Freefloat FTP Server - 'REST' Remote Buffer Overflow (Metasploit)

require 'msf/core' class Metasploit3 'FreeFloat FTP Server REST Buffer Overflow', 'Description' = %q This module exploits a FreeFloat FTP Server Buffer Overflow found in the REST command. , 'Author' = 'C4SS!0 G0M3S', Discovery Vuln. 'KaHPeSeSe' Metasploit Module , 'License' = MSFLICENSE, 'Version...

MPlayer - '.SAMI' Subtitle File Buffer Overflow (DEP Bypass) (Metasploit)

require 'msf/core' class MetasploitModule 'Mplayer SAMI Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in SMPlayer 0.6.9 Permanent DEP /AlwaysON. The overflow is triggered during the parsing of an overly long string found in a malicious SAMI subtitle...

A-PDF Wav to MP3 Converter 1.2.0 - DEP Bypass

A-PDF Wav to MP3 Converter 1.2.0 - DEP Bypass Exploit Title: A-PDF Wav to MP3 Converter v 1.2.0 DEP Bypass Software Link: http://www.a-pdf.com/wav-to-mp3/a-pdf-wtm.exe Version: 1.2.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Hicham Oumounid Email: [email protected] Home:...

A-PDF All To MP3 Converter 2.0.0 DEP Bypass

Exploit Title: A-PDF All to MP3 Converter v.2.0.0 DEP Bypass Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: 2.0.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Email: [email protected] Home: http://net-effects.blogspot.com Big thanks to corelanc0d3r for the Help ...

A-PDF All to MP3 Converter 2.0.0 - DEP Bypass

Exploit Title: A-PDF All to MP3 Converter v.2.0.0 DEP Bypass Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: 2.0.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Email: [email protected] Home: http://net-effects.blogspot.com Big thanks to corelanc0d3r for the Help ...

OpenMyZip 0.1 .ZIP Buffer Overflow

!/usr/bin/perl +Exploit Title: OpenMyZip V0.1 .ZIP File Buffer Overflow Vulnerability +Date: 02\05\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/OpenMyZip/3000-22504-10657274.html +Version: v0.1 +Tested On: WIN-XP SP3 Brazil Portuguese +CVE: N/A use strict; use warnings; my...

MPlayer (r33064 Lite) Buffer Overflow + ROP exploit

Exploit for windows platform in category local exploits !/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link:...

MPlayer (r33064 Lite) - Local Buffer Overflow (ROP)

MPlayer r33064 Lite - Local Buffer Overflow ROP !/usr/bin/perl Exploit Title: Mplayer BOF + ROP Exploit Date: 04\05\2011 Author: NateM based on original WinXP non ROP exploit by C4SS!0 and h1ch4m Software Link:...

ABBS Audio Media Player .M3U/.LST Buffer Overflow

Exploit: ABBS Audio Media Player Buffer Overflow Exploit M3U/LST Date: 14.03.11 Author: Rh0 Rh0atz1p.biz Software Link: http://abbs.qsnx.net/downloads/abbs-amp.zip Version: 3.0 Tested on: WinXP Pro SP3 EN VirtualBox print " Stack buffer overflow in ABBS Audio Media Player 3.0 " bufferlen = 4108;...

A-PDF All to MP3 Converter 2.0.0 (.wav) Buffer Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: A-PDF All to MP3 Converter v.2.0.0 stack based buffer overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP3 French Date: 17/01/2011 Author: h1ch4m Email: email protected...

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow Exploit Title: A-PDF All to MP3 Converter v.2.0.0 stack based buffer overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP3 French Date: 17/01/2011 Author: h1ch4m Email: h1ch4m@live....

FreeAmp 2.0.7 Buffer Overflow

Exploit Title: FreeAmp 2.0.7 .m3u Buffer Overflow - Egghunter Google Dork: N/A Date: 11/12/2010 Author: zota Thanks to Andrew; [email protected] Software Link: http://letoltes.szoftverbazis.hu/bfc5ec1d5e80cee5b5d3f78459113ed93c51f649/4d03800a/freeamp-v2-0-7-JI2/freeampsetup207.exe...

Winzip 15.0 WZFLDVW.OCX IconIndex Property Denial of Service

Exploit for windows platform in category dos / poc ============================================================ Winzip 15.0 WZFLDVW.OCX IconIndex Property Denial of Service ============================================================ Exploit Title: Winzip WZFLDVW.OCX IconIndex property access...

Winzip 15.0 WZFLDVW.OCX Text Property Denial Of Service

Exploit Title: Winzip WZFLDVW.OCX text property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website : http://www.darkmasters.co.cc/ Twitter : http://twitter.com/FadyOsman 'Wscript.echo...

WinZip 15.0 - WZFLDVW.OCX IconIndex Property Denial of Service

WinZip 15.0 - WZFLDVW.OCX IconIndex Property Denial of Service Exploit Title: Winzip WZFLDVW.OCX IconIndex property access violation Author: fady mohamed osman Software Link : http://www.winzip.com/downwz.htm Version: 15.0 Build 9334 Tested on: Win XP Sp2 CVE : N/A Website :...

Realtek Audio Control Panel 1.0.1.65 Exploit

Exploit for windows platform in category local exploits ============================================ Realtek Audio Control Panel 1.0.1.65 Exploit ============================================ done by BraniX www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition App. has classi...

Realtek Audio Control Panel 1.0.1.65 - Local Buffer Overflow

done by BraniX www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition App. has classic buffer overflow vulnerability it can be triggered by passing a too long argument as a startup parameter. Shellcode can by run via classic ret overwrite or SEH Handler overwrite ... so it's ...

GSPlayer 1.83a Win32 Buffer Overflow

Exploit Title: GSPlayer 1.83a Win32 Release Buffer Overflow Vulnerability Date: 2010/11/04 Author: moigai e-mail: [email protected] Software Link: http://www.vector.co.jp/download/file/win95/art/fh296344.html Version: 1.83a Win32 Release Tested on: Windows XP SP3 En VM my $file = "GSPlayer.m3u"...

GSPlayer 1.83a Win32 Release - Local Buffer Overflow

GSPlayer 1.83a Win32 Release - Local Buffer Overflow Exploit Title: GSPlayer 1.83a Win32 Release Buffer Overflow Vulnerability Date: 2010/11/04 Author: moigai e-mail: [email protected] Software Link: http://www.vector.co.jp/download/file/win95/art/fh296344.html Version: 1.83a Win32 Release Test...

win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes

win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes. Shellcode exploit for windows platform / Title: win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes Author: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom Method: Hardcoded opcodes kernel32.winexec@7c8623ad...