CANVAS modules: vd_crystal - [0day] Crystal Reports Server 2008 DoS vd_crystal2 - [0day] Crystal Reports Server 2008

exploit vd_crystal3 - [0day] Crystal Reports Server 2008 heap overflow (trigger) vd_lotus8 - [0day] Lotus Domino Server 8.0 DoS vd_lotus9 - Tool: Send a message to all people logged on to Sametime vd_lotus10 - Tool: Query interesting info from Sametime server vd_ldap_fuzz - Tool: effective LDAP Bind request fuzzer (rewritten ProtoVer testcase) vd_landesk - [0day] LANDesk Management Gateway exploit vd_landesk2 - LANDesk Management Agent info retrieval vd_landesk3 - [0day] LANDesk Management Suite 8.8 exploit vd_landesk4 - [0day] LANDesk Management Suite 8.8 exploit (II) vd_lsws - [0day] LiteSpeed WebServer 3.3.19 DoS vd_lsws2 - [0day] LiteSpeed WebServer 3.3.19 exploit vd_censornet - [0day] CensorNet Professional exploit vd_sap4 - [0day] SAP NetWeaver 7.01 query info vd_sap5 - [0day] SAP NetWeaver 7.01 DoS vd_sap6 - [0day] SAP NetWeaver 7.01 heap overflow (trigger) vd_osbackup - Oracle Secure Backup 10.1.0.3 exploit vd_weblogic - [0day] Oracle WebLogic Server 10.3 exploit vd_weblogic2 - [0day] Oracle WebLogic Server 10.3 exploit (II) vd_weblogic3 - [0day] Oracle WebLogic Server 10.3 vulnerability (trigger) vd_weblogic4 - [0day] Oracle WebLogic Server 10.3 vulnerability II(trigger) vd_sun6 - [0day] Sun Java System Directory Server 6.1 DoS vd_tivoli5 - [0day] IBM Tivoli Directory 6.0 heap corruption (trigger) vd_whatsup - [0day] Ipswitch WhatsUp Gold v12 DoS vd_sapgui2 - SAP GUI 7.10 proof of concept exploit vd_novell5 - [0day] Novell eDirectory 8.7.3 SP10b DoS vd_novell6 - [0day] Novell eDirectory 8.7.3 SP10b overflow (trigger) vd_novell7 - [0day] Novell eDirectory DoS vd_iprint - [0day] Novell iPrint Client 4.38 exploit vd_realserver10 - [0day] Helix Server overflow (trigger) vd_casp6 - [0day] Sun Java System Active Server Pages 4.0.3 exploit vd_casp7 - [0day] Sun Java System Active Server Pages 4.0.3 exploit (II) vd_casp8 - [0day] Sun Java System Active Server Pages 4.0.3 exploit (III) vd_casp9 - [0day] Sun Java System Active Server Pages 4.0.3 overflow (trigger) vd_hpnnm10 - [0day] HP OpenView Network Node Manager 7.53 exploit vd_ipswitch - [0day] Ipswitch IMail Server 10 exploit vd_ipswitch2 - [0day] Ipswitch IMail Server 10 exploit (II) vd_ipswitch3 - [0day] Ipswitch IMail Server 10 exploit (proof of concept) vd_ipswitch4 - [0day] Ipswitch IMail 10 DoS vd_ipswitch5 - [0day] Ipswitch Instant Messaging Server DoS vd_perforce - [0day] Perforce Server DoS vd_perforce2 - [0day] Perforce Server DoS (II) vd_perforce3 - [0day] Perforce Server DoS (III) vd_perforce4 - [0day] Perforce Server proof of concept exploit vd_novell4 - [0day] Novell eDirectory 8.7.3 SP10b DoS vd_symantec4 - [0day] Symantec Altiris Deployment Solution 6.9 DoS vd_samba7 - [0day] Samba 3.2.0 overflow (trigger) vd_samba8 - [0day] Samba 3.2.0 overflow (trigger, another bug) vd_samba9 - [0day] Samba 3.2.0 exploit (working proof of concept, FreeBSD) vd_apache - [0day] Apache 2 DoS vd_apache3 - [0day] Apache 2 exploit (proof of concept) vd_symantec - [0day] Symantec Altiris Deployment Solution 6.9 exploit vd_symantec2 - [0day] Symantec Altiris Deployment Solution 6.9 exploit (PoC)

