ftpd-ldpreload.pl.txt

FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by the logged in user duh! The exploi...

GNU InetUtils ftpd 1.4.2 - 'ld.so.preload' Remote Code Execution

FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by the logged in user duh! The exploi...

GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit

No description provided by source. FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by...

Novell Client 4.91 - NWSPOOL.dll Remote Buffer Overflow

Novell Client 4.91 - NWSPOOL.dll Remote Buffer Overflow // source: https://www.securityfocus.com/bid/21220/info Novell Client is prone to a remote buffer-overflow vulnerability. Successful exploits may result in a denial-of-service condition or arbitrary code execution. Remote, anonymous attacker...

PowerZip <= 7.06.3895 Long Filename Handling Buffer Overflow Exploit

No description provided by source. / PowerZip 7.06 Exploit by bratax http://www.bratax.be/ Just a quick one as I was able to reuse most of my zipcentral eploit code.. Greetz to everyone I like...special greetz to mobbie and DT as they were sad I didn't mention them the previous time :p Some...

mdaemon-user-py.txt

!/usr/bin/python import sys import struct import socket from time import sleep MDaemon Pre Authentication USER Heap Overflow Code based on Leon Juranic's exploit Coded by muts - [email protected] http://www.hackingdefined.com http://www.remote-exploit.org Tested on: Mdaemon 9.0.5 Mdaemon 7.2....

Alt-N MDaemon POP3 Server < 9.06 - 'USER' Remote Heap Overflow

!/usr/bin/python import sys import struct import socket from time import sleep MDaemon Pre Authentication USER Heap Overflow Code based on Leon Juranic's exploit Coded by muts - [email protected] http://www.hackingdefined.com http://www.remote-exploit.org Tested on: Mdaemon 9.0.5 Mdaemon 7.2....

Alt-N MDaemon POP3 Server 9.06 - USER Remote Heap Overflow

Alt-N MDaemon POP3 Server 9.06 - USER Remote Heap Overflow !/usr/bin/python import sys import struct import socket from time import sleep MDaemon Pre Authentication USER Heap Overflow Code based on Leon Juranic's exploit Coded by muts - [email protected] http://www.hackingdefined.com...

Apache < 1.3.37/2.0.59/2.2.3 mod_rewrite - Remote Overflow

!/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on Taeho Oh...

Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC

Exploit for multiple platform in category dos / poc ================================================================ Apache 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on...

msword-hlink-ohday.txt

Hi people, the same problem concerning hlink.dll already exploited in excel is present even in Microsoft Word, but Word 2003 seems, luckily, not vulnerable. this one is the public 0-day I made for Microsoft Word. the author is "SYS 49152" obviusly it's a local sploit .. best regards. SYS 49152...

Microsoft Excel - Universal Hlink Local Buffer Overflow

excel hlink overflow UNIVERSAL poc by SYS 49152 public version works with ANY of the following oses/office combinations: -windows 2k sp4/XP SP1/XP SP2 -office 2000/Xp/2003 bindshell on port 49152 thanks go to BuzzDee for some things.. credits to kcope for finding the vuln.. I'm always ready to jo...

Microsoft Excel Universal Hlink Local Buffer Overflow Exploit

No description provided by source. excel hlink overflow UNIVERSAL poc by SYS 49152 public version works with ANY of the following oses/office combinations: -windows 2k sp4/XP SP1/XP SP2 -office 2000/Xp/2003 bindshell on port 49152 thanks go to BuzzDee for some things.. credits to kcope for findin...

Microsoft Excel - Universal Hlink Local Buffer Overflow

Microsoft Excel - Universal Hlink Local Buffer Overflow excel hlink overflow UNIVERSAL poc by SYS 49152 public version works with ANY of the following oses/office combinations: -windows 2k sp4/XP SP1/XP SP2 -office 2000/Xp/2003 bindshell on port 49152 thanks go to BuzzDee for some things.. credit...

Microsoft Excel Universal Hlink Local Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ============================================================= Microsoft Excel Universal Hlink Local Buffer Overflow Exploit ============================================================= excel hlink overflow UNIVERSAL poc by SYS 49152 public...

SHOUTcast <= 1.9.4 File Request Format String Exploit (Leaked)

Exploit for linux platform in category remote exploits ============================================================== SHOUTcast include include include include include include include include include include include define SHELLPORT 7000 define SHELLCOMMAND "unset HISTFILE; uname -a; id;" if 1...

eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow (2)

eStara SoftPhone 3.0.1.46 - SIP Remote Buffer Overflow 2 !/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote "estara softphone" exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060...

eStara Softphone &lt;= 3.0.1.46 (SIP) Remote Buffer Overflow Exploit (2)

No description provided by source. !/usr/bin/perl -s damn-hippie.pl by kokanin google estara, it shows sip stuff and a hippie Remote "estara softphone" exploit, executable version info = 3.0.1.2 kokanin did the research, metasploit.com did the encoded bindshell on tcp/5060 Lets face it, most user...

RealNetworks RealOne PlayerRealPlayer - .RM Local Stack Buffer Overflow

RealNetworks RealOne PlayerRealPlayer - .RM Local Stack Buffer Overflow / source: https://www.securityfocus.com/bid/15381/info RealNetworks RealPlayer and RealOne Player are reported prone to a remote stack-based buffer-overflow vulnerability. The applications fail to perform boundary checks when...

MS Internet Explorer (blnmgr.dll) COM Object Remote Expl (MS05-038)

Exploit for unknown platform in category remote exploits ====================================================================== MS Internet Explorer blnmgr.dll COM Object Remote Exploit MS05-038 ====================================================================== !-- placed into html for your...