SLMail 5.5 - POP3 PASS Buffer Overflow Exploit

No description provided by source. SLmail 5.5 POP3 PASS Buffer Overflow Discovered by : Muts Coded by : Muts www.offsec.com Plain vanilla stack overflow in the PASS command D:\Projects\BOSLmail-5.5-POP3-PASS.py D:\Projects\BOnc -v 192.168.1.167 4444 localhost.lan 192.168.1.167 4444 ? open Microso...

BigAnt Server 2.52 - SEH (0day)

No description provided by source. !/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect ...

Ability Server 2.34 FTP STOR Buffer Overflow

No description provided by source. Ability Server 2.34 FTP STOR Buffer Overflow Advanced, secure and easy to use FTP Server. 21 Oct 2004 - muts D:\BOability-2.34-ftp-stor.py D:\data\toolsnc -v 127.0.0.1 4444 localhost 127.0.0.1 4444 ? open Microsoft Windows XP Version 5.1.2600 C Copyright 1985-20...

Wow ! Backtrack Official Website's Server Hacked By Team Injector (1337db) !

Wow ! Backtrack Official Website's Server Hacked By Team Injector ! Attack on backtrack-linux.org From 1337 Team Injector . .--. .--. .---. . .'| / | | --: --: / .-.| .-. . . | / | | | '---' --' --' ' -'--'---| ; -' Since we already tapped into exploit-db and their server lies in the same subnet...

Winamp 5.5.8 (in_mod plugin) - Local Stack Overflow

!/usr/bin/python Pwn And Beans by Mighty-D presents: Winamp 5.5.8.2985 inmod plugin Stack Overflow WINDOWS XP SP3 FULLY PATCHED - NO ASLR OR DEP BYPASS... yet Bug found by http://www.exploit-db.com/exploits/15248/ POC by fdisk Exploit by Mighty-D Special thanks to: fdisk: Who wrote the skeleton o...

BigAnt Server 2.52 - Remote Overflow (SEH)

!/usr/bin/python import socket, sys BigAnt version 2.52 0day Tested on XPSP2 & Win2k3 SP2 Discovered by Lincoln Thanks to muts & remote-exploit 650 or so bytes available after seh, easier to jump back root@BT4VM: ./bigant.py 192.168.87.130 Exploit sent! Connect to remote host on port 4444...

TFTP Server 1.4 - Remote Buffer Overflow (2)

TFTP Server 1.4 - Remote Buffer Overflow 2 !/usr/bin/env python This vuln is already owned by Muts , but i want to add the second methode Note: we don't have more space for shellcode or Skape egghunter 23 bytes only after SEH option I used the jumpback because is the best and easiest way for...

HP NNM 7.53 ovalarm.exe CGI Pre Authentication Remote Buffer Overflow

No description provided by source. !/usr/bin/python HP NNM 7.53 ovalarm.exe CGI Pre Authentication Remote Buffer Overflow Tested on XP SP3 + NNM Release B.07.50 Authors: muts & sinn3r Reference: http://dvlabs.tippingpoint.com/advisory/TPTI-09-12...

Savant Web Server 3.1 - Remote Buffer Overflow (3)

!/usr/bin/python Title: Savant web server 3.1 buffer overflow exploit Author: DouBleZer0 Version: 3.1 Tested on: win xp sp2,3 en Vulnerability discovered by Mutsoffensive security \x83\xc4\x50\x54\xc3 -add esp,50 push esp retsee the double dance of this in exploit ret=00401D09pop ebp, ret import...

Savant Web Server 3.1 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ==================================================== Savant Web Server 3.1 Remote Buffer Overflow Exploit ==================================================== Title: Savant Web Server 3.1 Remote Buffer Overflow Exploit CVE-ID: OSVDB-ID:...

Quick FTP Pro 2.1 Transfer-Mode Overflow

require 'msf/core' class Metasploit3 'Quick FTP Pro 2.1 Transfer-Mode Overflow', 'Description' = %q This module exploits a stack overflow in the Quick TFTP Pro server product. MS Update KB926436 screws up the opcode address being used in oledlg.dll resulting in a DoS. This is a port of a sploit b...

Microsoft IIS 5.0 FTP Server (Windows 2000 SP4) - Remote Stack Overflow

Microsoft IIS 5.0 FTP Server Windows 2000 SP4 - Remote Stack Overflow !/usr/bin/perl IIS 5.0 FTP Server / Remote SYSTEM exploit Win2k SP4 targets bug found & exploited by Kingcope, kcope2googlemail.com Affects IIS6 with stack cookie protection Modded by muts, additional egghunter added for...

Microsoft IIS 5.0 FTP Server Remote Stack Overflow Exploit (win2k sp4)

Exploit for windows platform in category remote exploits ====================================================================== Microsoft IIS 5.0 FTP Server Remote Stack Overflow Exploit win2k sp4 ====================================================================== !/usr/bin/perl IIS 5.0 FTP...

Kantaris 0.3.4 - SSA Subtitle Local Buffer Overflow

!/usr/bin/python Kantaris 0.3.4 Media Player Local Buffer Overflow 0day! The following exploit will make a film.ssa file, just rename the file with the name of your movie, and use your imagination to pwn! : Shellcode is local bind shell, just telnet to port:4444 to get command prompt : BIG thanks...

Lotus Domino IMAP4 Server 6.5.4 Remote Buffer Overflow Exploit

No description provided by source. Lotus Domino IMAP4 Server Release 6.5.4 / Windows 2000 Advanced Server x86 Remote Exploit Vulnerable: IBM Lotus Domino = 7.0.2 && 6.5.5 FP2 tested 6.5.4 Authors: Dominic Chell [email protected] & prdelka Exploitation steps:...

Mercury/32 Mail Server 4.0.1 - 'LOGIN' Remote IMAP Stack Buffer Overflow

!/usr/bin/perl https://www.securityfocus.com/bid/11775 credit to Muts for this vulnerability acaro at jervus.it use IO::Socket::INET; use Switch; if @ARGV 3 print "--------------------------------------------------------------------\n"; print "Usage : mercury-4444-multi.pl -hTargetIPAddress...

WinRAR <= 3.60 beta 6 (SFX Path) Local Stack Overflow Exploit

No description provided by source. """ WinRAR - Stack Overflows in SelF - eXtracting Archives ====================================================== Tested Versions..: WinRAR 3.60 beta 4 Original Author.............: posidron Shellcode Stuffing .........: muts """ import os, sys winrar =...

Mdaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflow

This module exploits a buffer overflow in the CRAM-MD5 authentication of the MDaemon IMAP service. This vulnerability was discovered by Muts. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...

MDaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================ MDaemon 8.0.3 IMAPD CRAM-MD5 Authentication Overflow Exploit ============================================================ This file is part of the Metasploit Framework and may be...

Mercury Mail 4.01 (Pegasus) IMAP Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ======================================================== Mercury Mail 4.01 Pegasus IMAP Buffer Overflow Exploit ======================================================== Mercury Mail 4.01 Pegasus IMAP Buffer Overflow Discovered by : Muts Cod...