Overflowwindows/brightstor/lgserver 2007-01-31 average CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflowwindows/brightstor/lgserver_multi 2007-06-06 average CA BrightStor ARCserve for Laptops & Desktops LGServer Multiple Commands Buffer Overflowwindows/brightstor/lgserver_rxrlogin 2007-06-06 average CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflowwindows/brightstor/lgserver_rxssetdatagrowthscheduleandfilter 2007-06-06 average CA BrightStor ARCserve for Laptops & Desktops LGServer (rxsSetDataGrowthScheduleAndFilter) Buffer Overflowwindows/brightstor/lgserver_rxsuselicenseini 2007-06-06 average CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflowwindows/brightstor/license_gcr 2005-03-02 average CA BrightStor ARCserve License Service GCR NETWORK Buffer Overflowwindows/brightstor/mediasrv_sunrpc 2007-04-25 average CA BrightStor ArcServe Media Service Stack Buffer Overflowwindows/brightstor/message_engine 2007-01-11 average CA BrightStor ARCserve Message Engine Buffer Overflowwindows/brightstor/message_engine_72 2010-10-04 average CA BrightStor ARCserve Message Engine 0x72 Buffer Overflowwindows/brightstor/message_engine_heap 2006-10-05 average CA BrightStor ARCserve Message Engine Heap Overflowwindows/brightstor/sql_agent 2005-08-02 average CA BrightStor Agent for Microsoft SQL Overflowwindows/brightstor/tape_engine 2006-11-21 average CA BrightStor ARCserve Tape Engine Buffer Overflowwindows/brightstor/tape_engine_8A 2010-10-04 average CA BrightStor ARCserve Tape Engine 0x8A Buffer Overflowwindows/brightstor/universal_agent 2005-04-11 average CA BrightStor Universal Agent Overflowwindows/browser/adobe_cooltype_sing 2010-09-07 great Adobe CoolType SING Table "uniqueName" Stack Buffer Overflowwindows/browser/adobe_flash_mp4_cprt 2012-02-15 normal Adobe Flash Player MP4 'cprt' Overflowwindows/browser/adobe_flash_otf_font 2012-08-09 normal Adobe Flash Player 11.3 Kern Table Parsing Integer Overflowwindows/browser/adobe_flash_rtmp 2012-05-04 normal Adobe Flash Player Object Type Confusionwindows/browser/adobe_flash_sps 2011-08-09 normal Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflowwindows/browser/adobe_flashplayer_arrayindexing 2012-06-21 great Adobe Flash Player AVM Verification Logic Array Indexing Code Executionwindows/browser/adobe_flashplayer_avm 2011-03-15 good Adobe Flash Player AVM Bytecode Verification Vulnerabilitywindows/browser/adobe_flashplayer_flash10o 2011-04-11 normal Adobe Flash Player 10.2.153.1 SWF Memory Corruption Vulnerabilitywindows/browser/adobe_flashplayer_newfunction 2010-06-04 normal Adobe Flash Player "newfunction" Invalid Pointer Usewindows/browser/adobe_flatedecode_predictor02 2009-10-08 good Adobe FlateDecode Stream Predictor 02 Integer Overflowwindows/browser/adobe_geticon 2009-03-24 good Adobe Collab.getIcon() Buffer Overflowwindows/browser/adobe_jbig2decode 2009-02-19 good Adobe JBIG2Decode Heap Corruptionwindows/browser/adobe_media_newplayer 2009-12-14 good Adobe Doc.media.newPlayer Use After Free Vulnerabilitywindows/browser/adobe_shockwave_rcsl_corruption 2010-10-21 normal Adobe Shockwave rcsL Memory Corruptionwindows/browser/adobe_utilprintf 2008-02-08 good Adobe util.printf() Buffer Overflowwindows/browser/aim_goaway 2004-08-09 great AOL Instant Messenger goaway Overflowwindows/browser/aladdin_choosefilepath_bof 2012-04-01 normal Aladdin Knowledge System Ltd ChooseFilePath Buffer Overflowwindows/browser/amaya_bdo 2009-01-28 normal Amaya Browser v11.0 'bdo' Tag Overflowwindows/browser/aol_ampx_convertfile 2009-05-19 normal AOL Radio AmpX ActiveX Control ConvertFile() Buffer Overflowwindows/browser/aol_icq_downloadagent 2006-11-06 excellent America Online ICQ ActiveX Control Arbitrary File Download and Executewindows/browser/apple_itunes_playlist 2005-01-11 normal Apple ITunes 4.7 Playlist Buffer Overflowwindows/browser/apple_quicktime_marshaled_punk 2010-08-30 great Apple QuickTime 7.6.7 _Marshaled_pUnk Code Executionwindows/browser/apple_quicktime_mime_type 2012-11-07 normal Apple QuickTime 7.7.2 MIME Type Buffer Overflowwindows/browser/apple_quicktime_rtsp 2007-01-01 normal Apple QuickTime 7.1.3 RTSP URI Buffer Overflowwindows/browser/apple_quicktime_smil_debug 2010-08-12 good Apple QuickTime 7.6.6 Invalid SMIL URI Buffer Overflowwindows/browser/apple_quicktime_texml_font_table 2012-11-07 normal Apple QuickTime 7.7.2 TeXML Style Element font-table Field Stack Buffer Overflowwindows/browser/ask_shortformat 2007-09-24 normal Ask.com Toolbar askBar.dll ActiveX Control Buffer Overflowwindows/browser/asus_net4switch_ipswcom 2012-02-17 normal ASUS Net4Switch ipswcom.dll ActiveX Stack Buffer Overflowwindows/browser/athocgov_completeinstallation 2008-02-15 normal AtHocGov IWSAlerts ActiveX Control Buffer Overflowwindows/browser/autodesk_idrop 2009-04-02 normal Autodesk IDrop ActiveX Control Heap Memory Corruptionwindows/browser/aventail_epi_activex 2010-08-19 normal SonicWALL Aventail epi.dll AuthCredential Format Stringwindows/browser/awingsoft_web3d_bof 2009-07-10 average AwingSoft Winds3D Player SceneURL Buffer Overflowwindows/browser/awingsoft_winds3d_sceneurl 2009-11-14 excellent AwingSoft Winds3D Player 3.5 SceneURL Download and Executewindows/browser/baofeng_storm_onbeforevideodownload 2009-04-30 normal BaoFeng Storm mps.dll ActiveX OnBeforeVideoDownload Buffer Overflowwindows/browser/barcode_ax49 2007-06-22 normal RKD Software BarCodeAx.dll v4.9 ActiveX Remote Stack Buffer Overflowwindows/browser/blackice_downloadimagefileurl 2008-06-05 excellent Black Ice Cover Page ActiveX Control Arbitrary File Downloadwindows/browser/c6_messenger_downloaderactivex 2008-06-03 excellent Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Executewindows/browser/ca_brightstor_addcolumn 2008-03-16 normal CA BrightStor ARCserve Backup AddColumn() ActiveX Buffer Overflowwindows/browser/chilkat_crypt_writefile 2008-11-03 excellent Chilkat Crypt ActiveX WriteFile Unsafe Methodwindows/browser/cisco_anyconnect_exec 2011-06-01 excellent Cisco AnyConnect VPN Client ActiveX URL Property Download and Executewindows/browser/cisco_playerpt_setsource 2012-03-22 normal Cisco Linksys PlayerPT ActiveX Control Buffer Overflowwindows/browser/cisco_playerpt_setsource_surl 2012-07-17 normal Cisco Linksys PlayerPT ActiveX Control SetSource sURL argument Buffer Overflowwindows/browser/citrix_gateway_actx 2011-07-14 normal Citrix Gateway ActiveX Control Stack Based Buffer Overflow Vulnerabilitywindows/browser/clear_quest_cqole 2012-05-19 normal IBM Rational ClearQuest CQOle Remote Code Executionwindows/browser/communicrypt_mail_activex 2010-05-19 great CommuniCrypt Mail 1.16 SMTP ActiveX Stack Buffer Overflowwindows/browser/creative_software_cachefolder 2008-05-28 normal Creative Software AutoUpdate Engine ActiveX Control Buffer Overflowwindows/browser/crystal_reports_printcontrol 2010-12-14 normal Crystal Reports CrystalPrintControl ActiveX ServerResourceVersion Property Overflowwindows/browser/dell_webcam_crazytalk 2012-03-19 normal Dell Webcam CrazyTalk ActiveX BackImage Vulnerabilitywindows/browser/dxstudio_player_exec 2009-06-09 excellent Worldweaver DX Studio Player <= 3.0.29 shell.execute() Command Executionwindows/browser/ea_checkrequirements 2007-10-08 normal Electronic Arts SnoopyCtrl ActiveX Control Buffer Overflowwindows/browser/ebook_flipviewer_fviewerloading 2007-06-06 normal FlipViewer FViewerLoading ActiveX Control Buffer Overflowwindows/browser/enjoysapgui_comp_download 2009-04-15 excellent EnjoySAP SAP GUI ActiveX Control Arbitrary File Downloadwindows/browser/enjoysapgui_preparetoposthtml 2007-07-05 normal EnjoySAP SAP GUI ActiveX Control Buffer Overflowwindows/browser/facebook_extractiptc 2008-01-31 normal Facebook Photo Uploader 4 ActiveX Control Buffer Overflowwindows/browser/foxit_reader_plugin_url_bof 2013-01-07 normal Foxit Reader Plugin URL Processing Buffer Overflowwindows/browser/gom_openurl 2007-10-27 normal GOM Player ActiveX Control Buffer Overflowwindows/browser/greendam_url 2009-06-11 normal Green Dam URL Processing Buffer Overflowwindows/browser/honeywell_hscremotedeploy_exec 2013-02-22 excellent Honeywell HSC Remote Deployer ActiveX Remote Code Executionwindows/browser/honeywell_tema_exec 2011-10-20 excellent Honeywell Tema Remote Installer ActiveX Remote Code Executionwindows/browser/hp_alm_xgo_setshapenodetype_exec 2012-08-29 normal HP Application Lifecycle Management XGO.ocx ActiveX SetShapeNodeType() Remote Code Executionwindows/browser/hp_easy_printer_care_xmlcachemgr 2012-01-11 great HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Executionwindows/browser/hp_easy_printer_care_xmlsimpleaccessor 2011-08-16 great HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Executionwindows/browser/hp_loadrunner_addfile 2008-01-25 normal Persits XUpload ActiveX AddFile Buffer Overflowwindows/browser/hp_loadrunner_addfolder 2007-12-25 good HP LoadRunner 9.0 ActiveX AddFolder Buffer Overflowwindows/browser/hpmqc_progcolor 2007-04-04 normal HP Mercury Quality Center ActiveX Control ProgColor Buffer Overflowwindows/browser/hyleos_chemviewx_activex 2010-02-10 good Hyleos ChemView ActiveX Control Stack Buffer Overflowwindows/browser/ibm_tivoli_pme_activex_bof 2012-03-01 normal IBM Tivoli Provisioning Manager Express for Software Distribution Isig.isigCtl.1 ActiveX RunAndUploadFile() Method Overflowwindows/browser/ibmegath_getxmlvalue 2009-03-24 normal IBM Access Support ActiveX Control Buffer Overflowwindows/browser/ibmlotusdomino_dwa_uploadmodule 2007-12-20 normal IBM Lotus Domino Web Access Upload Module Buffer Overflowwindows/browser/ie_cbutton_uaf 2012-12-27 normal Microsoft Internet Explorer CButton Object Use-After-Free Vulnerabilitywindows/browser/ie_createobject 2006-04-11 excellent Internet Explorer COM CreateObject Code Executionwindows/browser/ie_execcommand_uaf 2012-09-14 good MS12-063 Microsoft Internet Explorer execCommand Use-After-Free Vulnerability windows/browser/ie_iscomponentinstalled 2006-02-24 normal Internet Explorer isComponentInstalled Overflowwindows/browser/ie_unsafe_scripting 2010-09-20 excellent Internet Explorer Unsafe Scripting Misconfigurationwindows/browser/imgeviewer_tifmergemultifiles 2010-03-03 normal Viscom Image Viewer CP Pro 8.0/Gold 6.0 ActiveX Controlwindows/browser/indusoft_issymbol_internationalseparator 2012-04-28 normal InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Heap Overflowwindows/browser/inotes_dwa85w_bof 2012-06-01 normal IBM Lotus iNotes dwa85W ActiveX Buffer Overflowwindows/browser/intrust_annotatex_add 2012-03-28 average Quest InTrust Annotation Objects Uninitialized Pointerwindows/browser/java_basicservice_impl 2010-10-12 excellent Sun Java Web Start BasicServiceImpl Code Executionwindows/browser/java_codebase_trust 2011-02-15 excellent Sun Java Applet2ClassLoader Remote Code Executionwindows/browser/java_docbase_bof 2010-10-12 great Sun Java Runtime New Plugin docbase Buffer Overflowwindows/browser/java_mixer_sequencer 2010-03-30 great Java MixerSequencer Object GM_Song Structure Handling Vulnerabilitywindows/browser/java_ws_arginject_altjvm 2010-04-09 excellent Sun Java Web Start Plugin Command Line Argument Injectionwindows/browser/java_ws_vmargs 2012-02-14 excellent Sun Java Web Start Plugin Command Line Argument Injectionwindows/browser/juniper_sslvpn_ive_setupdll 2006-04-26 normal Juniper SSL-VPN IVE JuniperSetupDLL.dll ActiveX Control Buffer Overflowwindows/browser/kazaa_altnet_heap 2007-10-03 normal Kazaa Altnet Download Manager ActiveX Control Buffer Overflowwindows/browser/keyhelp_launchtripane_exec 2012-06-26 excellent KeyHelp ActiveX LaunchTriPane Remote Code Execution Vulnerabilitywindows/browser/logitechvideocall_start 2007-05-31 normal Logitech VideoCall ActiveX Control Buffer Overflowwindows/browser/lpviewer_url 2008-10-06 normal iseemedia / Roxio / MGI Software LPViewer ActiveX Control Buffer Overflowwindows/browser/macrovision_downloadandexecute 2007-10-31 normal Macrovision InstallShield Update Service Buffer Overflowwindows/browser/macrovision_unsafe 2007-10-20 excellent Macrovision InstallShield Update Service ActiveX Unsafe Methodwindows/browser/maxthon_history_xcs 2012-11-26 excellent Maxthon3 about:history XCS Trusted Zone Code Executionwindows/browser/mcafee_mcsubmgr_vsprintf 2006-08-01 normal McAfee Subscription Manager Stack Buffer Overflowwindows/browser/mcafee_mvt_exec 2012-04-30 excellent McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerabilitywindows/browser/mcafeevisualtrace_tracetarget 2007-07-07 normal McAfee Visual Trace ActiveX Control Buffer Overflowwindows/browser/mirc_irc_url 2003-10-13 normal mIRC IRC URL Buffer Overflowwindows/browser/mozilla_attribchildremoved 2011-12-06 average Firefox 8/9 AttributeChildRemoved() Use-After-Freewindows/browser/mozilla_interleaved_write 2010-10-25 normal Mozilla Firefox Interleaved document.write/appendChild Memory Corruptionwindows/browser/mozilla_mchannel 2011-05-10 normal Mozilla Firefox 3.6.16 mChannel Use-After-Free Vulnerabilitywindows/browser/mozilla_nssvgvalue 2011-12-06 average Firefox 7/8 (<= 8.0.1) nsSVGValue Out-of-Bounds Access Vulnerabilitywindows/browser/mozilla_nstreerange 2011-02-02 normal Mozilla Firefox "nsTreeRange" Dangling Pointer Vulnerabilitywindows/browser/mozilla_reduceright 2011-06-21 normal Mozilla Firefox Array.reduceRight() Integer Overflowwindows/browser/ms03_020_ie_objecttype 2003-06-04 normal MS03-020 Internet Explorer Object Typewindows/browser/ms05_054_onload 2005-11-21 normal MS05-054 Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Executionwindows/browser/ms06_001_wmf_setabortproc 2005-12-27 great Windows XP/2003/Vista Metafile Escape() SetAbortProc Code Executionwindows/browser/ms06_013_createtextrange 2006-03-19 normal Internet Explorer createTextRange() Code Executionwindows/browser/ms06_055_vml_method 2006-09-19 normal Internet Explorer VML Fill Method Code Executionwindows/browser/ms06_057_webview_setslice 2006-07-17 normal Internet Explorer WebViewFolderIcon setSlice() Overflowwindows/browser/ms06_067_keyframe 2006-11-14 normal Internet Explorer Daxctle.OCX KeyFrame Method Heap Buffer Overflow Vulnerabilitywindows/browser/ms06_071_xml_core 2006-10-10 normal Internet Explorer XML Core Services HTTP Request Handlingwindows/browser/ms07_017_ani_loadimage_chunksize 2007-03-28 great Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (HTTP)windows/browser/ms08_041_snapshotviewer 2008-07-07 excellent Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Downloadwindows/browser/ms08_053_mediaencoder 2008-09-09 normal Windows Media Encoder 9 wmex.dll ActiveX Buffer Overflowwindows/browser/ms08_070_visual_studio_msmask 2008-08-13 normal Microsoft Visual Studio Mdmask32.ocx ActiveX Buffer Overflowwindows/browser/ms08_078_xml_corruption 2008-12-07 normal Internet Explorer Data Binding Memory Corruptionwindows/browser/ms09_002_memory_corruption 2009-02-10 normal Internet Explorer 7 CFunctionPointer Uninitialized Memory Corruptionwindows/browser/ms09_043_owc_htmlurl 2009-08-11 normal Microsoft OWC Spreadsheet HTMLURL Buffer Overflowwindows/browser/ms09_043_owc_msdso 2009-07-13 normal Microsoft OWC Spreadsheet msDataSourceObject Memory Corruptionwindows/browser/ms09_072_style_object 2009-11-20 normal Internet Explorer Style getElementsByTagName Memory Corruptionwindows/browser/ms10_002_aurora 2010-01-14 normal Internet Explorer "Aurora" Memory Corruptionwindows/browser/ms10_002_ie_object 2010-01-21 normal MS10-002 Internet Explorer Object Memory Use-After-Freewindows/browser/ms10_018_ie_behaviors 2010-03-09 good Internet Explorer DHTML Behaviors Use After Freewindows/browser/ms10_018_ie_tabular_activex 2010-03-09 good Internet Explorer Tabular Data Control ActiveX Memory Corruptionwindows/browser/ms10_022_ie_vbscript_winhlp32 2010-02-26 great Internet Explorer