EUVD-2015-8457

Malware in sbrugna...

Lotus Domino 8.5.3 - 'EXAMINE' Stack Buffer Overflow DEP/ASLR Bypass (NSA's EMPHASISMINE)

Here is a working version of the NSA's EMPHASISMINE for IMAP Server Lotus Domino 8.5.3 FP0 DEP/ASLR bypass Replace breakpoints with msfvenom payload ALPHANUMERIC I love you Alison Thompson OAM @ThirdWaveORG Author: Charles Truscott @r0ss1n1 import base64 import struct import socket import time...

Easy RM to MP3 Converter 2.7.3.700 - .m3u File (Universal ASLR + DEP Bypass)

Easy RM to MP3 Converter 2.7.3.700 - .m3u File Universal ASLR + DEP Bypass Exploit Title: Easy RM to MP3 Converter 2.7.3.700 .m3u File BoF Exploit with Universal DEP+ASLR bypass Date: 2016-06-12 Exploit Author: Csaba Fitzl Vendor Homepage: N/A Software Link:...

Blue Coat Authentication and Authorization Agent (BCAAA) 5 Buffer Overflow

No description provided by source. $Id: bcaaabof.rb 13137 2011-07-09 04:10:52Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::BrowserExploitServer MANIFE...

VeryTools Video Spirit Pro <= 1.70 .visprj Buffer Overflow

No description provided by source. $Id: videospiritvisprj.rb 12305 2011-04-11 23:32:41Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...

MS12-027 - Office 2010 DEP/ASLR Bypass Exploit

This module target Office 2010. The DEP/ASLR bypass on Office 2010 is done with article written by Anonymous. The ROP chain uses "msgr3en.dll", which will load after about 400 pages got load. This file is part of the Metasploit Framework and may be subject to redistribution and commercial...

MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access

Exploit for windows platform in category remote exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 EOS def initializeinfo= superupdateinfoinfo, 'Name' = "MS12-022 Microsoft...

BigAnt Server 2.97 Buffer Overflow

!/usr/bin/python Title: BigAnt Server 2.97 DDNF Username Buffer Overflow Author: Craig Freyman @cd1zz http://pwnag3.com Tested on: Windows 7 64 bit DEP/ASLR Bypass Similar Exploits: http://www.exploit-db.com/exploits/24528/ http://www.exploit-db.com/exploits/24527/...

Apple QuickTime 7.7.2 TeXML Style Element font-table Field Stack Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 OperatingSystems::WINDOWS, :javascript...

BigAnt Server 2.52 SP5 SEH Stack Overflow ROP-based exploit (ASLR + DEP bypass)

Exploit for windows platform in category remote exploits Exploit Title: BigAnt Server 2.52 SP5 SEH Stack Overflow ROP-based exploit ASLR + DEP bypass Date: 03/11/2012 Exploit Author: Lorenzo Cantoni Vendor Homepage: http://www.bigantsoft.com/ Version: BigAnt Console 2.52 SP5 Tested on: Windows 7...

MS Office 2010 RTF Header Stack Overflow Vulnerability Exploit

No description provided by source. Exploit Title: MS Office 2010 RTF Header Stack Overflow Vulnerability Exploit Date: 7/3/2011 Author: Snake Shahriyar.j at gmail Version: MS Office = 2010 Tested on: MS Office 2010 14.0.4734.1000 - Windows 7 CVE : CVE-2010-3333 This is the exploit I wrote for...

Microsoft Office 2010 - &#039;.RTF&#039; Header Stack Overflow

Exploit Title: MS Office 2010 RTF Header Stack Overflow Vulnerability Exploit Date: 7/3/2011 Author: Snake Shahriyar.j gmail Version: MS Office unfortunately msgr3en.dll loads a few seconds after opining office, so just need to open open Office , and then open exploit after a few second and saw a...

Mozilla Firefox - &#039;nsTreeRange&#039; Dangling Pointer (2)

Advisory : Abysssec Public Exploit : This module exploits a code execution vulnerability in Mozilla Firefox = 3.6.16 caused by nsTreeSelection element. The specific flaw exists within the way Firefox handles user defined functions of a nsTreeSelection element. When executing the function...

MJM Core Player 2011 .s3m Stack Buffer Overflow

Exploit for windows platform in category local exploits $Id: mjmcoreplayer2011s3m.rb 12473 2011-04-30 02:36:14Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informatio...

VeryTools VideoSpirit Pro 1.70 - &#039;.visprj&#039; Local Buffer Overflow (Metasploit)

$Id: videospiritvisprj.rb 12305 2011-04-11 23:32:41Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Microsoft Internet Explorer 6/7/8 - Memory Corruption

Internet Explorer Memory Corruption 0day Vulnerability CVE-2010-3962 Tested on Windows XP SP3 IE6 IE7 IE8 Coded by Matteo Memelli ryujin at offsec.com http://www.offensive-security.com/0day/ie-0day.txt Thx to dookie at offsec.com notes : This is a quick and dirty exploit! No DEP/ASLR bypass here...

Charlie Miller on Mac OS X, Pwn2Own and Writing Exploits

The following is the full transcript of a live Threatpost chat with Charlie Miller, a vulnerability researcher at Independent Security Evaluators. During this session, Miller discussed his approach to finding security flaws, his work on fuzzing applications, his plans for this year’s Pwn2Own hack...

Windows x86 null-free bindshell for Windows 5.0-7.0 all service packs

No description provided by source. BITS 32 ; Windows x86 null-free bindshell for Windows 5.0-7.0 all service packs. ; See http://skypher.com/wiki/index.php/Hacking/Shellcode/Bind/NGS. ; Based largely on code and ideas C 2005 by Dafydd Stuttard, NGS Software. ; See...