TorrentFlux 2.2 - maketorrent.php Remote Command Execution

TorrentFlux 2.2 - maketorrent.php Remote Command Execution The variable announce in maketorrent.php is not sanitised before being used. The announce variable goes through various stages throughout the script, then it is passed as a into an exec function. This occurs in the middle of the string...

AT-TFTP <= 1.9 (Long Filename) Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl -w acaroatjervus.it http://www.securityfocus.com/bid/21320 [email protected] is credited with the discovery of this vulnerability use IO::Socket; if!$ARGV1 print "Uso: atftp-19.pl victim port\n\n"; exit; $victim = IO::Socket::INET-newProto='udp',...

Veritas Backup Exec Server Registry Access

This modules exploits a remote registry access flaw in the BackupExec Windows Server RPC service. This vulnerability was discovered by Pedram Amini and is based on the NDR stub information posted to openrce.org. Please see the action list for the different attack modes. This module requires...

solaris/sparc download and execute 278 bytes

Exploit for solaris/sparc platform in category shellcode ============================================ solaris/sparc download and execute 278 bytes ============================================ / black-dl-exec-SOLARIS.c MIPS 278:bytes Dowloads a binary from host given named 'evil-dl' to '/tmp/ff'...

MS Internet Explorer 6/7 (XML Core Services) Remote Code Exec Expl2

Exploit for unknown platform in category remote exploits ======================================================================= MS Internet Explorer 6/7 XML Core Services Remote Code Exec Exploit 2 ======================================================================= var heapSprayToAddress =...

Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version

No description provided by source. / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into li...

MS Internet Explorer (VML) Remote Buffer Overflow Exploit

No description provided by source. / ----------------------------------------------------------------------- vml.c - Internet Explorer VML Buffer Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org :...

Internet Explorer COM Object Heap Overflow Download Exec Exp

No description provided by source. / ----------------------------------------------------------------------- daxctle2.c - Internet Explorer COM Object Heap Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org :...

linux/x86 stdin re-open and /bin/sh exec shellcode

No description provided by source. / $Id: gets-linux.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ gets-linux.c - stdin re-open shellcode for Linux/x86 Copyright c 2003 Marco Ivaldi [email protected] Local shellcode for stdin re-open and /bin/sh exec. It closes stdin descriptor and re-opens...

Microsoft Internet Explorer - WebViewFolderIcon setSlice() (1)

Microsoft Internet Explorer - WebViewFolderIcon setSlice 1 !/usr/bin/perl Microsoft Internet Explorer WebViewFolderIcon setSlice D0wnLoad & Exec POC Author: Vampyroteuthis Infernalis Greetz: H D Moor, Dark Eagle, Jamikazu use strict; my $sco =...

Microsoft Internet Explorer - 'VML' Remote Buffer Overflow

/ ----------------------------------------------------------------------- vml.c - Internet Explorer VML Buffer Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org : http://www.xsec.org : Tested : Windows 2000 Server ...

Microsoft Internet Explorer - COM Object Remote Heap Overflow

/ ----------------------------------------------------------------------- daxctle2.c - Internet Explorer COM Object Heap Overflow Download Exec Exploit !!! 0day !!! Public Version !!! Copyright C 2006 XSec All Rights Reserved. Author : nop : nopxsec.org : http://www.xsec.org : Tested : Windows 20...

MS Internet Explorer COM Object Remote Heap Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================ MS Internet Explorer COM Object Remote Heap Overflow Exploit ============================================================ /...

Symantec Veritas Backup Exec for Windows Server vulnerable to heap-based buffer overflow

Overview Symantec Veritas Backup Exec for Windows Server contains multiple heap-based buffer overflow vulnerabilities which can allow a remote, authenticated attacker to cause a denial of service or execute arbitrary code. Description VERITAS Backup Exec for Windows Server is a data backup and...

Symantec Backup Exec Multiple Heap Overflow RCE (SYM06-014)

The Windows remote host contains Symantec Backup Exec for Windows Server or Backup Exec Continuous Protection Server, a commercial backup product. The version of the software installed on the remote host is affected by multiple heap overflow conditions involving specially crafted calls to its RPC...

CVE-2006-4128

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 all builds, Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and...

CVE-2006-4128

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 all builds, Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and...

(Security Advisory) SYM06-014 Symantec Backup Exec Internal RPC Overflow

Any further revisions to this information, if required, will be posted to the official advisory located at : http://www.symantec.com/avcenter/security/Content/2006.08.11.html Symantec Security Advisory SYM06-014 BID 19479 11 August 2006 Symantec Backup Exec for Windows Server: RPC Interface Heap...

Symantec Backup Exec buffer overflow

Buffer overflow in internal RPC-based protocol...

CVE-2006-3461

CVE-2006-3461 is a heap-based buffer overflow in the PixarLog decoder of libtiff, tracked in CVE-2006-3461. Affected component: libtiff prior to 3.8.2. Impact described: context-dependent attackers could potentially execute arbitrary code. Public references in connected sources corroborate that t...