31 matches found
Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit (Authenticated)
Exploit Title: Zoom Meeting Connector 4.6.239.20200613 - Remote Root Exploit Authenticated Date: 12-29-2020 Exploit Author: Jeremy Brown Vendor Homepage: https://support.zoom.us/hc/en-us/articles/201363093-Deploying-the-Meeting-Connector Software Link:...
Stratodesk NoTouch Center Privilege Escalation
Stratodesk NoTouch Center Virtual Appliance is a portal for managing NoTouch clients. It appears that Stratodesk has a partnership with ViewSonic and produced these appliances to support some of their hardware devices as well. - https://www.stratodesk.com/products/notouch-desktop/virtual-applianc...
Podman & Varlink 1.5.1 - Remote Code Execution
Exploit Title: Podman & Varlink 1.5.1 - Remote Code Execution Exploit Author: Jeremy Brown Date: 2019-10-15 Vendor Homepage: https://podman.io/ Software Link: dnf install podman or https://github.com/containers/libpod/releases Version: 1.5.1 Tested on: Fedora Server 30 !/usr/bin/python -- coding:...
Podman Varlink 1.5.1 - Remote Code Execution
Podman Varlink 1.5.1 - Remote Code Execution Exploit Title: Podman & Varlink 1.5.1 - Remote Code Execution Exploit Author: Jeremy Brown Date: 2019-10-15 Vendor Homepage: https://podman.io/ Software Link: dnf install podman or https://github.com/containers/libpod/releases Version: 1.5.1 Tested on:...
gAlan 0.2.1 - Buffer Overflow 0day Exploit
No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 From Static Analysis to 0day Exploit Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...
Ecava IntegraXor Remote ActiveX Buffer Overflow PoC
No description provided by source. !/usr/bin/python intx.py Ecava IntegraXor Remote ActiveX Buffer Overflow PoC Jeremy Brown December 2010 http://www.integraxor.com/ There is a stack-based buffer overflow in IntegraXor that can be triggered by passing an overly large value to the save method of t...
Objectivity/DB Lack Of Authentication
!/usr/bin/python obj.py Objectivity/DB Lack of Authentication Remote Exploit Jeremy Brown 0xjbrown41-gmail-com Jan 2011 "Objectivity, Inc. is a leader in distributed, scalable database technology. Our patented data management engine and persistent object store is the enabling technology powering...
Ecava IntegraXor Remote ActiveX Buffer Overflow PoC
!/usr/bin/python intx.py Ecava IntegraXor Remote ActiveX Buffer Overflow PoC Jeremy Brown December 2010 There is a stack-based buffer overflow in IntegraXor that can be triggered by passing an overly large value to the "save" method of the IntegraXor.Project control located in igcomm.dll. This...
Ecava IntegraXor Remote ActiveX Buffer Overflow PoC
Exploit for windows platform in category dos / poc !/usr/bin/python intx.py Ecava IntegraXor Remote ActiveX Buffer Overflow PoC Jeremy Brown December 2010 http://www.integraxor.com/ There is a stack-based buffer overflow in IntegraXor that can be triggered by passing an overly large value to the...
BACnet OPC Client - Local Buffer Overflow (1)
!/usr/bin/python bacnet.py BACnet OPC Client Buffer Overflow Exploit Jeremy Brown 0xjbrown41-gmail-com Sept 2010 After communicating via several emails with the vendor, sharing details about the vulnerability, as well as proof-of-concept code I also offered to send the exploit code for them to te...
Novell Netware - CIFS and AFP Remote Memory Consumption Denial of Service
!/usr/bin/perl Novell Netware CIFS And AFP Remote Memory Consumption DoS Platform: Novell Netware 6.5 SP8 Found by Francis Provencher for Protek Research Lab's http://protekresearch.blogspot.com/ PRL Novell Netware CIFS.nlm Remote Memory Consumption Denial of Service Here is a modified version fr...
Google Chrome 4.0.249.30 Denial Of Service
!/usr/bin/perl google chrome 4.0.249.30 DoS PoC Author: REMOVED AT REQUEST OF AUTHOR Info: In ordinary cases browser would redirect to "http://www.google.com" but in this case browser will report error for something that should be possible and is possible on other browsers. I would like to thank...
Mozilla Codesighs Memory Corruption PoC
No description provided by source. !/usr/bin/perl thedailyshow.pl AKA Mozilla Codesighs Memory Corruption PoC Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.12.2009 257 while0 == retval && NULL != fgetslineBuffer, sizeoflineBuffer, inOptions-mInput gdb 259...
Mozilla Codesighs Memory Corruption
!/usr/bin/perl thedailyshow.pl AKA Mozilla Codesighs Memory Corruption PoC Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.12.2009 257 while0 == retval && NULL != fgetslineBuffer, sizeoflineBuffer, inOptions-mInput gdb 259 trimWhitelineBuffer; gdb trimWhite...
Mozilla Codesighs Memory Corruption PoC
Exploit for unknown platform in category local exploits ======================================= Mozilla Codesighs Memory Corruption PoC ======================================= Title: Mozilla Codesighs Memory Corruption PoC CVE-ID: OSVDB-ID: Author: Jeremy Brown Published: 2009-12-12 Verified: yes...
Mozilla Codesighs - Memory Corruption
!/usr/bin/perl thedailyshow.pl AKA Mozilla Codesighs Memory Corruption PoC Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.12.2009 257 while0 == retval && NULL != fgetslineBuffer, sizeoflineBuffer, inOptions-mInput gdb 259 trimWhitelineBuffer; gdb trimWhite...
gAlan 0.2.1 - Local Buffer Overflow (1)
gAlan 0.2.1 - Local Buffer Overflow 1 !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 "From Static Analysis to 0day Exploit" Originally a SecurityTubeCon Presentation, which I'm guessing was cancel...
Polipo 1.0.4 Remote Memory Corruption 0day PoC
Exploit for unknown platform in category dos / poc ============================================== Polipo 1.0.4 Remote Memory Corruption 0day PoC ============================================== Title: Polipo 1.0.4 Remote Memory Corruption 0day PoC CVE-ID: OSVDB-ID: Author: Jeremy Brown Published:...
gAlan 0.2.1 Buffer Overflow 0day Exploit
Exploit for unknown platform in category local exploits ======================================== gAlan 0.2.1 Buffer Overflow 0day Exploit ======================================== Title: gAlan 0.2.1 Buffer Overflow 0day Exploit CVE-ID: OSVDB-ID: Author: Jeremy Brown Published: 2009-12-07 Verified:...
gAlan 0.2.1 Buffer Overflow 0day Exploit
No description provided by source. !/usr/bin/perl kpasa.pl AKA gAlan Buffer Overflow 0day Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 12.07.2009 "From Static Analysis to 0day Exploit" Originally a SecurityTubeCon Presentation, which I'm guessing was canceled...