Winhlp32.exe MsgBox Code Executionwindows/browser/ms10_026_avi_nsamplespersec 2010-04-13 normal MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflowwindows/browser/ms10_042_helpctr_xss_cmd_exec 2010-06-09 excellent Microsoft Help Center XSS and Command Executionwindows/browser/ms10_046_shortcut_icon_dllloader 2010-07-16 excellent Microsoft Windows Shell LNK Code Executionwindows/browser/ms10_090_ie_css_clip 2010-11-03 good Internet Explorer CSS SetUserClip Memory Corruptionwindows/browser/ms11_003_ie_css_import 2010-11-29 good Internet Explorer CSS Recursive Import Use After Freewindows/browser/ms11_050_mshtml_cobjectelement 2011-06-16 normal MS11-050 IE mshtml!CObjectElement Use After Freewindows/browser/ms11_081_option 2012-10-11 normal Microsoft Internet Explorer Option Element Use-After-Freewindows/browser/ms11_093_ole32 2011-12-13 normal MS11-093 Microsoft Windows OLE Object File Handling Remote Code Executionwindows/browser/ms12_004_midi 2012-01-10 normal MS12-004 midiOutPlayNextPolyEvent Heap Overflowwindows/browser/ms12_037_ie_colspan 2012-06-12 normal Microsoft Internet Explorer Fixed Table Col Span Heap Overflowwindows/browser/ms12_037_same_id 2012-06-12 normal MS12-037 Internet Explorer Same ID Property Deleted Object Handling Memory Corruptionwindows/browser/ms13_009_ie_slayoutrun_uaf 2013-02-13 normal MS13-009 Microsoft Internet Explorer SLayoutRun Use-After-Freewindows/browser/msvidctl_mpeg2 2009-07-05 normal Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruptionwindows/browser/mswhale_checkforupdates 2009-04-15 normal Microsoft Whale Intelligent Application Gateway ActiveX Control Buffer Overflowwindows/browser/msxml_get_definition_code_exec 2012-06-12 good MS12-043 Microsoft XML Core Services MSXML Uninitialized Memory Corruptionwindows/browser/nctaudiofile2_setformatlikesample 2007-01-24 normal NCTAudioFile2 v2.x ActiveX Control SetFormatLikeSample() Buffer Overflowwindows/browser/nis2004_antispam 2004-03-19 normal Norton AntiSpam 2004 SymSpamHelper ActiveX Control Buffer Overflowwindows/browser/nis2004_get 2007-05-16 normal Symantec Norton Internet Security 2004 ActiveX Control Buffer Overflowwindows/browser/notes_handler_cmdinject 2012-06-18 excellent IBM Lotus Notes Client URL Handler Command Injectionwindows/browser/novell_groupwise_gwcls1_actvx 2013-01-30 normal Novell GroupWise Client gwcls1.dll ActiveX Remote Code Executionwindows/browser/novelliprint_callbackurl 2010-08-20 normal Novell iPrint Client ActiveX Control call-back-url Buffer Overflowwindows/browser/novelliprint_datetime 2009-12-08 great Novell iPrint Client ActiveX Control Date/Time Buffer Overflowwindows/browser/novelliprint_executerequest 2008-02-22 normal Novell iPrint Client ActiveX Control ExecuteRequest Buffer Overflowwindows/browser/novelliprint_executerequest_dbg 2010-08-04 normal Novell iPrint Client ActiveX Control ExecuteRequest debug Buffer Overflowwindows/browser/novelliprint_getdriversettings 2008-06-16 normal Novell iPrint Client ActiveX Control Buffer Overflowwindows/browser/novelliprint_getdriversettings_2 2010-11-15 normal Novell iPrint Client ActiveX Control <= 5.52 Buffer Overflowwindows/browser/novelliprint_target_frame 2009-12-08 great Novell iPrint Client ActiveX Control target-frame Buffer Overflowwindows/browser/ntr_activex_check_bof 2012-01-11 normal NTR ActiveX Control Check() Method Buffer Overflowwindows/browser/ntr_activex_stopmodule 2012-01-11 normal NTR ActiveX Control StopModule() Remote Code Executionwindows/browser/oracle_autovue_setmarkupmode 2012-04-18 normal Oracle AutoVue ActiveX Control SetMarkupMode Buffer Overflowwindows/browser/oracle_dc_submittoexpress 2009-08-28 normal Oracle Document Capture 10g ActiveX Control Buffer Overflowwindows/browser/orbit_connecting 2009-02-03 normal Orbit Downloader Connecting Log Creation Buffer Overflowwindows/browser/ovftool_format_string 2012-11-08 normal VMWare OVF Tools Format String Vulnerabilitywindows/browser/pcvue_func 2011-10-05 average PcVue 10.0 SV.UIGrdCtrl.1 'LoadObject()/SaveObject()' Trusted DWORD Vulnerabilitywindows/browser/persits_xupload_traversal 2009-09-29 excellent Persits XUpload ActiveX MakeHttpRequest Directory Traversalwindows/browser/quickr_qp2_bof 2012-05-23 normal IBM Lotus QuickR qp2 ActiveX Buffer Overflowwindows/browser/real_arcade_installerdlg 2011-04-03 normal Real Networks Arcade Games StubbyUtil.ProcessMgr ActiveX Arbitrary Code Executionwindows/browser/realplayer_cdda_uri 2010-11-15 normal RealNetworks RealPlayer CDDA URI Initialization Vulnerabilitywindows/browser/realplayer_console 2008-03-08 normal RealPlayer rmoc3260.dll ActiveX Control Heap Corruptionwindows/browser/realplayer_import 2007-10-18 normal RealPlayer ierpplug.dll ActiveX Control Playlist Name Buffer Overflowwindows/browser/realplayer_qcp 2011-08-16 average RealNetworks Realplayer QCP Parsing Heap Overflowwindows/browser/realplayer_smil 2005-03-01 normal RealNetworks RealPlayer SMIL Buffer Overflowwindows/browser/roxio_cineplayer 2007-04-11 normal Roxio CinePlayer ActiveX Control Buffer Overflowwindows/browser/safari_xslt_output 2011-07-20 excellent Apple Safari Webkit libxslt Arbitrary File Creationwindows/browser/samsung_neti_wiewer_backuptoavi_bof 2012-04-21 normal Samsung NET-i Viewer Multiple ActiveX BackupToAvi() Remote Overflowwindows/browser/sapgui_saveviewtosessionfile 2009-03-31 normal SAP AG SAPgui EAI WebViewer3D Buffer Overflowwindows/browser/softartisans_getdrivename 2008-08-25 normal SoftArtisans XFile FileManager ActiveX Control Buffer Overflowwindows/browser/sonicwall_addrouteentry 2007-11-01 normal SonicWall SSL-VPN NetExtender ActiveX Control Buffer Overflowwindows/browser/symantec_altirisdeployment_downloadandinstall 2009-09-09 excellent Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Executewindows/browser/symantec_altirisdeployment_runcmd 2009-11-04 normal Symantec Altiris Deployment Solution ActiveX Control Buffer Overflowwindows/browser/symantec_appstream_unsafe 2009-01-15 excellent Symantec AppStream LaunchObj ActiveX Control Arbitrary File Download and Executewindows/browser/symantec_backupexec_pvcalendar 2008-02-28 normal Symantec BackupExec Calendar Control Buffer Overflowwindows/browser/symantec_consoleutilities_browseandsavefile 2009-11-02 normal Symantec ConsoleUtilities ActiveX Control Buffer Overflowwindows/browser/systemrequirementslab_unsafe 2008-10-16 excellent Husdawg, LLC. System Requirements Lab ActiveX Unsafe Methodwindows/browser/teechart_pro 2011-08-11 normal TeeChart Professional ActiveX Control <= 2010.0.0.3 Trusted Integer Dereferencewindows/browser/tom_sawyer_tsgetx71ex552 2011-05-03 normal Tom Sawyer Software GET Extension Factory Remote Code Executionwindows/browser/trendmicro_extsetowner 2010-08-25 normal Trend Micro Internet Security Pro 2010 ActiveX extSetOwner() Remote Code Executionwindows/browser/trendmicro_officescan 2007-02-12 normal Trend Micro OfficeScan Client ActiveX Control Buffer Overflowwindows/browser/tumbleweed_filetransfer 2008-04-07 great Tumbleweed FileTransfer vcst_eu.dll ActiveX Control Buffer Overflowwindows/browser/ubisoft_uplay_cmd_exec 2012-07-29 normal Ubisoft uplay 2.0.3 Active X Control Arbitrary Code Executionwindows/browser/ultramjcam_openfiledig_bof 2012-03-28 normal TRENDnet SecurView Internet Camera UltraMJCam OpenFileDlg Buffer Overflowwindows/browser/ultraoffice_httpupload 2008-08-27 good Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflowwindows/browser/verypdf_pdfview 2008-06-16 normal VeryPDF PDFView OCX ActiveX OpenPDF Heap Overflowwindows/browser/viscom_movieplayer_drawtext 2010-01-12 normal Viscom Software Movie Player Pro SDK ActiveX 6.8windows/browser/vlc_amv 2011-03-23 good VLC AMV Dangling Pointer Vulnerabilitywindows/browser/vlc_mms_bof 2012-03-15 normal VLC MMS Stream Handling Buffer Overflowwindows/browser/webdav_dll_hijacker 2010-08-18 manual WebDAV Application DLL Hijackerwindows/browser/webex_ucf_newobject 2008-08-06 good WebEx UCF atucfobj.dll ActiveX NewObject Method Buffer Overflowwindows/browser/winamp_playlist_unc 2006-01-29 great Winamp Playlist UNC Path Computer Name Overflowwindows/browser/winamp_ultravox 2008-01-18 normal Winamp Ultravox Streaming Metadata (in_mp3.dll) Buffer Overflowwindows/browser/windvd7_applicationtype 2007-03-20 normal WinDVD7 IASystemInfo.DLL ActiveX Control Buffer Overflowwindows/browser/winzip_fileview 2007-11-02 normal WinZip FileView (WZFILEVIEW.FileViewCtrl.61) ActiveX Buffer Overflowwindows/browser/wmi_admintools 2010-12-21 great Microsoft WMI Administration Tools ActiveX Buffer Overflowwindows/browser/xmplay_asx 2006-11-21 good XMPlay 3.3.0.4 (ASX Filename) Buffer Overflowwindows/browser/yahoomessenger_fvcom 2007-08-30 normal Yahoo! Messenger YVerInfo.dll ActiveX Control Buffer Overflowwindows/browser/yahoomessenger_server 2007-06-05 good Yahoo! Messenger 8.1.0.249 ActiveX Control Buffer Overflowwindows/browser/zenturiprogramchecker_unsafe 2007-05-29 excellent Zenturi ProgramChecker ActiveX Control Arbitrary File Downloadwindows/browser/zenworks_helplauncher_exec 2011-10-19 normal AdminStudio LaunchHelp.dll ActiveX Arbitrary Code Executionwindows/dcerpc/ms03_026_dcom 2003-07-16 great Microsoft RPC DCOM Interface Overflowwindows/dcerpc/ms05_017_msmq 2005-04-12 good Microsoft Message Queueing Service Path Overflowwindows/dcerpc/ms07_029_msdns_zonename 2007-04-12 great Microsoft DNS RPC Service extractQuotedChar() Overflow (TCP)windows/dcerpc/ms07_065_msmq 2007-12-11 good Microsoft Message Queueing Service DNS Name Path Overflowwindows/driver/broadcom_wifi_ssid 2006-11-11 low Broadcom Wireless Driver Probe Response SSID Overflowwindows/driver/dlink_wifi_rates 2006-11-13 low D-Link DWL-G132 Wireless Driver Beacon Rates Overflowwindows/driver/netgear_wg111_beacon 2006-11-16 low NetGear WG111v2 Wireless Driver Long Beacon Overflowwindows/email/ms07_017_ani_loadimage_chunksize 2007-03-28 great Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (SMTP)windows/email/ms10_045_outlook_ref_only 2010-06-01 excellent Outlook ATTACH_BY_REF_ONLY File Executionwindows/email/ms10_045_outlook_ref_resolve 2010-06-01 excellent Outlook ATTACH_BY_REF_RESOLVE File Executionwindows/emc/alphastor_agent 2008-05-27 great EMC AlphaStor Agent Buffer Overflowwindows/emc/networker_format_string 2012-08-29 normal EMC Networker Format Stringwindows/fileformat/a-pdf_wav_to_mp3 2010-08-17 normal A-PDF WAV to MP3 v1.0.0 Buffer Overflowwindows/fileformat/acdsee_fotoslate_string 2011-09-12 good ACDSee FotoSlate PLP File id Parameter Overflowwindows/fileformat/acdsee_xpm 2007-11-23 good ACDSee XPM File Section Buffer Overflowwindows/fileformat/actfax_import_users_bof 2012-08-28 normal ActiveFax (ActFax) 4.3 Client Importer Buffer Overflowwindows/fileformat/activepdf_webgrabber 2008-08-26 low activePDF WebGrabber ActiveX Control Buffer Overflowwindows/fileformat/adobe_collectemailinfo 2008-02-08 good Adobe Collab.collectEmailInfo() Buffer Overflowwindows/fileformat/adobe_cooltype_sing 2010-09-07 great Adobe CoolType SING Table "uniqueName" Stack Buffer Overflowwindows/fileformat/adobe_flashplayer_button 2010-10-28 normal Adobe Flash Player "Button" Remote Code Executionwindows/fileformat/adobe_flashplayer_newfunction 2010-06-04 normal Adobe Flash Player "newfunction" Invalid Pointer Usewindows/fileformat/adobe_flatedecode_predictor02 2009-10-08 good Adobe FlateDecode Stream Predictor 02 Integer Overflowwindows/fileformat/adobe_geticon 2009-03-24 good Adobe Collab.getIcon() Buffer Overflowwindows/fileformat/adobe_illustrator_v14_eps 2009-12-03 great Adobe Illustrator CS4 v14.0.0windows/fileformat/adobe_jbig2decode 2009-02-19 good Adobe JBIG2Decode Memory Corruptionwindows/fileformat/adobe_libtiff 2010-02-16 good Adobe Acrobat Bundled LibTIFF Integer Overflowwindows/fileformat/adobe_media_newplayer 2009-12-14 good Adobe Doc.media.newPlayer Use After Free Vulnerabilitywindows/fileformat/adobe_pdf_embedded_exe 2010-03-29 excellent Adobe PDF Embedded EXE Social Engineeringwindows/fileformat/adobe_pdf_embedded_exe_nojs 2010-03-29 excellent Adobe PDF Escape EXE Social Engineering (No JavaScript)windows/fileformat/adobe_reader_u3d 2011-12-06 average Adobe Reader U3D Memory Corruption Vulnerabilitywindows/fileformat/adobe_u3d_meshdecl 2009-10-13 good Adobe U3D CLODProgressiveMeshDeclaration Array Overrunwindows/fileformat/adobe_utilprintf 2008-02-08 good Adobe util.printf() Buffer Overflowwindows/fileformat/altap_salamander_pdb 2007-06-19 good Altap Salamander 2.5 PE Viewer Buffer Overflowwindows/fileformat/aol_desktop_linktag 2011-01-31 normal AOL Desktop 9.6 RTX Buffer Overflowwindows/fileformat/aol_phobos_bof 2010-01-20 average AOL 9.5 Phobos.Playlist Import() Stack-based Buffer Overflowwindows/fileformat/apple_quicktime_pnsize 2011-08-08 good Apple QuickTime PICT PnSize Buffer Overflowwindows/fileformat/apple_quicktime_texml 2012-05-15 normal Apple QuickTime TeXML Style Element Stack Buffer Overflowwindows/fileformat/audio_wkstn_pls 2009-12-08 good Audio Workstation 6.4.2.4.3 pls Buffer Overflowwindows/fileformat/audiotran_pls 2010-01-09 good Audiotran 1.4.1 (PLS File) Stack Buffer Overflowwindows/fileformat/aviosoft_plf_buf 2011-11-09 good Aviosoft Digital TV Player Professional 1.0 Stack Buffer Overflowwindows/fileformat/bacnet_csv 2010-09-16 good BACnet OPC Client Buffer Overflowwindows/fileformat/blazedvd_hdtv_bof 2012-04-03 normal BlazeVideo HDTV Player Pro v6.6 Filename Handling Vulnerabilitywindows/fileformat/blazedvd_plf 2009-08-03 good BlazeDVD 5.1 PLF Buffer Overflowwindows/fileformat/bsplayer_m3u 2010-01-07 normal BS.Player 2.57 Buffer Overflow (Unicode SEH)windows/fileformat/ca_cab 2007-06-05 good CA Antivirus Engine CAB Buffer Overflowwindows/fileformat/cain_abel_4918_rdp 2008-11-30 good Cain & Abel <= v4.9.24 RDP Buffer Overflowwindows/fileformat/ccmplayer_m3u_bof 2011-11-30 good CCMPlayer 1.5 m3u Playlist Stack Based Buffer Overflowwindows/fileformat/csound_getnum_bof 2012-02-23 normal Csound hetro File Handling Stack Buffer Overflowwindows/fileformat/cutezip_bof 2011-02-12 normal GlobalSCAPE CuteZIP Stack Buffer Overflowwindows/fileformat/cyberlink_p2g_bof 2011-09-12 great CyberLink Power2Go name attribute (p2g) Stack Buffer Overflow Exploitwindows/fileformat/cytel_studio_cy3 2011-10-02 good Cytel Studio 9.0 (CY3 File) Stack Buffer Overflowwindows/fileformat/deepburner_path 2006-12-19 great AstonSoft DeepBurner (DBR File) Path Buffer Overflowwindows/fileformat/destinymediaplayer16 2009-01-03 good Destiny Media Player 1.61 PLS M3U Buffer Overflowwindows/fileformat/digital_music_pad_pls 2010-09-17 normal Digital Music Pad Version 8.2.3.3.4 Stack Buffer Overflowwindows/fileformat/djstudio_pls_bof 2009-12-30 normal DJ Studio Pro 5.1 .pls Stack Buffer Overflowwindows/fileformat/djvu_imageurl 2008-10-30 low DjVu DjVu_ActiveX_MSOffice.dll ActiveX ComponentBuffer Overflowwindows/fileformat/dvdx_plf_bof 2007-06-02 normal DVD X Player 5.5 .plf PlayList Buffer Overflowwindows/fileformat/emc_appextender_keyworks 2009-09-29 average EMC ApplicationXtender (KeyWorks) ActiveX Control Buffer Overflowwindows/fileformat/esignal_styletemplate_bof 2011-09-06 normal eSignal and eSignal Pro <= 10.6.2425.1208 file parsing buffer overflow in QUOwindows/fileformat/etrust_pestscan 2009-11-02 average CA eTrust PestPatrol ActiveX Control Buffer Overflowwindows/fileformat/ezip_wizard_bof 2009-03-09 good eZip Wizard 3.0 Stack Buffer Overflowwindows/fileformat/fatplayer_wav 2010-10-18 normal Fat Player Media Player 0.6b0 Buffer Overflowwindows/fileformat/fdm_torrent 2009-02-02 good Free Download Manager Torrent Parsing Buffer Overflowwindows/fileformat/feeddemon_opml 2009-02-09 great FeedDemon <= 3.1.0.12 Stack Buffer Overflowwindows/fileformat/foxit_reader_filewrite 2011-03-05 normal Foxit PDF Reader 4.2 Javascript File