TLR-2005KSH - Arbitrary File Delete

Exploit Title: TLR-2005KSH - Arbitrary File Delete Date: 2022-05-11 Exploit Author: Ahmed Alroky Author Company : AIactive Version: 1.0.0 Vendor home page : http://telesquare.co.kr/ Authentication Required: No Tested on: Windows CVE: CVE-2021-46424 Proof-of-Concept Request DELETE /cgi-bin/test2.t...

Exploit for CVE-2017-0213

windows-kernel-exploits 简介 windows-kernel-exploits 漏洞列表 Security Bulletin KB Description Operating System - MS17-017 KB4013081 GDI Palette Objects Local Privilege Escalation windows 7/8 - CVE-2017-8464 LNK Remote Code Execution Vulnerability windows 10/8.1/7/2016/2010/2008 - CVE-2017-0213...

Nimsoft nimcontroller 7.80 Remote Code Execution Exploit

/ Exploit Title : Sing About Me, I'm Dying Of Thirst Exploit Author : wetw0rk Exploit Version : Public POC CVE : CVE-2020-8012 Vendor Homepage : https://docops.ca.com/ca-unified-infrastructure-management/9-0-2/en Software Version : 7.80 Tested on : Windows 10 Pro x64, Windows Server 2012 R2...

Cela Link CLR-M20 2.7.1.6 - Arbitrary File Upload

Exploit Title: Cela Link CLR-M20 2.7.1.6 - Arbitrary File Upload Date: 2018-07-13 Shodan Dork: CLR-M20 Exploit Author: Safak Aslan Software Link: http://www.celalink.com Version: 2.7.1.6 CVE: 2018-15137 Authentication Required: No Tested on: Windows Vulnerability Description Due to the Via WebDAV...

System Shield 5.0.0.136 - Privilege Escalation Exploit

Exploit for windows platform in category local exploits / Exploit Title - System Shield AntiVirus & AntiSpyware Arbitrary Write Privilege Escalation Date - 29th January 2018 Discovered by - Parvez Anwar @parvezghh Vendor Homepage - http://www.iolo.com/ Tested Version - 5.0.0.136 Driver Version -...

Easy Vedio to PSP Converter 1.6.20 - Local Buffer Overflow (SEH)

Easy Vedio to PSP Converter 1.6.20 - Local Buffer Overflow SEH !/usr/bin/python Exploit Title: Easy Vedio to PSP Converter 1.6.20 - Local Buffer Overflow SEH Date: 28-08-2017 Exploit Author: Kishan Sharma Email : [email protected] Vulnerable Software: Easy Vedio to PSP Converter Vendor...

CesarFTP 0.99g - XCWD Denial of Service

CesarFTP 0.99g - XCWD Denial of Service !/usr/bin/env python -- coding:utf-8 -- Exploit Title : CesarFTP 0.99g -XCWDRemote BoF Exploit Discovery by : Irving Aguilar Email : [email protected] Discovery Date : 18.01.2016 Tested Version : 0.99g Vulnerability Type : Denial of Service DoS Teste...

WebGate WinRDS 2.0.8 StopSiteAllChannel Stack Overflow Exploit

WebGate WinRDS version 2.0.8 suffers from a StopSiteAllChannel stack overflow vulnerability. WebGate WinRDS WESPPlayback.WESPPlaybackCtrl.1 StopSiteAllChannel Stack Buffer Overflow Vulnerability 0Day var buff1 = ""; var nops = ""; var buff2 = ""; for i=0;i128; i++ buff1 += "B"; nseh = "\xeb\x08PD...

Hamster Free ZIP Archiver 2.0.1.7 DLL Hijacking

/ Title: Hamster Free ZIP Archiver Dll Hijacking Exploit 2.0.1.7 dwmapi.dll Version: 2.0.1.7 Tested on: Windows XP SP2 en Vendor: http://www.hamstersoft.com/ Software-Link: http://www.hamstersoft.com/online/hfzasite/hfzasite30034b26122013.exe E-Mail: osandaatunseen.is Author: Osanda Malith...

