CVE-2025-53906

Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin can allow overwriting of arbitrary files when opening specially crafted zip archives. Impact is low because this exploit requires direct user interaction. However, successful...

CVE-2025-36631

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM privilege...

CVE-2021-42252

An issue was discovered in aspeedlpcctrlmmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs becaus...

Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Exploit

Exploit Title: Integard Pro NoJs 2.2.0.9026 - Remote Buffer Overflow Exploit Author: purpl3f0xsecur1ty Vendor Homepage: https://www.tucows.com/ Software Link: http://www.tucows.com/preview/519612/Integard-Home Version: Pro 2.2.0.9026 / Home 2.0.0.9021 Tested on: Windows XP / Win7 / Win10 CVE:...

Mercury/32 3.32-4.51 - SMTP Pre-Auth EIP Overwrite Exploit

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : Mercury/32 SMTP Server Found by : [email protected], http://www.offensive-security.com ---------------------------------------- Exploit : Mercury/32 v3.32-v4.51 SMTP Pre-Auth EIP...

Virtuosa Phoenix Edition 5.2 ASX SEH BOF

Exploit for windows platform in category local exploits !/usr/bin/python Exploit Title: Virtuosa Phoenix Edition 5.2 ASX BOF SEH Overwrite Date found: Aug 16th 2010 Author: Acidgen Software Link: http://download1.virtuosa.com/VirtuosaTrial.exe Version: 5.2 Tested on: Windows XP SP2 Virtuosa - Fil...

Geany .18 - Local File Overwrite

!/bin/sh redbull.sh AKA Geany 0.18 Local File Overwrite Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 10.06.2009 I was checking out some IDEs and decided on Geany. Nice interface, good features, but it doesn't defend against symbolic links when writing the run...

MPLAB IDE 8.30 - .mcp Universal Overwrite (SEH)

MPLAB IDE 8.30 - .mcp Universal Overwrite SEH usage: mplab.py then open the project file : Download : http://ww1.microchip.com/downloads/en/DeviceDoc/MPLAB8.30.zip nadli chouk fi rassi :p print "" print " MPLAB IDE 8.30 .mcp Universal Seh Overwrite Exploit\n" print " Refer : Secunia advisory...

Beatport Player 1.0.0.283 (.m3u) Local SEH Overwrite Exploit

No description provided by source. usage: exploit.py Grab the exploit file into the program print "" print " Beatport Player 1.0.0.283 .m3u Seh Overwrite Exploit\n" print " Refer: http://www.milw0rm.com/exploits/8588\n" print " Exploit code: His0k4\n" print " Tested on: Windows XP Pro SP3 EN\n"...

Mercury Audio Player 1.21 - .pls Overwrite (SEH)

Mercury Audio Player 1.21 - .pls Overwrite SEH usage: exploit.py print "" print " Mercury Audio Player 1.21 .pls Seh Overwrite Exploit\n" print " Refer: http://www.milw0rm.com/exploits/8578" print " Exploit code: His0k4" print " Tested on: Windows XP Pro SP3 EN\n" print " greetz: TO ELITE...

POP Peeper 3.4.0.0 .EML File Overwrite

POP Peeper 3.4.0.0 .eml file Universal SEH Overwrite Exploit Exploit By Stack Mountassif Moad how to use file Open message or Ctrl + O Select The .eml file ...... BooM Calc Executed :d Thnx Simo- SOft - Jadi - Str0ke usage perl xpl.pl stack.eml my $mp=...

Zinf Audio Player 2.2.1 Overwrite Exploit

usage: exploit.py print "" print " Zinf Audio Player 2.2.1 .pls Universal Seh Overwrite Exploit\n" print " Founder: Hakxer" print " Exploited by : His0k4" print " Tested on: Windows XP Pro SP2 Fr\n" print " Greetings to:" print " All friends & muslims HaCkersdz, www.secdz.com\n" print "" win32exe...

Zinf Audio Player 2.2.1 (.pls) Universal Seh Overwrite Exploit

Exploit for unknown platform in category local exploits ============================================================== Zinf Audio Player 2.2.1 .pls Universal Seh Overwrite Exploit ============================================================== usage: exploit.py print "" print " Zinf Audio Player...

RainbowPlayer .rpl文件解析栈溢出漏洞

BUGTRAQ ID: 34072 RainbowPlayer是一个Windows版的免费媒体播放器。 如果用户受骗使用RainbowPlayer打开了包含有超长项的播放列表文件（.rpl），就可能触发栈溢出，导致执行任意指令。 NanoCode Software RainbowPlayer 0.91 厂商补丁： NanoCode Software ----------------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.nanocodesoft.com/rainbowplayer.htm usage:...

Office Viewer Active-X Control File Overwrite

======================================================================================= Author: Houssamix ======================================================================================= Office Viewer ActiveX Control v 3.0.1 Remote File Overwrite exploit Tested on Windows XP Professional S...

CVE-2008-5135

os-prober in os-prober 1.17 allows local users to overwrite arbitrary files via a symlink attack on the 1 /tmp/mounted-map or 2 /tmp/raided-map temporary file. NOTE: the vendor disputes this issue, stating "the insecure code path should only ever run inside a d-i environment, which has no non-roo...

Flux CMS 1.5.0 - 'loadsave.php' Arbitrary File Overwrite

?php / ------------------------------------------------------------------------ Flux CMS = 1.5.0 loadsave.php Remote Arbitrary File Overwrite Exploit ------------------------------------------------------------------------ author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...

StreamAudio ChainCast ProxyManager - 'ccpm_0237.dll' Remote Buffer Overflow

StreamAudio ChainCast ProxyManager ccpm0237.dll SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 242 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2 http://metasploit.com var shellcode1 =...

StreamAudio ChainCast ProxyManager - ccpm_0237.dll Remote Buffer Overflow

StreamAudio ChainCast ProxyManager - ccpm0237.dll Remote Buffer Overflow StreamAudio ChainCast ProxyManager ccpm0237.dll SEH Overwrite Exploit function Check var buf = 'A'; while buf.length = 242 buf = buf + 'A'; // win32exec - EXITFUNC=seh CMD=c:\windows\system32\calc.exe Size=378 Encoder=Alpha2...

Move Networks Quantum Streaming Player SEH Overwrite Exploit

Exploit for unknown platform in category remote exploits ============================================================ Move Networks Quantum Streaming Player SEH Overwrite Exploit ============================================================ Move Networks Quantum Streaming Player SEH Overwrite...