162 matches found
Easy RM to MP3 Converter 2.7.3.700 - .m3u File (Universal ASLR + DEP Bypass)
Easy RM to MP3 Converter 2.7.3.700 - .m3u File Universal ASLR + DEP Bypass Exploit Title: Easy RM to MP3 Converter 2.7.3.700 .m3u File BoF Exploit with Universal DEP+ASLR bypass Date: 2016-06-12 Exploit Author: Csaba Fitzl Vendor Homepage: N/A Software Link:...
CIScan 1.00 - Hostname/IP Field Crash (PoC)
!/usr/bin/env python -- coding: utf-8 -- Exploit Title : CIScanv1.00 Hostname/IP Field Local BoF PoC Discovery by : Irving Aguilar Email : [email protected] Discovery Date : 05.05.2016 Software Link : http://www.mcafee.com/us/downloads/free-tools/ciscan.aspx Tested Version : 1.00...
Last PassBroker 3.2.16 - Stack Buffer Overflow (PoC)
Last PassBroker 3.2.16 - Stack Buffer Overflow PoC ''' Exploit Title: Last PassBroker Stack-based BOF Date: 9/23/2015 Exploit Author: UnN0n Software Link: https://lastpass.com/download Version: 3.2.16 Tested on: Windows 7 x8632 BIT Steps to Produce the Crash: 1- open 'LastPassBroker.exe'. 2- A...
Xion Audio Player 1.5 build 155 - Stack Buffer Overflow
Xion Audio Player 1.5 build 155 - Stack Buffer Overflow Exploit Title: Xion Audio Player build 155 Stack Based BOF. Date: 8/19/2015 Exploit Author: UnN0n Software Vendor : http://www.xionplayer.com Software Link: http://www.xionplayer.com/page/download Version: 1.5 Build 155 Tested on: Windows 7...
Sysax-File-Rename-BoF
Tested on: XP SP3 32bit and Server 2003 SP2 32bitNo DEP Software Versions Tested: 5.50 and 5.52 Date Discovered: Febrary 1, 2012 Vendor Contacted: Febrary 3, 2012 Vendor Response: none import socket,sys,time,re,base64 if lensys.argv != 6: print "+ Usage: ./filename " sys.exit1 target = sys.argv1...
Realtek Sound Manager (rtlrack.exe 1.15.0.0) - PlayList BOF Exploit
No description provided by source. usage: exploit.py print -------------------------------------------------------------------------- print Realtek Sound Manager rtlrack.exe v. 1.15.0.0 PlayList Buffer Overflow\n print url: http://www.realtek.com.tw/\n print download:...
Sauerbraten <= 2006_02_28 Multiple BoF/Crash Vulnerabilities Exploit
No description provided by source. / by Luigi Auriemma You NEED Enet for compiling this tool then remember -lenet http://enet.bespin.org / http://enet.cubik.org / include stdio.h include stdlib.h include string.h include time.h include enet/enet.h ifdef WIN32 include winsock.h / Header file used...
Easy Ftp Server 1.7.0.2 - Post-Authentication BoF
No description provided by source. !/usr/bin/python Title: EasyFtp Server v1.7.0.2 Post-Authentication BoF Original Author: dookie2000ca || Windows XP SP3 Professional Author: b33f - Ruben Boonen Windows XP Home SP1 Software link:...
MyMp3 Player Stack .m3u DEP Bypass Exploit
No description provided by source. ''' Title: MyMp3-Player '.m3u' Stack BOF Bypass DEP Author: Daniel Romero Perez @danielrome Software & Version: MyMp3-Player 3.02.067 Tested on: Windows XP SP3 - ES Mail: [email protected] Blog: unlearningsecurity.blogspot.com Advisor:...
QuickZip 4.60.019 Stack BOF - XP SP3
No description provided by source. Exploit Title : QuickZip 4.60.019 Stack BOF - XP SP3 OSVDB-ID : 62781 Date : March 2nd 2010 Author : corelanc0d3r Bug found by : corelanc0d3r Software Link : http://www.quickzip.org/downloads.html Version : 4.60.019 OS : Windows Tested on : XP SP3 En VirtualBox ...
