Yokogawa CENTUM CS 3000 - 'BKBCopyD.exe' Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Yokogawa CENTUM CS 3000 BKBCopyD.exe Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow in...

Python - socket.recvfrom_into() Remote Buffer Overflow

Python - socket.recvfrominto Remote Buffer Overflow !/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit Author: @sha0coder Vendor Homepage: python.org Version: python2.7 and python3 Tested on: linux 32bit + python2.7 CVE : CVE-2014-19...

Python socket.recvfrom_into() remote buffer overflow exploit

Proof of concept, that demonstrated the remote exploitability of this python socket flaw, if the python code uses recvfrominto unsafelly. To avoid NX, ret2libc can be used thanx to !/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit...

Oracle MySQL Client Remote Buffer Overflow Vulnerability - Windows

Oracle MySQL Client is prone to remote buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MariaDB Client Version Handling Remote Buffer Overflow Vulnerability - Windows

MariaDB Client is prone to remote buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (SEH)

haneWIN DNS Server 1.5.3 - Remote Buffer Overflow SEH !/usr/bin/python Exploit Title: haneWIN DNS Server SEH Author: Dario Estrada dash https://intrusionlabs.org Date: 2014-01-29 Version: haneWIN DNS Server 1.5.3 Vendor Homepage: http://www.hanewin.net/ Vulnerable app...

PCMan FTP Server 2.07 - 'CWD' Remote Buffer Overflow

Exploit Title: PCMAN FTP 2.07 CWD Command Buffer Overflow Date: Jan 25,2014 Exploit Author: Mahmod Mahajna Mahy Version: 2.07 Tested on: Windows 7 sp1 x64 english Email: [email protected] import socket as s from sys import argv iflenargv != 4: print "USAGE: %s host " % argv0 exit1 else: store...

haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (SEH)

!/usr/bin/python Exploit Title: haneWIN DNS Server SEH Author: Dario Estrada dash https://intrusionlabs.org Date: 2014-01-29 Version: haneWIN DNS Server 1.5.3 Vendor Homepage: http://www.hanewin.net/ Vulnerable app link:http://www.hanewin.net/dns-e.htm Tested on: Windows XP SP3 Thanks to God, to ...

Apple Mac OS X Directory Service Remote Buffer Overflow Vulnerability

Apple Mac OS X is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ASUS RT-N56U - Remote Buffer Overflow (ROP)

ASUS RT-N56U - Remote Buffer Overflow ROP !/usr/bin/env python from time import sleep from sys import exit import urllib2, signal, struct, base64, socket, ssl Title: ASUS RT-N56U Remote Root Shell Exploit - appsname Discovered and Reported: October 2013 Discovered/Exploited By: Jacob Holcomb/Gimp...

RealPlayer 'RMP'文件处理远程堆缓冲区溢出漏洞

BUGTRAQ ID: 64398 CVECAN ID: CVE-2013-6877 RealPlayer是网上收听收看实时音频、视频和Flash的工具。 RealPlayer 16.0.2.32、16.0.3.51版本处理RMP文件时存在安全漏洞，远程攻击者可诱使客户端用户打开特制的RMP文件，利用此漏洞执行任意代码。 0 Real Networks RealPlayer 16.0.3.51 Real Networks RealPlayer 16.0.2.32 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

Beetel Connection Manager 'NetConfig.ini'文件处理远程缓冲区溢出漏洞

BUGTRAQ ID: 63414 Beetel Connection Manager是一套3G无线上网卡的连接管理器。 Beetel Connection Manager验证 NetConfig.ini 文件不正确时可触发缓冲区溢出，这可使上下文独立的攻击者造成应用崩溃，停止响应，也可能执行任意代码。 0 beetel Beetel Connection Manager PCWBTLINDV1.0.0B04 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

WatchGuard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

Exploit for hardware platform in category remote exploits !/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: email protected a.k.a. email protected Vendor Homepage: http://www.watchguard.com...

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

!/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage: http://www.watchguard.com Version: = 11.7.4u1 Tested on: XTMv CVE :...

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow

Watchguard Firewall XTM 11.7.4u1 - Remote Buffer Overflow !/usr/bin/perl -w Exploit Title: WatchGuard Firewall XTM version 11.7.4u1 - Remote buffer overflow exploit sessionid cookie Date: Oct 18 2013 Exploit Author: [email protected] a.k.a. [email protected] Vendor Homepage:...

SikaBoom - Remote Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

Cisco Unified Communications Manager Remote Buffer Overflow (CSCud54358)

According to its self-reported version, the remote Cisco Unified Communications Manager CUCM device is affected by a remote buffer overflow vulnerability that allows an authenticated, remote attacker to corrupt data, disrupt services, or execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable...

Intrasrv 1.0 - Remote Buffer Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "Intrasrv 1.0 Buff...

MinaliC WebServer 2.0.0 - Remote Buffer Overflow (Egghunter)

!/usr/bin/env python Exploit Title: MinaliC Webserver buffer overflow egghunter Date: August 13 2013 Exploit Author: PuN1sh3r Email: [email protected] Vendor Homepage: http://minalic.sourceforge.net/ Version: MinaliC Webserver 2.0.0 Tested on: Windows XP Pro SP3, English Description: Remote...

Bifrost 1.2d - Remote Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits !/usr/bin/python2.7 By : Mohamed Clay import socket from time import sleep from itertools import izip, cycle import base64 import threading import sys def rc4cryptdata, key: x = 0 box = range256 for i in range256: x = x + boxi + ordkeyi %...