Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation

Cybersecurity researchers have disclosed three security flaws in Planet Technology's WGS-804HPT industrial switches that could be chained to achieve pre-authentication remote code execution on susceptible devices. "These switches are widely used in building and home automation systems for a varie...

Linux/x86-64 - Polymorphic execve Shellcode (31 bytes)

/ ;Title: polymorphic execve shellcode ;Author: d4sh&r ;Contact: https://mx.linkedin.com/in/d4v1dvc ;Category: Shellcode ;Architecture:linux x8664 ;SLAE64-1379 ;Description: ;Polymorphic shellcode in 31 bytes to get a shell ;Tested on : Linux kali64 3.18.0-kali3-amd64 1 SMP Debian 3.18.6-1kali2...

Ultra Mini HTTPD 1.21 - Stack Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits Exploit Title: Ultra Mini HTTPD stack buffer overflow Date: 10 July 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html...

Microsoft Internet Explorer - 'createTextRang' Remote Code Execution

shellcode = unescape "%u9090%u909...

GNU a2ps "Anything to PostScript" Local Exploit (not suid)

Exploit for linux platform in category local exploits ========================================================== GNU a2ps "Anything to PostScript" Local Exploit not suid ========================================================== / Not added to Local Non Poc section /str0ke / include include inclu...

linux/x86 setreuid/execve 31 bytes

linux/x86 setreuid/execve 31 bytes. Shellcode exploit for linx86 platform / 31 byte setreuid shellcode - man shadow os: Slackware 9.1, Phlak 2.4, Knoppix 0.1 www.manshadow.org [email protected] irc.efnet.net manshadow / char shellcode = "\x31\xC9" / xor ecx,ecx / "\x31\xDB" / xor ebx,ebx /...

zip -- long path buffer overflow

A HexView security advisory reports: When zip performs recursive folder compression, it does not check for the length of resulting path. If the path is too long, a buffer overflow occurs leading to stack corruption and segmentation fault. It is possible to exploit this vulnerability by embedding ...

Pine <= 4.56 Remote Buffer Overflow Exploit

No description provided by source. / Mon Sep 15 09:35:01 CEST 2003 remote? Pine = 4.56 exploit by sorbo sorbox yahoo com darkirco Ok won't talk much about the bug since as usual idefense advisories are proper advisories and explain everything... exploiting the bug is trivial after reading the adv...

XFree86 4.2 - 'XLOCALEDIR' Local Buffer Overflow (3)

// source: https://www.securityfocus.com/bid/7002/info Several XFree86 utilities may be prone to a buffer overflow condition. The vulnerability exists due to insufficient boundary checks performed by these utilities when referencing the XLOCALEDIR environment variable. A local attacker can exploi...

solaris/SPARC portbinding shellcode

Exploit for solaris/sparc platform in category shellcode =================================== solaris/SPARC portbinding shellcode =================================== / Solaris - Sparc - www.dopesquad.net / char shellcode = "\xa0\x23\xa0\x10" / sub %sp, 16, %l0 / "\xae\x23\x80\x10" / sub %sp, %l0,...

SGI IRIX - 'LsD' Multiple Local Buffer Overflows

/ copyright by / / Last Stage of Delirium, Dec 1996, Poland/ include include include define BUFSIZE 2068 define OFFS 800 define ADDRS 3 define ALIGN 0 define ALIGN2 4 char...