139 matches found
Apple Mac OSX 10.10 - 'DYLD_PRINT_TO_FILE' Local Privilege Escalation
!/bin/sh Simple Proof of Concept Exploit for the DYLDPRINTTOFILE local privilege escalation vulnerability in OS X 10.10 - 10.10.4 C Copyright 2015 Stefan Esser Wait months for a fix from Apple or install the following KEXT as protection https://github.com/sektioneins/SUIDGuard Use at your own ris...
linux/x86 chmod('/etc/passwd',0777) - shellcode 42 bytes
/ Title: Linux/x86 chmod'/etc/passwd',0777 - shellcode 42 bytes Platform: linux/x8664 Author: Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes , reza.esparghamatgmaildotcom Website : www.reza.es Twitter : https://twitter.com/rezesp FaceBook :...
CVE-2014-9586
The root cause of these vulnerabilities is a lack of bounds checking in protocol parsing C++ code emitted by the binpac utility...
MySQL <= 5.0.20 COM_TABLE_DUMP Memory Leak/Remote BoF Exploit
No description provided by source. / April 21.st 2006 myexploit.c MySql COMTABLEDUMP Memory Leak & MySql remote B0f MySql = 5.0.20 MySql COMTABLEDUMP Memory Leak MySql = 4.x.x copyright 2006 Stefano Di Paola stefano.dipaolaatwisec.it GPL 2.0 Disclaimer: In no event shall the author be liable for...
Mercury Mail 4.01 - (Pegasus) IMAP Buffer Overflow (2) (c code)
No description provided by source. / Remote Mercury32 Imap exploit 14 types of attacks WOW! By: [email protected] Notes: Second public release and both of them are murcury32 ; Again someone posted some dos code : why bother? If you spent the time to look, it uses the same buffer for all 14 type...
win32/PerfectXp-pc1/sp3 (Tr) Add Admin Shellcode 112 bytes
No description provided by source. Title : win32/PerfectXp-pc1/sp3 Tr Add Admin Shellcode 112 bytes Author : KaHPeSeSe Screenshot : http://i53.tinypic.com/289yamq.jpg Desc. : usr: kpss , pass: 12345 , localgroup: Administrator Tested on : PERFECT XP PC1 / SP3 Date : 18/07/2011 Not : a.q kpss :...
Lithtech Engine (new protocol) - Socket Unreacheable DoS
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
phpBB <= 2.0.15 Register Multiple Users Denial of Service (c code)
No description provided by source...
linux/x86 chroot & standart 66 bytes
No description provided by source. / Linux/x86 chroot and standart shellcode. By Okti http://okti.nm.ru ---------------------------------------------------------------------------------------------- / / Mkdir and Chroot are written in C: / includestdio.h includeunistd.h includesys/types.h...
MS Windows XP - WmiTraceMessageVa Integer Truncation Vulnerability PoC (MS11-011)
No description provided by source. / Exploit Title: MS11-011CVE-2011-0045: MS Windows XP WmiTraceMessageVa Integer Truncation Vulnerability PoC Date: 2011-03-01 Author: Nikita Tarakanov CISS Research Team Software Link: Version: prior to MS11-011 Tested on: Win XP SP3 CVE : CVE-2011-0045 Status :...
Novell eDirectory <= 9.0 DHost Remote Buffer Overflow Exploit
No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 30\10\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet...
MTools 3.9.x MFormat Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9746/info It has been reported that mformat is prone to a privilege escalation vulnerability when installed as a setUID application. This issue is due to a design error allowing a user to create any arbitrary files as the...
[SECURITY] Fedora 19 Update: mod_wsgi-3.5-1.fc19
The modwsgi adapter is an Apache module that provides a WSGI compliant interface for hosting Python based web applications within Apache. The adapter is written completely in C code against the Apache C runtime and for hosting WSGI applications within Apache has a lower overhead than using existi...
Using symbolic execution to solve a tiny ASCII maze.
In this post we'll exercise the symbolic execution engine KLEE over a funny ASCII Maze yet another toy example! | VS. | Maze dimensions: 11x7 Player pos: 1x1 Iteration no. 0 Program the player moves with a sequence of 'w', 's', 'a' or 'd' Try to reach the prize! +-+---+---+ |X| || | | --+ | | | |...
Ektron CMS XslCompiledTransform Class Request Parsing Remote Code Execution
The version of Ektron CMS hosted on the remote web server is affected by a remote code execution vulnerability. The vulnerability arises because the 'ekajaxtransform.aspx' script utilizes the .NET 'XslCompiledTransform' class with 'enablescript' set to true. Nessus was able to execute this...
Debian DSA-2356-1 : openjdk-6 - several vulnerabilities (BEAST)
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java platform : - CVE-2011-3389 The TLS implementation does not guard properly against certain chosen-plaintext attacks when block ciphers are used in CBC mode. - CVE-2011-3521 The CORBA implementation contains a...
Microsoft Windows Server 2008 R1 - Local Denial of Service
Microsoft Windows Server 2008 R1 - Local Denial of Service Hi all. Here's a cute little local DoS attack against Windows Server 2008 R1, which will allow any user who can execute unprivileged code to BSoD your server with about three lines of C. I have reported this to Microsoft, but because of t...
Windows Server 2008 R1 Local Denial of Service
Exploit for windows platform in category dos / poc Hi all. Here's a cute little local DoS attack against Windows Server 2008 R1, which will allow any user who can execute unprivileged code to BSoD your server with about three lines of C. I have reported this to Microsoft, but because of the limit...
Fedora Update for gcc FEDORA-2010-10640
Check for the Version of gcc OpenVAS Vulnerability Test Fedora Update for gcc FEDORA-2010-10640 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...
[SECURITY] Fedora 12 Update: gcc-4.4.4-10.fc12
The gcc package contains the GNU Compiler Collection version 4.4. You'll need this package in order to compile C code...