NRSS Reader 0.3.9 - Local Stack Overflow

NRSS Reader 0.3.9 - Local Stack Overflow Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: NRSS RSS Reader Version: 0.3.9-1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program...

NRSS Reader 0.3.9 - Local Stack Based Overflow

Exploit for linux platform in category local exploits Program affected: NRSS RSS Reader Version: 0.3.9-1 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description: NRSS is a console based RSS reader allowing uses to read and manage RSS feeds Kali Linux 2.0 package:...

TRN Threaded USENET News Reader 3.6-23 - Local Stack Overflow

TRN Threaded USENET News Reader 3.6-23 - Local Stack Overflow Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: Threaded USENET news reader Version: 3.6-23 Tested and developed under: Kali Linux 2.0 x86 -...

TRN Threaded USENET News Reader 3.6-23 - Local Stack Overflow

Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: Threaded USENET news reader Version: 3.6-23 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description: Threaded USENET news...

TRN Threaded Reader 3.6-23 Stack Buffer Overflow

Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - [email protected] Program affected: Threaded USENET news reader Version: 3.6-23 Tested and developed under: Kali Linux 2.0 x86 - https://www.kali.org Program description: Threaded USENET news...

TRN Threaded USENET News Reader 3.6-23 - Local Stack Based Overflow

Exploit for linux platform in category local exploits Exploit developed using Exploit Pack v5.4 Exploit Author: Juan Sacco - http://www.exploitpack.com - email protected Program affected: Threaded USENET news reader Version: 3.6-23 Tested and developed under: Kali Linux 2.0 x86 -...

Immunity Canvas: STRUTS2_DMI_RCE

Name| struts2dmirce ---|--- CVE| CVE-2016-3081 Exploit Pack| CANVAS Description| struts2dmirce Notes| CVE Name: CVE-2016-3081 VENDOR: Apache NOTES: The JAR Server will listen on the port provided in the UI. However, if that port is unavailable, a random one will be chosen. Example vulnerable...

Immunity Canvas: JENKINS_JRMP_DESERIALIZATION

Name| jenkinsjrmpdeserialization ---|--- CVE| CVE-2016-0788 Exploit Pack| CANVAS Description| jenkinsjrmpdeserialization Notes| CVE Name: CVE-2016-0788 VENDOR: Jenkins NOTES: Versions tested: Ubuntu Linux 14.04.3 Jenkins 1.598 - 6 / 7 / 8 Jenkins 1.649 - 7 / 8 Windows 7 Ultimate SP1 Jenkins 1.598...

Immunity Canvas: CVE_2016_1757

Name| CVE20161757 ---|--- CVE| CVE-2016-1757 Exploit Pack| CANVAS Description| Shellelevate: CVE-2016-1757 Notes| Repeatability: Multiple Times NOTES: VENDOR: Apple CVE Url: https://vulners.com/cve/CVE-2016-1757 CVE Name: CVE-2016-1757...

Agent-XSS

An XSS Channel is an interactive communication channel between two systems which is opened by an XSS attack. At a technical level, it is a type of AJAX application which can obtain commands, send responses back and is able to talk cross-domain. // Exploit Pack server - Change 127.0.0.1 to your IP...

Agent-VBS

An XSS Channel is an interactive communication channel between two systems which is opened by an XSS attack. At a technical level, it is a type of AJAX application which can obtain commands, send responses back and is able to talk cross-domain. 'Exploit Pack VBS Agent code + Web IE Object - Juan...

Immunity Canvas: MS16_006_SILVERLIGHT

Name| ms16006silverlight ---|--- CVE| CVE-2016-0034 Exploit Pack| CANVAS Description| ms16006silverlight Notes| CVE Name: CVE-2016-0034 VENDOR: Microsoft Notes: This module exploits a mishandling of negative offsets during a decoding. This situation could be exploited to overwrite with controlled...

Immunity Canvas: MS15_100

Name| ms15100 ---|--- CVE| CVE-2015-2509 Exploit Pack| CANVAS Description| ms15100 Notes| References: https://technet.microsoft.com/library/security/ms15-100 CVE Name: CVE-2015-2509 VENDOR: Microsoft NOTES: Tested on: Windows 7 SP132 bits Windows 7 SP164 bits Use port 80 as the server port Window...

ZSNES 1.51 - Local Buffer Overflow

Exploit Author: Juan Sacco - http://www.exploitpack.comp Tested on: GNU/Linux - Kali Linux 2.0 Description: ZSNES v1.51 and prior is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker could...

Immunity Canvas: ORACLE_FORMS_RCE

Name| oracleformsrce ---|--- CVE| CVE-2014-4278 Exploit Pack| CANVAS Description| Oracle Forms 10g Unauthenticated Remote Code Execution Notes| Info: https://securitytracker.com/id/1031042 Repeatability: Infinite VENDOR: Oracle CVE Url: https://vulners.com/cve/CVE-2014-4278 CVE Name: CVE-2014-427...

AlstraSoft Live Support 1.21 - Admin Credential Retrieve Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo AlstraSoft Live Support v1.21 Admin Credential Retrieve Exploit by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to rgod for the php code and Marty for the Love ; if $argc2 echo Usage: php...

AlstraSoft Template Seller Pro <= 3.25 Admin Password Change Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo AlstraSoft Template Seller Pro = 3.25 Admin Password Change Exploit by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to rgod for the php code and Marty for the Love ; if $argc4 echo Usage: php...

MP3Info 0.8.5a - Buffer Overflow

MP3Info 0.8.5a - Buffer Overflow Waste of CPU clock N2 Exploit for: mp3info! Latest version Author: jsacco - [email protected] Vendor: http://ibiblio.org/mp3info/ No-one-cares-about programs! junk = "\x90\x90\x90\x90"8 shellcode =...

DSquare Exploit Pack: D2SEC_LOREX

Name| d2seclorex ---|--- CVE| CVE-2014-1201 Exploit Pack| D2ExploitPack Description| Lorex Edge INetViewX ActiveX Buffer Overflow Vulnerability Notes|...

DSquare Exploit Pack: D2SEC_APACHE_ROLLER

Name| d2secapacheroller ---|--- CVE| CVE-2013-4212 Exploit Pack| D2ExploitPack Description| d2secapacheroller Notes|...