Writewindows/fileformat/foxit_reader_launch 2009-03-09 good Foxit Reader 3.0 Open Execute Action Stack Based Buffer Overflowwindows/fileformat/foxit_title_bof 2010-11-13 great Foxit PDF Reader v4.1.1 Title Stack Buffer Overflowwindows/fileformat/free_mp3_ripper_wav 2011-08-27 great Free MP3 CD Ripper 1.1 WAV File Stack Buffer Overflowwindows/fileformat/galan_fileformat_bof 2009-12-07 normal gAlan 0.2.1 Buffer Overflowwindows/fileformat/gsm_sim 2010-07-07 normal GSM SIM Editor 5.15 Buffer Overflowwindows/fileformat/gta_samp 2011-09-18 normal GTA SA-MP server.cfg Buffer Overflowwindows/fileformat/hhw_hhp_compiledfile_bof 2006-02-06 good HTML Help Workshop 4.74 (hhp Project File) Buffer Overflowwindows/fileformat/hhw_hhp_contentfile_bof 2006-02-06 good HTML Help Workshop 4.74 (hhp Project File) Buffer Overflowwindows/fileformat/hhw_hhp_indexfile_bof 2009-01-17 good HTML Help Workshop 4.74 (hhp Project File) Buffer Overflowwindows/fileformat/ht_mp3player_ht3_bof 2009-06-29 good HT-MP3Player 1.0 HT3 File Parsing Buffer Overflowwindows/fileformat/ibm_pcm_ws 2012-02-28 great IBM Personal Communications iSeries Access WorkStation 5.9 Profilewindows/fileformat/ideal_migration_ipj 2009-12-05 great PointDev IDEAL Migration Buffer Overflowwindows/fileformat/irfanview_jpeg2000_bof 2012-01-16 normal Irfanview JPEG2000 <= v4.3.2.0 jp2 Stack Buffer Overflowwindows/fileformat/ispvm_xcf_ispxcf 2012-05-16 normal Lattice Semiconductor ispVM System XCF File Handling Overflowwindows/fileformat/lattice_pac_bof 2012-05-16 normal Lattice Semiconductor PAC-Designer 6.21 Symbol Value Buffer Overflowwindows/fileformat/lotusnotes_lzh 2011-05-24 good Lotus Notes 8.0.x - 8.5.2 FP2 - Autonomy Keyview (.lzh Attachment)windows/fileformat/magix_musikmaker_16_mmm 2011-04-26 good Magix Musik Maker 16 .mmm Stack Buffer Overflowwindows/fileformat/mcafee_hercules_deletesnapshot 2008-08-04 low McAfee Remediation Client ActiveX Control Buffer Overflowwindows/fileformat/mcafee_showreport_exec 2012-01-12 normal McAfee SaaS MyCioScan ShowReport Remote Command Executionwindows/fileformat/mediajukebox 2009-07-01 normal Media Jukebox 8.0.400 Buffer Overflow (SEH)windows/fileformat/microp_mppl 2010-08-23 great MicroP 0.1.1.1600 (MPPL File) Stack Buffer Overflowwindows/fileformat/millenium_mp3_pls 2009-07-30 great Millenium MP3 Studio 2.0 (PLS File) Stack Buffer Overflowwindows/fileformat/mini_stream_pls_bof 2010-07-16 great Mini-Stream RM-MP3 Converter v3.1.2.1 PLS File Stack Buffer Overflowwindows/fileformat/mjm_coreplayer2011_s3m 2011-04-30 good MJM Core Player 2011 .s3m Stack Buffer Overflowwindows/fileformat/mjm_quickplayer_s3m 2011-04-30 good MJM QuickPlayer 1.00 beta 60a / QuickPlayer 2010 .s3m Stack Buffer Overflowwindows/fileformat/moxa_mediadbplayback 2010-10-19 average MOXA MediaDBPlayback ActiveX Control Buffer Overflowwindows/fileformat/mplayer_sami_bof 2011-05-19 normal MPlayer SAMI Subtitle File Buffer Overflowwindows/fileformat/ms09_067_excel_featheader 2009-11-10 good Microsoft Excel Malformed FEATHEADER Record Vulnerabilitywindows/fileformat/ms10_004_textbytesatom 2010-02-09 good Microsoft PowerPoint Viewer TextBytesAtom Stack Buffer Overflowwindows/fileformat/ms10_038_excel_obj_bof 2010-06-08 normal MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflowwindows/fileformat/ms10_087_rtf_pfragments_bof 2010-11-09 great Microsoft Word RTF pFragments Stack Buffer Overflow (File Format)windows/fileformat/ms11_006_createsizeddibsection 2010-12-15 great Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflowwindows/fileformat/ms11_021_xlb_bof 2011-08-09 normal MS11-021 Microsoft Office 2007 Excel .xlb Buffer Overflowwindows/fileformat/ms12_005 2012-01-10 excellent MS12-005 Microsoft Office ClickOnce Unsafe Object Package Handling Vulnerabilitywindows/fileformat/ms12_027_mscomctl_bof 2012-04-10 average MS12-027 MSCOMCTL ActiveX Buffer Overflowwindows/fileformat/ms_visual_basic_vbp 2007-09-04 good Microsoft Visual Basic VBP Buffer Overflowwindows/fileformat/msworks_wkspictureinterface 2008-11-28 low Microsoft Works 7 WkImgSrv.dll WKsPictureInterface() ActiveX Code Executionwindows/fileformat/mymp3player_m3u 2010-03-18 good Steinberg MyMP3Player 3.0 Buffer Overflowwindows/fileformat/netop 2011-04-28 normal NetOp Remote Control Client 9.5 Buffer Overflowwindows/fileformat/nuance_pdf_launch_overflow 2010-10-08 great Nuance PDF Reader v6.0 Launch Stack Buffer Overflowwindows/fileformat/openoffice_ole 2008-04-17 normal OpenOffice OLE Importer DocumentSummaryInformation Stream Handling Overflowwindows/fileformat/orbit_download_failed_bof 2008-04-03 normal Orbit Downloader URL Unicode Conversion Overflowwindows/fileformat/orbital_viewer_orb 2010-02-27 great Orbital Viewer ORB File Parsing Buffer Overflowwindows/fileformat/ovf_format_string 2012-11-08 normal VMWare OVF Tools Format String Vulnerabilitywindows/fileformat/proshow_cellimage_bof 2009-08-20 great ProShow Gold v4.0.2549 (PSH File) Stack Buffer Overflowwindows/fileformat/proshow_load_bof 2012-06-06 normal Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflowwindows/fileformat/real_networks_netzip_bof 2011-01-30 good Real Networks Netzip Classic 7.5.1 86 File Parsing Buffer Overflow Vulnerabilitywindows/fileformat/real_player_url_property_bof 2012-12-14 normal RealPlayer RealMedia File Handling Buffer Overflowwindows/fileformat/safenet_softremote_groupname 2009-10-30 good SafeNet SoftRemote GROUPNAME Buffer Overflowwindows/fileformat/sascam_get 2008-12-29 low SasCam Webcam Server v.2.6.5 Get() method Buffer Overflowwindows/fileformat/scadaphone_zip 2011-09-12 good ScadaTEC ScadaPhone <= v5.3.11.1230 Stack Buffer Overflowwindows/fileformat/shadow_stream_recorder_bof 2010-03-29 normal Shadow Stream Recorder 3.0.1.7 Buffer Overflowwindows/fileformat/somplplayer_m3u 2010-01-22 great S.O.M.P.L 1.0 Player Buffer Overflowwindows/fileformat/subtitle_processor_m3u_bof 2011-04-26 normal Subtitle Processor 7.7.1 .M3U SEH Unicode Buffer Overflowwindows/fileformat/tfm_mmplayer_m3u_ppl_bof 2012-03-23 good TFM MMPlayer (m3u/ppl File) Buffer Overflowwindows/fileformat/tugzip 2008-10-28 good TugZip 3.5 Zip File Parsing Buffer Overflow Vulnerabilitywindows/fileformat/ultraiso_ccd 2009-04-03 great UltraISO CCD File Parsing Buffer Overflowwindows/fileformat/ultraiso_cue 2007-05-24 great UltraISO CUE File Parsing Buffer Overflowwindows/fileformat/ursoft_w32dasm 2005-01-24 good URSoft W32Dasm Disassembler Function Buffer Overflowwindows/fileformat/varicad_dwb 2010-03-17 great VariCAD 2010-2.05 EN (DWB File) Stack Buffer Overflowwindows/fileformat/videolan_tivo 2008-10-22 good VideoLAN VLC TiVo Buffer Overflowwindows/fileformat/videospirit_visprj 2011-04-11 good VeryTools Video Spirit Pro <= 1.70windows/fileformat/visio_dxf_bof 2010-05-04 good Microsoft Office Visio VISIODWG.DLL DXF File Handling Vulnerabilitywindows/fileformat/visiwave_vwr_type 2011-05-20 great VisiWave VWR File Parsing Vulnerabilitywindows/fileformat/vlc_modplug_s3m 2011-04-07 average VideoLAN VLC ModPlug ReadS3M Stack Buffer Overflowwindows/fileformat/vlc_realtext 2008-11-05 good VLC Media Player RealText Subtitle Overflowwindows/fileformat/vlc_smb_uri 2009-06-24 great VideoLAN Client (VLC) Win32 smb:// URI Buffer Overflowwindows/fileformat/vlc_webm 2011-01-31 good VideoLAN VLC MKV Memory Corruptionwindows/fileformat/vuplayer_cue 2009-08-18 good VUPlayer CUE Buffer Overflowwindows/fileformat/vuplayer_m3u 2009-08-18 good VUPlayer M3U Buffer Overflowwindows/fileformat/winamp_maki_bof 2009-05-20 normal Winamp MAKI Buffer Overflowwindows/fileformat/wireshark_packet_dect 2011-04-18 good Wireshark <= 1.4.4 packet-dect.c Stack Buffer Overflow (local)windows/fileformat/wm_downloader_m3u 2010-07-28 normal WM Downloader 3.1.2.2 Buffer Overflowwindows/fileformat/xenorate_xpl_bof 2009-08-19 great Xenorate 2.50 (.xpl) universal Local Buffer Overflow (SEH)windows/fileformat/xion_m3u_sehbof 2010-11-23 great Xion Audio Player 1.0.126 Unicode Stack Buffer Overflowwindows/fileformat/xradio_xrl_sehbof 2011-02-08 normal xRadio 0.95b Buffer Overflowwindows/fileformat/zinfaudioplayer221_pls 2004-09-24 good Zinf Audio Player 2.2.1 (PLS File) Stack Buffer Overflowwindows/firewall/blackice_pam_icq 2004-03-18 great ISS PAM.dll ICQ Parser Buffer Overflowwindows/firewall/kerio_auth 2003-04-28 average Kerio Firewall 2.1.4 Authentication Packet Overflowwindows/ftp/32bitftp_list_reply 2010-10-12 good 32bit FTP Client Stack Buffer Overflow windows/ftp/3cdaemon_ftp_user 2005-01-04 average 3Com 3CDaemon 2.0 FTP Username Overflowwindows/ftp/aasync_list_reply 2010-10-12 good AASync v2.2.1.0 (Win32) Stack Buffer Overflow (LIST)windows/ftp/ability_server_stor 2004-10-22 normal Ability Server 2.34 STOR Command Stack Buffer Overflowwindows/ftp/absolute_ftp_list_bof 2011-11-09 normal AbsoluteFTP 1.9.6 - 2.2.10 LIST Command Remote Buffer Overflowwindows/ftp/cesarftp_mkd 2006-06-12 average Cesar FTP 0.99g MKD Command Buffer Overflowwindows/ftp/comsnd_ftpd_fmtstr 2012-06-08 good ComSndFTP v1.3.7 Beta USER Format String (Write4) Vulnerabilitywindows/ftp/dreamftp_format 2004-03-03 good BolinTech Dream FTP Server 1.02 Format Stringwindows/ftp/easyfilesharing_pass 2006-07-31 average Easy File Sharing FTP Server 2.0 PASS Overflowwindows/ftp/easyftp_cwd_fixret 2010-02-16 great EasyFTP Server <= 1.7.0.11 CWD Command Stack Buffer Overflowwindows/ftp/easyftp_list_fixret 2010-07-05 great EasyFTP Server <= 1.7.0.11 LIST Command Stack Buffer Overflowwindows/ftp/easyftp_mkd_fixret 2010-04-04 great EasyFTP Server <= 1.7.0.11 MKD Command Stack Buffer Overflowwindows/ftp/filecopa_list_overflow 2006-07-19 average FileCopa FTP Server pre 18 Jul Versionwindows/ftp/filewrangler_list_reply 2010-10-12 good FileWrangler 5.30 Stack Buffer Overflowwindows/ftp/freefloatftp_wbem 2012-12-07 excellent FreeFloat FTP Server Arbitrary File Uploadwindows/ftp/freeftpd_user 2005-11-16 average freeFTPd 1.0 Username Overflowwindows/ftp/ftpgetter_pwd_reply 2010-10-12 good FTPGetter Standard v3.55.0.05 Stack Buffer Overflow (PWD)windows/ftp/ftppad_list_reply 2010-10-12 good FTPPad 1.2.0 Stack Buffer Overflowwindows/ftp/ftpshell51_pwd_reply 2010-10-12 good FTPShell 5.1 Stack Buffer Overflowwindows/ftp/ftpsynch_list_reply 2010-10-12 good FTP Synchronizer Professional 4.0.73.274 Stack Buffer Overflowwindows/ftp/gekkomgr_list_reply 2010-10-12 good Gekko Manager FTP Client Stack Buffer Overflowwindows/ftp/globalscapeftp_input 2005-05-01 great GlobalSCAPE Secure FTP Server Input Overflowwindows/ftp/goldenftp_pass_bof 2011-01-23 average GoldenFTP PASS Stack Buffer Overflowwindows/ftp/httpdx_tolog_format 2009-11-17 great HTTPDX tolog() Function Format String Vulnerabilitywindows/ftp/leapftp_list_reply 2010-10-12 good LeapFTP 3.0.1 Stack Buffer Overflowwindows/ftp/leapftp_pasv_reply 2003-06-09 normal LeapWare LeapFTP v2.7.3.600 PASV Reply Client Overflowwindows/ftp/ms09_053_ftpd_nlst 2009-08-31 great Microsoft IIS FTP Server NLST Response Overflowwindows/ftp/netterm_netftpd_user 2005-04-26 great NetTerm NetFTPD USER Buffer Overflowwindows/ftp/odin_list_reply 2010-10-12 good Odin Secure FTP 4.1 Stack Buffer Overflow (LIST)windows/ftp/oracle9i_xdb_ftp_pass 2003-08-18 great Oracle 9i XDB FTP PASS Overflow (win32)windows/ftp/oracle9i_xdb_ftp_unlock 2003-08-18 great Oracle 9i XDB FTP UNLOCK Overflow (win32)windows/ftp/proftp_banner 2009-08-25 normal ProFTP 2.9 Banner Remote Buffer Overflowwindows/ftp/quickshare_traversal_write 2011-02-03 excellent QuickShare File Server 1.2.1 Directory Traversal Vulnerabilitywindows/ftp/ricoh_dl_bof 2012-03-01 normal Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflowwindows/ftp/sami_ftpd_user 2006-01-24 normal KarjaSoft Sami FTP Server v2.02 USER Overflowwindows/ftp/sasser_ftpd_port 2004-05-10 average Sasser Worm avserve FTP PORT Buffer Overflowwindows/ftp/scriptftp_list 2011-10-12 good ScriptFTP <= 3.3 Remote Buffer Overflow (LIST)windows/ftp/seagull_list_reply 2010-10-12 good Seagull FTP v3.3 build 409 Stack Buffer Overflowwindows/ftp/servu_chmod 2004-12-31 normal Serv-U FTP Server < 4.2 Buffer Overflowwindows/ftp/servu_mdtm 2004-02-26 good Serv-U FTPD MDTM Overflowwindows/ftp/slimftpd_list_concat 2005-07-21 great SlimFTPd LIST Concatenation Overflowwindows/ftp/trellian_client_pasv 2010-04-11 normal Trellian FTP Client 3.01 PASV Remote Buffer Overflowwindows/ftp/turboftp_port 2012-10-03 great Turbo FTP Server 1.30.823 PORT Overflowwindows/ftp/vermillion_ftpd_port 2009-09-23 great Vermillion FTP Daemon PORT Command Memory Corruptionwindows/ftp/warftpd_165_pass 1998-03-19 average War-FTPD 1.65 Password Overflowwindows/ftp/warftpd_165_user 1998-03-19 average War-FTPD 1.65 Username Overflowwindows/ftp/wftpd_size 2006-08-23 average Texas Imperial Software WFTPD 3.23 SIZE Overflowwindows/ftp/wsftp_server_503_mkd 2004-11-29 great WS-FTP Server 5.03 MKD Overflowwindows/ftp/wsftp_server_505_xmd5 2006-09-14 average Ipswitch WS_FTP Server 5.05 XMD5 Overflowwindows/ftp/xftp_client_pwd 2010-04-22 normal Xftp FTP Client 3.0 PWD Remote Buffer Overflowwindows/ftp/xlink_client 2009-10-03 normal Xlink FTP Client Buffer Overflowwindows/ftp/xlink_server 2009-10-03 good Xlink FTP Server Buffer Overflowwindows/games/mohaa_getinfo 2004-07-17 great Medal Of Honor Allied Assault getinfo Stack Buffer Overflowwindows/games/racer_503beta5 2008-08-10 great Racer v0.5.3 beta 5 Buffer Overflowwindows/games/ut2004_secure 2004-06-18 good Unreal Tournament 2004 "secure" Overflow (Win32)windows/http/adobe_robohelper_authbypass 2009-09-23 excellent Adobe RoboHelp Server 8 Arbitrary File Upload and Executewindows/http/altn_securitygateway 2008-06-02 average Alt-N SecurityGateway username Buffer Overflowwindows/http/altn_webadmin 2003-06-24 average Alt-N WebAdmin USER Buffer Overflowwindows/http/amlibweb_webquerydll_app 2010-08-03 normal Amlibweb NetOpacs webquery.dll Stack Buffer Overflowwindows/http/apache_chunked 2002-06-19 good Apache Win32 Chunked Encodingwindows/http/apache_mod_rewrite_ldap 2006-07-28 great Apache module mod_rewrite LDAP protocol Buffer Overflowwindows/http/apache_modjk_overflow 2007-03-02 great Apache mod_jk 1.2.20 Buffer Overflowwindows/http/avaya_ccr_imageupload_exec 2012-06-28 excellent Avaya IP Office Customer Call Reporter ImageUpload.ashx Remote Command Executionwindows/http/badblue_ext_overflow 2003-04-20 great BadBlue 2.5 EXT.dll Buffer Overflowwindows/http/badblue_passthru 2007-12-10 great BadBlue 2.72b PassThru Buffer Overflowwindows/http/bea_weblogic_jsessionid 2009-01-13 good BEA WebLogic JSESSIONID Cookie Value Overflowwindows/http/bea_weblogic_post_bof 2008-07-17 great Oracle Weblogic Apache Connector POST Request Buffer Overflowwindows/http/bea_weblogic_transfer_encoding 2008-09-09 great BEA Weblogic Transfer-Encoding Buffer Overflowwindows/http/belkin_bulldog 2009-03-08 average Belkin Bulldog Plus Web Service Buffer Overflowwindows/http/ca_arcserve_rpc_authbypass 2011-07-25 excellent CA Arcserve D2D GWT RPC Credential Information Disclosurewindows/http/ca_igateway_debug 2005-10-06 average CA iTechnology iGateway Debug Mode Buffer Overflowwindows/http/ca_totaldefense_regeneratereports 2011-04-13 excellent CA Total Defense Suite reGenerateReports Stored Procedure SQL Injectionwindows/http/coldfusion_fckeditor 2009-07-03 excellent ColdFusion 8.0.1 Arbitrary File Upload and Executewindows/http/cyclope_ess_sqli 2012-08-08 excellent Cyclope Employee Surveillance Solution v6 SQL Injectionwindows/http/easyftp_list 2010-02-18 great EasyFTP Server <= 1.7.0.11 list.html path Stack Buffer Overflowwindows/http/edirectory_host 2006-10-21 great Novell eDirectory NDS Server Host Header Overflowwindows/http/edirectory_imonitor 2005-08-11 great eDirectory 8.7.3 iMonitor Remote Stack Buffer Overflowwindows/http/efs_easychatserver_username 2007-08-14 great EFS Easy Chat Server Authentication Request Handling