Allwin WinExec cmd.exe + ExitProcess Shellcode - 195 bytes

No description provided by source. / Title: Allwin WinExec cmd.exe + ExitProcess Shellcode - 195 bytes Date: 2010-06-25 Author: RubberDuck Web: http://bflow.security-portal.cz Tested on: Win 2k, Win 2003, Win XP Home SP2/SP3 CZ/ENG 32, Win Vista 32/64, Win 7 32/64, Win 2k8 32 Thanks to:...

VirusChaser 8.0 - Stack Buffer Overflow Vulnerability

Exploit for windows platform in category dos / poc Exploit Title: VirusChaser 8.0 - Stack Buffer Overflow Date: 2014/03/26 Exploit Author: wh1ant Vendor Homepage: https://www.viruschaser.com/ Software Link: https://www.viruschaser.com/download/VC80b32Setup.zip Version: 8.0 Tested on: Windows 7...

SNES9x ReRecording Emulator DLL Hijacking

Exploit Title: SNES9x ReRecording Emulator codecmpeg.dll - DLL Hijacking Vulnerability Date: 7 Desember 2013 Author: DevilScreaM Software Link: http://www.softpedia.com/dyn-postdownload.php?p=238598&t=4&i=1 Version: 1.x.x Vendor : http://www.snes9x.com/ Tested : Windows XP / Windows 7 gcc -shared...

Synactis PDF In-The-Box - ConnectToSynactic Stack Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

Synactis PDF In-The-Box ConnectToSynactic Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

Synactis PDF In-The-Box ConnectToSynactic Stack Buffer Overflow

This Metasploit module exploits a vulnerability found in Synactis' PDF In-The-Box ActiveX component, specifically PDFIN1.ocx. When a long string of data is given to the ConnectToSynactis function, which is meant to be used for the ldCmdLine argument of a WinExec call, a strcpy routine can end up...

Synactis PDF In-The-Box ConnectToSynactic Stack Buffer Overflow

This module exploits a vulnerability found in Synactis' PDF In-The-Box ActiveX component, specifically PDFIN1.ocx. When a long string of data is given to the ConnectToSynactis function, which is meant to be used for the ldCmdLine argument of a WinExec call, a strcpy routine can end up overwriting...

Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode

/ Title: Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode Date: 2013-22-01 Author: RubberDuck Web: http://bflow.security-portal.cz http://www.security-portal.cz Tested on: Win 2k, Win XP Home SP2/SP3 CZ 32, Win 7 32/64 -- file is downloaded from URL...

Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode

Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode. Shellcode exploit for windows platform / Title: Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode Date: 2013-22-01 Author: RubberDuck Web: http://bflow.security-portal.cz http://www.security-portal.cz Tested on: Win 2k, Win XP...

win32/xp sp3 - Full ROP calc shellcode

/ Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato, Jahmel OS-DLL's used: Base | Top | Size | Version Important! ||| 0x7c800000 |...

Windows XP Pro SP3 - Full ROP calc shellcode

Windows XP Pro SP3 - Full ROP calc shellcode. Shellcode exploit for windows platform / Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato,...

ThinPrint - 'tpfc.dll' Insecure Library Loading Arbitrary Code Execution

// source: https://www.securityfocus.com/bid/55421/info ThinPrint is prone to a vulnerability that lets attackers execute arbitrary code. Exploiting this issue allows local attackers to execute arbitrary code with the privileges of the user running the affected application. include int hijackpoc...

Adobe Pixel Bender Toolkit2 11.0.422584 DLL Hijack

Exploit Title: Adobe Pixel Bender Toolkit2 tbbmalloc.dll DLL Hijacking Exploit Date: 2012-08-23 Author: coolkaveh [email protected] Greets To Mohammad Morteza Sanaie [email protected] Https://twitter.com/coolkaveh Vendor Homepage: http://www.adobe.com/ Version: 11.0.422584 Tested on...

Adobe Pixel Bender Toolkit2 - tbbmalloc.dll Multiple DLL Loading Code Execution Vulnerabilities

Adobe Pixel Bender Toolkit2 - tbbmalloc.dll Multiple DLL Loading Code Execution Vulnerabilities // source: https://www.securityfocus.com/bid/55179/info Adobe Pixel Bender Toolkit2 is prone to multiple vulnerabilities that allow attackers execute arbitrary code. An attacker can exploit these issue...

Adobe Pixel Bender Toolkit2 - 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities

// source: https://www.securityfocus.com/bid/55179/info Adobe Pixel Bender Toolkit2 is prone to multiple vulnerabilities that allow attackers execute arbitrary code. An attacker can exploit these issues by enticing a legitimate user to use the vulnerable application to open a file from a network...

DVD X Player 5.5 Pro (SEH DEP + ASLR Bypass) Exploit

Exploit for windows platform in category local exploits ?php / Title: DVD X Player 5.5 Pro DEP + ASLR Bypass Exploit Date: Sep 08, 2011 Author: Rew email protected Discovered by: Blake http://www.exploit-db.com/exploits/17788/ Link: http://www.dvd-x-player.com/download/DVDXPlayerSetup.exe Tested...

CinePlayer Surround Universal DEP Bypass Exploit

Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: CinePlayer Surround Universal DEP Bypass Exploit Author: Angel Injection Thanks To Inj3ct0r Team Home: http://1337day.com , http://sec-krb.org shellcode =...

Free MP3 CD Ripper 1.1 - DEP Bypass

!/usr/bin/python +Exploit Title: Free MP3 CD Ripper 1.1 Universal DEP Bypass Exploit +Date: 27\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.brothersoft.com/free-mp3-cd-ripper-84543.html +Found/Initial Exploit: X-h4ckhttp://www.exploit-db.com/exploits/17727/ +Version: 1.1 +Tested On:...

D.R. Software Audio Converter 8.1 - DEP Bypass

!/usr/bin/perl +Exploit Title: D.R. Software Audio Converter 8.1 DEP Bypass Exploit +Date: 13\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/Audio-Converter/3000-21404-10045287.html +Found By: Sud0 from Corelan Teamhttp://www.exploit-db.com/exploits/13760/ or also created...

Free CD To MP3 Overflow 3.1 Buffer Overflow

!/usr/bin/perl +Exploit Title: Free CD to MP3 Converter 3.1 Universal DEP Bypass Exploit +Date: 07\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.exploit-db.com/application/15480/ +Version: 3.1 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Dep bypass method:...