PHP <= 5.2.0 (php_win32sti) Local Buffer Overflow PoC (win32)

No description provided by source. ?php // ================================================================================== // // phpwin32sti.dll PHP = 5.2.0 win32 Buffer Overflow // // x Discovery: boecke [email protected] // x Risk: Local Buffer Overflow Medium - High Risk // x Notes: EDX...

PHP 4.4.6 crack_opendict() Local Buffer Overflow Exploit PoC

No description provided by source. ?php //PHP 4.4.6 crackopendict local buffer overflow poc exploit //win2k sp3 version / seh overwrite method //to be launched from the cli // by rgod // site: http://retrogod.altervista.org if !extensionloadedcrack dieyou need the crack extension loaded.; $scode=...

PHP <= 5.2.0 (php_iisfunc.dll) Local Buffer Overflow PoC (win32)

Exploit for unknown platform in category dos / poc ================================================================ PHP // Risk: Local Buffer Overflow Medium - High Risk // Notes: Various other functions are exploitable, all of which convert the // string arguments to unicode. // // extern "C"...

phpgd2-overflow.txt

...

PHP Safe_mode bypass exploit &#40;win32service&#41;

?php PHP Safemode bypass exploit win32service Note: Tested on 5.2.1 Author: NetJackal Email: nima501atyahoodotcom Website: http://netjackal.by.ru Usage: http://victim.net/nj.php?CMD=command $command=isset$GET'CMD'?$GET'CMD':'dir'; cammand $dir=iniget'uploadtmpdir'; Directory to store command's...

T1lib - &#039;intT1_Env_GetCompletePath&#039; Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/25079/info T1lib is prone to a buffer-overflow vulnerability because the library fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issue to execute arbitrary machine cod...

PHP 5.2.3 - bz2 com_print_typeinfo() Denial of Service

PHP 5.2.3 - bz2 comprinttypeinfo Denial of Service milw0rm.com 2007-07-12...