Soritong 1.0 - Universal BOF-SEH (META)
No description provided by source. Exploit Title: Soritong v1.0 Universal BOF-SEH META Software Link: http://www.exploit-db.com/downloads/a1def037869c831496bda3d81b0d06f5-soritong10.exe Version: V1.0 Tested on: windows xp 2 Metasploit version by FB1h2s,Orginal exploit by skullhaxor And greetz to...
NVR SP2 2.0 (nvUnifiedControl.dll 1.1.45.0) - SetText() Remote Exploit
No description provided by source. ------------------------------------------------------------------------------------------ PoC2 NVR SP2 2.0 nvUnifiedControl.AUnifiedControl.1 nvUnifiedControl.dll v. 1.1.45.0 SetText Remote BoF Heap Spray Technique url: http://www.acti.com/index.asp author:...
Soritong 1.0 - Universal BOF (Python)
No description provided by source. Soritong MP3 Player 1.0 Universal BOF ! Greetz to Peter Van Eeckhoutte and Corelanc0d3r team ;- Discovered by : Stack Written by : Jacky I searched for a Python Edition for this Vulnerability but i haven't found any Python written exploit So i decided to give it...
AXIS Camera Control (AxisCamControl.ocx 1.0.2.15) - BoF Exploit
No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------------------------- bPoC AXIS Camera Control AxisCamControl.ocx v. 1.0.2.15 SaveBMP Method Buffer Overflow/b original...
Novell eDirectory 8.8 SP5 (Post Auth) Remote BOF Exploit
No description provided by source. Exploit Title: Novell eDirectory 8.8 SP5 Post Auth Remote BOF Exploit 0day Date: 06/01/2010 Author: His0k4 & Simo36 Version: 8.8 SP5 Tested on: Windows xp sp3 Code : !usr\bin\perl use WWW::Mechanize; use HTTP::Cookies; use HTTP::Headers; $target=$ARGV0; if!$ARGV...
ActFax Server FTP Remote BOF (post auth) Bigger Buffer
No description provided by source. !/usr/bin/python ----------------------------------------------------------------------------------- Exploit Title: ActFax Server FTP Remote BOF post auth Author: b33f - Ruben Boonen Software Link: http://www.actfax.com/download/actfaxsetupen.exe Tested on:...
Trellian FTP Client PASV BOF exploit
No description provided by source. Exploit Title: Trellian FTP Client PASV BOF exploit Date: 2010-04-11 Author: zombiefx Software Link: http://www.trellian.com/bin/lu/dl/TrellianFTP.exe Version: Trellian FTP Client v 3.01 Tested on: Windows XP SP3 Usage: ./ftpserver.pl Acts as a fake ftp server...
MP3Info 0.8.5a - Buffer Overflow
No description provided by source. Waste of CPU clock N2 Exploit for: mp3info! Latest version Author: jsacco - [email protected] Vendor: http://ibiblio.org/mp3info/ No-one-cares-about programs! junk = \x90\x90\x90\x908 shellcode =...
MailEnable Enterprise & Professional https Remote BoF Exploit
No description provided by source. !/usr/bin/perl This tools and to consider only himself to educational purpose -=MailEnable Enterprise & Professional HTTPS remote BoF exploit=- -= =- -= Discovered & Coded by CorryL info:www.x0n3-h4ck.org=- -= irc.xoned.net x0n3-h4ck corryl80atgmail.com=-...
X-lite SIP 3.0 - (wav) memory corruption Heap BOF exploit
No description provided by source. !/usr/bin/python X-lite SIP v3 wav memory corruption Heap BOF exploit Date: 06-02-2010 Author: TecR0c Software Link: http://xlite.counterpath.com/download/win32100106 Version: 3.0 Tested on: Windows XP SP3 Usage: right click running application options Alerts &...