Symantec Altiris Deployment Solution - ActiveX Control Arbitrary File Download and Execute (Metasploit)

$Id: symantecaltirisdeploymentdownloadandinstall.rb 11127 2010-11-24 19:35:38Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

CommuniCrypt Mail 1.16 SMTP ActiveX Stack Buffer Overflow

This module exploits a stack buffer overflow in the ANSMTP.dll/AOSMTP.dll ActiveX Control provided by CommuniCrypt Mail 1.16. By sending an overly long string to the "AddAttachments" method, an attacker may be able to execute arbitrary code. This module requires Metasploit:...

Microsoft OWC Spreadsheet - HTMLURL Buffer Overflow (MS09-043) (Metasploit)

$Id: ms09043owchtmlurl.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

RKD Software BarCodeAx.dll v4.9 ActiveX Remote Stack Buffer Overflow

$Id: barcodeax49.rb 8466 2010-02-12 18:06:49Z patrickw $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Internet Explorer 6 Web Server Exploit

Author : Ahmed Obied [email protected] Modify by: syniack [email protected] This program acts as a web server that generates an exploit to target a vulnerability CVE-2010-0249 in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP3. The exploit's payload...

Internet Explorer Aurora Exploit

Author : Ahmed Obied [email protected] This program acts as a web server that generates an exploit to target a vulnerability CVE-2010-0249 in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP2. The exploit's payload spawns the calculator. Usage : python...

Microsoft Internet Explorer Style getElementsByTagName Memory Corruption

$Id: ms09072styleobject.rb 7775 2009-12-09 15:06:26Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Autodesk IDrop ActiveX Control Heap Memory Corruption

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Autodesk IDrop ActiveX Control Heap Memory Corruption', 'Description' = %q This module exploits a heap-based memory corruption...

America Online ICQ ActiveX Control Arbitrary File Download and Execute

This module allows remote attackers to download and execute arbitrary files on a users system via the DownloadAgent function of the ICQPhone.SipxPhoneManager ActiveX control. This module requires Metasploit: https://metasploit.com/download Current source:...

Mozilla Firefox 2.0.0.16 UTF-8 URL Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/python FireFox 2.0.0.16 Windows XP SP3 x86 Remote Exploit Author: Dominic Chell [email protected] Exploits the UTF-8 URL overflow vulnerability described in CVE-2008-0016. As of September 2009 there are no public exploits for this vulnerability...

Mozilla Firefox 2.0.0.16 - UTF-8 URL Remote Buffer Overflow

!/usr/bin/python FireFox 2.0.0.16 Windows XP SP3 x86 Remote Exploit Author: Dominic Chell Exploits the UTF-8 URL overflow vulnerability described in CVE-2008-0016. As of September 2009 there are no public exploits for this vulnerability. However, according to securityfocus an exploit is available...

Mozilla Firefox 2.0.0.16 - UTF-8 URL Remote Buffer Overflow

Mozilla Firefox 2.0.0.16 - UTF-8 URL Remote Buffer Overflow !/usr/bin/python FireFox 2.0.0.16 Windows XP SP3 x86 Remote Exploit Author: Dominic Chell Exploits the UTF-8 URL overflow vulnerability described in CVE-2008-0016. As of September 2009 there are no public exploits for this vulnerability...

Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Execute

This module allows remote attackers to install and execute arbitrary files on a users file system via AeXNSPkgDLLib.dll 6.0.0.1418. This module was tested against Symantec Altiris Deployment Solution 6.9 sp3. This module requires Metasploit: https://metasploit.com/download Current source:...

Mozilla Firefox 3.5 Heap Spray OS X

!/usr/bin/env python FireFox 3.5 Heap Spray OS X Exploit Modified by: DrIDE Originally Discovered by: Simon Berry-Bryne Pythonized by: David Kennedy ReL1K @ SecureState Thanks to HDM Tested on OS X 10.5.7 from BaseHTTPServer import HTTPServer from BaseHTTPServer import BaseHTTPRequestHandler impo...

Microsoft Office Web Components Spreadsheet - ActiveX 'OWC10/11' Remote Overflow

Author : Ahmed Obied [email protected] - Based on the code posted at http://www.milw0rm.com/exploits/9163 - Tested using: Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc10.dll installed Internet Explorer 7.0.5730.13 on Windows XP SP3 with owc11.dll installed Usage : python ieowc.py...

Apple iTunes 8.1.1 (ITMS) Multiple Protocol Handler BOF Exploit (meta)

No description provided by source. $Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/...

Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC

Exploit for unknown platform in category dos / poc ========================================================== Safari RSS feed:// Buffer Overflow via libxml2 Exploit PoC ========================================================== !/usr/bin/ruby Quick-n-dirty PoC for APPLE-SA-2009-05-12 ala...

Apple Safari - RSS feed: Buffer Overflow via libxml2 (PoC)

Apple Safari - RSS feed: Buffer Overflow via libxml2 PoC !/usr/bin/ruby Quick-n-dirty PoC for APPLE-SA-2009-05-12 ala CVE-2008-3529 Safari RSS feed:// buffer overflow via libxml2 by KF of Digitalmunition and Netragard http://www.digitalmunition.com , http://www.netragard.com The application...

Ubuntu 8.10 : openjdk-6 vulnerabilities (USN-748-1)

It was discovered that font creation could leak temporary files. If a user were tricked into loading a malicious program or applet, a remote attacker could consume disk space, leading to a denial of service. CVE-2006-2426, CVE-2009-1100 It was discovered that the lightweight HttpServer did not...

Ubuntu: Security Advisory (USN-748-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...