3161 matches found
Linux/x86-64 - Add Root User (shell-storm/leet) + Polymorphic Shellcode (273 bytes)
Linux/x86-64 - Add Root User shell-storm/leet + Polymorphic Shellcode 273 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; "Polymorphic" version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-658.php ;...
Design/Logic Flaw
The ISO-8859-1 encoder in Resin Pro before 4.0.40 does not properly perform Unicode transformations, which allows remote attackers to bypass intended text restrictions via crafted characters, as demonstrated by bypassing an XSS protection mechanism...
CVE-2014-2966
CVE-2014-2966 affects Resin Pro before 4.0.40. The ISO-8859-1 encoder does not perform Unicode transformations correctly, allowing crafted characters to bypass restrictions and the XSS protection mechanism in HTTP responses. The primary affected component is Resin Pro’s ISO-8859-1 output handling...
CVE-2014-2966
The ISO-8859-1 encoder in Resin Pro before 4.0.40 does not properly perform Unicode transformations, which allows remote attackers to bypass intended text restrictions via crafted characters, as demonstrated by bypassing an XSS protection mechanism...
[SECURITY] Fedora 19 Update: python-simplejson-3.5.3-1.fc19
simplejson is a simple, fast, complete, correct and extensible JSON encoder and decoder for Python 2.5+. It is pure Python co de with no dependencies, but includes an optional C extension for a serious sp eed boost. The encoder may be subclassed to provide serialization in any kind of situation,...
Perl Command Encoder
This encoder uses perl to avoid commonly restricted characters. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Perl Command Encoder', 'Description' = %q This encoder uses perl to avoid commonl...
Echo Command Encoder
This encoder uses echo and backlash escapes to avoid commonly restricted characters. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Echo Command Encoder', 'Description' = %q This encoder uses...
Windows Media Encoder 9 wmex.dll ActiveX Buffer Overflow
No description provided by source. var nop=unescape"%u9090%u9090"; var...
gAlan 0.2.1 - Buffer Overflow 0day Exploit
No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 From Static Analysis to 0day Exploit Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...
MIPS Linux XOR Shellcode Encoder (60 Bytes)
No description provided by source. include fcntl.h include stdio.h include unistd.h include sys/types.h include sys/stat.h include stdlib.h include string.h define DEBUG 0 / entropy at phiral.net mips linux shellcode xor encoder \xAB\xCD is overwritten with jmp back offset \x00\x00 is overwritten...
BigAnt Server 2.52 - SEH (0day)
No description provided by source. !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect ...
IDEAL Administration 2010 10.2 - Local Buffer Overflow Exploit
No description provided by source. !/usr/bin/env python IDEAL Administration 2010 v10.2 Local Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 windows/shellbindtcp - 696 bytes Encoder: x86/alphamixed...
OTSTurntables 1.00.048 - (m3u/ofl) Local BOF Exploit (SEH)
No description provided by source. Exploit Title: OTSTurntables 1.00.028 m3u/ofl Local BOF Exploit SEH Date: 11/24/2010 Author: 0v3r Software Link: http://www.otsturntables.com/download-otsturntables-free/ Version: 1.00.048 Tested on: Windows XP SP3 EN CVE: N/A !/usr/bin/python import sys win32bi...
SCO Unixware 7.1 i2odialogd Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/876/info UnixWare is a variant of the Unix operating system originally written by SCO, and distributed and maintained by Caldera. i20dialogd is a daemon which provides a front-end for controlling the i20 subsystem. It is...
Ericom AccessNow Server Buffer Overflow
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpClient def initializein...
FathFTP 1.8 (EnumFiles Method) ActiveX Buffer Overflow (SEH)
No description provided by source. html object classid='clsid:62A989CE-D39A-11D5-86F0-B9C370762176' id='target'/object script language='vbscript' ' Exploit Title: FathFTP 1.8 SEH EnumFiles ActiveX Buffer Overflow ' Author: MadjiX ' Software Link: http://www.fathsoft.com/fathftp.html ' Version 1.7...
AIMP2 Audio Converter <= 2.53 build 330 Playlist (.pls) Unicode BOF
No description provided by source. !/usr/bin/python Author contact : seeleymagicathotmaildotcom For educational purposes only You have been warned My original crash breakdown: EAX 001B0020 UNICODE AAAAAAAAAAAAAAAAAAAA ECX 00000273 EDX 00000C4C EBX 00000000 ESP 0012DCA8 EBP 0012DD64 ESI 001B6610...
Novell eDirectory <= 9.0 DHost Remote Buffer Overflow Exploit
No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 30\10\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet...
WFTPD Explorer Pro 1.0 - Remote Heap Overflow Exploit
No description provided by source. !/usr/bin/perl WFTPD Explorer Pro 1.0 Remote Heap Overflow Exploit --------------------------------------------------- Exploit by SkD [email protected] This is a remote heap overflow exploit for WFTPD Explorer Pro 1.0 by Texas Imperial Software. Vendors website...
Destiny Media Player 1.61 - (lst File) Local Buffer Overflow Exploit (4)
No description provided by source. usage: exploit.py print print Destiny Media Player 1.61 .lst File Local Stack Overflow Exploit\n print Founder: Encrypt3d.M!nd print exploit & code: Stack print Tested on: Windows XP Pro SP2 Fr\n print Greetings to: print All friends \n print buff = \x41 2052 EI...