Lucene search
K

650 matches found

Packet Storm
Packet Storm
added 2008/02/04 12:0 a.m.24 views

facebook-overflow.txt

FaceBook PhotoUploader Buffer Overflow Exploit function Check var buf = unescape"%u4141"; while buf.length = 261 buf = buf + unescape"%u4141"; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/03 12:0 a.m.49 views

FaceBook PhotoUploader - 'ImageUploader4.ocx 4.5.57.0' Remote Buffer Overflow

FaceBook PhotoUploader Buffer Overflow Exploit function Check var buf = unescape"%u4141"; while buf.length = 261 buf = buf + unescape"%u4141"; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

7AI score
Exploits0
Cvelist
Cvelist
added 2008/01/16 2:0 a.m.27 views

CVE-2007-5657

TIBCO SmartSockets RTserver 6.8.0 and earlier, RTworks before 4.0.4, and Enterprise Message Service EMS 4.0.0 through 4.4.1 allows remote attackers to execute arbitrary code via crafted requests containing values that are used as pointer offsets...

7.7AI score0.0555EPSS
Exploits1References10
OSV
OSV
added 2007/12/07 11:46 a.m.2 views

DEBIAN-CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS8AI score0.03979EPSS
Exploits0References1
Prion
Prion
added 2007/12/07 11:46 a.m.16 views

Double free

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS8.3AI score0.03979EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2007/12/07 11:0 a.m.36 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

9.3CVSS7.5AI score0.03979EPSS
Exploits0
Cvelist
Cvelist
added 2007/12/07 11:0 a.m.29 views

CVE-2007-6279

Multiple double free vulnerabilities in Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allow user-assisted remote attackers to execute arbitrary code via malformed 1 Seektable values or 2 Seektable Data Offsets in a .FLAC file...

7.7AI score0.03979EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2007/11/08 12:0 a.m.32 views

texinfo-poc.txt

--==+=============================================+==-- --==+ texinfo = 4.9 format string vuln PoC +==-- --==+=============================================+==-- DISCOVERED BY: Cody Rester WEBSITE: www.codyrester.com --==+=============================================+==-- TIMELINE:...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2007/09/24 3:13 a.m.22 views

Apple iOS Command Shell, Reverse TCP Inline

Connect back to attacker and spawn a command shell This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 152 include Msf::Payload::Single include Msf::Payload::Osx include...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2007/03/20 12:0 a.m.28 views

MOPB-session.txt

?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP Project // // C Copyright 2007 Stefan...

Exploits0
seebug.org
seebug.org
added 2007/03/08 12:0 a.m.23 views

MS Windows (.doc File) Malformed Pointers Denial of Service Exploit

No description provided by source. / Microsoft Windows .doc File Malformed Pointers DoS &...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/03/06 12:0 a.m.9 views

Microsoft Windows - .doc Malformed Pointers Denial of Service

Microsoft Windows - .doc Malformed Pointers Denial of Service /\ Microsoft Windows .doc File Malformed Pointers DoS Just move your mouse on the file and explorer crashes. If it does not try to look at file properties. Bug comes from Ole32.dll: CMP DWORD PTR DS:EAX+EBX,3 and we can set EAX, EDX an...

0.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/08/28 11:41 a.m.8 views

Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

TIFF library libtiff before 3.8.2 allows context-dependent attackers to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving "unchecked arithmetic...

7.8CVSS7.5AI score0.05665EPSS
Exploits1References4
exploitpack
exploitpack
added 2006/08/16 12:0 a.m.26 views

PHP 4.4.35.1.4 - sscanf Local Buffer Overflow

PHP 4.4.35.1.4 - sscanf Local Buffer Overflow ? / hoagiephpsscanf.php PHP = 4.4.3 / 5.1.4 local buffer overflow exploit howto get offsets: set $baseaddr to 0x41414141 ulimit -c 20000 /etc/init.d/apache restart execute script via web browser tail /var/log/apache/error.log ... Wed Aug 16 15:07:10...

0.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/08/02 10:8 a.m.5 views

Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

TIFF library libtiff before 3.8.2 allows context-dependent attackers to pass numeric range checks and possibly execute code, and trigger assert errors, via large offset values in a TIFF directory that lead to an integer overflow and other unspecified vectors involving "unchecked arithmetic...

7.8CVSS7.5AI score0.05665EPSS
Exploits1References4
Prion
Prion
added 2006/07/13 9:5 p.m.32 views

Code injection

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

9.3CVSS7.5AI score0.10784EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2006/07/13 9:5 p.m.40 views

CVE-2006-2388

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

9.3CVSS7.3AI score0.10784EPSS
Exploits0References8
Cvelist
Cvelist
added 2006/07/13 9:0 p.m.45 views

CVE-2006-2388

Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, which lead to modification of "critical data offsets" during the rebuilding process...

7.3AI score0.10784EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2006/07/11 12:0 a.m.93 views

Microsoft Office Excel File Rebuilding Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the rebuilding of malformed cell comments. When Excel...

9.3CVSS6AI score0.10784EPSS
Exploits0References1
0day.today
0day.today
added 2006/05/16 12:0 a.m.29 views

Sasser Worm ftpd Remote Buffer Overflow Exploit (port 5554)

Exploit for unknown platform in category remote exploits =========================================================== Sasser Worm ftpd Remote Buffer Overflow Exploit port 5554 =========================================================== / / // / / / / \ / / / / / / / // // / // / // //// -...

7.1AI score
Exploits0
Rows per page
Query Builder