Buffer Overflowwindows/http/ektron_xslt_exec 2012-10-16 excellent Ektron 8.02 XSLT Transform Remote Code Executionwindows/http/ezserver_http 2012-06-18 excellent EZHomeTech EzServer <= 6.4.017 Stack Buffer Overflow Vulnerabilitywindows/http/fdm_auth_header 2009-02-02 great Free Download Manager Remote Control Server Buffer Overflowwindows/http/hp_nnm_getnnmdata_hostname 2010-05-11 great HP OpenView Network Node Manager getnnmdata.exe (Hostname) CGI Buffer Overflowwindows/http/hp_nnm_getnnmdata_icount 2010-05-11 great HP OpenView Network Node Manager getnnmdata.exe (ICount) CGI Buffer Overflowwindows/http/hp_nnm_getnnmdata_maxage 2010-05-11 great HP OpenView Network Node Manager getnnmdata.exe (MaxAge) CGI Buffer Overflowwindows/http/hp_nnm_nnmrptconfig_nameparams 2011-01-10 normal HP OpenView NNM nnmRptConfig nameParams Buffer Overflowwindows/http/hp_nnm_nnmrptconfig_schdparams 2011-01-10 normal HP OpenView NNM nnmRptConfig.exe schdParams Buffer Overflowwindows/http/hp_nnm_openview5 2007-12-06 great HP OpenView Network Node Manager OpenView5.exe CGI Buffer Overflowwindows/http/hp_nnm_ovalarm_lang 2009-12-09 great HP OpenView Network Node Manager ovalarm.exe CGI Buffer Overflowwindows/http/hp_nnm_ovas 2008-04-02 good HP OpenView NNM 7.53, 7.51 OVAS.EXE Pre-Authentication Stack Buffer Overflowwindows/http/hp_nnm_ovbuildpath_textfile 2011-11-01 normal HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflowwindows/http/hp_nnm_ovwebhelp 2009-12-09 great HP OpenView Network Node Manager OvWebHelp.exe CGI Buffer Overflowwindows/http/hp_nnm_ovwebsnmpsrv_main 2010-06-16 great HP OpenView Network Node Manager ovwebsnmpsrv.exe main Buffer Overflowwindows/http/hp_nnm_ovwebsnmpsrv_ovutil 2010-06-16 great HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflowwindows/http/hp_nnm_ovwebsnmpsrv_uro 2010-06-08 great HP OpenView Network Node Manager ovwebsnmpsrv.exe Unrecognized Option Buffer Overflowwindows/http/hp_nnm_snmp 2009-12-09 great HP OpenView Network Node Manager Snmp.exe CGI Buffer Overflowwindows/http/hp_nnm_snmpviewer_actapp 2010-05-11 great HP OpenView Network Node Manager snmpviewer.exe Buffer Overflowwindows/http/hp_nnm_toolbar_01 2009-01-07 great HP OpenView Network Node Manager Toolbar.exe CGI Buffer Overflowwindows/http/hp_nnm_toolbar_02 2009-01-21 normal HP OpenView Network Node Manager Toolbar.exe CGI Cookie Handling Buffer Overflowwindows/http/hp_nnm_webappmon_execvp 2010-07-20 great HP OpenView Network Node Manager execvp_nc Buffer Overflowwindows/http/hp_nnm_webappmon_ovjavalocale 2010-08-03 great HP NNM CGI webappmon.exe OvJavaLocale Buffer Overflowwindows/http/hp_openview_insight_backdoor 2011-01-31 excellent HP OpenView Performance Insight Server Backdoor Account Code Executionwindows/http/hp_power_manager_filename 2011-10-19 normal HP Power Manager 'formExportDataLogs' Buffer Overflowwindows/http/hp_power_manager_login 2009-11-04 average Hewlett-Packard Power Manager Administration Buffer Overflowwindows/http/httpdx_handlepeer 2009-10-08 great HTTPDX h_handlepeer() Function Buffer Overflowwindows/http/httpdx_tolog_format 2009-11-17 great HTTPDX tolog() Function Format String Vulnerabilitywindows/http/ia_webmail 2003-11-03 average IA WebMail 3.x Buffer Overflowwindows/http/ibm_tivoli_endpoint_bof 2011-05-31 good IBM Tivoli Endpoint Manager POST Query Buffer Overflowwindows/http/ibm_tpmfosd_overflow 2007-05-02 good IBM TPM for OS Deployment 5.1.0.x rembo.exe Buffer Overflowwindows/http/ibm_tsm_cad_header 2007-09-24 good IBM Tivoli Storage Manager Express CAD Service Buffer Overflowwindows/http/icecast_header 2004-09-28 great Icecast (<= 2.0.1) Header Overwrite (win32)windows/http/integard_password_bof 2010-09-07 great Race River Integard Home/Pro LoginAdmin Password Stack Buffer Overflowwindows/http/intersystems_cache 2009-09-29 great InterSystems Cache UtilConfigHome.csp Argument Buffer Overflowwindows/http/ipswitch_wug_maincfgret 2004-08-25 great Ipswitch WhatsUp Gold 8.03 Buffer Overflowwindows/http/kolibri_http 2010-12-26 good Kolibri <= v2.0 HTTP Server HEAD Buffer Overflowwindows/http/landesk_thinkmanagement_upload_asp 2012-02-15 excellent LANDesk Lenovo ThinkManagement Console Remote Command Executionwindows/http/mailenable_auth_header 2005-04-24 great MailEnable Authorization Header Buffer Overflowwindows/http/manageengine_apps_mngr 2011-04-08 average ManageEngine Applications Manager Authenticated Code Executionwindows/http/maxdb_webdbm_database 2006-08-29 good MaxDB WebDBM Database Parameter Overflowwindows/http/maxdb_webdbm_get_overflow 2005-04-26 good MaxDB WebDBM GET Buffer Overflowwindows/http/mcafee_epolicy_source 2006-07-17 average McAfee ePolicy Orchestrator / ProtectionPilot Overflowwindows/http/mdaemon_worldclient_form2raw 2003-12-29 great MDaemon <= 6.8.5 WorldClient form2raw.cgi Stack Buffer Overflowwindows/http/minishare_get_overflow 2004-11-07 average Minishare 1.4.1 Buffer Overflowwindows/http/navicopa_get_overflow 2006-09-28 great NaviCOPA 2.0.1 URL Handling Buffer Overflowwindows/http/netdecision_http_bof 2012-02-24 normal NetDecision 4.5.1 HTTP Server Buffer Overflowwindows/http/novell_imanager_upload 2010-10-01 excellent Novell iManager getMultiPartParameters Arbitrary File Uploadwindows/http/novell_messenger_acceptlang 2006-04-13 average Novell Messenger Server 2.0 Accept-Language Overflowwindows/http/nowsms 2008-02-19 good Now SMS/MMS Gateway Buffer Overflowwindows/http/oracle9i_xdb_pass 2003-08-18 great Oracle 9i XDB HTTP PASS Overflow (win32)windows/http/oracle_btm_writetofile 2012-08-07 excellent Oracle Business Transaction Management FlashTunnelService Remote Code Executionwindows/http/osb_uname_jlist 2010-07-13 excellent Oracle Secure Backup Authentication Bypass/Command Injection Vulnerabilitywindows/http/peercast_url 2006-03-08 average PeerCast <= 0.1216 URL Handling Buffer Overflow (win32)windows/http/php_apache_request_headers_bof 2012-05-08 normal PHP apache_request_headers Function Buffer Overflowwindows/http/privatewire_gateway 2006-06-26 average Private Wire Gateway Buffer Overflowwindows/http/psoproxy91_overflow 2004-02-20 average PSO Proxy v0.91 Stack Buffer Overflowwindows/http/rabidhamster_r4_log 2012-02-09 normal RabidHamster R4 Log Entry sprintf() Buffer Overflowwindows/http/sambar6_search_results 2003-06-21 normal Sambar 6 Search Results Buffer Overflowwindows/http/sap_host_control_cmd_exec 2012-08-14 average SAP NetWeaver HostControl Command Injectionwindows/http/sap_mgmt_con_osexec_payload 2011-03-08 excellent SAP Management Console OSExecute Payload Executionwindows/http/sapdb_webtools 2007-07-05 great SAP DB 7.4 WebTools Buffer Overflowwindows/http/savant_31_overflow 2002-09-10 great Savant 3.1 Web Server Overflowwindows/http/servu_session_cookie 2009-11-01 good Rhinosoft Serv-U Session Cookie Buffer Overflowwindows/http/shoutcast_format 2004-12-23 average SHOUTcast DNAS/win32 1.9.4 File Request Format String Overflowwindows/http/shttpd_post 2006-10-06 average SHTTPD <= 1.34 URI-Encoded POST Request Overflow (win32)windows/http/solarwinds_storage_manager_sql 2011-12-07 excellent Solarwinds Storage Manager 5.1.0 SQL Injectionwindows/http/sonicwall_scrutinizer_sqli 2012-07-22 excellent Dell SonicWALL (Plixer) Scrutinizer 9 SQL Injectionwindows/http/steamcast_useragent 2008-01-24 average Streamcast <= 0.9.75 HTTP User-Agent Buffer Overflowwindows/http/sws_connection_bof 2012-07-20 normal Simple Web Server Connection Header Buffer Overflowwindows/http/sybase_easerver 2005-07-25 average Sybase EAServer 5.2 Remote Stack Buffer Overflowwindows/http/sysax_create_folder 2012-07-29 normal Sysax Multi Server 5.64 Create Folder Buffer Overflowwindows/http/trackercam_phparg_overflow 2005-02-18 average TrackerCam PHP Argument Buffer Overflowwindows/http/trendmicro_officescan 2007-06-28 good Trend Micro OfficeScan Remote Stack Buffer Overflowwindows/http/umbraco_upload_aspx 2012-06-28 excellent Umbraco CMS Remote Command Executionwindows/http/webster_http 2002-12-02 average Webster HTTP Server GET Buffer Overflowwindows/http/xampp_webdav_upload_php 2012-01-14 excellent XAMPP WebDAV PHP Uploadwindows/http/xitami_if_mod_since 2007-09-24 average Xitami 2.5c2 Web Server If-Modified-Since Overflowwindows/http/zenworks_assetmgmt_uploadservlet 2011-11-02 excellent Novell ZENworks Asset Management Remote Executionwindows/http/zenworks_uploadservlet 2010-03-30 excellent Novell ZENworks Configuration Management Remote Executionwindows/iis/iis_webdav_upload_asp 1994-01-01 excellent Microsoft IIS WebDAV Write Access Code Executionwindows/iis/ms01_023_printer 2001-05-01 good Microsoft IIS 5.0 Printer Host Header Overflowwindows/iis/ms01_026_dbldecode 2001-05-15 excellent Microsoft IIS/PWS CGI Filename Double Decode Command Executionwindows/iis/ms01_033_idq 2001-06-18 good Microsoft IIS 5.0 IDQ Path Overflowwindows/iis/ms02_018_htr 2002-04-10 good Microsoft IIS 4.0 .HTR Path Overflowwindows/iis/ms02_065_msadc 2002-11-20 normal Microsoft IIS MDAC msadcs.dll RDS DataStub Content-Type Overflowwindows/iis/ms03_007_ntdll_webdav 2003-05-30 great Microsoft IIS 5.0 WebDAV ntdll.dll Path Overflowwindows/iis/msadc 1998-07-17 excellent Microsoft IIS MDAC msadcs.dll RDS Arbitrary Remote Command Executionwindows/imap/eudora_list 2005-12-20 great Qualcomm WorldMail 3.0 IMAPD LIST Buffer Overflowwindows/imap/imail_delete 2004-11-12 average IMail IMAP4D Delete Overflowwindows/imap/ipswitch_search 2007-07-18 average Ipswitch IMail IMAP SEARCH Buffer Overflowwindows/imap/mailenable_login 2006-12-11 great MailEnable IMAPD (2.34/2.35) Login Request Buffer Overflowwindows/imap/mailenable_status 2005-07-13 great MailEnable IMAPD (1.54) STATUS Request Buffer Overflowwindows/imap/mailenable_w3c_select 2005-10-03 great MailEnable IMAPD W3C Logging Buffer Overflowwindows/imap/mdaemon_cram_md5 2004-11-12 great Mdaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflowwindows/imap/mdaemon_fetch 2008-03-13 great MDaemon 9.6.4 IMAPD FETCH Buffer Overflowwindows/imap/mercur_imap_select_overflow 2006-03-17 average Mercur v5.0 IMAP SP3 SELECT Buffer Overflowwindows/imap/mercur_login 2006-03-17 average Mercur Messaging 2005 IMAP Login Buffer Overflowwindows/imap/mercury_login 2007-03-06 average Mercury/32 <= 4.01b LOGIN Buffer Overflowwindows/imap/mercury_rename 2004-11-29 average Mercury/32 v4.01a IMAP RENAME Buffer Overflowwindows/imap/novell_netmail_append 2006-12-23 average Novell NetMail <= 3.52d IMAP APPEND Buffer Overflowwindows/imap/novell_netmail_auth 2007-01-07 average Novell NetMail <=3.52d IMAP AUTHENTICATE Buffer Overflowwindows/imap/novell_netmail_status 2005-11-18 average Novell NetMail <= 3.52d IMAP STATUS Buffer Overflowwindows/imap/novell_netmail_subscribe 2006-12-23 average Novell NetMail <= 3.52d IMAP SUBSCRIBE Buffer Overflowwindows/isapi/ms00_094_pbserver 2000-12-04 good Microsoft IIS Phone Book Service Overflowwindows/isapi/ms03_022_nsiislog_post 2003-06-25 good Microsoft IIS ISAPI nsiislog.dll ISAPI POST Overflowwindows/isapi/ms03_051_fp30reg_chunked 2003-11-11 good Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflowwindows/isapi/rsa_webagent_redirect 2005-10-21 good Microsoft IIS ISAPI RSA WebAgent Redirect Overflowwindows/isapi/w3who_query 2004-12-06 good Microsoft IIS ISAPI w3who.dll Query String Overflowwindows/ldap/imail_thc 2004-02-17 average IMail LDAP Service Buffer Overflowwindows/ldap/pgp_keyserver7 2001-07-16 good Network Associates PGP KeyServer 7 LDAP Buffer Overflowwindows/license/calicclnt_getconfig 2005-03-02 average Computer Associates License Client GETCONFIG Overflowwindows/license/calicserv_getconfig 2005-03-02 normal Computer Associates License Server GETCONFIG Overflowwindows/license/flexnet_lmgrd_bof 2012-03-23 normal FlexNet License Server Manager lmgrd Buffer Overflowwindows/license/sentinel_lm7_udp 2005-03-07 average SentinelLM UDP Buffer Overflowwindows/local/always_install_elevated 2010-03-18 average Windows AlwaysInstallElevated MSIwindows/local/ask 2012-01-03 excellent Windows Escalate UAC Execute RunAswindows/local/bypassuac 2010-12-31 excellent Windows Escalate UAC Protection Bypasswindows/local/current_user_psexec 1999-01-01 excellent PsExec via Current User Tokenwindows/local/ms10_092_schelevator 2010-09-13 excellent Windows Escalate Task Scheduler XML Privilege Escalationwindows/local/ms11_080_afdjoinleaf 2011-11-30 average MS11-080 AfdJoinLeaf Privilege Escalationwindows/local/payload_inject 2011-10-12 excellent Windows Manage Memory Payload Injectionwindows/local/persistence 2011-10-19 excellent Windows Manage Persistent Payload Installerwindows/local/s4u_persistence 2013-01-02 excellent Windows Manage User Level Persistent Payload Installerwindows/local/service_permissions 2012-10-15 great Windows Escalate Service Permissions Local Privilege Escalationwindows/local/trusted_service_path 2001-10-25 excellent Windows Service Trusted Path Privilege Escalationwindows/lotus/domino_http_accept_language 2008-05-20 average IBM Lotus Domino Web Server Accept-Language Stack Buffer Overflowwindows/lotus/domino_icalendar_organizer 2010-09-14 normal IBM Lotus Domino iCalendar MAILTO Buffer Overflowwindows/lotus/domino_sametime_stmux 2008-05-21 average IBM Lotus Domino Sametime STMux.exe Stack Buffer Overflowwindows/lotus/lotusnotes_lzh 2011-05-24 normal Lotus Notes 8.0.x - 8.5.2 FP2 - Autonomy Keyview (.lzh Attachment)windows/lpd/hummingbird_exceed 2005-05-27 average Hummingbird Connectivity 10 SP5 LPD Buffer Overflowwindows/lpd/niprint 2003-11-05 good NIPrint LPD Request Overflowwindows/lpd/saplpd 2008-02-04 good SAP SAPLPD 6.28 Buffer Overflowwindows/lpd/wincomlpd_admin 2008-02-04 good WinComLPD <= 3.0.2 Buffer Overflowwindows/misc/agentxpp_receive_agentx 2010-04-16 good AgentX++ Master AgentX::receive_agentx Stack Buffer Overflowwindows/misc/allmediaserver_bof 2012-07-04 normal ALLMediaServer 0.8 Buffer Overflowwindows/misc/apple_quicktime_rtsp_response 2007-11-23 normal Apple QuickTime 7.3 RTSP Response Header Buffer Overflowwindows/misc/asus_dpcproxy_overflow 2008-03-21 average Asus Dpcproxy Buffer Overflowwindows/misc/avaya_winpmd_unihostrouter 2011-05-23 normal Avaya WinPMD UniteHostRouter Buffer Overflowwindows/misc/avidphoneticindexer 2011-11-29 normal Avid Media Composer 5.5 - Avid Phonetic Indexer Buffer Overflowwindows/misc/bakbone_netvault_heap 2005-04-01 average BakBone NetVault Remote Heap Overflowwindows/misc/bcaaa_bof 2011-04-04 good Blue Coat Authentication and Authorization Agent (BCAAA) 5 Buffer Overflowwindows/misc/bigant_server 2008-04-15 average BigAnt Server 2.2 Buffer Overflowwindows/misc/bigant_server_250 2008-04-15 great BigAnt Server 2.50 SP1 Buffer Overflowwindows/misc/bigant_server_dupf_upload 2013-01-09 excellent BigAnt Server DUPF Command Arbitrary File Uploadwindows/misc/bigant_server_sch_dupf_bof 2013-01-09 normal BigAnt Server 2 SCH And DUPF Buffer Overflowwindows/misc/bigant_server_usv 2009-12-29 great BigAnt Server 2.52 USV Buffer Overflowwindows/misc/bomberclone_overflow 2006-02-16 average Bomberclone 0.11.6 Buffer Overflowwindows/misc/bopup_comm 2009-06-18 good Bopup Communications Server Buffer Overflowwindows/misc/borland_interbase 2007-07-24 average Borland Interbase Create-Request Buffer Overflowwindows/misc/borland_starteam 2008-04-02 average Borland CaliberRM StarTeam Multicast Service Buffer Overflowwindows/misc/citrix_streamprocess 2011-01-20 good Citrix Provisioning Services 5.6 streamprocess.exe Buffer Overflowwindows/misc/citrix_streamprocess_data_msg 2011-11-04 normal Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020000 Buffer Overflowwindows/misc/citrix_streamprocess_get_boot_record_request 2011-11-04 normal Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020004 Buffer Overflowwindows/misc/citrix_streamprocess_get_footer 2011-11-04 normal Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020002 