MS13-059 Microsoft Internet Explorer CFlatMarkupPointer Use-After-Free

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

MS14-012 Internet Explorer CMarkup Use-After-Free

No description provided by source. !-- MS14-012 Internet Explorer CMarkup Use-After-Free Vendor Homepage: http://www.microsoft.com Version: IE 10 Date: 2014-03-31 Exploit Author: Jean-Jamil Khalife Tested on: Windows 7 SP1 x64 fr, en Flash versions tested: Adobe Flash Player 12.0.0.70, 12.0.0.77...

TeamViewer <= 5.0.8703 DLL Hijacking Exploit (dwmapi.dll)

No description provided by source. / Exploit Title: TeamViewer = 5.0.8703 DLL Hijacking Exploit dwmapi.dll Date: August 25, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Version: 5.0.8703 Tested on: Windows XP SP3 En Vulnerable extensions: .tvs .tvc Greetz: Astalavista, OffSEC,...

SimplePlayer 0.2 - (.wav) overflow DoS Exploit (0day)

No description provided by source. !/usr/bin/python Title: SimplePlayer v0.2 0day .wav overflow DOS Exploit Found by: mrme seeleymagic at hotmail dot com Greetz to: Corelan Security Team::corelanc0d3r/EdiStrosar/Rick2600/MarkoT Tested on: Windows XP SP3 Happy New Year! POC: crash = x41 36000;...

SafeNet Sentinel Protection Server 7.0 &lt; 7.4 / Sentinel Keys Server 1.0.3 &lt; 1.0.4 - Directory Traversal

!/usr/bin/python Exploit Title: SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0.3 - 1.0.4 Directory Traversal Date: 04/28/2014 Exploit Author: Matt Schmidt Syph0n Vendor Homepage: http://www.safenet-inc.com/ Software Link:...

Steinberg MyMp3PRO 5.0 - Local Buffer Overflow (SEH) (DEP Bypass + ROP)

!/usr/bin/ruby print ''' Steinberg MyMp3PRO v5.0 Buffer Overflow Version: 5.0 Build 5.1.0.21 Date found: 04.12.2013 Exploit Author: metacom Tested on:XP-Sp3-EN ''' sleep3 junk="\x41" 1044 eip=0x7C86467B.pack'V'7C86467B FFE4 JMP ESP kernel32.dll nops="\x90" 100 landing zone...

WinArchiver 3.2 - Local Buffer Overflow (SEH)

WinArchiver 3.2 - Local Buffer Overflow SEH /usr/bin/python Exploit Title: Winarchiver V 3.2 SEH Overflow Date: April 24, 2013 Exploit Author: Josep Pi Rodriguez, Pedro Guillen Nunez , Miguel Angel de Castro Simon Organization: RealPentesting Vendor Homepage: http://winarchiver.com Software Link:...

BigAnt IM Server DDNF username Field Remote Overflow

Added: 04/22/2013 BID: 58998 OSVDB: 92239 Background BigAnt Messenger Server offers secure instant messaging, file transfer, voip, video chat, web conferencing and more. Problem BigAnt IM Server is vulnerable to buffer overflow in the expsrv.dll library as a result of improper validation of...

Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode

/ Title: Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode Date: 2013-22-01 Author: RubberDuck Web: http://bflow.security-portal.cz http://www.security-portal.cz Tested on: Win 2k, Win XP Home SP2/SP3 CZ 32, Win 7 32/64 -- file is downloaded from URL...

Apache-Struts ParameterInterceptor < 2.3.1.2 RCE Windows

Apache-Struts2 / OpenSymphony-Xwork RCE Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...

DaqFactory 5.85 build 1853 - Stack Overflow

Luigi Auriemma Application: DAQFactory http://www.azeotech.com/daqfactory.php Versions: = 5.85 build 1853 Platforms: Windows Bug: stack overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...