Lucene search
+L

270 matches found

exploitpack
exploitpack
added 2015/03/27 12:0 a.m.11 views

WebGate Control Center 4.8.7 - GetThumbnail Stack Overflow

WebGate Control Center 4.8.7 - GetThumbnail Stack Overflow var buff1 = ""; var arg2=1; var arg3=1; var arg4=1; var nops = ""; var buff2 = ""; for i=0;i24; i++ buff1 += "B"; // jump over seh to shellcode nseh = "\xeb\x08PD"; // pop pop ret var seh = "\xa0\xf2\x07\x10"; for i=0;i80; i++ nops +=...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2015/01/07 1:50 p.m.16 views

TweakFS-1.0-(FSX-Edition)

Bug found by : TecR0c Software Link : http://tweakfs.com/ Version : 1.0 OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : Direct RET / SEH ldfheader = "\x50\x4B\x03\x04\x14\x00\x00\x00\x00\x00\xB7\xAC\xCE\x34\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00" "\xe4\x0f" "\x00\x00\x00"...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/01/07 12:25 p.m.14 views

Minishare-1.5.5-BoF

Exploit Title: Minishare 1.5.5 Buffer Overflow Vulnerability users.txt - EggHunter Version Date: 11/19/2010 Author: 0v3r Bug Found By: Chris Gabriel Software Link: http://sourceforge.net/projects/minishare egghunter = "\x66\x81\xCA\xFF\x0F\x42\x52\x6A\x02\x58\xCD\x2E\x3C\x05\x5A\x74\xEF\xB8"...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2015/01/07 12:22 p.m.11 views

Realtek-HD-Audio-Control-Panel-2.1.3.2

App. has classic buffer overflow vulnerability it can be triggered by passing a too long argument as a startup parameter. Shellcode can by run via classic ret overwrite or SEH Handler overwrite filepath = "C:\ShellCode\RTHDCPL 2.1.3.2 - Exploit.bin" f = openfilepath, "wb" f.write'A'4...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2015/01/05 12:55 p.m.24 views

MailMax-4.6-POP3-

MailMax v4.6 POP3 "USER" Remote Buffer Overflow Exploit No Login Needed Newer version's not tested, maybe vulnerable too A hard one this, the shellcode MUST be lowercase. Plus there are many opcode's that break the payload and opcodes that gets changed, like "\xc3" gets converted to "\xe3", and...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2014/09/05 12:0 a.m.30 views

BulletProof FTP Client 2010 - Buffer Overflow (SEH)

!/usr/bin/python ----------------------------------------------------------------------------- Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Sep 05 2014 Vulnerability Discovery: Gabor Seljan Exploit Author: Robert Kugler Software Link: http://www.bpftp.com/ Versio...

6.4AI score
Exploits17
securityvulns
securityvulns
added 2014/08/26 12:0 a.m.98 views

CVE-2014-5289 - Kolibri WebServer 2.0 Vulnerable to RCE via Overly Long POST Request

Exploit Details ------------------ Senkas Kolibri WebServer 2.0 available at http://www.senkas.com/kolibri/download.php is vulnerable to RCE via an overly long POST request. Sending the exploit will result in a SEH overwrite, which can then be use to redirect execution to a POP POP RET within the...

7.5CVSS0.4AI score0.14301EPSS
Exploits19
seebug.org
seebug.org
added 2014/08/20 12:0 a.m.23 views

BlazeDVD Pro 7.0 - (.plf) Stack Based Buffer Overflow (Direct RET)

No description provided by source. BlazeDVD Pro v7.0 - .plf Stack Based Buffer Overflow direct RET - ALSR/DEP bypass on Win8.1 Pro Date: Mon, Aug 11 2014 12:58:06 GMT Exploit Author: Giovanni Bartolomucci Vendor Homepage: http://www.blazevideo.com/ Software Link:...

