UltraVNC/TightVNC Multiple VNC Clients Multiple Integer Overflow PoC

No description provided by source. !/usr/bin/env python POC: Multiple VNC Clients Multiple Integer Overflow VulnerabilitiesUltraVNC and TightVNC, BID 33568 Author: Andres Lopez Luksenberg [email protected] Visit: http://208.66.16.113/andres/ import socket serversocket =...

EPOLL SYSTEM 3.1 (password.dat) Disclosure Exploit

No description provided by source. !/usr/bin/python Portal Name: EPOLL SYSTEM Version : All version 'Google Dork : Powered by Egorix Exploit Coded by: PouyaServer Exploit Discovered by: PouyaServer Contact Me : [email protected] Epoll system login page = www.site.com/Path/admin.php import...

Sad Raven's Click Counter 1.0 passwd.dat Disclosure Exploit

No description provided by source. !/usr/bin/python Portal Name: Sad Raven's Click Counter version : 1.0 'Google Dork : Sad Raven's Click Counter v1.0 Exploit Coded by: PouyaServer Exploit Discovered by: PouyaServer Contact Me : [email protected] import urllib import sys import parser...

Triologic Media Player 7 (.m3u) Local Heap Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ============================================================== Triologic Media Player 7 .m3u Local Heap Buffer Overflow PoC ============================================================== IN THE NAME OF ALLAH : !/usr/bin/python Discovered By : zAx...

Audacity 1.6.2 Crash Exploit

usage: exploit.py print "" print " Audacity 1.6.2 .aup file Remote off by one Crash Exploit\n" print " Author: Mountassif Moad " print " the best: Evil finger & v4 Team " print " Tested on: Windows XP Pro SP2 Fr\n" print " Greetings to: All friends" print " almawto li israel\n" print "" header =...

Vinagre < 2.24.2 show_error() Remote Format String PoC

Exploit for unknown platform in category dos / poc ====================================================== Vinagre 2.24.2 showerror Remote Format String PoC ====================================================== -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs...

MS Windows Server Service Code Execution Exploit (MS08-0 6 7) (2k/2k3)-the exploit-warning-the black bar safety net

!/ usr/bin/env python MS08-0 6 7 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis. m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify the src to run against multipl...

MS Windows Server Service Code Execution Exploit (MS08-067) (2k/2k3)

No description provided by source. !/usr/bin/env python MS08-067 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis.m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify...

ms08067-2k2k3.txt

!/usr/bin/env python MS08-067 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis.m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify the src to run against multiple...

WinFTP 2.3.0 (PASV mode) Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ========================================================= WinFTP 2.3.0 PASV mode Remote Denial of Service Exploit ========================================================= WinFTP v2.3.0 DoS exploit WinFTP URL - http://www.wftpserver.com/ DoS'ed...

GNU Emacs 'python.el'代码执行漏洞

BUGTRAQ ID: 31052 CNCAN ID：CNCAN-2008091008 Emacs是一款可扩展的实时显示编辑器。 GNU Emacs不正确处理Python脚本，本地攻击者可以利用漏洞以应用程序权限执行任意代码。 GNU Emacs命令run-python'启动交互的Python解析器，在Python启动后，Emacs自动发送： import emacs 用于导入Emacs分发的emacs.py脚本，这个脚本一般位于包含其他Emacs程序文件的写保护的安装目录中，定义各种函数帮助Python与Emacs通信处理。...

BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py)

No description provided by source. from scapy import import random Copyright C 2008 Julien Desfossez [email protected] http://www.solisproject.net/ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwa...

Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day

Exploit for unknown platform in category local exploits ================================================================ Download Accelerator Plus - DAP 8.x m3u Local BOF Exploit 0day ================================================================ !/usr/bin/python Download Accelerator Plus - DAP...

Trac quickjump Search Script q Parameter Arbitrary Site Redirect

The remote host is running Trac, an enhanced wiki and issue tracking system for software development projects. The version of Trac installed on the remote host fails to sanitize user input to the 'q' parameter of the 'search' script before using it in an unfiltered and unmanaged fashion in a...

Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (Python)

No description provided by source. !/bin/python This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any later version...

RedDot CMS 7.5 (LngId) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/env python un-comment your selection. import urllib2 import urllib import string import getopt import sys def banner: print print "RED DOT CMS 7.5 database enumeration" print "by Mark Crowther and Rodrigo Marcos" def usage: print print "usage:" print...

RDdbenum.py.txt

!/usr/bin/env python un-comment your selection. import urllib2 import urllib import string import getopt import sys def banner: print print "RED DOT CMS 7.5 database enumeration" print "by Mark Crowther and Rodrigo Marcos" def usage: print print "usage:" print "python RDPOC.py options URL" print...

PacketTrap Networks pt360 2.0.39 TFTPD - Remote Denial of Service

!/usr/bin/python PacketTrap Networks pt360 2.0.39 TFTPD Remote DOS Coded by Mati Aharoni muts..at..offensive-security.com http://www.offensive-security.com/0day/pt360dos.py.txt import socket import sys host = '172.16.167.134' port = 69 try: s = socket.socketsocket.AFINET, socket.SOCKDGRAM except:...

pt360dos.py.txt

!/usr/bin/python PacketTrap Networks pt360 2.0.39 TFTPD Remote DOS Coded by Mati Aharoni muts..at..offensive-security.com http://www.offensive-security.com/0day/pt360dos.py.txt import socket import sys host = '172.16.167.134' port = 69 try: s = socket.socketsocket.AFINET, socket.SOCKDGRAM except:...

hacking the mitsubishi GB-50A

Hi All, Well, it's been over 4 months since my plea for a security contact at Mitsubishi Electric to come forward. Since no one has, I thought I'd release a POC for hacking one. It's not exactly hard, the web controller uses a nasty set of Java applets to interact with itself. The shocking thing ...