395 matches found
Design/Logic Flaw
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet...
CVE-2014-3524
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet...
CVE-2014-3524
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet...
UBUNTU-CVE-2014-3524
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet...
MP3Info 0.8.5a - SEH Buffer Overflow Exploit
No description provided by source. Exploit Title: mp3info SEH exploit Date: 18 March 2014 Exploit Author: Ayman Sagy aymansagy at gmail.com Vendor Homepage: http://ibiblio.org/mp3info/ Software Link:...
Windows XP PRO SP3 - Full ROP calc shellcode
No description provided by source. / Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato, Jahmel OS-DLL's used: Base | Top | Size | Version...
Mozilla Thunderbird DLL Hijacking Exploit (dwmapi.dll)
No description provided by source. / Exploit Title: Mozilla Thunderbird DLL Hijacking Exploit dwmapi.dll Date: 26/08/2010 Author: h4ck3r47 http://twitter.com/hxteam Version: Latest Mozilla Thunderbird 3.1.2 Tested on: Windows XP SP3 The code is based on the exploit from TheLeader Vulnerable...
Iconics GENESIS32 9.21.201.01 - Integer overflow
No description provided by source. $Id: iconicsgenbroker.rb 13197 2011-07-17 15:01:46Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
FaceBook PhotoUploader <= 5.0.14.0 - Remote Buffer Overflow Exploit
No description provided by source. html head object id=target classid=clsid:5C6698D9-7BE4-4122-8EC5-291D84DBD4A0/object /head body script var shellcode = unescape%u0D0D%u0D0D%u9090%u9090+ //Windows Execute Command calc %ue8fc%u0044%u0000%u458b%u8b3c%u057c%u0178%u8bef%u184f%u5f8b+...
JetAudio 7.1.9.4030 (.m3u) - Universal Stack Overflow Exploit (SEH)
No description provided by source. !/usr/bin/env python JetAudio 7.1.9.4030 Universal Stack Overflow Exploit SEH Coded By: DrIDE Found By: HACK4LOVE Tested on Windows XP SP2 windows/exec - 303 bytes http://www.metasploit.com Encoder: x86/alphaupper EXITFUNC=seh, CMD=calc sc =...
A-PDF All to MP3 Converter 1.1.0 Universal Local SEH Exploit
No description provided by source. !/usr/bin/python Exploit Title: A-PDF All to MP3 Converter v.1.1.0 Universal Local SEH Exploit Date: September 18, 2010 Author: modpr0be Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: 1.1.0 Tested on: Windows XP SP3 Open application -- Next...
GSPlayer 1.83a Win32 Release Buffer Overflow Vulnerability
No description provided by source. Exploit Title: GSPlayer 1.83a Win32 Release Buffer Overflow Vulnerability Date: 2010/11/04 Author: moigai e-mail: [email protected] Software Link: http://www.vector.co.jp/download/file/win95/art/fh296344.html Version: 1.83a Win32 Release Tested on: Windows XP...
Destiny Media Player 1.61 - (lst File) Local Buffer Overflow Exploit (2)
No description provided by source. !/user/bin/perl Destiny Media Player 1.61 Local BoF Code Exploit Coded by : sCORPINo Snoop Security Researching Committe originally discovered by: Encrypt3d.M!nd windows/exec - 142 bytes http://www.metasploit.com Encoder: x86/fnstenvmov EXITFUNC=thread, CMD=calc...
Destiny Media Player 1.61 - (.pls) Universal Buffer Overflow Exploit (SEH)
No description provided by source. !/usr/bin/perl + Bug : Destiny Media Player 1.61 .pls Universal Buffer overflow SEH + Author : ThE g0bL!N + Greetz : ma 3labaliche :D + Use : open the pls file directly : + Note: His0k4 Merci jamais Raditni win32exec - EXITFUNC=seh CMD=calc Size=160...
Ultr@VNC <= 1.0.1 client Log::ReallyPrint Buffer Overflow Exploit
No description provided by source. !/usr/bin/python Ultr@VNC 1.0.1 Client Buffer Overflow - Luigi Auriemm POC by Paul Haas at Redspin.com Tested on WinXP SP 2: Launches Calc import socket, struct HOST = '' Localhost PORT = 5900 VNC Server BOFSZ = 1024 Buffer Size HEAD = RFB 003.006\n VNC Header...
PHP 6.0 Dev str_transliterate() 0Day Buffer Overflow Exploit
No description provided by source. ?php errorreporting0; PHP 6.0 Dev strtransliterate 0Day Buffer Overflow Exploit Tested on WIN XP HEB SP3, Apache, PHP 6.0 Dev Buffer Overflow Bug discovered by Pr0T3cT10n, [email protected] Exploited by TheLeader, Debug SP. Thanks: HDM...
A-PDF All to MP3 Converter 2.0.0 (.wav) Buffer Overflow (seh)
No description provided by source. Exploit Title: A-PDF All to MP3 Converter v.2.0.0 SEH overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP2 English Date: 29/01/2011 Author: m0nna Email: [email protected] triggering details: Open the...
Castripper 2.50.70 - (.pls) stack buffer overflow DEP bypass exploit
No description provided by source. !/usr/bin/python Castripper 2.50.70 .pls stack buffer overflow w/ DEP bypass exploit Author: mrme - https://net-ninja.net - mrme AT corelan.be Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 /noexecute=alwayson Greetz: Corelan Security...
Windows Internet Communication Settings DLL Hijacking Exploit (schannel.dll)
No description provided by source. / Exploit Title: Windows Internet Communication Settings DLL Hijacking Exploit schannel.dll Date: 25/08/2010 Author: ALPdaemon Email: ALPdaemon at yahoo dot com Software Link: N/A Tested on: Windows XP SP3 English Extension: .isp / include windows.h int alpdaemo...
Safari JS JITed shellcode - exec calc (ASLR/DEP bypass)
No description provided by source. !-- JIT-SPRAY for Safari 4.0.5 - 5.0.0 JavaScript JIT SHELLCODE and spray for ASLR / DEP bypass Win x32 By Alexey Sintsov from Digital Security Research Group Special for Hack In The Box 2010 Amsterdam PAYLOAD - exec calc Tested on Windows7 and Windows XP. Sorry...