7.1AI score
Exploits0
0day.today
0day.today
added 2014/08/18 12:0 a.m.109 views

Senkas Kolibri WebServer 2.0 Buffer Overflow Exploit

Senkas Kolibri WebServer version 2.0 is vulnerable to remote code execution via an overly long POST request. Sending the exploit will result in a SEH overwrite, which can then be use to redirect execution to a POP POP RET within the application's binary itself, which once executed, will allow the...

7.5CVSS0.6AI score0.14301EPSS
Exploits19
0day.today
0day.today
added 2014/08/13 12:0 a.m.29 views

BlazeDVD Pro 7.0 - (.plf) Stack Based Buffer Overflow (Direct RET)

Exploit for windows platform in category local exploits BlazeDVD Pro v7.0 - .plf Stack Based Buffer Overflow direct RET - ALSR/DEP bypass on Win8.1 Pro Date: Mon, Aug 11 2014 12:58:06 GMT Exploit Author: Giovanni Bartolomucci Vendor Homepage: http://www.blazevideo.com/ Software Link:...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Berlios GPSD Format String Vulnerability

No description provided by source. $Id: gpsdformatstring.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Oracle 9i XDB FTP UNLOCK Overflow (win32)

No description provided by source. $Id: oracle9ixdbftpunlock.rb 10559 2010-10-05 23:41:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and ter...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.119 views

Audiotran 1.4.1 - Direct RET BoF

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Media Jukebox 8.0.400 Buffer Overflow Exploit (SEH)

No description provided by source. $Id: mediajukebox.rb 11516 2011-01-08 01:13:26Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.49 views

GSM SIM Utility 5.15 - Local Exploit Direct Ret ver.

No description provided by source. Exploit Title : GSM SIM Utility Local Exploit Direct Ret ver. Date : July 07, 2010 Author : chap0 www.seek-truth.net Download Link : http://download.cnet.com/GSM-SIM-Utility/3000-185084-10396246.html?tag=mncol Version : 5.15 OS : Windows XP SP3 Greetz to : Corel...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Steinberg MyMP3Player 3.0 - Buffer Overflow

No description provided by source. $Id: mymp3playerm3u.rb 10998 2010-11-11 22:43:22Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/01 12:0 a.m.100 views

Microsoft Internet Explorer 8 - Fixed Col Span ID (Full ASLR + DEP + EMET 4.1.x Bypass) (MS12-037)

Microsoft Internet Explorer 8 - Fixed Col Span ID Full ASLR + DEP + EMET 4.1.x Bypass MS12-037 function strtointstr return str.charCodeAt10x10000 + str.charCodeAt0; var free = "EEEE"; while free.length 500 free += free; var string1 = "AAAA"; while string1.length 500 string1 += string1; var...

9.3CVSS6.3AI score0.64962EPSS
Exploits27
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

WINMOD 1.4 - (.lst) Local Stack Overflow Exploit XP SP3 (RET+SEH) (3)

No description provided by source. Winmod 1.4 .lst Local Stack Overflow Exploit RET overwrite+SEH http://www.software112.com/products/winmod+download.html Exploit for Windows XP SP3 en by corelan - c0d3r Greetings to Saumil and SK my $sploitfile = c:\program files\winmod\xplsp3.lst; my $buf=\x41...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.34 views

APSIS Pound 1.5 - Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10267/info APSIS Pound has been found to be prone to a remote format string vulnerability. The problem presents itself when Pound handles certain requests containing embedded format string specifiers. Ultimately this...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

jetAudio 7.1.9.4030 plus vx - (.m3u) Local Stack Overflow (SEH)

No description provided by source. + Vulnerability : jetAudio v 7.1.9.4030 plus vx .m3u Local Stack Overflow + Detected by : HACK4LOVE http://www.milw0rm.com/exploits/9359 + Product : jetAudio + Versions affected : 7.1.9.4030 plus vx +...

7.1AI score
Exploits0
Rows per page
Query Builder