Triologic Media Player 7 (.m3u) Local Heap Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ============================================================== Triologic Media Player 7 .m3u Local Heap Buffer Overflow PoC ============================================================== IN THE NAME OF ALLAH : !/usr/bin/python Discovered By : zAx...

Audacity 1.6.2 Crash Exploit

usage: exploit.py print "" print " Audacity 1.6.2 .aup file Remote off by one Crash Exploit\n" print " Author: Mountassif Moad " print " the best: Evil finger & v4 Team " print " Tested on: Windows XP Pro SP2 Fr\n" print " Greetings to: All friends" print " almawto li israel\n" print "" header =...

Vinagre < 2.24.2 show_error() Remote Format String PoC

Exploit for unknown platform in category dos / poc ====================================================== Vinagre 2.24.2 showerror Remote Format String PoC ====================================================== -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs...

MS Windows Server Service Code Execution Exploit (MS08-0 6 7) (2k/2k3)-the exploit-warning-the black bar safety net

!/ usr/bin/env python MS08-0 6 7 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis. m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify the src to run against multipl...

MS Windows Server Service Code Execution Exploit (MS08-067) (2k/2k3)

No description provided by source. !/usr/bin/env python MS08-067 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis.m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify...

ms08067-2k2k3.txt

!/usr/bin/env python MS08-067 Exploit by Debasis Mohanty aka Tr0y/nopsled www.hackingspirits.com www.coffeeandsecurity.com Email: d3basis.m0hanty @ gmail.com import struct import sys from threading import Thread Thread is imported incase you would like to modify the src to run against multiple...

WinFTP 2.3.0 (PASV mode) Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ========================================================= WinFTP 2.3.0 PASV mode Remote Denial of Service Exploit ========================================================= WinFTP v2.3.0 DoS exploit WinFTP URL - http://www.wftpserver.com/ DoS'ed...

GNU Emacs 'python.el'代码执行漏洞

BUGTRAQ ID: 31052 CNCAN ID：CNCAN-2008091008 Emacs是一款可扩展的实时显示编辑器。 GNU Emacs不正确处理Python脚本，本地攻击者可以利用漏洞以应用程序权限执行任意代码。 GNU Emacs命令run-python'启动交互的Python解析器，在Python启动后，Emacs自动发送： import emacs 用于导入Emacs分发的emacs.py脚本，这个脚本一般位于包含其他Emacs程序文件的写保护的安装目录中，定义各种函数帮助Python与Emacs通信处理。...

BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (py)

No description provided by source. from scapy import import random Copyright C 2008 Julien Desfossez [email protected] http://www.solisproject.net/ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwa...

Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day

Exploit for unknown platform in category local exploits ================================================================ Download Accelerator Plus - DAP 8.x m3u Local BOF Exploit 0day ================================================================ !/usr/bin/python Download Accelerator Plus - DAP...

Trac quickjump Search Script q Parameter Arbitrary Site Redirect

The remote host is running Trac, an enhanced wiki and issue tracking system for software development projects. The version of Trac installed on the remote host fails to sanitize user input to the 'q' parameter of the 'search' script before using it in an unfiltered and unmanaged fashion in a...

Debian OpenSSL Predictable PRNG Bruteforce SSH Exploit (Python)

No description provided by source. !/bin/python This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any later version...

RedDot CMS 7.5 (LngId) Remote SQL Injection Exploit

No description provided by source. !/usr/bin/env python un-comment your selection. import urllib2 import urllib import string import getopt import sys def banner: print print "RED DOT CMS 7.5 database enumeration" print "by Mark Crowther and Rodrigo Marcos" def usage: print print "usage:" print...

RDdbenum.py.txt

!/usr/bin/env python un-comment your selection. import urllib2 import urllib import string import getopt import sys def banner: print print "RED DOT CMS 7.5 database enumeration" print "by Mark Crowther and Rodrigo Marcos" def usage: print print "usage:" print "python RDPOC.py options URL" print...

pt360dos.py.txt

!/usr/bin/python PacketTrap Networks pt360 2.0.39 TFTPD Remote DOS Coded by Mati Aharoni muts..at..offensive-security.com http://www.offensive-security.com/0day/pt360dos.py.txt import socket import sys host = '172.16.167.134' port = 69 try: s = socket.socketsocket.AFINET, socket.SOCKDGRAM except:...

PacketTrap Networks pt360 2.0.39 TFTPD - Remote Denial of Service

!/usr/bin/python PacketTrap Networks pt360 2.0.39 TFTPD Remote DOS Coded by Mati Aharoni muts..at..offensive-security.com http://www.offensive-security.com/0day/pt360dos.py.txt import socket import sys host = '172.16.167.134' port = 69 try: s = socket.socketsocket.AFINET, socket.SOCKDGRAM except:...

hacking the mitsubishi GB-50A

Hi All, Well, it's been over 4 months since my plea for a security contact at Mitsubishi Electric to come forward. Since no one has, I thought I'd release a POC for hacking one. It's not exactly hard, the web controller uses a nasty set of Java applets to interact with itself. The shocking thing ...

homeftp-dos.txt

Discovered by 0in from DaRk-CodeRs Programming & Security Group Contact: 0indotemailatgmaildotcom Thats a very funny bug, and nobody understand how it works; When we send a python FTP retrlines function bad command and create a new connection server got DoS... o0 Thats not overflow, it's probubly...

oneSCHOOL (all versions) admin/login.asp SQL Injection exploit

No description provided by source. !/usr/bin/python oneSCHOOL admin/login.asp SQL Injection explot for all versions by Guga360. import urllib from sys import argv query = 'txtOperation':'Login','txtLoginID':""" ' union select...

freeSSHd &lt;= 1.0.9 Key Exchange Algorithm Buffer Overflow Exploit

No description provided by source. !/usr/bin/env python """ Coded by Tauqeer Ahmad a.k.a 0x-Scientist-x0 ahmadtauqeeratyahoo.com Disclaimer: This Proof of concept exploit is for educational purpose only. Please do not use it against any system without prior permission...