vd_symantec3 - [0day] Symantec Altiris Deployment Solution 6.9 exploit vd_casp3 - Sun Java System Active Server Pages 4.0.2 exploit vd_casp4 - Sun Java System Active Server Pages 4.0.2 exploit (II) vd_casp5 - Sun Java System Active Server Pages 4.0.2 exploit (proof of concept) vd_hpnnm4 - [0day] HP OpenView Network Node Manager 7.53 exploit (Windows) vd_hpnnm5 - HP OpenView Network Node Manager 7.53 directory traversal vd_dqf - [0day] DAQFactory 5.77 overflow (trigger) vd_sap - [0day] SAP NetWeaver 7.0 DoS vd_sap2 - SAP NetWeaver 7.0 - query useful info vd_sap3 - [0day] SAP NetWeaver 7.0 overflow (trigger) vd_oraclett3 - [0day] Oracle TimesTen In-Memory Database exploit vd_oraclett4 - [0day] Oracle TimesTen In-Memory Database DoS vd_oraclett5 - [0day] Oracle TimesTen In-Memory Database exploit (II) vd_virobot - [0day] HAURI ViRobot Desktop 5.5 overflow vd_hpnnm - [0day] HP OpenView Network Node Manager 7.53 exploit vd_hpnnm2 - [0day] HP OpenView Network Node Manager 7.53 exploit (II) vd_vlc2 - [0day] VLC player 0.8.6f exploit vd_qhav - [0day] Quick Heal AntiVirus overflow exploit vd_qhav2 - [0day] Quick Heal AntiVirus heap overflow (trigger) vd_powerarchier - [0day] PowerArchiver overflow vd_mailsite2 - [0day] MailSite 8.0.4 DoS vd_mailsite3 - [0day] MailSite 8.0.4 heap corruption (trigger) vd_realplayer2 - [0day] RealPlayer 10.0.9 overflow exploit (Linux) vd_realplayer3 - [0day] RealPlayer 11 overflow exploit (Windows XP) vd_realplayer - [0day] RealPlayer heap overflow (trigger) vd_maxdb3 - [0day] SAP DB/MaxDB remote exploit vd_sapgui - [0day] SAP GUI 6.40 stack overflow vd_simbuilder - [0day] Oracle Siebel SimBuilder exploit vd_capf - [0day] CA Personal Firewall exploit (PoC) vd_freeradius - [0day] FreeRADIUS 1.1.7 DoS vd_realserver9 - [0day] Helix Server 11.1.5 DoS vd_maxdb2 - [0day] MaxDB WebTools DoS vd_vshell - [0day] VanDyke VShell SSH server 3.0.1 DoS vd_ad - [0day] Microsoft Active Directory remote DoS vd_arkeia - [0day] Arkeia Backup Server stack overflow vd_av - [0day] Multiple Vendor Anti-Virus DoS vd_avgtcpsrv - [0day] GRISOFT AVG TCP Server 1.3.3 DoS vd_avgtcpsrv2 - [0day] GRISOFT AVG TCP Server 1.3.3 DoS (II) vd_avira - [0day] AVIRA AntiVir WebGate DoS vd_bitdefender - [0day] BitDefender Antivirus heap overflow (trigger) vd_brightstor - [0day] BrightStor ARCserve Backup 11.5 DoS vd_bsd - [0day] *BSD kernel remote DoS (different from vd_freebsd) vd_cache - [0day] InterSystems Cache' stack overflow exploit vd_cache2 - [0day] InterSystems Cache' heap overflow (trigger) vd_casp - [0day] Sun ONE ASP engine overflow vd_casp2 - [0day] Sun ONE ASP exploit vd_cg - [0day] CommuniGatePro Messaging Server 4.3.8 heap overflow vd_cg2 - [0day] CommuniGate Pro preauth remote DoS vd_cg3 - [0day] CommuniGate Pro 5.0.6 DoS (1) vd_cg4 - [0day] CommuniGate Pro 5.0.6 DoS (2) vd_cg5 - [0day] CommuniGate Pro 5.0.6 DoS (3) vd_cg6 - [0day] CommuniGate Pro 5.0.6 DoS (4) vd_cg7 - [0day] CommuniGate Pro 5.0.10 remote DoS vd_cgbrute - Bruteforce default admin password of CommuniGate Pro Server vd_clam - [0day] ClamAV 0.88.4 DoS vd_cyrus - [0day] Cyrus imapd 2.2.x eatline() remote DoS

