Microsoft Internet Explorer 8 SetMouseCapture Use-After-Free

Exploit Title: Microsoft Internet Explorer 8 - 'SetMouseCapture ' Use After Free Date: 15/05/2021 CVE : CVE-2013-3893 PoC: https://github.com/travelworld/cve20133893trigger.html/blob/gh-pages/params.json Exploit Author: SlidingWindow Vendor Advisory:...

File Sharing Wizard 1.5.0 DELETE SEH Buffer Overflow

import socket from struct import Exploit Title: File sharing wizard 'DELETE' remote SEH overflow Date: 10/4/2019 Exploit Author: Striker Vendor Homepage: https://file-sharing-wizard.soft112.com/ Version: 1.5.0 Build on 26-8-2008 Tested on: Windows 7 File-sharing-wizard-seh host = "10.0.2.7" port ...

File Sharing Wizard 1.5.0 SEH Buffer Overflow

import socket from struct import Exploit Title: File sharing wizard 'post' remote SEH overflow Date: 9/23/2019 Exploit Author: x00pwn Software Link: https://file-sharing-wizard.soft112.com/ Version: 1.5.0 Tested on: Windows 7 CVE : CVE-2019-16724 File-sharing-wizard-seh...

File Sharing Wizard 1.5.0 - POST SEH Overflow

import socket from struct import Exploit Title: File sharing wizard 'post' remote SEH overflow Date: 9/23/2019 Exploit Author: x00pwn Software Link: https://file-sharing-wizard.soft112.com/ Version: 1.5.0 Tested on: Windows 7 CVE : CVE-2019-16724 File-sharing-wizard-seh...

10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title : 10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad - ihack4falafel Vendor Homepage : https://www.10-strike.com/ Vulnerable Software:...

10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH)

Exploit Title : 10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad - ihack4falafel Vendor Homepage : https://www.10-strike.com/ Vulnerable Software: https://www.10-strike.com/networkinventoryexplorer/network-inventory-setup.exe Tested on : Windows ...

10-Strike Network Inventory Explorer 8.54 - 'Registration Key' Buffer Overflow (SEH)

Exploit Title: 10-Strike Network Inventory Explorer 8.54 - 'Registration Key' Buffer Overflow SEH Exploit Author: Hashim Jawad - ihack4falafelx Date: 2018-06-05 Vendor Homepage: https://www.10-strike.com/ Vulnerable Software:...

10-Strike Network Inventory Explorer Standard 8.54 Buffer Overflow

!/usr/bin/python ---------------------------------------------------------------------------------------------------------- Exploit Title : 10-Strike Network Inventory Explorer Standard v8.54 - Local Buffer Overflow SEH Exploit Author : Hashim Jawad - @ihack4falafel Vendor Homepage :...

Ipod Video Converter DLL Hijacking

i?Document Title: =============== Ipod Video Converter - DLL Hijacking Vulnerability Release Date: ============= 2016-09-23 Vulnerability Disclosure Timeline: ================================== 2016-09-27 : Public Disclosure Product & Service Introduction: =============================== iPod Vid...

Internet Explorer 8 MS14-035 Use-After-Free Exploit

影响平台： Windows Server 2003 Service Pack 2 Windows Vista Service Pack 2 Windows Server 2008 Service Pack 2 Windows 7 Service Pack 1 Windows Server 2008 R2 Service Pack 1 漏洞简介： 这个漏洞是由TrendLabs私下发给微软，并且成为微软14年6月份补丁，编号MS14-035。尽管这个漏洞已经修复，这是个值得学习的UAF案例。 触发这个漏洞的POC如下： !-- Exploit Title: MS14-035...

HP Data Protector Manager A.06.11 MMD NULL Pointer Dereference Denial of Service

No description provided by source. !/usr/bin/perl ================================= HP Data Protector Manager A.06.11 ================================= Bug: NULL Pointer Dereference Remote Denial of Service Vulnerability Software:...

Tom Sawyer Software GET Extension Factory Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Heap Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

IBM Lotus QuickR qp2 ActiveX Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

EMC Networker Format String

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

On the use of Adobe 0day – CVE-2 0 1 4-0 5 0 2 attack behavior analysis-vulnerability warning-the black bar safety net

The other day FireEye released a use AdobeFlash new 0day attack report, and Adobe has been based on vulnerabilities released a security update. According to FireEye report, many sites will redirect visitors to the following contain a Trojan the malicious Server: Peterson Institute for...

HP LoadRunner lrFileIOService ActiveX Remote Code Execution

This Metasploit module exploits a vulnerability on the lrFileIOService ActiveX, as installed with HP LoadRunner 11.50. The vulnerability exists in the WriteFileBinary method where user provided data is used as a memory pointer. This Metasploit module has been tested successfully on IE6-IE9 on...

HP LoadRunner lrFileIOService ActiveX Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

IBM Lotus QuickR qp2 ActiveX Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 HttpClients::IE,...

IBM Lotus QuickR qp2 ActiveX Buffer Overflow Vulnerability

This Metasploit module exploits a buffer overflow vulnerability on the UploadControl ActiveX. The vulnerability exists in the handling of the "AttachmentTimes" property, due to the insecure usage of the swscanf. The affected ActiveX is provided by the qp2.dll installed with the IBM Lotus Quickr...