Buffer Overflowwindows/misc/citrix_streamprocess_get_objects 2011-11-04 normal Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020006 Buffer Overflowwindows/misc/doubletake 2008-06-04 average DoubleTake/HP StorageWorks Storage Mirroring Service Authentication Overflowwindows/misc/eiqnetworks_esa 2006-07-24 average eIQNetworks ESA License Manager LICMGR_ADDLICENSE Overflowwindows/misc/eiqnetworks_esa_topology 2006-07-25 average eIQNetworks ESA Topology DELETEDEVICE Overflowwindows/misc/enterasys_netsight_syslog_bof 2011-12-19 normal Enterasys NetSight nssyslogd.exe Buffer Overflowwindows/misc/eureka_mail_err 2009-10-22 normal Eureka Email 2.2q ERR Remote Buffer Overflowwindows/misc/fb_isc_attach_database 2007-10-03 average Firebird Relational Database isc_attach_database() Buffer Overflowwindows/misc/fb_isc_create_database 2007-10-03 average Firebird Relational Database isc_create_database() Buffer Overflowwindows/misc/fb_svc_attach 2007-10-03 average Firebird Relational Database SVC_attach() Buffer Overflowwindows/misc/gimp_script_fu 2012-05-18 normal GIMP script-fu Server Buffer Overflowwindows/misc/hp_dataprotector_dtbclslogin 2010-09-09 normal HP Data Protector DtbClsLogin Buffer Overflowwindows/misc/hp_dataprotector_new_folder 2012-03-12 normal HP Data Protector Create New Folder Buffer Overflowwindows/misc/hp_imc_uam 2012-08-29 normal HP Intelligent Management Center UAM Buffer Overflowwindows/misc/hp_magentservice 2012-01-12 average HP Diagnostics Server magentservice.exe Overflowwindows/misc/hp_omniinet_1 2009-12-17 great HP OmniInet.exe MSG_PROTOCOL Buffer Overflowwindows/misc/hp_omniinet_2 2009-12-17 great HP OmniInet.exe MSG_PROTOCOL Buffer Overflowwindows/misc/hp_omniinet_3 2011-06-29 great HP OmniInet.exe Opcode 27 Buffer Overflowwindows/misc/hp_omniinet_4 2011-06-29 good HP OmniInet.exe Opcode 20 Buffer Overflowwindows/misc/hp_operations_agent_coda_34 2012-07-09 normal HP Operations Agent Opcode coda.exe 0x34 Buffer Overflowwindows/misc/hp_operations_agent_coda_8c 2012-07-09 normal HP Operations Agent Opcode coda.exe 0x8c Buffer Overflowwindows/misc/hp_ovtrace 2007-08-09 average HP OpenView Operations OVTrace Buffer Overflowwindows/misc/ib_isc_attach_database 2007-10-03 good Borland InterBase isc_attach_database() Buffer Overflowwindows/misc/ib_isc_create_database 2007-10-03 good Borland InterBase isc_create_database() Buffer Overflowwindows/misc/ib_svc_attach 2007-10-03 good Borland InterBase SVC_attach() Buffer Overflowwindows/misc/ibm_cognos_tm1admsd_bof 2012-04-02 normal IBM Cognos tm1admsd.exe Overflowwindows/misc/ibm_director_cim_dllinject 2009-03-10 excellent IBM System Director Agent DLL Injectionwindows/misc/ibm_tsm_cad_ping 2009-11-04 good IBM Tivoli Storage Manager Express CAD Service Buffer Overflowwindows/misc/ibm_tsm_rca_dicugetidentify 2009-11-04 great IBM Tivoli Storage Manager Express RCA Service Buffer Overflowwindows/misc/itunes_extm3u_bof 2012-06-21 normal Apple iTunes 10 Extended M3U Stack Buffer Overflowwindows/misc/landesk_aolnsrvr 2007-04-13 average LANDesk Management Suite 8.7 Alert Service Buffer Overflowwindows/misc/mercury_phonebook 2005-12-19 average Mercury/32 <= v4.01b PH Server Module Buffer Overflowwindows/misc/mini_stream 2009-12-25 normal Mini-Stream 3.0.1.1 Buffer Overflowwindows/misc/mirc_privmsg_server 2008-10-02 normal mIRC <= 6.34 PRIVMSG Handling Stack Buffer Overflowwindows/misc/ms07_064_sami 2007-12-11 normal Microsoft DirectX DirectShow SAMI Buffer Overflowwindows/misc/ms10_104_sharepoint 2010-12-14 excellent Microsoft Office SharePoint Server 2007 Remote Code Executionwindows/misc/netcat110_nt 2004-12-27 great Netcat v1.10 NT Stack Buffer Overflowwindows/misc/nettransport 2010-01-02 normal NetTransport Download Manager 2.90.510 Buffer Overflowwindows/misc/poisonivy_bof 2012-06-24 normal Poison Ivy 2.3.2 C&C Server Buffer Overflowwindows/misc/poppeeper_date 2009-02-27 normal POP Peeper v3.4 DATE Buffer Overflowwindows/misc/poppeeper_uidl 2009-02-27 normal POP Peeper v3.4 UIDL Buffer Overflowwindows/misc/pxexploit 2011-08-05 excellent PXE Exploit Serverwindows/misc/realtek_playlist 2008-12-16 great Realtek Media Player Playlist Buffer Overflowwindows/misc/sap_2005_license 2009-08-01 great SAP Business One License Manager 2005 Buffer Overflowwindows/misc/sap_netweaver_dispatcher 2012-05-08 normal SAP NetWeaver Dispatcher DiagTraceR3Info Buffer Overflowwindows/misc/shixxnote_font 2004-10-04 great ShixxNOTE 6.net Font Field Overflowwindows/misc/splayer_content_type 2011-05-04 normal SPlayer 3.7 Content-Type Buffer Overflowwindows/misc/stream_down_bof 2011-12-27 good CoCSoft StreamDown 6.8.0 Buffer Overflowwindows/misc/talkative_response 2009-03-17 normal Talkative IRC v0.4.4.16 Response Buffer Overflowwindows/misc/tiny_identd_overflow 2007-05-14 average TinyIdentD 2.2 Stack Buffer Overflowwindows/misc/trendmicro_cmdprocessor_addtask 2011-12-07 good TrendMicro Control Manger <= v5.5 CmdProcessor.exe Stack Buffer Overflowwindows/misc/ufo_ai 2009-10-28 average UFO: Alien Invasion IRC Client Buffer Overflowwindows/misc/windows_rsh 2007-07-24 average Windows RSH daemon Buffer Overflowwindows/misc/wireshark_lua 2011-07-18 excellent Wireshark console.lua Pre-Loading Script Executionwindows/misc/wireshark_packet_dect 2011-04-18 good Wireshark <= 1.4.4 packet-dect.c Stack Buffer Overflow (remote)windows/mmsp/ms10_025_wmss_connect_funnel 2010-04-13 great Windows Media Services ConnectFunnel Stack Buffer Overflowwindows/motorola/timbuktu_fileupload 2008-05-10 excellent Timbuktu Pro Directory Traversal/File Uploadwindows/mssql/lyris_listmanager_weak_pass 2005-12-08 excellent Lyris ListManager MSDE Weak sa Passwordwindows/mssql/ms02_039_slammer 2002-07-24 good Microsoft SQL Server Resolution Overflowwindows/mssql/ms02_056_hello 2002-08-05 good Microsoft SQL Server Hello Overflowwindows/mssql/ms09_004_sp_replwritetovarbin 2008-12-09 good Microsoft SQL Server sp_replwritetovarbin Memory Corruptionwindows/mssql/ms09_004_sp_replwritetovarbin_sqli 2008-12-09 excellent Microsoft SQL Server sp_replwritetovarbin Memory Corruption via SQL Injectionwindows/mssql/mssql_linkcrawler 2000-01-01 great Microsoft SQL Server Database Link Crawling Command Executionwindows/mssql/mssql_payload 2000-05-30 excellent Microsoft SQL Server Payload Executionwindows/mssql/mssql_payload_sqli 2000-05-30 excellent Microsoft SQL Server Payload Execution via SQL Injectionwindows/mysql/mysql_mof 2012-12-01 excellent Oracle MySQL for Microsoft Windows MOF Executionwindows/mysql/mysql_payload 2009-01-16 excellent Oracle MySQL for Microsoft Windows Payload Executionwindows/mysql/mysql_yassl_hello 2008-01-04 average MySQL yaSSL SSL Hello Message Buffer Overflowwindows/mysql/scrutinizer_upload_exec 2012-07-27 excellent Plixer Scrutinizer NetFlow and sFlow Analyzer 9 Default MySQL Credentialwindows/nfs/xlink_nfsd 2006-11-06 average Omni-NFS Server Buffer Overflowwindows/nntp/ms05_030_nntp 2005-06-14 normal Microsoft Outlook Express NNTP Response Parsing Buffer Overflowwindows/novell/file_reporter_fsfui_upload 2012-11-16 great NFR Agent FSFUI Record File Upload RCEwindows/novell/groupwisemessenger_client 2008-07-02 normal Novell GroupWise Messenger Client Buffer Overflowwindows/novell/netiq_pum_eval 2012-11-15 excellent NetIQ Privileged User Manager 2.3.1 ldapagnt_eval() Remote Perl Code Executionwindows/novell/nmap_stor 2006-12-23 average Novell NetMail <= 3.52d NMAP STOR Buffer Overflowwindows/novell/zenworks_desktop_agent 2005-05-19 good Novell ZENworks 6.5 Desktop/Server Management Overflowwindows/novell/zenworks_preboot_op21_bof 2010-03-30 normal Novell ZENworks Configuration Management Preboot Service 0x21 Buffer Overflowwindows/novell/zenworks_preboot_op4c_bof 2012-02-22 normal Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overflowwindows/novell/zenworks_preboot_op6_bof 2010-03-30 normal Novell ZENworks Configuration Management Preboot Service 0x06 Buffer Overflowwindows/novell/zenworks_preboot_op6c_bof 2012-02-22 normal Novell ZENworks Configuration Management Preboot Service 0x6c Buffer Overflowwindows/oracle/client_system_analyzer_upload 2011-01-18 excellent Oracle Database Client System Analyzer Arbitrary File Uploadwindows/oracle/extjob 2007-01-01 excellent Oracle Job Scheduler Named Pipe Command Executionwindows/oracle/osb_ndmp_auth 2009-01-14 good Oracle Secure Backup NDMP_CONNECT_CLIENT_AUTH Buffer Overflowwindows/oracle/tns_arguments 2001-06-28 good Oracle 8i TNS Listener (ARGUMENTS) Buffer Overflowwindows/oracle/tns_auth_sesskey 2009-10-20 great Oracle 10gR2 TNS Listener AUTH_SESSKEY Buffer Overflowwindows/oracle/tns_service_name 2002-05-27 good Oracle 8i TNS Listener SERVICE_NAME Buffer Overflowwindows/pop3/seattlelab_pass 2003-05-07 great Seattle Lab Mail 5.5 POP3 Buffer Overflowwindows/postgres/postgres_payload 2009-04-10 excellent PostgreSQL for Microsoft Windows Payload Executionwindows/proxy/bluecoat_winproxy_host 2005-01-05 great Blue Coat WinProxy Host Header Overflowwindows/proxy/ccproxy_telnet_ping 2004-11-11 average CCProxy <= v6.2 Telnet Proxy Ping Overflowwindows/proxy/proxypro_http_get 2004-02-23 great Proxy-Pro Professional GateKeeper 4.7 GET Request Overflowwindows/proxy/qbik_wingate_wwwproxy 2006-06-07 good Qbik WinGate WWW Proxy Server URL Processing Overflowwindows/scada/citect_scada_odbc 2008-06-11 normal CitectSCADA/CitectFacilities ODBC Buffer Overflowwindows/scada/codesys_web_server 2011-12-02 normal SCADA 3S CoDeSys CmpWebServer <= v3.4 SP4 Patch 2 Stack Buffer Overflowwindows/scada/daq_factory_bof 2011-09-13 good DaqFactory HMI NETB Request Overflowwindows/scada/factorylink_csservice 2011-03-25 normal Siemens FactoryLink 8 CSService Logging Path Param Buffer Overflowwindows/scada/factorylink_vrn_09 2011-03-21 average Siemens FactoryLink vrn.exe Opcode 9 Buffer Overflowwindows/scada/iconics_genbroker 2011-03-21 good Iconics GENESIS32 Integer overflow version 9.21.201.01windows/scada/iconics_webhmi_setactivexguid 2011-05-05 good ICONICS WebHMI ActiveX Buffer Overflowwindows/scada/igss9_igssdataserver_listall 2011-03-24 good 7-Technologies IGSS <= v9.00.00 b11063 IGSSdataServer.exe Stack Buffer Overflowwindows/scada/igss9_igssdataserver_rename 2011-03-24 normal 7-Technologies IGSS 9 IGSSdataServer .RMS Rename Buffer Overflowwindows/scada/igss9_misc 2011-03-24 excellent 7-Technologies IGSS 9 Data Server/Collector Packet Handling Vulnerabilitieswindows/scada/indusoft_webstudio_exec 2011-11-04 excellent InduSoft Web Studio Arbitrary Upload Remote Code Executionwindows/scada/moxa_mdmtool 2010-10-20 great MOXA Device Manager Tool 2.1 Buffer Overflowwindows/scada/procyon_core_server 2011-09-08 normal Procyon Core Server HMI <= v1.13 Coreservice.exe Stack Buffer Overflowwindows/scada/realwin 2008-09-26 great DATAC RealWin SCADA Server Buffer Overflowwindows/scada/realwin_on_fc_binfile_a 2011-03-21 great DATAC RealWin SCADA Server 2 On_FC_CONNECT_FCS_a_FILE Buffer Overflowwindows/scada/realwin_on_fcs_login 2011-03-21 great RealWin SCADA Server DATAC Login Buffer Overflowwindows/scada/realwin_scpc_initialize 2010-10-15 great DATAC RealWin SCADA Server SCPC_INITIALIZE Buffer Overflowwindows/scada/realwin_scpc_initialize_rf 2010-10-15 great DATAC RealWin SCADA Server SCPC_INITIALIZE_RF Buffer Overflowwindows/scada/realwin_scpc_txtevent 2010-11-18 great DATAC RealWin SCADA Server SCPC_TXTEVENT Buffer Overflowwindows/scada/scadapro_cmdexe 2011-09-16 excellent Measuresoft ScadaPro <= 4.0.0 Remote Command Executionwindows/scada/sunway_force_control_netdbsrv 2011-09-22 great Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57windows/scada/winlog_runtime 2011-01-13 great Sielco Sistemi Winlog Buffer Overflowwindows/scada/winlog_runtime_2 2012-06-04 normal Sielco Sistemi Winlog Buffer Overflow 2.07.14 - 2.07.16windows/sip/aim_triton_cseq 2006-07-10 great AIM Triton 1.0.4 CSeq Buffer Overflowwindows/sip/sipxezphone_cseq 2006-07-10 great SIPfoundry sipXezPhone 0.35a CSeq Field Overflowwindows/sip/sipxphone_cseq 2006-07-10 great SIPfoundry sipXphone 2.6.0.27 CSeq Buffer Overflowwindows/smb/ms03_049_netapi 2003-11-11 good Microsoft Workstation Service NetAddAlternateComputerName Overflowwindows/smb/ms04_007_killbill 2004-02-10 low Microsoft ASN.1 Library Bitstring Heap Overflowwindows/smb/ms04_011_lsass 2004-04-13 good Microsoft LSASS Service DsRolerUpgradeDownlevelServer Overflowwindows/smb/ms04_031_netdde 2004-10-12 good Microsoft NetDDE Service Overflowwindows/smb/ms05_039_pnp 2005-08-09 good Microsoft Plug and Play Service Overflowwindows/smb/ms06_025_rasmans_reg 2006-06-13 good Microsoft RRAS Service RASMAN Registry Overflowwindows/smb/ms06_025_rras 2006-06-13 average Microsoft RRAS Service Overflowwindows/smb/ms06_040_netapi 2006-08-08 good Microsoft Server Service NetpwPathCanonicalize Overflowwindows/smb/ms06_066_nwapi 2006-11-14 good Microsoft Services MS06-066 nwapi32.dll Module Exploitwindows/smb/ms06_066_nwwks 2006-11-14 good Microsoft Services MS06-066 nwwks.dll Module Exploitwindows/smb/ms06_070_wkssvc 2006-11-14 manual Microsoft Workstation Service NetpManageIPCConnect Overflowwindows/smb/ms07_029_msdns_zonename 2007-04-12 manual Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)windows/smb/ms08_067_netapi 2008-10-28 great Microsoft Server Service Relative Path Stack Corruptionwindows/smb/ms09_050_smb2_negotiate_func_index 2009-09-07 good Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereferencewindows/smb/ms10_061_spoolss 2010-09-14 excellent Microsoft Print Spooler Service Impersonation Vulnerabilitywindows/smb/netidentity_xtierrpcpipe 2009-04-06 great Novell NetIdentity Agent XTIERRPCPIPE Named Pipe Buffer Overflowwindows/smb/psexec 1999-01-01 manual Microsoft Windows Authenticated User Code Executionwindows/smb/smb_relay 2001-03-31 excellent Microsoft Windows SMB Relay Code Executionwindows/smb/timbuktu_plughntcommand_bof 2009-06-25 great Timbuktu <= 8.6.6 PlughNTCommand Named Pipe Buffer Overflowwindows/smtp/mailcarrier_smtp_ehlo 2004-10-26 good TABS MailCarrier v2.51 SMTP EHLO Overflowwindows/smtp/mercury_cram_md5 2007-08-18 great Mercury Mail SMTP AUTH CRAM-MD5 Buffer Overflowwindows/smtp/ms03_046_exchange2000_xexch50 2003-10-15 good MS03-046 Exchange 2000 XEXCH50 Heap Overflowwindows/smtp/njstar_smtp_bof 2011-10-31 normal NJStar Communicator 3.00 MiniSMTP Buffer Overflowwindows/smtp/wmailserver 2005-07-11 average SoftiaCom WMailserver 1.0 Buffer Overflowwindows/smtp/ypops_overflow1 2004-09-27 average YPOPS 0.6 Buffer Overflowwindows/ssh/freeftpd_key_exchange 2006-05-12 average FreeFTPd 1.0.10 Key Exchange Algorithm String Buffer Overflowwindows/ssh/freesshd_authbypass 2010-08-11 excellent Freesshd Authentication Bypasswindows/ssh/freesshd_key_exchange 2006-05-12 average FreeSSHd 1.0.9 Key Exchange Algorithm String Buffer Overflowwindows/ssh/putty_msg_debug 2002-12-16 normal PuTTy.exe <= v0.53 Buffer Overflowwindows/ssh/securecrt_ssh1 2002-07-23 average SecureCRT <= 4.0 Beta 2 SSH1 Buffer Overflowwindows/ssh/sysax_ssh_username 2012-02-27 normal Sysax 5.53 SSH Username Buffer Overflowwindows/ssl/ms04_011_pct 2004-04-13 average Microsoft Private Communications Transport Overflowwindows/telnet/gamsoft_telsrv_username 2000-07-17 average GAMSoft TelSrv 1.5 Username Buffer Overflowwindows/telnet/goodtech_telnet 2005-03-15 average GoodTech Telnet Server <= 5.0.6 Buffer Overflowwindows/tftp/attftp_long_filename 2006-11-27 average Allied Telesyn TFTP Server 1.9 Long Filename Overflowwindows/tftp/distinct_tftp_traversal 2012-04-08 excellent Distinct TFTP 3.10 Writable Directory Traversal Executionwindows/tftp/dlink_long_filename 2007-03-12 good D-Link TFTP 1.0 Long Filename Buffer Overflowwindows/tftp/futuresoft_transfermode 2005-05-31 average FutureSoft TFTP Server 2000 Transfer-Mode Overflowwindows/tftp/netdecision_tftp_traversal 2009-05-16 excellent NetDecision 4.2 TFTP Writable Directory Traversal Executionwindows/tftp/opentftp_error_code 2008-07-05 average OpenTFTP SP 1.4 Error Packet Overflowwindows/tftp/quick_tftp_pro_mode 2008-03-27 good Quick FTP Pro 2.1 Transfer-Mode Overflowwindows/tftp/tftpd32_long_filename 2002-11-19 average TFTPD32 <= 2.21 Long Filename Buffer Overflowwindows/tftp/tftpdwin_long_filename 2006-09-21 great TFTPDWIN v0.4.2 Long Filename Buffer Overflowwindows/tftp/tftpserver_wrq_bof 2008-03-26 normal TFTP Server for Windows 1.4 ST WRQ Buffer Overflowwindows/tftp/threectftpsvc_long_mode 2006-11-27 great 3CTftpSvc TFTP Long Mode Buffer Overflowwindows/unicenter/cam_log_security 2005-08-22 great CA CAM log_security() Stack Buffer Overflow (Win32)windows/vnc/realvnc_client 2001-01-29 normal RealVNC 3.3.7 Client Buffer Overflowwindows/vnc/ultravnc_client 2006-04-04 normal UltraVNC 1.0.1 Client Buffer Overflowwindows/vnc/ultravnc_viewer_bof 2008-02-06 normal UltraVNC 1.0.2 Client (vncviewer.exe) Buffer Overflowwindows/vnc/winvnc_http_get 2001-01-29 average WinVNC Web Server <= v3.3.3r7 GET Overflowwindows/vpn/safenet_ike_11 2009-06-01 average SafeNet SoftRemote IKE Service Buffer Overflowwindows/winrm/winrm_script_exec 2012-11-01 manual WinRM Script Exec Remote Code Executionwindows/wins/ms04_045_wins 2004-12-14 great Microsoft WINS Service Memory Overwrite这个命令会显示Metasploit框架中所有可用的渗透攻击模块。在MSF终端中,你可以针对渗透测试中发现的安全漏洞来实施相应的渗透攻击。