vd_dirext - [0day] Symlabs Directory Extender 3.0 DoS vd_dirext2 - [0day] Symlabs Directory Extender stack overflow vd_dss - Darwin Streaming Proxy 5.5.5 DoS vd_escan - [0day] Microworld eScan Anti-Virus exploit vd_escan2 - [0day] Microworld eScan Anti-Virus exploit vd_eserv - [0day] Eserv/3 heap overflow vd_ethereal - [0day] Ethereal heap overflow (proof of concept) vd_exim - Exim 4.43 stack overflow (CAN-2005-0022) extremail - [0day] eXtremail 2.x stack overflow vd_fam - [0day] fam remote DoS vd_fedora - [0day] Fedora Directory Server 7.1 remote DoS vd_fedora2 - [0day] trigger for Fedora Directory Server 1.0.2 double free vulnerability vd_fedora2 - [0day] Fedora Directory Server 1.0.2 exploit vd_fedora4 - [0day] Fedora Directory Server 1.0.2 DoS vd_firebird - [0day] trigger for Firebird 1.5.2 heap overflow vd_fprot - [0day] F-PROT Antivirus for Linux overflow (trigger) vd_fprot2 - [0day] F-PROT Antivirus heap overflow vd_freebsd - [0day] FreeBSD remote kernel panic (via nfsd) vd_freesshd - [0day] FreeSSHD 1.0.9 overflow vd_freesshd2 - [0day] FreeSSHD 1.0.9 preauth DoS vd_gnutls - [0day] trigger for GnuTLS 1.2.9 overflow vd_imail - [0day] Ipswitch IMail imap4d32.exe remote DoS vd_imail2 - [0day] Ipswitch IMail stack overflow vd_ingres - [0day] trigger for CA Ingres 'iidbms' overflow vd_isode - [0day] Isode M-Vault 11.3 DoS vd_isode2 - [0day] Isode M-Vault 12.0v3 DoS vd_kms - [0day] Kerio MailServer remote DoS vd_kms2 - [0day] Kerio MailServer remote DoS (postauth) vd_kms3 - [0day] Kerio MailServer heap overflow vd_kms4 - [0day] Kerio MailServer 6.x preauth DoS vd_kms5 - [0day] Kerio MailServer 6.1.3 remote exploit vd_kms6 - [0day] Kerio MailServer 6.2.2 DoS vd_ldapinfo - Query interesting info from LDAP server vd_linuxsnmp - Linux kernel < 2.6.16.18 ip_nat_snmp_basic DoS (PoC) vd_lotus - [0day] Lotus Domino Server 6.5.4 NRPC remote DoS vd_lotus2 - [0day] Lotus Domino Server 6.5.4 nIMAP.exe stack overflow vd_lotus3 - [0day] Lotus Domino Server 6.5.4 nLDAP.EXE remote DoS vd_lotus4 - [0day] trigger for Lotus Domino Server 7.0 heap overflow vd_lotus5 - [0day] IBM Lotus Domino 6.5.4 DoS vd_lotus6 - [0day] trigger Lotus Domino Server 6.5.4 overflow vd_lotus7 - IBM Lotus Domino Server 7.0.2 heap overflow (trigger) LSASS.EXE remote DoS - [0day] LSASS.EXE remote DoS vd_mailenable - [0day] MailEnable SMTP/POP3 DoS vd_mailsite - [0day] MailSite IMAP4A.EXE heap overflow (postauth) vd_maxdb - [0day] MaxDB WebAgent stack overflow vd_mcafee - [0day] McAfee E-Business Server 8.0 remote DoS vd_mcafee2 - [0day] McAfee E-Business Server 8.1.0 heap overflow - TRIGGER vd_mdaemon - [0day] MDaemon remote DoS vd_mdaemon2 - [0day] MDaemon stack overflow vd_mercury - [0day] Mercury/32 v4.01b SMTP AUTH stack overflow vd_miranda - [0day] Miranda IM stack overflow (POC) vd_mysql - [0day] MySQL 4.1.x remote DoS vd_mysql2 - [0day] MySQL 5.0.x stack overflow vd_mysql3 - [0day] trigger for MySQL 5.0.x heap overflow vd_mysql4 - [0day] MySQL 5.0.21 DoS vd_networker - [0day] EMC Legato NetWorker Console DoS

