Here is my proof-of-concept exploit for the Cisco Security Agent Management st_upload Remote Code Execution Vulnerability (ZDI-11-088) I reported to ZDI a little while back. CVE ID: CVE-2011-0364
I have a bad habit of saving these little random bugs and telling myself that I ‘may have a need for them later’. I think thats just the paranoid security guy in me, but then again I do the same READ MORE
I’ve been cleaning old code again and I think it’s been long enough that I can release this now. I used it to extract code that was embedded within the Cisco Security Agent Management Console (CSAMC). Hopefully someone will find READ MORE
Not sure when this got reported or fixed, but I guess I missed the reward by a day. https://adwords.google.com/cm/CampaignMgmt?__u=1111111111&__c=1111111111&stylePrefOverride=2′,0);alert(document.cookie)//
Started cleaning out some old code and found this. It was a quick little trick to decrypt (some) FiOS WEP keys, not sure if it still works.