2. msf > show auxiliary
Auxiliary
=========Name Disclosure Date Rank Description---- --------------- ---- -----------admin/2wire/xslt_password_reset 2007-08-15 normal 2Wire Cross-Site Request Forgery Password Reset Vulnerabilityadmin/backupexec/dump normal Veritas Backup Exec Windows Remote File Accessadmin/backupexec/registry normal Veritas Backup Exec Server Registry Accessadmin/cisco/cisco_secure_acs_bypass normal Cisco Secure ACS Version < 5.1.0.44.5 or 5.2.0.26.2 Unauthorized Password Changeadmin/cisco/vpn_3000_ftp_bypass 2006-08-23 normal Cisco VPN Concentrator 3000 FTP Unauthorized Administrative Accessadmin/db2/db2rcmd 2004-03-04 normal IBM DB2 db2rcmd.exe Command Execution Vulnerabilityadmin/edirectory/edirectory_dhost_cookie normal Novell eDirectory DHOST Predictable Session Cookieadmin/edirectory/edirectory_edirutil normal Novell eDirectory eMBox Unauthenticated File Accessadmin/emc/alphastor_devicemanager_exec 2008-05-27 normal EMC AlphaStor Device Manager Arbitrary Command Executionadmin/emc/alphastor_librarymanager_exec 2008-05-27 normal EMC AlphaStor Library Manager Arbitrary Command Executionadmin/hp/hp_data_protector_cmd 2011-02-07 normal HP Data Protector 6.1 EXEC_CMD Command Executionadmin/http/contentkeeper_fileaccess normal ContentKeeper Web Appliance mimencode File Accessadmin/http/dlink_dir_300_600_exec_noauth 2013-02-04 normal D-Link DIR-600 / DIR-300 Unauthenticated Remote Command Executionadmin/http/hp_web_jetadmin_exec 2004-04-27 normal HP Web JetAdmin 6.5 Server Arbitrary Command Executionadmin/http/iis_auth_bypass 2010-07-02 normal MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypassadmin/http/intersil_pass_reset 2007-09-10 normal Intersil (Boa) HTTPd Basic Authentication Password Resetadmin/http/iomega_storcenterpro_sessionid normal Iomega StorCenter Pro NAS Web Authentication Bypassadmin/http/jboss_seam_exec 2010-07-19 normal JBoss Seam 2 Remote Command Executionadmin/http/linksys_wrt54gl_exec 2013-01-18 normal Linksys WRT54GL Remote Command Executionadmin/http/netgear_sph200d_traversal normal Netgear SPH200D Directory Traversal Vulnerabilityadmin/http/novell_file_reporter_filedelete normal Novell File Reporter Agent Arbitrary File Deleteadmin/http/rails_devise_pass_reset 2013-01-28 normal Ruby on Rails Devise Authentication Password Resetadmin/http/scrutinizer_add_user 2012-07-27 normal Plixer Scrutinizer NetFlow and sFlow Analyzer HTTP Authentication Bypassadmin/http/tomcat_administration normal Tomcat Administration Tool Default Accessadmin/http/tomcat_utf8_traversal normal Tomcat UTF-8 Directory Traversal Vulnerabilityadmin/http/trendmicro_dlp_traversal normal TrendMicro Data Loss Prevention 5.5 Directory Traversaladmin/http/typo3_sa_2009_001 2009-01-20 normal TYPO3 sa-2009-001 Weak Encryption Key File Disclosureadmin/http/typo3_sa_2009_002 2009-02-10 normal Typo3 sa-2009-002 File Disclosureadmin/http/typo3_sa_2010_020 normal TYPO3 sa-2010-020 Remote File Disclosureadmin/http/typo3_winstaller_default_enc_keys normal TYPO3 Winstaller default Encryption Keysadmin/maxdb/maxdb_cons_exec 2008-01-09 normal SAP MaxDB cons.exe Remote Command Injectionadmin/misc/wol normal UDP Wake-On-Lan (WOL)admin/motorola/wr850g_cred 2004-09-24 normal Motorola WR850G v4.03 Credentialsadmin/ms/ms08_059_his2006 2008-10-14 normal Microsoft Host Integration Server 2006 Command Execution Vulnerabilityadmin/mssql/mssql_enum normal Microsoft SQL Server Configuration Enumeratoradmin/mssql/mssql_exec normal Microsoft SQL Server xp_cmdshell Command Executionadmin/mssql/mssql_findandsampledata normal Microsoft SQL Server - Find and Sample Dataadmin/mssql/mssql_idf normal Microsoft SQL Server - Interesting Data Finderadmin/mssql/mssql_ntlm_stealer normal Microsoft SQL Server NTLM Stealeradmin/mssql/mssql_ntlm_stealer_sqli normal Microsoft SQL Server NTLM Stealer - SQLiadmin/mssql/mssql_sql normal Microsoft SQL Server Generic Queryadmin/mssql/mssql_sql_file normal Microsoft SQL Server Generic Query from Fileadmin/mysql/mysql_enum normal MySQL Enumeration Moduleadmin/mysql/mysql_sql normal MySQL SQL Generic Queryadmin/natpmp/natpmp_map normal NAT-PMP Port Mapperadmin/officescan/tmlisten_traversal normal TrendMicro OfficeScanNT Listener Traversal Arbitrary File Accessadmin/oracle/ora_ntlm_stealer 2009-04-07 normal Oracle SMB Relay Code Executionadmin/oracle/oracle_login 2008-11-20 normal Oracle Account Discoveryadmin/oracle/oracle_sql 2007-12-07 normal Oracle SQL Generic Queryadmin/oracle/oraenum normal Oracle Database Enumerationadmin/oracle/osb_execqr 2009-01-14 normal Oracle Secure Backup exec_qr() Command Injection Vulnerabilityadmin/oracle/osb_execqr2 2009-08-18 normal Oracle Secure Backup Authentication Bypass/Command Injection Vulnerabilityadmin/oracle/osb_execqr3 2010-07-13 normal Oracle Secure Backup Authentication Bypass/Command Injection Vulnerabilityadmin/oracle/post_exploitation/win32exec 2007-12-07 normal Oracle Java execCommand (Win32)admin/oracle/post_exploitation/win32upload 2005-02-10 normal Oracle URL Downloadadmin/oracle/sid_brute 2009-01-07 normal Oracle TNS Listener SID Brute Forceradmin/oracle/tnscmd 2009-02-01 normal Oracle TNS Listener Command Issueradmin/pop2/uw_fileretrieval 2000-07-14 normal UoW pop2d Remote File Retrieval Vulnerabilityadmin/postgres/postgres_readfile normal PostgreSQL Server Generic Queryadmin/postgres/postgres_sql normal PostgreSQL Server Generic Queryadmin/sap/sap_mgmt_con_osexec normal SAP Management Console OSExecuteadmin/scada/igss_exec_17 2011-03-21 normal Interactive Graphical SCADA System Remote Command Injectionadmin/scada/modicon_command 2012-04-05 normal Schneider Modicon Remote START/STOP Commandadmin/scada/modicon_password_recovery 2012-01-19 normal Schneider Modicon Quantum Password Recoveryadmin/scada/modicon_stux_transfer 2012-04-05 normal Schneider Modicon Ladder Logic Upload/Downloadadmin/scada/multi_cip_command 2012-01-19 normal Allen-Bradley/Rockwell Automation EtherNet/IP CIP Commandsadmin/serverprotect/file normal TrendMicro ServerProtect File Accessadmin/smb/check_dir_file normal SMB Scanner Check File/Directory Utilityadmin/smb/list_directory normal SMB Directory Listing Utilityadmin/smb/psexec_command normal Microsoft Windows Authenticated Command Executionadmin/smb/samba_symlink_traversal normal Samba Symlink Directory Traversaladmin/smb/upload_file normal SMB File Upload Utilityadmin/sunrpc/solaris_kcms_readfile 2003-01-22 normal Solaris KCMS + TTDB Arbitrary File Readadmin/tftp/tftp_transfer_util normal TFTP File Transfer Utilityadmin/tikiwiki/tikidblib 2006-11-01 normal TikiWiki Information Disclosureadmin/vmware/poweroff_vm normal VMWare Power Off Virtual Machineadmin/vmware/poweron_vm normal VMWare Power On Virtual Machineadmin/vmware/tag_vm normal VMWare Tag Virtual Machineadmin/vmware/terminate_esx_sessions normal VMWare Terminate ESX Login Sessionsadmin/vnc/realvnc_41_bypass 2006-05-15 normal RealVNC NULL Authentication Mode Bypassadmin/vxworks/apple_airport_extreme_password normal Apple Airport Extreme Password Extraction (WDBRPC)admin/vxworks/dlink_i2eye_autoanswer normal D-Link i2eye Video Conference AutoAnswer (WDBRPC)admin/vxworks/wdbrpc_memory_dump normal VxWorks WDB Agent Remote Memory Dumpadmin/vxworks/wdbrpc_reboot normal VxWorks WDB Agent Remote Rebootadmin/webmin/edit_html_fileaccess 2012-09-06 normal Webmin edit_html.cgi file Parameter Traversal Arbitrary File Accessadmin/webmin/file_disclosure 2006-06-30 normal Webmin File Disclosureadmin/zend/java_bridge 2011-03-28 normal Zend Server Java Bridge Design Flaw Remote Code Executionanalyze/jtr_aix normal John the Ripper AIX Password Crackeranalyze/jtr_crack_fast normal John the Ripper Password Cracker (Fast Mode)analyze/jtr_linux normal John the Ripper Linux Password Crackeranalyze/jtr_mssql_fast normal John the Ripper MS SQL Password Cracker (Fast Mode)analyze/jtr_mysql_fast normal John the Ripper MySQL Password Cracker (Fast Mode)analyze/jtr_oracle_fast normal John the Ripper Oracle Password Cracker (Fast Mode)analyze/jtr_unshadow normal Unix Unshadow Utilityanalyze/postgres_md5_crack normal Postgres SQL md5 Password Crackerbnat/bnat_router normal BNAT Routerbnat/bnat_scan normal BNAT Scannerclient/smtp/emailer normal Generic Emailer (SMTP)crawler/msfcrawler normal Metasploit Web Crawlerdocx/word_unc_injector normal Microsoft Word UNC Path Injectordos/cisco/ios_http_percentpercent 2000-04-26 normal Cisco IOS HTTP GET /%% request Denial of Servicedos/dhcp/isc_dhcpd_clientid normal ISC DHCP Zero Length ClientID Denial of Service Moduledos/freebsd/nfsd/nfsd_mount normal FreeBSD Remote NFS RPC Request Denial of Servicedos/hp/data_protector_rds 2011-01-08 manual HP Data Protector Manager RDS DOSdos/http/3com_superstack_switch 2004-06-24 normal 3Com SuperStack Switch Denial of Servicedos/http/apache_mod_isapi 2010-03-05 normal Apache mod_isapi <= 2.2.14 Dangling Pointerdos/http/apache_range_dos 2011-08-19 normal Apache Range header DoS (Apache Killer)dos/http/apache_tomcat_transfer_encoding 2010-07-09 normal Apache Tomcat Transfer-Encoding Information Disclosure and DoSdos/http/dell_openmanage_post 2004-02-26 normal Dell OpenManage POST Request Heap Overflow (win32)dos/http/hashcollision_dos 2011-12-28 normal Hashtable Collisionsdos/http/novell_file_reporter_heap_bof 2012-11-16 normal NFR Agent Heap Overflow Vulnerabilitydos/http/sonicwall_ssl_format 2009-05-29 normal SonicWALL SSL-VPN Format String Vulnerabilitydos/http/webrick_regex 2008-08-08 normal Ruby WEBrick::HTTP::DefaultFileHandler DoSdos/mdns/avahi_portzero 2008-11-14 normal Avahi < 0.6.24 Source Port 0 DoSdos/ntp/ntpd_reserved_dos 2009-10-04 normal NTP.org ntpd Reserved Mode Denial of Servicedos/pptp/ms02_063_pptp_dos 2002-09-26 normal MS02-063 PPTP Malformed Control Data Kernel Denial of Servicedos/samba/lsa_addprivs_heap normal Samba lsa_io_privilege_set Heap Overflowdos/samba/lsa_transnames_heap normal Samba lsa_io_trans_names Heap Overflowdos/scada/beckhoff_twincat 2011-09-13 normal Beckhoff TwinCAT SCADA PLC 2.11.0.2004 DoSdos/scada/d20_tftp_overflow 2012-01-19 normal General Electric D20ME TFTP Server Buffer Overflow DoSdos/scada/igss9_dataserver 2011-12-20 normal 7-Technologies IGSS 9 IGSSdataServer.exe DoSdos/smtp/sendmail_prescan 2003-09-17 normal Sendmail SMTP Address prescan <= 8.12.8 Memory Corruptiondos/solaris/lpd/cascade_delete normal Solaris LPD Arbitrary File Deletedos/ssl/dtls_changecipherspec 2000-04-26 normal OpenSSL < 0.9.8i DTLS ChangeCipherSpec Remote DoSdos/syslog/rsyslog_long_tag 2011-09-01 normal rsyslog Long Tag Off-By-Two DoSdos/tcp/junos_tcp_opt manual Juniper JunOS Malformed TCP Optiondos/tcp/synflood normal TCP SYN Flooderdos/wifi/apple_orinoco_probe_response normal Apple Airport 802.11 Probe Response Kernel Memory Corruptiondos/wifi/cts_rts_flood normal Wireless CTS/RTS Flooderdos/wifi/deauth normal Wireless DEAUTH Flooderdos/wifi/fakeap normal Wireless Fake Access Point Beacon Flooddos/wifi/file2air normal Wireless Frame (File) Injectordos/wifi/netgear_ma521_rates normal NetGear MA521 Wireless Driver Long Rates Overflowdos/wifi/netgear_wg311pci normal NetGear WG311v1 Wireless Driver Long SSID Overflowdos/wifi/probe_resp_null_ssid normal Multiple Wireless Vendor NULL SSID Probe Responsedos/wifi/ssidlist_beacon normal Wireless Beacon SSID Emulatordos/wifi/wifun normal Wireless Test Moduledos/windows/appian/appian_bpm 2007-12-17 normal Appian Enterprise Business Suite 5.6 SP1 DoSdos/windows/browser/ms09_065_eot_integer 2009-11-10 normal Microsoft Windows EOT Font Table Directory Integer Overflowdos/windows/ftp/filezilla_admin_user 2005-11-07 normal FileZilla FTP Server Admin Interface Denial of Servicedos/windows/ftp/filezilla_server_port 2006-12-11 normal FileZilla FTP Server <=0.9.21 Malformed PORT Denial of Servicedos/windows/ftp/guildftp_cwdlist 2008-10-12 normal Guild FTPd 0.999.8.11/0.999.14 Heap Corruptiondos/windows/ftp/iis75_ftpd_iac_bof 2010-12-21 normal Microsoft IIS FTP Server Encoded Response Overflow Triggerdos/windows/ftp/iis_list_exhaustion 2009-09-03 normal Microsoft IIS FTP Server <= 7.0 LIST Stack Exhaustiondos/windows/ftp/solarftp_user 2011-02-22 normal Solar FTP Server <= 2.1.1 Malformed (User) Denial of Servicedos/windows/ftp/titan626_site 2008-10-14 normal Titan FTP Server 6.26.630 SITE WHO DoSdos/windows/ftp/vicftps50_list 2008-10-24 normal Victory FTP Server 5.0 LIST DoSdos/windows/ftp/winftp230_nlst 2008-09-26 normal WinFTP 2.3.0 NLST Denial of Servicedos/windows/ftp/xmeasy560_nlst 2008-10-13 normal XM Easy Personal FTP Server 5.6.0 NLST DoSdos/windows/ftp/xmeasy570_nlst 2009-03-27 normal XM Easy Personal FTP Server 5.7.0 NLST DoSdos/windows/games/kaillera 2011-07-02 normal Kaillera 0.86 Server Denial of Servicedos/windows/http/ms10_065_ii6_asp_dos 2010-09-14 normal Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Servicedos/windows/http/pi3web_isapi 2008-11-13 normal Pi3Web <=2.0.13 ISAPI DoSdos/windows/llmnr/ms11_030_dnsapi 2011-04-12 normal Microsoft Windows DNSAPI.dll LLMNR Buffer Underrun DoSdos/windows/nat/nat_helper 2006-10-26 normal Microsoft Windows NAT Helper Denial of Servicedos/windows/rdp/ms12_020_maxchannelids 2012-03-16 normal MS12-020 Microsoft Remote Desktop Use-After-Free DoSdos/windows/smb/ms05_047_pnp normal Microsoft Plug and Play Service Registry Overflowdos/windows/smb/ms06_035_mailslot 2006-07-11 normal Microsoft SRV.SYS Mailslot Write Corruptiondos/windows/smb/ms06_063_trans normal Microsoft SRV.SYS Pipe Transaction No Nulldos/windows/smb/ms09_001_write normal Microsoft SRV.SYS WriteAndX Invalid DataOffsetdos/windows/smb/ms09_050_smb2_negotiate_pidhigh normal Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereferencedos/windows/smb/ms09_050_smb2_session_logoff normal Microsoft SRV2.SYS SMB2 Logoff Remote Kernel NULL Pointer Dereferencedos/windows/smb/ms10_006_negotiate_response_loop normal Microsoft Windows 7 / Server 2008 R2 SMB Client Infinite Loopdos/windows/smb/ms10_054_queryfs_pool_overflow normal Microsoft Windows SRV.SYS SrvSmbQueryFsInformation Pool Overflow DoSdos/windows/smb/ms11_019_electbowser manual Microsoft Windows Browser Pool DoSdos/windows/smb/rras_vls_null_deref 2006-06-14 normal Microsoft RRAS InterfaceAdjustVLSPointers NULL Dereferencedos/windows/smb/vista_negotiate_stop normal Microsoft Vista SP0 SMB Negotiate Protocol DoSdos/windows/smtp/ms06_019_exchange 