Baby FTP server 1.24 - Denial of Service (2)

!/usr/bin/python Baby FTP 1.24 - Denial of Service by n30m1nd Date: 2016-10-27 PoC Author: n30m1nd Vendor Homepage: http://www.pablosoftwaresolutions.com/ Software Link: http://www.pablosoftwaresolutions.com/download.php?id=1 Version: 1.24 Tested on: Win7 64bit and Win10 64 bit Credits =======...

Deluge 1.3.13 - Denial Of Service Vulnerability

Deluge is free software, licensed under the GNU GPL4, BitTorrent network node. Based on Python and GTK +. The program uses the C ++ libtorrent as its own interface for network functionality through the torrent own Python bindings for the project. Copy of the Vendor Homepage:...

FreePBX 13 - Remote Command Execution / Privilege Escalation

!/usr/bin/env python ''' Title | FreePBX 13 Remote Command Execution and Privilege Escalation Date | 10/21/2016 Author | Christopher Davis Vendor | https://www.freepbx.org/ Version | FreePBX 13 & 14 System Recordings Module versions: 13.0.1beta1 - 13.0.26 Tested on |...

sudo-snooper - Python script to fool sudo users

sudo-snooper acts like the original sudo binary to fool users into entering their passwords. It will show a fake prompt just like the original to the user to enter their sudo password. This can be useful in penetration tests or security evaluations for testing user knowledge. Installation steps...

Disk Pulse Enterprise 9.0.34 Buffer Overflow

!/usr/bin/python print "Disk Pulse Enterprise 9.0.34 Buffer Overflow Exploit" print "Author: Tulpa // tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpa-security.com Exploit will land you NT AUTHORITY\SYSTEM You do not need to be authenticated, password bel...

A AV also the recruitment of cve-2 0 1 0-2 5 5 3 vulnerability analysis-vulnerability warning-the black bar safety net

Just imagine: one day, your friends give you a video file, which claims to be the teacher Chen beat the hoary division of the teacher theme of the latest movie. avi, you full of joy, in determining the file formats really as avi format, happy took off his pants ready to enjoy, open after but foun...

Easy FTP Server 1.7.0.11 APPE remote code execution vulnerability

No description provided by source. !/usr/bin/env python -- coding: latin-1 -- / / / / / / // / / -/ - / // / / / / // / ////,//////,// ///, / // nullsecurity team Easy FTP server remote exploit DATE 03/03/2012 DESCRIPTION Easy FTP Server - "APPE" command buffer overflow - remote exploit...

MediaCoder 0.8.43.5852 SEH Overflow

Exploit Title: MediaCoder 0.8.43.5852 - .m3u SEH Exploit Exploit Author: Karn Ganeshen Vendor Homepage: http://www.mediacoderhq.com Download link: http://www.mediacoderhq.com/mirrors.html?file=MediaCoder-0.8.45.5852.exe Version: Current version 0.8.43.58.52 Tested on: Windows Vista SP2...

PowerWare Ransomware Masquerades as Locky to Intimidate Victims

A new variant of the PowerWare ransomware is stealing street creds from the Locky strain of ransomware in an attempt to spoof the malware family. A new sample of PowerWare found by Palo Alto Networks’ Unit 42 reveals the ransomware’s quickly evolving tactics. According to researchers, a new versi...

Untangle NG Firewall Captive Portal RCE

The Untangle NG Firewall server running on the remote host is affected by a remote code execution vulnerability in the Captive Portal module, specifically within the /capture/handler.py script, due to a failure to verify that a user is authenticated before processing file uploads. An...

Peach Fuzz - Vulnerability Scanning Framework

This tool aims to look through files in a given directory to detect any unsafe, vulnerable, or dangerous function calls. It is designed to be extensible and easy to understand; you can "plug-and-play" modules that specify criteria on which types of files will trigger what 'scans,' in which you...

Cisco ASA Software 8.x/9.x - IKEv1 / IKEv2 Buffer Overflow

!/usr/bin/env python2.7 import socket import sys import struct import string import random import time Spawns a reverse cisco CLI cliShellcode = "\x60\xc7\x02\x90\x67\xb9\x09\x8b\x45\xf8\x8b\x40\x5c\x8b\x40\x04" "\x8b\x40\x08\x8b\x40\x04\x8b\x00\x85\xc0\x74\x3b\x50\x8b\x40\x08"...

Cisco ASA Software IKEv1 / IKEv2 Buffer Overflow

!/usr/bin/env python2.7 import socket import sys import struct import string import random import time Spawns a reverse cisco CLI cliShellcode = "\x60\xc7\x02\x90\x67\xb9\x09\x8b\x45\xf8\x8b\x40\x5c\x8b\x40\x04" "\x8b\x40\x08\x8b\x40\x04\x8b\x00\x85\xc0\x74\x3b\x50\x8b\x40\x08"...

Code injection

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service application crash or possibly execute...

Code injection

The mget function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly maintain a certain pointer relationship, which allows remote attackers to cause a denial of service application crash or possibly...

Hexchat IRC Client 2.11.0 - CAP LS Handling Buffer Overflow

!/usr/bin/python Meta information Exploit Title: Hexchat IRC client - CAP LS Handling Stack Buffer Overflow Date: 2016-02-07 Exploit Author: PizzaHatHacker Vendor Homepage: https://hexchat.github.io/index.html Software Link: https://hexchat.github.io/downloads.html Version: 2.11.0 Tested on:...

Hexchat IRC Client 2.11.0 - Directory Traversal

Exploit for windows platform in category local exploits !/usr/bin/python Meta information Exploit Title: Hexchat IRC client - Server name log directory traversal Date: 2016-01-26 Exploit Author: PizzaHatHacker Vendor Homepage: https://hexchat.github.io/index.html Software Link:...

Mautic 1.3.0 CSRF / XSS / User Enumeration / DoS

Exploit Title: Mautic v1.3.0 Multiple Vulnerabilities Date: 01/04/2016 Author: Mickael Dorigny @ Synetis Vendor or Software Link: https://www.mautic.org/ Version: 1.3.0 Category: Multiple Vulnerabilities Mautic description : ======================================================================...

Exploit for Deserialization of Untrusted Data in Oracle Virtual_Desktop_Infrastructure

serialator Python script to exploit CVE-2015-4852. Descrip...

WhatsUp Gold 16.3 Remote Code Execution

Exploit Title: WhatsUp Gold v16.3 Unauthenticated Remote Code Execution Date: 2016-01-13 Exploit Author: Matt Buzanowski Vendor Homepage: http://www.ipswitch.com/ Version: 16.3.x Tested on: Windows 7 x86 CVE : CVE-2015-8261 Usage: python DroneDeleteOldMeasurements.py import requests import sys...