Malicious code in ie8-dom-define (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bafd820b50caefd5e1af4ca12fcd7861408751d2ebe06de855897f04480f13c8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-194 Malicious code in ie8-dom-define (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bafd820b50caefd5e1af4ca12fcd7861408751d2ebe06de855897f04480f13c8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Rockwell Automation 1794 - 8 Channel 24V DC Non-Isolated Voltage/Current Analog Input 1794-IE8/A General Purpose Analog I/O

Binary data 752810.prm...

Windows Browser Example Exploit

This template covers IE8/9/10, and uses the user-agent HTTP header to detect the browser version. Please note IE8 and newer may emulate an older IE version in compatibility mode, in that case the module won't be able to detect the browser correctly. This is an example Metasploit module to be used...

Windows Browser Example Exploit

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This exploit sample demonstrates how a typical browser exploit is written using commonly used components such as: HttpServer, BrowserAutopwn, RopDB, DOM Element Property...

Windows Exploit development tutorial series--heap spray II-vulnerability warning-the black bar safety net

Hello everyone, welcome back to this part of the tutorial stack injection Part 2. This tutorial will guide you in IE8 on the use of precision heap spraying. There are two basic scenarios that require you to use very precise heap spray: the 1You have to deal with DEP protection case, you will need...

Drupal 8.0.x-dev Cross Site Scripting

DOM Based XSS with character on IE8 and older versions IMPORTANT: this issue has been cleared for public discussion and resolution by the Drupal Security Team based on the low evidence of vulnerable browsers still existing. Problem/Motivation filterxss does not filter out the accent grave...

WebGate WinRDS 2.0.8 - PlaySiteAllChannel Stack Buffer Overflow

WebGate WinRDS 2.0.8 - PlaySiteAllChannel Stack Buffer Overflow var arg1 = ""; var arg2 = 1; var arg3 = 1; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i128; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

Advantech WebAccess dvs.ocx GetColor Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow vulnerability in Advantec WebAccess. The vulnerability exists in the dvs.ocx ActiveX control, where a dangerous call to sprintf can be reached with user controlled data through the GetColor function. This Metasploit module has been tested...

Aladdin Knowledge System Ltd ChooseFilePath Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

MS13-009 Microsoft Internet Explorer COALineDashStyleArray Integer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

HP LoadRunner lrFileIOService ActiveX WriteFileString Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Microsoft Internet Explorer MHTML Protocol Handler XSS

No description provided by source. Hacking with mhtml protocol handler Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2011/1/15 References: http://www.80vul.com/mhtml/Hacking%20with%20mhtml%20protocol%20handler.txt Ph4nt0m Webzine 0x05 http://secinn.appspot.com/pstzine Was finally...

Phorum <= 5.2.11 Permanent Cross Site Scripting Vulnerabilities

No description provided by source. //----- Advisory Program : Phorum 5.2.11 and prior Homepage : http://www.phorum.org/ Discovery : 2009/07/16 Author Contacted : 2009/07/17 Found by : CrashFr This Advisory : CrashFr //----- Application description Started in 1998, Phorum was the original PHP and...

Viscom Image Viewer CP Pro 8.0/Gold 6.0 ActiveX Control

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

MoviePlay 4.82 - (.lst) Buffer Overflow

No description provided by source. !/usr/bin/env python MoviePlay 4.82 .lst Buffer Overflow Author: sickness Download : http://www.softpedia.com/get/Multimedia/Video/Video-Players/MoviePlay.shtml Previous version exploit can be found here: http://www.exploit-db.com/exploits/4051/ Tested : Windows...

CVE-2 0 1 3-3 8 9 7 sample analysis study notes-vulnerability warning-the black bar safety net

Before, see FireEye on the CVE-2 0 1 3-3 8 9 3 analysis, see Use way relatively similar, the thought is the same, the analysis of learning, discovery led to the question of object is inconsistent, it does not use the ms-help load the office of hxdl structure of the ROP, and later in the BinVul on...

Immunity Canvas: IE_CARDSPACECLAIMCOLLECTION

Name| iecardspaceclaimcollection ---|--- CVE| CVE-2013-3918 Exploit Pack| CANVAS Description| iecardspaceclaimcollection Notes| CVE Name: CVE-2013-3918 VENDOR: Microsoft NOTES: - This exploits leaks a vtable pointer of a CTable object in order to bypass ASLR - We also leak the shellcode's address...

MS13-055 Microsoft Internet Explorer CAnchorElement Use-After-Free

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

HP LoadRunner - lrFileIOService ActiveX WriteFileString Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...