SevOne NMS 5.3.60 Remote Root

!/usr/bin/env python Exploit Title: SevOne NMS = 5.3.6.0 reverse shell remote root Date: 01/14/2016 Exploit Author: @iamsecurity Vendor Homepage: https://www.sevone.com/ Software Link: https://www.sevone.com/download2/free/vimage/SevOne-Download.ova Version: 5.3.6.0 """sevone.py: Simple reverse...

SevOne NMS 5.3.6.0 - Remote Command Execution

!/usr/bin/env python Exploit Title: SevOne NMS = 5.3.6.0 reverse shell remote root Date: 01/14/2016 Exploit Author: @iamsecurity Vendor Homepage: https://www.sevone.com/ Software Link: https://www.sevone.com/download2/free/vimage/SevOne-Download.ova Version: 5.3.6.0 """sevone.py: Simple reverse...

Easy File Sharing Web Server 7.2 HEAD SEH Buffer Overflow

Exploit Title: Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Date: 12/2/2015 Exploit Author: ArminCyber Contact: [email protected] Version: 7.2 Tested on: XP SP3 EN category: Remote Exploit Usage: ./exploit.py ip port import socket import sys host = strsys.argv1...

A PYTHON command to trigger the vulnerability thinking-vulnerability warning-the black bar safety net

Recently, in testing a project, accidentally found in the client machines can directly run a Python command to execute server-side Python script, and therefore, the depth test will have below. 0×0 1 Analysis Often times, because of business needs we often need to use the Python –c exec method in...

Samba NetLogon未初始化指针漏洞（CVE-2015-0240）

No description provided by source. !/usr/bin/env python coding: utf-8 import sys import time from struct import pack,unpack import argparse import impacket from impacket.dcerpc.v5 import transport, nrpc from impacket.dcerpc.v5.ndr import NDRCALL from impacket.dcerpc.v5.dtypes import WSTR class...

Gold MP4 Player - .swf Local Exploit

Exploit for windows platform in category local exploits !/usr/bin/python EXPLOIT TITLE: GOLD PLAYER Local Exploit AUTHOR: Vivek Mahajan - C3p70r Credits: Gabor Seljan Date of Testing: 30 October 2015 Download Link : http://download.cnet.com/GoldMP4Player/3000-21394-10967424.html Tested On : Windo...

Sam Spade 1.14 - (Scan Addresses) Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python -- coding: cp1252 -- EXPLOIT TITLE: Sam Spade 1.14 Scan from IP address Field Exploit AUTHOR: VIKRAMADITYA "-OPTIMUS" Date of Testing: 2nd November 2015 Download Link :...

Gold MP4 Player - '.swf' Local Overflow

!/usr/bin/python EXPLOIT TITLE: GOLD PLAYER Local Exploit AUTHOR: Vivek Mahajan - C3p70r Credits: Gabor Seljan Date of Testing: 30 October 2015 Download Link : http://download.cnet.com/GoldMP4Player/3000-21394-10967424.html Tested On : Windows 8.1 Pro and Windows 7 Ultimate Steps to Exploit Step ...

Gold MP4 Player - .swf Local Overflow

Gold MP4 Player - .swf Local Overflow !/usr/bin/python EXPLOIT TITLE: GOLD PLAYER Local Exploit AUTHOR: Vivek Mahajan - C3p70r Credits: Gabor Seljan Date of Testing: 30 October 2015 Download Link : http://download.cnet.com/GoldMP4Player/3000-21394-10967424.html Tested On : Windows 8.1 Pro and...

Sam Spade 1.14 - Scan Addresses Buffer Overflow

!/usr/bin/python -- coding: cp1252 -- EXPLOIT TITLE: Sam Spade 1.14 Scan from IP address Field Exploit AUTHOR: VIKRAMADITYA "-OPTIMUS" Credits: Luis Mart�nez Date of Testing: 2nd November 2015 Download Link : https://www.exploit-db.com/apps/7ad7569341d685b4760ba4adecab6def-spade114.exe Tested On ...

Spetnik TCPing Utility 2.1.0 Buffer Overflow

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-TCPING-2.1.0-BUFFER-OVERFLOW.txt Vendor: ================================ Spetnik.com Product: ================================= Spetnik TCPing 2.1.0 / tcping.exe circa 2007 TCPing...

ARDT - Akamai Reflective DDoS Tool

Akamai Reflective DDoS Tool Attack the origin host behind the Akamai Edge hosts and bypass the DDoS protection offered by Akamai services. How it works... Based off the research done at NCC: https://dl.packetstormsecurity.net/papers/attack/thepentestersguidetoakamai.pdf Akamai boast around 100,00...

LinuxMIPS Kernel 2.6.36 - NetUSB Remote Code Execution

LinuxMIPS Kernel 2.6.36 - NetUSB Remote Code Execution !/usr/bin/env python Source: http://haxx.in/blasty-vs-netusb.py CVE-2015-3036 - NetUSB Remote Code Execution exploit Linux/MIPS =========================================================================== This is a weaponized exploit for the...

WinRar 5.21 - SFX OLE Command Execution

!/usr/bin/python -w Title : WinRar SFX OLE Command Execution Date : 25/09/2015 Author : R-73eN Tested on : Windows Xp SP3 with WinRAR 5.21 Triggering the Vulnerability Run this python script Right click a file and then click on add to archive. check the 'Create SFX archive' box go to Advanced tab...

MASM32 11R - Crash POC Exploit

Exploit for windows platform in category dos / poc EXPLOIT TITLE: Masm32v11r Buffer OverflowSEH overwrite crash POC AUTHOR: VIKRAMADITYA "-OPTIMUS" Date of Testing: 22nd September 2015 Download Link : http://www.masm32.com/masmdl.htm Tested On : Windows 10 Steps to Crash :- Step 1: Execute this...

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar (MS15-061)

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar MS15-061 Source: https://code.google.com/p/google-security-research/issues/detail?id=321 The PoC triggers a crashes due to a pool buffer overflow while drawing the caption bar of window. The trigger depends on the current window...

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar (MS15-061)

Source: https://code.google.com/p/google-security-research/issues/detail?id=321 The PoC triggers a crashes due to a pool buffer overflow while drawing the caption bar of window. The trigger depends on the current window layout and resolution. The PoC takes an offset on the command line to be able...

MASM32 11R - Crash (PoC)

MASM32 11R - Crash PoC EXPLOIT TITLE: Masm32v11r Buffer OverflowSEH overwrite crash POC AUTHOR: VIKRAMADITYA "-OPTIMUS" Date of Testing: 22nd September 2015 Download Link : http://www.masm32.com/masmdl.htm Tested On : Windows 10 Steps to Crash :- Step 1: Execute this python script Step 2: This...

MASM32 11R - Crash (PoC)

EXPLOIT TITLE: Masm32v11r Buffer OverflowSEH overwrite crash POC AUTHOR: VIKRAMADITYA "-OPTIMUS" Date of Testing: 22nd September 2015 Download Link : http://www.masm32.com/masmdl.htm Tested On : Windows 10 Steps to Crash :- Step 1: Execute this python script Step 2: This script will create a file...

Total Commander 8.52 Buffer Overflow

!/usr/bin/python EXPLOIT TITLE: Total Commander 8.52 Buffer Overflow AUTHOR: VIKRAMADITYA "-OPTIMUS" Credits: UnN0n Date of Testing: 19th September 2015 Download Link : http://tcmd852.s3-us-west-1.amazonaws.com/tc852x32b1.exe Tested On : Windows XP Service Pack 2 Steps to Exploit Step 1: Execute...