vd_networker2 - [0day] trigger for EMC Legato NetWorker 7.3 heap overflow vd_networker3 - [0day] EMC Legato NetWorker 7.3.1 DoS vd_nfsaxe - [0day] nfsAxe 3.3 (NFS Server) DoS vd_noticeware - [0day] NoticeWare EmailServer preauth remote DoS vd_noticeware - [0day] NoticeWare EmailServer preauth remote DoS (2) vd_novell - [0day] Novell eDirectory 8.8 stack overflow vd_novell2 - [0day] trigger for Novell eDirectory 8.8 double free vulnerability vd_novell3 - [0day] Novell eDirectory 8.8 DoS vd_nss - [0day] NSS 3.3.4.5 / Sun WebServer 6.0SP9 overflow (proof of concept) vd_ntpd - [0day] ntpd stack overflow (trigger) vd_openldap - [0day] OpenLDAP 2.2.23 DoS vd_openssl - [0day] OpenSSL DoS vd_openssl2 - [0day] OpenSSL heap overflow vd_openssl3 - [0day] trigger for OpenSSL heap overflow vd_oracle - [0day] Oracle Application Server 10g R2 heap corruption(trigger) vd_oracle2 - [0day] Oracle Application Server 10g R2 heap corruption(trigger) vd_oracle3 - [0day] Oracle Application Server 10g R2 stack overflow vd_oracle4 - [0day] Oracle Application Server 10g R2 DoS vd_oracle5 - [0day] Oracle Application Server 10g R2 DoS vd_oracle6 - [0day] Oracle Secure Backup DoS vd_oraclett - [0day] Oracle TimesTen 7.0.2 DoS vd_oraclett2 - [0day] Oracle TimesTen 7.0.2 overflow (trigger) vd_panda - [0day] Panda Antivirus DoS vd_peercast - [0day] trigger for PeerCast stack overflow vd_php - [0day] PHP 5.0.3 DoS vd_pragmafortress - [0day] Pragma Fortress SSH2 stack overflow vd_proftpd - [0day] ProFTPD stack overflow vd_proftpd2 - [0day] trigger for ProFTPD mod_tls preauth overflow vd_radiant - [0day] RadiantOne Virtual Directory Server remote root vd_radiusnt - [0day] RadiusNT 5.0.58 remote DoS vd_realserver - [0day] RealServer DoS vd_realserver2 - [0day] RealServer DoS (2) vd_realserver3 - [0day] trigger for RealServer 9.08 heap overflow vd_realserver4 - [0day] Helix Server heap overflow (POC) vd_realserver5 - [0day] Helix Server DoS vd_realserver6 - [0day] Helix Server 11.1 overflow (postauth) vd_realserver7 - Helix Server password brutefore vd_realserver8 - [0day] Helix Server heap overflow (trigger) vd_samba - [0day] Samba 3.x stack overflow vd_samba2 - [0day] Samba 2.2.x heap overflow vd_samba3 - [0day] Samba 2.2.x stack overflow vd_samba4 - [0day] Samba 3.0.24 remote command injection (proof of concept) vd_samba5 - [0day] Samba 3.0.24 remote command execution (II) vd_scan - Scans hosts on a network with VulnDisco modules vd_scosnmpd - [0day] SCO OpenServer snmpd crash vd_sidvault - [0day] SIDVault v2.0c DoS vd_silcd - [0day] silcd 1.0 DoS (via null pointer dereference) vd_solaris - [0day] Solaris remote kernel panic (via nfsd) vd_squid - [0day] Squid Cache 3.0 DoS vd_storix - Storix Backup Server 5.2.0.3 exploit vd_sun - [0day] Sun ONE Directory Server 5.2 remote DoS vd_sun2 - [0day] trigger for Sun Directory Server 5.2 format string bug vd_sun3 - [0day] Sun Java System Web Proxy Server 4.0.3 overflow vd_sun4 - Sun Java System Web Proxy Server 4.0.3 exploit (POC) vd_sun5 - Sun Java System Web Proxy Server 4.0.5 overflow (trigger) vd_surgeftp - [0day] SurgeFTP 2.3a1 remote DoS

