7254 matches found
CVE-2019-25736
LabF nfsAxe 3.7 Ping Client contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload in the Host IP field. Attackers can craft a specially formatted input file with shellcode and overwrite the return address to execute calc.ex...
wined
Windows Exploitation wined Tools The following scripts were...
CVE-2018-25427 Arm Whois 3.11 Buffer Overflow via SEH Overwrite
Arm Whois 3.11 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by supplying oversized input to the IP address or domain field. Attackers can craft malicious input exceeding 658 bytes with shellcode to overwrite the structured exception...
Exploit-Framework
Exploit Framework !License: MIThttps://img.shields.io/bad...
Terminus-ai
Terminus-ai a foundation model trainthe entirety of exploit-...
CVE-2018-25366
CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecting malicious payload into the Site Manager label field. Attackers can craft a payload exceeding 520 bytes that overwrites the return address and executes shellcode when a shortc...
CVE-2018-25376
Socusoft 3GP Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft malicious input in the Registration Name and Registration Key fields to...
CVE-2018-25376
CVE-2018-25376 affects Socusoft 3GP Photo Slideshow 8.05. A buffer overflow in the registration dialog can be triggered by crafted input in Registration Name/Registration Key, allowing local attackers to overwrite the SEH chain and execute shellcode (reverse shell) via a local exploit. This impli...
CVE-2018-25373
CVE-2018-25373 affects SocuSoft DVD Photo Slideshow Professional 8.07. The issue is a stack-based buffer overflow in the Registration Name field that enables local code execution by abusing structured exception handling (SEH). An attacker can craft a malicious text file containing junk bytes, SEH...
EUVD-2018-21889
CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecting malicious payload into the Site Manager label field. Attackers can craft a payload exceeding 520 bytes that overwrites the return address and executes shellcode when a shortc...
CVE-2018-25366
CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecting malicious payload into the Site Manager label field. Attackers can craft a payload exceeding 520 bytes that overwrites the return address and executes shellcode when a shortc...
PT-2026-43228
Socusoft 3GP Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft malicious input in the Registration Name and Registration Key fields to...
Win32 Calc Shellcode
This is a 14-byte Win32 shellcode that opens calc.exe using a fixed CALL rel32 offset on Windows XP SP 3 English...
programming-for-penetration-testing-buffer-overflow-exploit
Buffer Overflow Exploit in Ruby Overview This project was...
CVE-2018-25355
Audiograbber 1.83 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting structured exception handling mechanisms. Attackers can craft malicious input in the Interpret or Album fields that triggers a buffer overflow, overwriting SEH pointers a...
CVE-2018-25355
Audiograbber 1.83 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting structured exception handling mechanisms. Attackers can craft malicious input in the Interpret or Album fields that triggers a buffer overflow, overwriting SEH pointers a...
CVE-2018-25355
Audiograbber 1.83 is affected by a local buffer overflow in SEH handling. The vulnerability can be triggered by crafted input in the Interpret or Album fields, overwriting SEH pointers and allowing execution of injected shellcode with application privileges. Exploitation is local (no user interac...
CVE-2018-25344
The CVE covers a stack-based buffer overflow in 10-Strike Network Inventory Explorer 8.54, specifically in the registration key input field. The root cause is a crafted input that overflows the buffer and overwrites the Structured Exception Handler (SEH) chain, enabling local code execution with ...
EUVD-2018-21868
10-Strike Network Inventory Explorer 8.54 contains a stack-based buffer overflow vulnerability in the registration key input field that allows local attackers to execute arbitrary code by triggering a structured exception handler overwrite. Attackers can craft a malicious registration key string...
Reversing-Toolkit
Reversing Toolkit 🔧 3 reverse engineering & binary exploita...