2655 matches found
JITed exec notepad Shellcode
No description provided by source. Title: JITed exec notepad shellcode EDB-ID: CVE-ID: OSVDB-ID: Author: Alexey Sintsov Published: Verified: yes Download N/A // JIT.swf // // By Alexey Sintsov // [email protected] // [email protected] // // DSecRG - Digital Security Research Group dsecrg.com // //...
Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the affected server. This issue resides in the Symantec...
Batch Audio Converter Lite Edition <= 1.0.0.0 - Stack Buffer Overflow (SEH)
No description provided by source. Software Link: http://www.freesoftwaretoolbox.com/files/batchaudiosetup.exe Tested on: Windows XP SP2 Type of Vuln: SEH Code : bacon-exploit.py Greetz: Otoy, Postnix, Jasakom Community, Kilurah, Gesang, dan wedus-wedus lainnya ^^ Thanks: All OffSec member...
Radasm 2.2.1.6 - (.rap) Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/python + Radasm .rap Universal buffer overflow Exploit + Original : http://www.exploit-db.com/exploits/11392 + Exploit : Dzattacker [email protected] header1= \x5b\x50\x72\x6f\x6a\x65\x63\x74\x5d\x0d\x0a\x41\x73\x73\x65\x6d\x62\x6c\x65\x72...
Veritas Backup Exec Name Service Overflow
No description provided by source. $Id: nameservice.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
WebSVN 2.3.2 Unproper Metacharacters Escaping exec() Remote Command Injection
No description provided by source. WebSVN 2.3.2 Unproper Metacharacters Escaping exec Remote Commands Injection Vulnerability tested against: Microsoft Windows Server R2 SP2 PHP 5.3.6 VC9 with magicquotesgpc = off default Apache 2.2.17 VC9 Introduction: This is a very special vulnerabilty, given...
Lynx 2.8.x Command Line URL CRLF Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5499/info A CRLF injection vulnerability has been reported for Lynx that may allow an attacker to include extra HTTP headers when viewing web pages. If Lynx is called from the command line, carriage return and line feed...
win32 Download & Exec Shellcode 226 bytes+
No description provided by source. / \ WINSHELLCODE / :: win32 download & exec shellcode :: \ :: by Darkeagle of Unl0ck Research Team http://exploiterz.org :: / :: to avoid 0x00 use ^^xor^^ : :: \ :: greets goes to: Sowhat, 0x557 guys, 55k7 guys, RST/GHC guys. :: / ::cya:: \ / include stdio.h...
Fusion SBX <= 1.2 - Remote Command Execution Exploit
No description provided by source. / Fusion SBX = 1.2 exploit sileFSBXxpl This exploit use vulnerability found into Fusion SBX and create new variable and call it with a malicious function stored in config.php. This exploit utilize injection of three diverse procedures for execution of arbitrary...
Safari JS JITed shellcode - exec calc (ASLR/DEP bypass)
No description provided by source. !-- JIT-SPRAY for Safari 4.0.5 - 5.0.0 JavaScript JIT SHELLCODE and spray for ASLR / DEP bypass Win x32 By Alexey Sintsov from Digital Security Research Group Special for Hack In The Box 2010 Amsterdam PAYLOAD - exec calc Tested on Windows7 and Windows XP. Sorry...
Download & Exec polymorphed shellcode Engine
No description provided by source. Download & Exec polymorphed shellcode engine POC This downloading and execution code is not detectable by popular AVs. Greetz 2: DarkEagle and Unl0ck researcherz; Str0ke and milw0rm; HD Moor and metasploit project; Maxus, Fuchunic, YrSam, Garry; Offtopic and PTT...
J-Integra 2.11 - ActiveX SetIdentity() Buffer Overflow Exploit
No description provided by source. !-- Exploit Title: J-Integra v2.11 ActiveX SetIdentity Buffer Overflow Exploit Found By: DrIDE Download: http://j-integra.intrinsyc.com/ Greets: bz1p, [email protected] for finding the app. Tested on: XP SP3 IE7 CVE: 0day Notes: This is not the same control as...
DNS Reverse Download and Exec Shellcode
No description provided by source. Shellcode: download and execute file via reverse DNS channel Features: Windows 7 tested UAC without work svchost.exe makes requests via getaddrinfo Firewall/Router/Nat/Proxy bypass reverse connection like dnscat do, but without sockets and stable! NO SOCKET DNS...
GNU Mailutils imap4d 0.6 - Remote Format String Exploit (exec-shield)
No description provided by source. / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...
TinyPHPForum 3.6 UpdatePF.PHP Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19281/info TinyPHPForum is prone to an authentication-bypass vulnerability because it fails to prevent an attacker from accessing admin scripts directly without requiring authentication. A remote attacker can exploit this...
YaPiG 0.92 Remote Server-Side Script Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10891/info A vulnerability is reported to exist in YaPiG that may allow a remote attacker to execute malicious scripts on a vulnerable system. This issue exists due to a lack if sanitization of user-supplied data. It is...
JPEGView 1.0.29 - Crash PoC
No description provided by source. Title: JPEGView - Image Viewer and Editor RCE POC Date: 18 November'13 Author: Debasish Mandal https://twitter.com/debasishm89 Version: JPEGView v1.0.29 Download Link : http://sourceforge.net/projects/jpegview/ Vendor Patch : Patched in version v1.0.30 Issue...
Fire Soft Board <= 2.0.1 Persistent XSS Vulnerability (admin panel)
No description provided by source. Exploit Title: Fire Soft Board = 2.0.1 Persistent XSS Vulnerability admin panel Date: 2011-07-11 Author: jill for A-S Software Link: http://www.fire-soft-board.com/index.php?p=download&mode=cat&id=2 Version: 2.0.1 There is a vulnerability on Fire Soft Board foru...
phpBB <= 2.0.10 Remote Command Execution Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; @@@@@@@ @@@ @@@ @@@@@@ @@@ @@@ @@! @@@ @@! @@@ !@@ @@! @@@ @!@!!@! @!@ !@! !@@!! @!@!@!@! !!: :!! !!: !!! !:! !!: !!! : : : :.:: : ::.: : : : : phpBB = 2.0.10 remote commands exec exploit based on...
PHP Speedy <= 0.5.2 Wordpress Plugin (admin_container.php) Remote Code Exec Exploit
No description provided by source. ?php / php speedy = 0.5.2 wordpress plugin admincontainer.php Remote Code Exec Exploit vendor: http://aciddrop.com/ ------------------------------- May the stars be aligned! php.ini requirements: registerglobals=On allowurlinclude=On magicquotesgpc=Off...