vd_surgemail - [0day] SurgeMail heap overflow vd_symlabs - [0day] Symlabs Federated Identity Access Manager DoS vd_symlabs2 - [0day] Symlabs Federated Identity Access Manager DoS (2) vd_tcpdump - [0day] TCPDUMP 3.9.1 BOOTP remote DoS vd_tcpdump2 - [0day] TCPDUMP 3.9.1 NFS remote DoS vd_tivoli - [0day] IBM Tivoli Directory Server V6.0 remote DoS vd_tivoli2 - [0day] IBM Tivoli Directory Server 6.0 DoS vd_tivoli3 - [0day] IBM Tivoli Directory Admin Server 6.0 DoS vd_tivoli4 - [0day] IBM Tivoli Directory Server 6.0 DoS vd_tpm - IBM Tivoli Provisioning Manager for OS Deployment stack overflow vd_viruswall - [0day] Trend Micro InterScan VirusWall HTTP proxy DoS vd_vms - [0day] VisNetic MailServer exploit vd_wmailserver - Darsite wMailServer stack overflow vd_worldmail - [0day] Qualcomm Eudora Worldmail 3.0 stack overflow vd_worldmail2 - [0day] QUALCOMM WorldMail 3.x preauth heap overflow vd_worldmail3 - [0day] Eudora WorldMail preauth DoS vd_worldmail4 - [0day] Eudora WorldMail 4.0 DoS vd_xlink - [0day] XLink NFS (Omni-NFS) Server 4.2 overflow vd_xlink2 - [0day] XLink FTP Client stack overflow xtacacsd - [0day] xtacacsd stack overflow vd_xtradius - [0day] xtradiusd DoS vd_zrm - [0day] Zmanda Recovery Manager 1.1.4 for MySQL remote root Standalone exploits: oo1.py - [0day] OpenOffice 2.3.0 heap overflow (proof of concept) avira2 - [0day] AVIRA AntiVir DoS avira3 - [0day] AVIRA AntiVir heap corruption (trigger) fprot2.py - F-PROT AntiVirus DoS sav1.py - Sophos Anti-Virus DoS bitdefender1.py - BitDefender Antivirus DoS avira1.py - AVIRA AntiVir DoS nod1.py - NOD32 Antivirus DoS avg1.py - AVG Antivirus DoS fsav1.py - F-Secure Anti-Virus DoS drweb1.py - Dr.Web AntiVirus heap corruption drweb2.py - Dr.Web AntiVirus DoS fprot1.py - F-PROT AntiVirus heap overflow (trigger) libwpd1.py - libwpd 0.8.8 heap overflow fprot2.py - F-PROT AntiVirus heap overflow (trigger) xine1.py - xine heap overflow (trigger) vd_nov88sp2 - [0day] Novell eDirectory 8.8 SP2 DoS vd_mcafee3 - [0day] McAfee Network Agent DoS trustport1.py - TrustPort AntiVirus overflow (trigger) trustport2.py - TrustPort AntiVirus DoS (infinite loop) vd_hpnnm3 - [0day] HP OpenView Network Node Manager 7.53 exploit (Linux) vd_hpnnm6 - [0day] HP OpenView Network Node Manager 7.53 exploit (PoC) vd_hpnnm7 - [0day] HP OpenView Network Node Manager 7.53 exploit(PoC) vd_hpnnm8 - [0day] HP OpenView Network Node Manager 7.53 Denial of Service vd_hpnnm9 - [0day] HP OpenView Network Node Manager 7.53 information disclosure vd_wireshark1 - [0day] Wireshark heap overflow (trigger) vd_wireshark2 - [0day] Wireshark stack overflow (trigger) vd_apache2 - [0day] Apache 2 DoS (II) ips_js_inject - Ipswitch Instant Messaging Server JavaScript injection perforce_ftp - Perforce FTP Server DoS perforce_dir - Perforce Server directory traversal