2004-11-12 normal MS06-019 Exchange MODPROP Heap Overflowdos/windows/tftp/pt360_write 2008-10-29 normal PacketTrap TFTP Server 2.2.5459.0 DoSdos/windows/tftp/solarwinds 2010-05-21 normal SolarWinds TFTP Server 10.4.0.10 Denial of Servicedos/wireshark/chunked 2007-02-22 normal Wireshark chunked_encoding_dissector function DOSdos/wireshark/cldap 2011-03-01 normal Wireshark CLDAP Dissector DOSdos/wireshark/ldap 2008-03-28 normal Wireshark LDAP dissector DOSfuzzers/dns/dns_fuzzer normal DNS and DNSSEC Fuzzerfuzzers/ftp/client_ftp normal Simple FTP Client Fuzzerfuzzers/ftp/ftp_pre_post normal Simple FTP Fuzzerfuzzers/http/http_form_field normal HTTP Form Field Fuzzerfuzzers/http/http_get_uri_long normal HTTP GET Request URI Fuzzer (Incrementing Lengths)fuzzers/http/http_get_uri_strings normal HTTP GET Request URI Fuzzer (Fuzzer Strings)fuzzers/smb/smb2_negotiate_corrupt normal SMB Negotiate SMB2 Dialect Corruptionfuzzers/smb/smb_create_pipe normal SMB Create Pipe Request Fuzzerfuzzers/smb/smb_create_pipe_corrupt normal SMB Create Pipe Request Corruptionfuzzers/smb/smb_negotiate_corrupt normal SMB Negotiate Dialect Corruptionfuzzers/smb/smb_ntlm1_login_corrupt normal SMB NTLMv1 Login Request Corruptionfuzzers/smb/smb_tree_connect normal SMB Tree Connect Request Fuzzerfuzzers/smb/smb_tree_connect_corrupt normal SMB Tree Connect Request Corruptionfuzzers/smtp/smtp_fuzzer normal SMTP Simple Fuzzerfuzzers/ssh/ssh_kexinit_corrupt normal SSH Key Exchange Init Corruptionfuzzers/ssh/ssh_version_15 normal SSH 1.5 Version Fuzzerfuzzers/ssh/ssh_version_2 normal SSH 2.0 Version Fuzzerfuzzers/ssh/ssh_version_corrupt normal SSH Version Corruptionfuzzers/tds/tds_login_corrupt normal TDS Protocol Login Request Corruption Fuzzerfuzzers/tds/tds_login_username normal TDS Protocol Login Request Username Fuzzerfuzzers/wifi/fuzz_beacon normal Wireless Beacon Frame Fuzzerfuzzers/wifi/fuzz_proberesp normal Wireless Probe Response Frame Fuzzergather/android_htmlfileprovider normal Android Content Provider File Disclosuregather/checkpoint_hostname 2011-12-14 normal CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosuregather/citrix_published_applications normal Citrix MetaFrame ICA Published Applications Scannergather/citrix_published_bruteforce normal Citrix MetaFrame ICA Published Applications Bruteforcergather/corpwatch_lookup_id normal CorpWatch Company ID Information Searchgather/corpwatch_lookup_name normal CorpWatch Company Name Information Searchgather/d20pass 2012-01-19 normal General Electric D20 Password Recoverygather/dns_bruteforce normal DNS Brutefoce Enumerationgather/dns_info normal DNS Basic Information Enumerationgather/dns_reverse_lookup normal DNS Reverse Lookup Enumerationgather/dns_srv_enum normal DNS Common Service Record Enumerationgather/eaton_nsm_creds 2012-06-26 normal Network Shutdown Module <= 3.21 (sort_values) Credential Dumpergather/enum_dns normal DNS Record Scanner and Enumerator gather/impersonate_ssl normal HTTP SSL Certificate Impersonationgather/natpmp_external_address normal NAT-PMP External Address Scannergather/search_email_collector normal Search Engine Domain Email Address Collectorgather/shodan_search normal Shodan Searchgather/wp_w3_total_cache_hash_extract normal W3-Total-Cache WordPress-plugin 0.9.2.4 (or before) Username and Hash Extractgather/xbmc_traversal 2012-11-04 normal XBMC Web Server Directory Traversalpdf/foxit/authbypass 2009-03-09 normal Foxit Reader Authorization Bypassscanner/afp/afp_login normal Apple Filing Protocol Login Utilityscanner/afp/afp_server_info normal Apple Filing Protocol Info Enumeratorscanner/backdoor/energizer_duo_detect normal Energizer DUO Trojan Scannerscanner/db2/db2_auth normal DB2 Authentication Brute Force Utilityscanner/db2/db2_version normal DB2 Probe Utilityscanner/db2/discovery normal DB2 Discovery Service Detectionscanner/dcerpc/endpoint_mapper normal Endpoint Mapper Service Discoveryscanner/dcerpc/hidden normal Hidden DCERPC Service Discoveryscanner/dcerpc/management normal Remote Management Interface Discoveryscanner/dcerpc/tcp_dcerpc_auditor normal DCERPC TCP Service Auditorscanner/dect/call_scanner normal DECT Call Scannerscanner/dect/station_scanner normal DECT Base Station Scannerscanner/discovery/arp_sweep normal ARP Sweep Local Network Discoveryscanner/discovery/ipv6_multicast_ping normal IPv6 Link Local/Node Local Ping Discoveryscanner/discovery/ipv6_neighbor normal IPv6 Local Neighbor Discoveryscanner/discovery/ipv6_neighbor_router_advertisement normal IPv6 Local Neighbor Discovery Using Router Advertisementscanner/discovery/udp_probe normal UDP Service Proberscanner/discovery/udp_sweep normal UDP Service Sweeperscanner/emc/alphastor_devicemanager normal EMC AlphaStor Device Manager Servicescanner/emc/alphastor_librarymanager normal EMC AlphaStor Library Manager Servicescanner/finger/finger_users normal Finger Service User Enumeratorscanner/ftp/anonymous normal Anonymous FTP Access Detectionscanner/ftp/ftp_login normal FTP Authentication Scannerscanner/ftp/ftp_version normal FTP Version Scannerscanner/ftp/titanftp_xcrc_traversal 2010-06-15 normal Titan FTP XCRC Directory Traversal Information Disclosurescanner/h323/h323_version normal H.323 Version Scannerscanner/http/adobe_xml_inject normal Adobe XML External Entity Injectionscanner/http/apache_activemq_source_disclosure normal Apache ActiveMQ JSP files Source Disclosurescanner/http/apache_activemq_traversal normal Apache ActiveMQ Directory Traversalscanner/http/apache_userdir_enum normal Apache "mod_userdir" User Enumerationscanner/http/atlassian_crowd_fileaccess normal Atlassian Crowd XML Entity Expansion Remote File Accessscanner/http/axis_local_file_include normal Apache Axis2 v1.4.1 Local File Inclusionscanner/http/axis_login normal Apache Axis2 v1.4.1 Brute Force Utilityscanner/http/backup_file normal HTTP Backup File Scannerscanner/http/barracuda_directory_traversal 2010-10-08 normal Barracuda Multiple Product "locale" Directory Traversalscanner/http/bitweaver_overlay_type_traversal 2012-10-23 normal Bitweaver overlay_type Directory Traversalscanner/http/blind_sql_query normal HTTP Blind SQL Injection Scannerscanner/http/brute_dirs normal HTTP Directory Brute Force Scannerscanner/http/cert normal HTTP SSL Certificate Checkerscanner/http/cisco_device_manager 2000-10-26 normal Cisco Device HTTP Device Manager Accessscanner/http/cisco_ios_auth_bypass 2001-06-27 normal Cisco IOS HTTP Unauthorized Administrative Accessscanner/http/cisco_nac_manager_traversal normal Cisco Network Access Manager Directory Traversal Vulnerabilityscanner/http/clansphere_traversal 2012-10-23 normal ClanSphere 2011.3 Local File Inclusion Vulnerabilityscanner/http/cold_fusion_version normal ColdFusion Version Scannerscanner/http/coldfusion_locale_traversal normal ColdFusion Server Checkscanner/http/concrete5_member_list normal Concrete5 Member List Enumerationscanner/http/copy_of_file normal HTTP Copy File Scannerscanner/http/crawler normal Web Site Crawlerscanner/http/dell_idrac normal Dell iDRAC default Loginscanner/http/dir_listing normal HTTP Directory Listing Scannerscanner/http/dir_scanner normal HTTP Directory Scannerscanner/http/dir_webdav_unicode_bypass normal MS09-020 IIS6 WebDAV Unicode Auth Bypass Directory Scannerscanner/http/dolibarr_login normal Dolibarr ERP & CRM 3 Login Utilityscanner/http/drupal_views_user_enum 2010-07-02 normal Drupal Views Module Users Enumerationscanner/http/ektron_cms400net normal Ektron CMS400.NET Default Password Scannerscanner/http/enum_wayback normal Archive.org Stored Domain URLsscanner/http/error_sql_injection normal HTTP Error Based SQL Injection Scannerscanner/http/file_same_name_dir normal HTTP File Same Name Directory Scannerscanner/http/files_dir normal HTTP Interesting File Scannerscanner/http/frontpage_login normal FrontPage Server Extensions Anonymous Login Scannerscanner/http/glassfish_login normal GlassFish Brute Force Utilityscanner/http/groupwise_agents_http_traversal normal Novell Groupwise Agents HTTP Directory Traversalscanner/http/hp_sitescope_getfileinternal_fileaccess normal HP SiteScope SOAP Call getFileInternal Remote File Accessscanner/http/hp_sitescope_getsitescopeconfiguration normal HP SiteScope SOAP Call getSiteScopeConfiguration Configuration Accessscanner/http/hp_sitescope_loadfilecontent_fileaccess normal HP SiteScope SOAP Call loadFileContent Remote File Accessscanner/http/http_hsts normal HTTP Strict Transport Security (HSTS) Detectionscanner/http/http_login normal HTTP Login Utilityscanner/http/http_put normal HTTP Writable Path PUT/DELETE File Accessscanner/http/http_traversal normal Generic HTTP Directory Traversal Utilityscanner/http/http_version normal HTTP Version Detectionscanner/http/httpbl_lookup normal Http:BL Lookupscanner/http/iis_internal_ip normal Microsoft IIS HTTP Internal IP Disclosurescanner/http/jboss_vulnscan normal JBoss Vulnerability Scannerscanner/http/joomla_pages normal Joomla Page Scannerscanner/http/joomla_plugins normal Joomla Plugins Scannerscanner/http/joomla_version normal Joomla Version Scannerscanner/http/litespeed_source_disclosure normal LiteSpeed Source Code Disclosure/Downloadscanner/http/lucky_punch normal HTTP Microsoft SQL Injection Table XSS Infectionscanner/http/majordomo2_directory_traversal 2011-03-08 normal Majordomo2 _list_file_get() Directory Traversalscanner/http/manageengine_deviceexpert_traversal 2012-03-18 normal ManageEngine DeviceExpert 5.6 ScheduleResultViewer FileName Traversalscanner/http/manageengine_securitymanager_traversal 2012-10-19 normal ManageEngine SecurityManager Plus 5.5 Directory Traversalscanner/http/mod_negotiation_brute normal Apache HTTPD mod_negotiation Filename Bruterscanner/http/mod_negotiation_scanner normal Apache HTTPD mod_negotiation Scannerscanner/http/ms09_020_webdav_unicode_bypass normal MS09-020 IIS6 WebDAV Unicode Authentication Bypassscanner/http/netdecision_traversal 2012-03-07 normal NetDecision NOCVision Server Directory Traversalscanner/http/nginx_source_disclosure normal Nginx Source Code Disclosure/Downloadscanner/http/novell_file_reporter_fsfui_fileaccess 2012-11-16 normal NFR Agent FSFUI Record Arbitrary Remote File Accessscanner/http/novell_file_reporter_srs_fileaccess 2012-11-16 normal NFR Agent SRS Record Arbitrary Remote File Accessscanner/http/open_proxy normal HTTP Open Proxy Detectionscanner/http/options normal HTTP Options Detectionscanner/http/owa_login normal Outlook Web App (OWA) Brute Force Utilityscanner/http/prev_dir_same_name_file normal HTTP Previous Directory File Scannerscanner/http/rails_json_yaml_scanner normal Ruby on Rails JSON Processor YAML Deserialization Scannerscanner/http/rails_mass_assignment normal Ruby On Rails Attributes Mass Assignment Scannerscanner/http/rails_xml_yaml_scanner normal Ruby on Rails XML Processor YAML Deserialization Scannerscanner/http/replace_ext normal HTTP File Extension Scannerscanner/http/rewrite_proxy_bypass normal Apache Reverse Proxy Bypass Vulnerability Scannerscanner/http/robots_txt normal HTTP Robots.txt Content Scannerscanner/http/s40_traversal 2011-04-07 normal S40 0.4.2 CMS Directory Traversal Vulnerabilityscanner/http/sap_businessobjects_user_brute normal SAP BusinessObjects User Bruteforcerscanner/http/sap_businessobjects_user_brute_web normal SAP BusinessObjects Web User Bruteforcerscanner/http/sap_businessobjects_user_enum normal SAP BusinessObjects User Enumerationscanner/http/sap_businessobjects_version_enum normal SAP BusinessObjects Version Detectionscanner/http/scraper normal HTTP Page Scraperscanner/http/simple_webserver_traversal 2013-01-03 normal Simple Web Server 2.3-RC1 Directory Traversalscanner/http/soap_xml normal HTTP SOAP Verb/Noun Brute Force Scannerscanner/http/sockso_traversal 2012-03-14 normal Sockso Music Host Server 1.5 Directory Traversalscanner/http/splunk_web_login normal Splunk Web interface Login Utilityscanner/http/sqlmap normal SQLMAP SQL Injection External Modulescanner/http/squid_pivot_scanning normal Squid Proxy Port Scannerscanner/http/squiz_matrix_user_enum 2011-11-08 normal Squiz Matrix User Enumeration Scannerscanner/http/ssl normal HTTP SSL Certificate Informationscanner/http/svn_scanner normal HTTP Subversion Scannerscanner/http/svn_wcdb_scanner normal SVN wc.db Scannerscanner/http/sybase_easerver_traversal 2011-05-25 normal Sybase Easerver 6.3 Directory Traversalscanner/http/symantec_brightmail_logfile 2012-11-30 normal Symantec Messaging Gateway 9.5 Log File Download Vulnerabilityscanner/http/titan_ftp_admin_pwd normal Titan FTP Administrative Password Disclosurescanner/http/tomcat_enum normal Apache Tomcat User Enumerationscanner/http/tomcat_mgr_login normal Tomcat Application Manager Login Utilityscanner/http/trace normal HTTP TRACE Detectionscanner/http/trace_axd normal HTTP trace.axd Content Scannerscanner/http/vcms_login normal V-CMS Login Utilityscanner/http/verb_auth_bypass normal HTTP Verb Authentication Bypass Scannerscanner/http/vhost_scanner normal HTTP Virtual Host Brute Force Scannerscanner/http/vmware_server_dir_trav normal VMware Server Directory Traversal Vulnerabilityscanner/http/vmware_update_manager_traversal 2011-11-21 normal VMWare Update Manager 4 Directory Traversalscanner/http/wangkongbao_traversal normal WANGKONGBAO CNS-1000 and 1100 UTM Directory Traversalscanner/http/web_vulndb normal HTTP Vuln Scannerscanner/http/webdav_internal_ip normal HTTP WebDAV Internal IP Scannerscanner/http/webdav_scanner normal HTTP WebDAV Scannerscanner/http/webdav_website_content normal HTTP WebDAV Website Content Scannerscanner/http/webpagetest_traversal 2012-07-13 normal WebPageTest Directory Traversalscanner/http/wordpress_login_enum normal WordPress Brute Force and User Enumeration Utilityscanner/http/wordpress_pingback_access normal WordPress Pingback Locatorscanner/http/xpath normal HTTP Blind XPATH 1.0 Injectorscanner/http/yaws_traversal 2011-11-25 normal Yaws Web Server Directory Traversalscanner/http/zenworks_assetmanagement_fileaccess normal Novell ZENworks Asset Management 7.5 Remote File Accessscanner/http/zenworks_assetmanagement_getconfig normal Novell ZENworks Asset Management 7.5 Configuration Accessscanner/imap/imap_version normal IMAP4 Banner Grabberscanner/ip/ipidseq normal IPID Sequence Scannerscanner/lotus/lotus_domino_hashes normal Lotus Domino Password Hash Collectorscanner/lotus/lotus_domino_login normal Lotus Domino Brute Force Utilityscanner/lotus/lotus_domino_version normal Lotus Domino Versionscanner/misc/cctv_dvr_login normal CCTV DVR Login Scanning Utilityscanner/misc/dvr_config_disclosure normal Multiple DVR Manufacturers Configuration Disclosurescanner/misc/ib_service_mgr_info normal Borland InterBase Services Manager Informationscanner/misc/java_rmi_server 2011-10-15 normal Java RMI Server Insecure Endpoint Code Execution Scannerscanner/misc/oki_scanner normal OKI Printer Default Login Credential Scannerscanner/misc/raysharp_dvr_passwords normal Ray Sharp DVR Password Retrieverscanner/misc/redis_server normal Redis-server Scannerscanner/misc/rosewill_rxs3211_passwords normal Rosewill RXS-3211 IP Camera Password Retrieverscanner/misc/sunrpc_portmapper normal SunRPC Portmap Program Enumeratorscanner/misc/zenworks_preboot_fileaccess normal Novell ZENworks Configuration Management Preboot Service Remote File Accessscanner/mongodb/mongodb_login normal MongoDB Login Utilityscanner/motorola/timbuktu_udp 2009-09-25 normal Motorola Timbuktu Service Detectionscanner/msf/msf_rpc_login normal Metasploit RPC Interface Login Utilityscanner/msf/msf_web_login normal Metasploit Web interface Login Utilityscanner/mssql/mssql_hashdump normal MSSQL Password Hashdumpscanner/mssql/mssql_login normal MSSQL Login Utilityscanner/mssql/mssql_ping normal MSSQL Ping Utilityscanner/mssql/mssql_schemadump