MySQL 5.15.5 (Windows) - MySQLJackpot Remote Command Execution

MySQL 5.15.5 Windows - MySQLJackpot Remote Command Execution FARLiGHT ELiTE HACKERS LEGACY R3L3ASE Attached is the MySQL Windows Remote Exploit post-auth, udf technique including the previously released mass scanner. The exploit is mirrored at the farlight website http://www.farlight.org. Oracle...

MySQL - 'Stuxnet Technique' Windows Remote System

MySQL Scanner & MySQL Server for Windows Remote SYSTEM Level Exploit Version 1.0 By Kingcope In the Year of 2012 https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/23083.zip use this on a fast scan server! How to use. pnscan: the file "accounts" holds the user/passwo...

MySQL (Linux) - Stack Buffer Overrun (PoC)

MySQL Linux - Stack Buffer Overrun PoC !/usr/bin/perl =for comment MySQL Server exploitable stack based overrun Ver 5.5.19-log for Linux and below tested with Ver 5.1.53-log for suse-linux-gnu too unprivileged user any account anonymous account?, post auth as illustrated below the instruction...

freeSSHd 2.1.3 - Remote Authentication Bypass

FreeSSHD all version Remote Authentication Bypass ZERODAY Discovered & Exploited by Kingcope Year 2011 Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/23080.zip Run like: ssh.exe -l valid username might be: root admin administrator webadmin...

IBM System Director Agent - Remote System Level

IBM System Director Remote System Level Exploit CVE-2009-0880 extended zeroday Copyright C 2012 Kingcope IBM System Director has the port 6988 open. By using a special request to a vulnerable server, the attacker can force to load a dll remotely from a WebDAV share. The following exploit will loa...

FreeFTPD Remote Authentication Bypass Zeroday Exploit

Exploit for windows platform in category remote exploits FreeFTPD all versions Remote System Level Exploit Zero-Day -- No username needed, straightforward rooting! Discovered & Exploited By Kingcope Year 2011 -- http://www.exploit-db.com/sploits/23079.zip Example banner: WeOnlyDo-wodFTPD 2.3.6.16...

IBM System Director Remote System Level Exploit

Exploit for windows platform in category remote exploits IBM System Director Remote System Level Exploit CVE-2009-0880 extended zeroday Copyright C 2012 Kingcope IBM System Director has the port 6988 open. By using a special request to a vulnerable server, the attacker can force to load a dll...

Pure-FTPd 1.0.21 Denial Of Service

Pure-FTPd Crash PoC Null Pointer Dereference, tested with pure-ftpd v1.0.21 centos 6.2, ubuntu 8.04 latest version v1.0.36 is not affected !! discovered by Kingcope root@ubuntu: grep seg /var/log/syslog Aug 13 13:55:28 ubuntu kernel: 226.791747 pure-ftpd4825: segfault at 00000000 eip 0804cd3b esp...

Pure-FTPd v1.0.21 (centos 6.2, ubuntu 8.04) Crash PoC (Null Pointer Dereference)

Exploit for linux platform in category dos / poc Pure-FTPd Crash PoC Null Pointer Dereference, tested with pure-ftpd v1.0.21 centos 6.2, ubuntu 8.04 latest version v1.0.36 is not affected !! discovered by Kingcope email protected: grep seg /var/log/syslog Aug 13 13:55:28 ubuntu kernel: 226.791747...

Pure-FTPd 1.0.21 (CentOS 6.2 Ubuntu 8.04) - Null Pointer Dereference Crash (PoC)

Pure-FTPd 1.0.21 CentOS 6.2 Ubuntu 8.04 - Null Pointer Dereference Crash PoC Pure-FTPd Crash PoC Null Pointer Dereference, tested with pure-ftpd v1.0.21 centos 6.2, ubuntu 8.04 latest version v1.0.36 is not affected !! discovered by Kingcope root@ubuntu: grep seg /var/log/syslog Aug 13 13:55:28...

