FlashFXP 3.4.0 build 1145 - Remote Buffer Overflow (Denial of Service) (PoC)

FlashFXP 3.4.0 build 1145 - Remote Buffer Overflow Denial of Service PoC / FlashFXP V 3.4.0 build 1145 Buffer Overflow DoS There's a strange bug in FlashFXP. When sending a long PWD command with more than 5420 \ separated by at least one different char, it is possible to make the app unstable. It...

FlashFXP 3.4.0 build 1145 Remote Buffer Overflow DoS Exploit

Exploit for unknown platform in category dos / poc ============================================================ FlashFXP 3.4.0 build 1145 Remote Buffer Overflow DoS Exploit ============================================================ / FlashFXP V 3.4.0 build 1145 Buffer Overflow DoS There's a...

Imail 8.10-8.12 (RCPT TO) Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ======================================================== Imail 8.10-8.12 RCPT TO Remote Buffer Overflow Exploit ======================================================== !/usr/bin/perl...

Ipswitch IMail Server 8.10-8.12 - RCPT TO Remote Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

Sami FTP Server 2.0.2 (USER/PASS) Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================================ Sami FTP Server 2.0.2 USER/PASS Remote Buffer Overflow Exploit ================================================================ !/usr/bin/perl Exploit for SAMI FTP version 2.0...

Microsoft Internet Explorer - VML Remote Buffer Overflow (MS07-004)

and slightly modified - 2007.1.15 -- v: behavior: urlVMLRender; shellcode =...

MS Internet Explorer VML Remote Buffer Overflow Exploit (MS07-004)

Exploit for unknown platform in category remote exploits ================================================================== MS Internet Explorer VML Remote Buffer Overflow Exploit MS07-004 ================================================================== and slightly modified - 2007.1.15 -- v:...

TFTPDWIN 0.4.2 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================= TFTPDWIN 0.4.2 Remote Buffer Overflow Exploit ============================================= !/usr/bin/perl -w use IO::Socket; if!$ARGV1 print "Usage: tftpdwin-0-4-2.pl \n\n"; exit; $victim =...

Mercur Messaging 2005 - IMAP Remote Buffer Overflow

!/bin/perl tested on win2k server SP4 English ATTENTION! If you have an another valid account you must change the offsets this is only a poc use IO::Socket::INET; my $host = shift@ARGV; my $port = 143; my $reply; my $request; my $user = "test"; my $pass = "test"; my $nop = "\x90"x8; my $nop1 =...

ProSysInfo TFTP Server TFTPDWIN 0.4.2 - Remote Buffer Overflow (1)

!/usr/bin/perl -w use IO::Socket; if!$ARGV1 print "Usage: tftpdwin-0-4-2.pl \n\n"; exit; $victim = IO::Socket::INET-newProto='udp', PeerAddr=$ARGV0, PeerPort=$ARGV1 or die "Cannot connect to $ARGV0 sulla porta $ARGV1"; my $nop0="\x90"x15; 8BC3 MOV EAX,EBX 66:05 1201 ADD AX,112 50 PUSH EAX C3 RETN...

BolinTech DreamFTP (USER) Remote Buffer Overflow PoC

No description provided by source. / BolinTech DreamFTP USER buffer overflow The server does not correctly handle format string so sending a command like USER %13000 let us own EDX. Other values can also affect EAX & ECX &...

ProSysInfo TFTP Server TFTPDWIN 0.4.2 - Remote Buffer Overflow (1)

ProSysInfo TFTP Server TFTPDWIN 0.4.2 - Remote Buffer Overflow 1 !/usr/bin/perl -w use IO::Socket; if!$ARGV1 print "Usage: tftpdwin-0-4-2.pl \n\n"; exit; $victim = IO::Socket::INET-newProto='udp', PeerAddr=$ARGV0, PeerPort=$ARGV1 or die "Cannot connect to $ARGV0 sulla porta $ARGV1"; my...

BolinTech DreamFTP Server - 'USER' Remote Buffer Overflow (PoC)

/ BolinTech DreamFTP USER buffer overflow The server does not correctly handle format string so sending a command like USER %13000 let us own EDX. Other values can also affect EAX & ECX This is only a POC but code execution is possible usage: dreamftp.exe ip port Coded by Marsu / include...

BolinTech DreamFTP (USER) Remote Buffer Overflow PoC

Exploit for unknown platform in category dos / poc ==================================================== BolinTech DreamFTP USER Remote Buffer Overflow PoC ==================================================== / BolinTech DreamFTP USER buffer overflow The server does not correctly handle format...

WinZip 9.0 - Command Line Remote Buffer Overflow

source: https://www.securityfocus.com/bid/22020/info WinZip is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it into an insufficiently sized buffer. An attacker may exploit this issue to cause denial-of-service...

CA BrightStor ARCserve Backup - Message EngineTape Engine Remote Buffer Overflow

CA BrightStor ARCserve Backup - Message EngineTape Engine Remote Buffer Overflow source: https://www.securityfocus.com/bid/22005/info Computer Associates BrightStor ARCserve Backup is affected by a remote buffer-overflow vulnerability because the application fails to perform proper bounds-checkin...

NaviCOPA Web Server 2.01 (GET) Remote Buffer Overflow Expl meta

Exploit for unknown platform in category remote exploits ================================================================== NaviCOPA Web Server 2.01 GET Remote Buffer Overflow Exploit meta ================================================================== This file is part of the Metasploit...

Multiple PDF Readers - Multiple Remote Buffer Overflows

Multiple PDF Readers - Multiple Remote Buffer Overflows source: https://www.securityfocus.com/bid/21910/info Multiple PDF readers are prone to multiple remote buffer-overflow vulnerabilities because the applications fail to bounds-check user-supplied data before copying it into an insufficiently...

Apple QuickTime RTSP URI远程缓冲区溢出漏洞

Apple QuickTime是一款流行的媒体播放程序。 Apple QuickTime处理RTSP URI存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 问题存在于rtsp:// URL处理器上，通过提供特殊的字符串rtsp://随机+ 冒号 + 299 字节填充和负载，使用HTML, Javascript或者QTL文件诱使用户解析，可导致基于堆栈的缓冲区溢出，可导致任意指令执行。 Apple QuickTime Player 7.1.3 目前没有解决方案提供： http://www.apple.com/quicktime/ !/usr/bin/ruby...

CA BrightStor ARCserve - tapeeng.exe Remote Buffer Overflow

CA BrightStor ARCserve - tapeeng.exe Remote Buffer Overflow !/usr/bin/python Remote exploit for buffer overflow vulnerability in CA BrightStor Arcserve tapeeng.exe service. Tested on windows 2000 SP4. Binds shell to TCP port 4443 Winny M Thomas ;- Author shall bear no responsibility for any screw...