AOL Instant Messenger AIM "Away" Message Local Exploit

No description provided by source. / subject: local PoC exploit for AIM 5.5.3595 vendor: http://www.aim.com cve: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0636 credits: Matt Murphy date: 10 August 2004 notes: exploits localy if an argument is supplied, otherwise prints the url...

Ollydbg <= 1.10 Format String Bug

No description provided by source. // Exploit opens a new cmd.exe.Tested on win2ken+sp4en+ollydbg v1.09d // Open exploit with ollydebug and run the exploit from ollydebugF9 key. // Coded by Ahmet Cihana.k.a. hurby // Thanx to r3db4r0n, Murat Erdo??ana.k.a. Stormwr, Onur Cihana.k.a.eurnie and...

VMware Tools hgfs.sys Local Privilege Escalation Vulnerability Exploit

No description provided by source. / VMware Tools hgfs.sys Local Privilege Escalation Vulnerability Exploit Created by SoBeIt Main file of exploit Tested on: Windows XP PRO SP2 Chinese Windows XP PRO SP2 English...

Microsoft Windows MFC Library FileFind Class Heap Overflow (CVE-2007-4916)

The Microsoft Foundation Class Library is a library that wraps portions of the Windows API in C++ classes,including functionality that enables them to use a default application framework. The vulnerability is due to an error in the FileFind Class that can be exploited via applications that use th...

IPSwitch IMail Server 8.0x Remote Heap Overflow Exploit

No description provided by source. / by axis 2007-06-05 http://www.ph4nt0m.org Mail-List: http://list.ph4nt0m.org 脪脭脟掳脫脨脮芒啪枚脪禄啪枚imail碌脛exp PRIVATE Remote Exploit For IMAIL Smtp Server1.2 This is For imail 8.01-8.11 version Usage:faint.exe -d host options Options: -d: Hostname to attack Required -...

Microsoft MFC FindFile function heap buffer overflow

Overview A buffer overflow vulnerability in the Microsoft Foundation Class MFC Library could allow an attacker to execute arbitrary code on an affected system. Description The Microsoft Foundation Class MFC Library is a Microsoft library that wraps parts of the Windows API in C++ classes. The MFC...

Agnitum Outpost Firewall 4.0 - Outpost_IPC_HDR Local Denial of Service

Agnitum Outpost Firewall 4.0 - OutpostIPCHDR Local Denial of Service // source: https://www.securityfocus.com/bid/24284/info Outpost Firewall is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to block arbitrary processes, denying service to legitimate users...

Agnitum Outpost Firewall 4.0 - Outpost_IPC_HDR Local Denial of Service

// source: https://www.securityfocus.com/bid/24284/info Outpost Firewall is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to block arbitrary processes, denying service to legitimate users. This issue affects Outpost Firewall 4.0 build 1007.591.145 and build...

Design/Logic Flaw

Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these...

Design/Logic Flaw

Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified...

CVE-2007-2729

Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these...

CVE-2007-2729

Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these...

CVE-2007-2730

Technical details about CVE-2007-2730 are not publicly provided in the supplied documents. No explicit affected products, root cause, or fixes are described here. Monitor for updates from official advisories.

Oracle 10g (Windows x86) - 'PROCESS_DUP_HANDLE' Local Privilege Escalation

// Argeniss - Information Security // // Oracle Database local elevation of privileges PoC exploit // // Author: Cesar Cerrudo include include BOOL InjectShellcodeDWORD oldEIP,CHAR oSID HMODULE hKernel; FARPROC pCreateProc; LPSTR sCommand="cmd.exe"; DWORD dwStrLen; CHAR buff100;...

Sunbelt Kerio Personal Firewall 4.3.426 - CreateRemoteThread Denial of Service

Sunbelt Kerio Personal Firewall 4.3.426 - CreateRemoteThread Denial of Service source: https://www.securityfocus.com/bid/18996/info Sunbelt Kerio Personal Firewall is prone to a denial-of-service vulnerability. This issue can occur when a program calls the 'CreateRemoteThread' Windows API call...

Sunbelt Kerio Personal Firewall 4.3.426 - CreateRemoteThread Denial of Service

source: https://www.securityfocus.com/bid/18996/info Sunbelt Kerio Personal Firewall is prone to a denial-of-service vulnerability. This issue can occur when a program calls the 'CreateRemoteThread' Windows API call. Exploitation of this vulnerability could cause the firewall application to crash...

win32 WinExec Command Parameter 104+ bytes

win32 WinExec Command Parameter 104+ bytes. Shellcode exploit for win32 platform ; ; relocateable dynamic runtime assembly code example using hash lookup ; ; WinExec with ExitThread ; 104 bytes ; ; for testing: ; ; ml /c /coff /Cp wexec2.asm ; link /subsystem:windows /section:.text,w wexec2.obj ;...

iDEFENSE Security Advisory 11.15.05: Multiple Vendor Insecure Call to CreateProcess() Vulnerability

Multiple Vendor Insecure Call to CreateProcess Vulnerability iDEFENSE Security Advisory 11.15.05 www.idefense.com/application/poi/display?id=340&type=vulnerabilities November 15, 2005 I. BACKGROUND The Microsoft Windows API includes the CreateProcess function as a means to create a new process an...

MS Windows CSRSS Local Privilege Escalation Exploit (MS05-018)

Exploit for unknown platform in category local exploits ============================================================== MS Windows CSRSS Local Privilege Escalation Exploit MS05-018 ============================================================== include include include pragma comment...

Kaspersky AntiVirus - 'klif.sys' Local Privilege Escalation

/ Added NOSTRICT to 1 on line 2 /str0ke ! milw0rm.com / define NOSTRICT 1 include undef STRICT PUCHAR pCodeBase=PUCHAR0xBE9372C0; PDWORD pJmpAddress=PDWORD0xBE9372B0; PUCHAR pKAVRets=PUCHAR0xBE935087,PUCHAR0xBE935046; PUCHAR pKAVRet; unsigned char code=0x68,0x00,0x02,0x00,0x00, //push 0x200...