Pure-FTPd 1.0.21 (CentOS 6.2 / Ubuntu 8.04) - Null Pointer Dereference Crash (PoC)

Pure-FTPd Crash PoC Null Pointer Dereference, tested with pure-ftpd v1.0.21 centos 6.2, ubuntu 8.04 latest version v1.0.36 is not affected !! discovered by Kingcope root@ubuntu: grep seg /var/log/syslog Aug 13 13:55:28 ubuntu kernel: 226.791747 pure-ftpd4825: segfault at 00000000 eip 0804cd3b esp...

BSD - 'TelnetD' Remote Command Execution (2)

This exploit was leaked on the Full Disclosure mailing list: http://seclists.org/fulldisclosure/2012/Jun/404 Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19520.zip BSD telnetd Remote Root Exploit ZERODAY By Kingcope Year 2011 usage: telnet -4...

BSD - TelnetD Remote Command Execution (2)

BSD - TelnetD Remote Command Execution 2 This exploit was leaked on the Full Disclosure mailing list: http://seclists.org/fulldisclosure/2012/Jun/404 Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/19520.zip BSD telnetd Remote Root Exploit...

Oracle Weblogic Apache Connector POST Request Buffer Overflow

This module exploits a stack based buffer overflow in the BEA Weblogic Apache plugin. The connector fails to properly handle specially crafted HTTP POST requests, resulting a buffer overflow due to the insecure usage of sprintf. Currently, this module works over Windows systems without DEP, and h...

PHP CGI Argument Injection

When run as a CGI, PHP up to version 5.3.12 and 5.4.2 is vulnerable to an argument injection vulnerability. This module takes advantage of the -d flag to set php.ini directives to achieve code execution. From the advisory: "if there is NO unescaped '=' in the query string, the string is split on...

Soco CMS - Local File Inclusion

Soco CMS - Local File Inclusion Exploit Title: Soco CMS Local File Include Google Dork: "Powered by Soco" Date: 28/04/2012 Author: BHG Security Center H0me : www.black-hg.org Software Link: http://hentan.eu/php/Soco/ Version: last version Tested on: Linux/Ubuntu - Windows7 p0c :...

Apache Tomcat - Account Scanner PUT Request Command Execution

Apache Tomcat - Account Scanner PUT Request Command Execution ISOWAREZ RELEASE By KINGCOPE - YEAR 2012 -== Apache Tomcat Remote Exploit and Account Scanner ==- the modified pnscan scanner utility scans a range of IPs to find open apache tomcat servers by trying the following login access...

Linux Kernel 2.6.36 IGMP - Remote Denial of Service

/ linux-undeadattack.c Linux IGMP Remote Denial Of Service Introduced in linux-2.6.36 CVE-2012-0207 credits to Ben Hutchings: http://womble.decadent.org.uk/blog/igmp-denial-of-service-in-linux-cve-2012-0207.html written By Kingcope Year 2012 Ripped & modified code written by Firestorm Tested...

Linux Kernel 2.6.36 IGMP - Remote Denial of Service

Linux Kernel 2.6.36 IGMP - Remote Denial of Service / linux-undeadattack.c Linux IGMP Remote Denial Of Service Introduced in linux-2.6.36 CVE-2012-0207 credits to Ben Hutchings: http://womble.decadent.org.uk/blog/igmp-denial-of-service-in-linux-cve-2012-0207.html written By Kingcope Year 2012...

Linux IGMP Remote Denial Of Service (Introduced in linux-2.6.36)

Exploit for linux platform in category dos / poc / linux-undeadattack.c Linux IGMP Remote Denial Of Service Introduced in linux-2.6.36 CVE-2012-0207 credits to Ben Hutchings: http://womble.decadent.org.uk/blog/igmp-denial-of-service-in-linux-cve-2012-0207.html written By Kingcope Year 2012 Ripped...