normal MSSQL Schema Dumpscanner/mysql/mysql_authbypass_hashdump 2012-06-09 normal MySQL Authentication Bypass Password Dumpscanner/mysql/mysql_file_enum normal MYSQL File/Directory Enumeratorscanner/mysql/mysql_hashdump normal MYSQL Password Hashdumpscanner/mysql/mysql_login normal MySQL Login Utilityscanner/mysql/mysql_schemadump normal MYSQL Schema Dumpscanner/mysql/mysql_version normal MySQL Server Version Enumerationscanner/natpmp/natpmp_portscan normal NAT-PMP External Port Scannerscanner/nessus/nessus_ntp_login normal Nessus NTP Login Utilityscanner/nessus/nessus_xmlrpc_login normal Nessus XMLRPC Interface Login Utilityscanner/nessus/nessus_xmlrpc_ping normal Nessus XMLRPC Interface Ping Utilityscanner/netbios/nbname normal NetBIOS Information Discoveryscanner/netbios/nbname_probe normal NetBIOS Information Discovery Proberscanner/nexpose/nexpose_api_login normal NeXpose API Interface Login Utilityscanner/nfs/nfsmount normal NFS Mount Scannerscanner/ntp/ntp_monlist normal NTP Monitor List Scannerscanner/ntp/ntp_readvar normal NTP Clock Variables Disclosurescanner/openvas/openvas_gsad_login normal OpenVAS gsad Web interface Login Utilityscanner/openvas/openvas_omp_login normal OpenVAS OMP Login Utilityscanner/openvas/openvas_otp_login normal OpenVAS OTP Login Utilityscanner/oracle/emc_sid normal Oracle Enterprise Manager Control SID Discoveryscanner/oracle/isqlplus_login normal Oracle iSQL*Plus Login Utilityscanner/oracle/isqlplus_sidbrute normal Oracle isqlplus SID Checkscanner/oracle/oracle_hashdump normal Oracle Password Hashdumpscanner/oracle/oracle_login normal Oracle RDBMS Login Utilityscanner/oracle/sid_brute normal Oracle TNS Listener SID Bruteforcescanner/oracle/sid_enum 2009-01-07 normal Oracle TNS Listener SID Enumerationscanner/oracle/spy_sid normal Oracle Application Server Spy Servlet SID Enumerationscanner/oracle/tnslsnr_version 2009-01-07 normal Oracle TNS Listener Service Version Queryscanner/oracle/xdb_sid normal Oracle XML DB SID Discoveryscanner/oracle/xdb_sid_brute normal Oracle XML DB SID Discovery via Brute Forcescanner/pcanywhere/pcanywhere_login normal PcAnywhere Login Scannerscanner/pcanywhere/pcanywhere_tcp normal PcAnywhere TCP Service Discoveryscanner/pcanywhere/pcanywhere_udp normal PcAnywhere UDP Service Discoveryscanner/pop3/pop3_login normal POP3 Login Utilityscanner/pop3/pop3_version normal POP3 Banner Grabberscanner/portscan/ack normal TCP ACK Firewall Scannerscanner/portscan/ftpbounce normal FTP Bounce Port Scannerscanner/portscan/syn normal TCP SYN Port Scannerscanner/portscan/tcp normal TCP Port Scannerscanner/portscan/xmas normal TCP "XMas" Port Scannerscanner/postgres/postgres_hashdump normal Postgres Password Hashdumpscanner/postgres/postgres_login normal PostgreSQL Login Utilityscanner/postgres/postgres_schemadump normal Postgres Schema Dumpscanner/postgres/postgres_version normal PostgreSQL Version Probescanner/rdp/ms12_020_check normal MS12-020 Microsoft Remote Desktop Checkerscanner/rogue/rogue_recv normal Rogue Gateway Detection: Receiverscanner/rogue/rogue_send normal Rogue Gateway Detection: Senderscanner/rservices/rexec_login normal rexec Authentication Scannerscanner/rservices/rlogin_login normal rlogin Authentication Scannerscanner/rservices/rsh_login normal rsh Authentication Scannerscanner/sap/sap_icm_urlscan normal SAP URL Scannerscanner/sap/sap_mgmt_con_abaplog normal SAP Management Console ABAP syslogscanner/sap/sap_mgmt_con_brute_login normal SAP Management Console Brute Forcescanner/sap/sap_mgmt_con_extractusers normal SAP Management Console Extract Usersscanner/sap/sap_mgmt_con_getaccesspoints normal SAP Management Console Get Access Pointsscanner/sap/sap_mgmt_con_getenv normal SAP Management Console getEnvironmentscanner/sap/sap_mgmt_con_getlogfiles normal SAP Management Console Get Logfilescanner/sap/sap_mgmt_con_getprocesslist normal SAP Management Console GetProcessListscanner/sap/sap_mgmt_con_getprocessparameter normal SAP Management Console Get Process Parametersscanner/sap/sap_mgmt_con_instanceproperties normal SAP Management Console Instance Propertiesscanner/sap/sap_mgmt_con_listlogfiles normal SAP Management Console List Logfilesscanner/sap/sap_mgmt_con_startprofile normal SAP Management Console getStartProfilescanner/sap/sap_mgmt_con_version normal SAP Management Console Version Detectionscanner/sap/sap_router_info_request normal SAPRouter Admin Requestscanner/sap/sap_service_discovery normal SAP Service Discoveryscanner/sap/sap_soap_bapi_user_create1 normal SAP /sap/bc/soap/rfc SOAP Service BAPI_USER_CREATE1 Function User Creationscanner/sap/sap_soap_rfc_brute_login normal SAP /sap/bc/soap/rfc SOAP Service RFC_PING Login Brute Forcerscanner/sap/sap_soap_rfc_dbmcli_sxpg_call_system_command_exec normal SAP /sap/bc/soap/rfc SOAP Service SXPG_CALL_SYSTEM Function Command Injectionscanner/sap/sap_soap_rfc_dbmcli_sxpg_command_exec normal SAP /sap/bc/soap/rfc SOAP Service SXPG_COMMAND_EXEC Function Command Injectionscanner/sap/sap_soap_rfc_ping normal SAP /sap/bc/soap/rfc SOAP Service RFC_PING Function Service Discoveryscanner/sap/sap_soap_rfc_read_table normal SAP /sap/bc/soap/rfc SOAP Service RFC_READ_TABLE Function Dump Datascanner/sap/sap_soap_rfc_susr_rfc_user_interface normal SAP /sap/bc/soap/rfc SOAP Service SUSR_RFC_USER_INTERFACE Function User Creationscanner/sap/sap_soap_rfc_sxpg_call_system_exec normal SAP /sap/bc/soap/rfc SOAP Service SXPG_CALL_SYSTEM Function Command Executionscanner/sap/sap_soap_rfc_sxpg_command_exec normal SAP SOAP RFC SXPG_COMMAND_EXECUTEscanner/sap/sap_soap_rfc_system_info normal SAP /sap/bc/soap/rfc SOAP Service RFC_SYSTEM_INFO Function Sensitive Information Gatheringscanner/sap/sap_soap_th_saprel_disclosure normal SAP /sap/bc/soap/rfc SOAP Service TH_SAPREL Function Information Disclosurescanner/sap/sap_web_gui_brute_login normal SAP Web GUI Login Brute Forcerscanner/scada/digi_addp_reboot normal Digi ADDP Remote Reboot Initiatorscanner/scada/digi_addp_version normal Digi ADDP Information Discoveryscanner/scada/digi_realport_serialport_scan normal Digi RealPort Serial Server Port Scannerscanner/scada/digi_realport_version normal Digi RealPort Serial Server Versionscanner/scada/indusoft_ntwebserver_fileaccess normal Indusoft WebStudio NTWebServer Remote File Accessscanner/scada/koyo_login 2012-01-19 normal Koyo DirectLogic PLC Password Brute Force Utilityscanner/scada/modbus_findunitid 2012-10-28 normal Modbus Unit ID and Station ID Enumeratorscanner/scada/modbusclient 2011-11-01 normal Modbus Client Utilityscanner/scada/modbusdetect 2011-11-01 normal Modbus Version Scannerscanner/scada/sielco_winlog_fileaccess normal Sielco Sistemi Winlog Remote File Accessscanner/sip/enumerator normal SIP Username Enumerator (UDP)scanner/sip/enumerator_tcp normal SIP Username Enumerator (TCP)scanner/sip/options normal SIP Endpoint Scanner (UDP)scanner/sip/options_tcp normal SIP Endpoint Scanner (TCP)scanner/sip/sipdroid_ext_enum normal SIPDroid Extension Grabberscanner/smb/pipe_auditor normal SMB Session Pipe Auditorscanner/smb/pipe_dcerpc_auditor normal SMB Session Pipe DCERPC Auditorscanner/smb/psexec_loggedin_users normal Microsoft Windows Authenticated Logged In Users Enumerationscanner/smb/smb2 normal SMB 2.0 Protocol Detectionscanner/smb/smb_enumshares normal SMB Share Enumerationscanner/smb/smb_enumusers normal SMB User Enumeration (SAM EnumUsers)scanner/smb/smb_enumusers_domain normal SMB Domain User Enumerationscanner/smb/smb_login normal SMB Login Check Scannerscanner/smb/smb_lookupsid normal SMB Local User Enumeration (LookupSid)scanner/smb/smb_version normal SMB Version Detectionscanner/smtp/smtp_enum normal SMTP User Enumeration Utilityscanner/smtp/smtp_version normal SMTP Banner Grabberscanner/snmp/aix_version normal AIX SNMP Scanner Auxiliary Modulescanner/snmp/cisco_config_tftp normal Cisco IOS SNMP Configuration Grabber (TFTP)scanner/snmp/cisco_upload_file normal Cisco IOS SNMP File Upload (TFTP)scanner/snmp/snmp_enum normal SNMP Enumeration Modulescanner/snmp/snmp_enumshares normal SNMP Windows SMB Share Enumerationscanner/snmp/snmp_enumusers normal SNMP Windows Username Enumerationscanner/snmp/snmp_login normal SNMP Community Scannerscanner/snmp/snmp_set normal SNMP Set Modulescanner/snmp/xerox_workcentre_enumusers normal Xerox WorkCentre User Enumeration (SNMP)scanner/ssh/ssh_identify_pubkeys normal SSH Public Key Acceptance Scannerscanner/ssh/ssh_login normal SSH Login Check Scannerscanner/ssh/ssh_login_pubkey normal SSH Public Key Login Scannerscanner/ssh/ssh_version normal SSH Version Scannerscanner/telephony/wardial normal Wardialerscanner/telnet/lantronix_telnet_password normal Lantronix Telnet Password Recoveryscanner/telnet/lantronix_telnet_version normal Lantronix Telnet Service Banner Detectionscanner/telnet/telnet_encrypt_overflow normal Telnet Service Encyption Key ID Overflow Detectionscanner/telnet/telnet_login normal Telnet Login Check Scannerscanner/telnet/telnet_ruggedcom normal RuggedCom Telnet Password Generatorscanner/telnet/telnet_version normal Telnet Service Banner Detectionscanner/tftp/ipswitch_whatsupgold_tftp 2011-12-12 normal IpSwitch WhatsUp Gold TFTP Directory Traversalscanner/tftp/netdecision_tftp 2009-05-16 normal NetDecision 4.2 TFTP Directory Traversalscanner/tftp/tftpbrute normal TFTP Brute Forcerscanner/upnp/ssdp_msearch normal UPnP SSDP M-SEARCH Information Discoveryscanner/vmware/esx_fingerprint normal VMWare ESX/ESXi Fingerprint Scannerscanner/vmware/vmauthd_login normal VMWare Authentication Daemon Login Scannerscanner/vmware/vmauthd_version normal VMWare Authentication Daemon Version Scannerscanner/vmware/vmware_enum_permissions normal VMWare Enumerate Permissionsscanner/vmware/vmware_enum_sessions normal VMWare Enumerate Active Sessionsscanner/vmware/vmware_enum_users normal VMWare Enumerate User Accountsscanner/vmware/vmware_enum_vms normal VMWare Enumerate Virtual Machinesscanner/vmware/vmware_host_details normal VMWare Enumerate Host Detailsscanner/vmware/vmware_http_login normal VMWare Web Login Scannerscanner/vmware/vmware_screenshot_stealer normal VMWare Screenshot Stealerscanner/vnc/vnc_login normal VNC Authentication Scannerscanner/vnc/vnc_none_auth normal VNC Authentication None Detectionscanner/voice/recorder normal Telephone Line Voice Scannerscanner/vxworks/wdbrpc_bootline normal VxWorks WDB Agent Boot Parameter Scannerscanner/vxworks/wdbrpc_version normal VxWorks WDB Agent Version Scannerscanner/winrm/winrm_auth_methods normal WinRM Authentication Method Detectionscanner/winrm/winrm_cmd normal WinRM Command Runnerscanner/winrm/winrm_login normal WinRM Login Utilityscanner/winrm/winrm_wql normal WinRM WQL Query Runnerscanner/x11/open_x11 normal X11 No-Auth Scannerserver/browser_autopwn normal HTTP Client Automatic Exploiterserver/capture/drda normal Authentication Capture: DRDA (DB2, Informix, Derby)server/capture/ftp normal Authentication Capture: FTPserver/capture/http normal Authentication Capture: HTTPserver/capture/http_basic normal HTTP Client Basic Authentication Credential Collectorserver/capture/http_javascript_keylogger normal Capture: HTTP JavaScript Keyloggerserver/capture/http_ntlm normal HTTP Client MS Credential Catcherserver/capture/imap normal Authentication Capture: IMAPserver/capture/mssql normal Authentication Capture: MSSQLserver/capture/mysql normal Authentication Capture: MySQLserver/capture/pop3 normal Authentication Capture: POP3server/capture/postgresql normal Authentication Capture: PostgreSQLserver/capture/printjob_capture normal Printjob Capture Serviceserver/capture/sip normal Authentication Capture: SIPserver/capture/smb normal Authentication Capture: SMBserver/capture/smtp normal Authentication Capture: SMTPserver/capture/telnet normal Authentication Capture: Telnetserver/capture/vnc normal Authentication Capture: VNCserver/dhcp normal DHCP Serverserver/dns/spoofhelper normal DNS Spoofing Helper Serviceserver/fakedns normal Fake DNS Serviceserver/ftp normal FTP File Serverserver/http_ntlmrelay normal HTTP Client MS Credential Relayerserver/icmp_exfil normal ICMP Exfiltration Serviceserver/pxexploit normal PXE Boot Exploit Serverserver/socks4a normal Socks4a Proxy Serverserver/socks_unc normal SOCKS Proxy UNC Path Redirectionserver/tftp normal TFTP File Serverserver/webkit_xslt_dropper normal Cross Platform Webkit File Dropperserver/wpad normal WPAD.dat File Serversniffer/psnuffle normal pSnuffle Packet Snifferspoof/arp/arp_poisoning 1999-12-22 normal ARP Spoofspoof/cisco/dtp normal Forge Cisco DTP Packetsspoof/dns/bailiwicked_domain 2008-07-21 normal DNS BailiWicked Domain Attackspoof/dns/bailiwicked_host 2008-07-21 normal DNS BailiWicked Host Attackspoof/dns/compare_results 2008-07-21 normal DNS Lookup Result Comparisonspoof/llmnr/llmnr_response normal LLMNR Spooferspoof/nbns/nbns_response normal NetBIOS Name Service Spooferspoof/replay/pcap_replay normal Pcap Replay Utilityspoof/wifi/airpwn normal Airpwn TCP Hijackspoof/wifi/dnspwn normal DNSpwn DNS Hijacksqli/oracle/dbms_cdc_ipublish 2008-10-22 normal Oracle DB SQL Injection via SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCEsqli/oracle/dbms_cdc_publish 2008-10-22 normal Oracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCEsqli/oracle/dbms_cdc_publish2 2010-04-26 normal Oracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.DROP_CHANGE_SOURCEsqli/oracle/dbms_cdc_publish3 2010-10-13 normal Oracle DB SQL Injection via SYS.DBMS_CDC_PUBLISH.CREATE_CHANGE_SETsqli/oracle/dbms_cdc_subscribe_activate_subscription 2005-04-18 normal Oracle DB SQL Injection via SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTIONsqli/oracle/dbms_export_extension 2006-04-26 normal Oracle DB SQL Injection via DBMS_EXPORT_EXTENSIONsqli/oracle/dbms_metadata_get_granted_xml 2008-01-05 normal Oracle DB SQL Injection via SYS.DBMS_METADATA.GET_GRANTED_XMLsqli/oracle/dbms_metadata_get_xml 2008-01-05 normal Oracle DB SQL Injection via SYS.DBMS_METADATA.GET_XMLsqli/oracle/dbms_metadata_open 2008-01-05 normal Oracle DB SQL Injection via SYS.DBMS_METADATA.OPENsqli/oracle/droptable_trigger 2009-01-13 normal Oracle DB SQL Injection in MDSYS.SDO_TOPO_DROP_FTBL Triggersqli/oracle/jvm_os_code_10g 2010-02-01 normal Oracle DB 10gR2, 11gR1/R2 DBMS_JVM_EXP_PERMS OS Command Executionsqli/oracle/jvm_os_code_11g 2010-02-01 normal Oracle DB 11g R1/R2 DBMS_JVM_EXP_PERMS OS Code Executionsqli/oracle/lt_compressworkspace 2008-10-13 normal Oracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACEsqli/oracle/lt_findricset_cursor 2007-10-17 normal Oracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Methodsqli/oracle/lt_mergeworkspace 2008-10-22 normal Oracle DB SQL Injection via SYS.LT.MERGEWORKSPACEsqli/oracle/lt_removeworkspace 2008-10-13 normal Oracle DB SQL Injection via SYS.LT.REMOVEWORKSPACEsqli/oracle/lt_rollbackworkspace 2009-05-04 normal Oracle DB SQL Injection via SYS.LT.ROLLBACKWORKSPACEvoip/asterisk_login normal Asterisk Manager Login Utilityvoip/sip_deregister normal SIP Deregister Extensionvoip/sip_invite_spoof normal SIP Invite Spoofvsploit/malware/dns/dns_mariposa normal VSploit Mariposa DNS Query Modulevsploit/malware/dns/dns_query normal VSploit DNS Beaconing Emulationvsploit/malware/dns/dns_zeus normal VSploit Zeus DNS Query Modulevsploit/pii/email_pii normal VSploit Email PIIvsploit/pii/web_pii normal VSploit Web PII
这个命令会显示所有的辅助模块以及他们的用途。在Metasploit中,辅助模块的用途非常广泛,它们可以是扫描器、拒绝服务攻击工具、Fuzz测试器,以及其他类型的工具。
3. msf > show options
当你选择了一个模块,并输入msf > show options 后,会列出这个模块所需的各种参数。如果当你没有选择任何模块,那么输入这个命令会显示所有的全局参数。
4. msf > show payloads
该命令会将与的那个钱模块兼容的攻击载荷显示出来
5. setg和unsetg命令能够对全局参数进行设置或者清除。使用这组命令会让你不必每次遇到某个参数都要从新设置。6. save 在使用setg命令对全局参数进行设置后,可以用save命令将当前的设置保存闲来,这样在下次启动MSF终端时还可以使用这些设置值,在Metasploit中,可以在任何时候输入save命令保存当前的状态。
转载于:https://www.cnblogs.com/evilxr/p/3843260.html