CVE-2026-25865 Punto Switcher 4.5.0.583 Unquoted Search Path via WinExec

Punto Switcher through 4.5.0.583 contains an unquoted search path element vulnerability that allows local attackers to execute arbitrary code by exploiting the application's call to WinExec without a fully qualified path for RunDll32.exe when invoking shell32.dll ControlRunDLL input.dll. Attacker...

Exploit for Protection Mechanism Failure in Microsoft

Exploit bash python3 CVE-2026-32202.py -h usage: CVE-2026-3...

EUVD-2007-6709

Malware in sbrugna...

HTML5 Video Player 1.2.5 - Local Buffer Overflow (Non SEH)

!/usr/bin/python Exploit Title: HTML5 Video Player 1.2.5 - Local Buffer Overflow - Non SEH Date: 27/01/2019 Exploit Author: Dino Covotsos - Telspace Systems Vendor Homepage: http://www.html5videoplayer.net/download.html Software: http://www.html5videoplayer.net/html5videoplayer-setup.exe Contact:...

Description of the security update for the elevation of privilege vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018

Description of the security update for the elevation of privilege vulnerability in Windows Embedded POSReady 2009 and Windows Embedded Standard 2009: September 11, 2018 Summary An elevation of privilege vulnerability exists when Windows allows a sandbox escape. An attacker who successfully exploi...

WinDBG and JavaScript Analysis

This blog was authored by Paul Rascagneres.IntroductionJavaScript is frequently used by malware authors to execute malicious code on Windows systems because it is powerful, natively available and rarely disabled. Our previous article on .NET analysis generated much interest relating to how to use...

Microsoft Windows LNK Remote Code Execution Vulnerability (KB4021903)

This host is missing a critical security update according to Microsoft KB4021903 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PCMAN FTP Server 2.0.7 ACCT Buffer Overflow

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'PCMAN FTP Server Buffer Overflow - ACCT Command', 'Description' = %q This module exploits a buffer overflow vulnerability found...

PCMan FTP Server 2.0.7 - 'SITE CHMOD' Remote Buffer Overflow

!/usr/bin/env python -- coding: utf-8 -- Exploit Title: PCMan FTP Server 2.0 BoF SITE CHMOD Command Date: 04/11/2016 Exploit Author: Luis Noriega Tested on: Windows XP Profesional V. 5.1 Service Pack 3 CVE : n/a import socket shellcode with metasploit: msfvenom -p windows/exec CMD=calc.exe...

Microsoft Windows - CreateObjectTask SettingsSyncDiagnostics Privilege Escalation

Microsoft Windows - CreateObjectTask SettingsSyncDiagnostics Privilege Escalation Source: https://code.google.com/p/google-security-research/issues/detail?id=437 Windows: CreateObjectTask SettingsSyncDiagnostics Elevation of Privilege Platform: Windows 8.1 Update I don’t believe it’s available in...

Microsoft Windows - CreateObjectTask TileUserBroker Privilege Escalation

Microsoft Windows - CreateObjectTask TileUserBroker Privilege Escalation Source: https://code.google.com/p/google-security-research/issues/detail?id=439 Windows: CreateObjectTask TileUserBroker Elevation of Privilege Platform: Windows 8.1 Update I don’t believe it’s available in earlier Windows...

BulletProof FTP Client 2010 - Buffer Overflow (DEP Bypass) Exploit

Exploit for windows platform in category local exploits ----------------------------------------------------------------------------- Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Date: Feb 15 2015 Exploit Author: Gabor Seljan Software Link: http://www.bpftp.com/ Version:...

Microsoft MS10-0 4 6 details of the analysis-vulnerability warning-the black bar safety net

As early as the year 1 and the beginning researcher Michael Heerklotz found one of the Windows operating system 0day the. We put this hole named ZDI-1 5-0 8 6, herein, the technical details are based on his research and a summary. In order to understand his reports of sense, we need to recall the...

VUPlayer-2.49---(.m3u)

VUPlayer 2.49 .M3u Universal buffer overflow exploit w/ DEP bypass Author: mrme Download: http://vuplayer.com/ Tested on Wind0ws XP SP3 /noexecute=alwayson sc = "\x89\xe1\xd9\xee\xd9\x71\xf4\x58\x50\x59\x49\x49\x49\x49" "\x43\x43\x43\x43\x43\x43\x51\x5a\x56\x54\x58\x33\x30\x56"...

Exploit-Easy-RM-to-MP3-2.7.3.700

Exploit Title: Easy RM to MP3 2.7.3.700 Local Buffer Overflow .m3u , .pls , .smi , .wpl , .wax , .wvx , .ram Date: 4 / 8 / 2010 Author: Oh Yaw Theng Software Link: http://www.exploit-db.com/application/10642/ Version: 2.7.3.700 Tested on: Windows XP SP 1 This exploit works for all the file...

BulletProof FTP Client 2010 Buffer Overflow

!/usr/bin/python ----------------------------------------------------------------------------- Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Sep 05 2014 Vulnerability Discovery: Gabor Seljan Exploit Author: Robert Kugler Software Link: http://www.bpftp.com/ Versio...

BulletProof FTP Client 2010 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits !/usr/bin/python ----------------------------------------------------------------------------- Exploit Title: BulletProof FTP Client 2010 - Buffer Overflow SEH Exploit Date: Sep 05 2014 Vulnerability Discovery: Gabor Seljan Exploit Author:...

MoviePlay 4.82 - (.lst) Buffer Overflow

No description provided by source. !/usr/bin/env python MoviePlay 4.82 .lst Buffer Overflow Author: sickness Download : http://www.softpedia.com/get/Multimedia/Video/Video-Players/MoviePlay.shtml Previous version exploit can be found here: http://www.exploit-db.com/exploits/4051/ Tested : Windows...

Mini-Stream 3.0.1.1 - Buffer Overflow Exploit (Meta)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Mini-Stream 3.0.1.1 - Buffer Overflow Exploit

No description provided by source. $Id: ministream.rb 11516 2011-01-08 01:13:26Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...