CVE-2018-25373

CVE-2018-25373 affects SocuSoft DVD Photo Slideshow Professional 8.07. The issue is a stack-based buffer overflow in the Registration Name field that enables local code execution by abusing structured exception handling (SEH). An attacker can craft a malicious text file containing junk bytes, SEH...

EUVD-2018-21868

10-Strike Network Inventory Explorer 8.54 contains a stack-based buffer overflow vulnerability in the registration key input field that allows local attackers to execute arbitrary code by triggering a structured exception handler overwrite. Attackers can craft a malicious registration key string...

CVE-2018-25322 Allok Fast AVI MPEG Splitter 1.2 Stack Based Buffer Overflow

Allok Fast AVI MPEG Splitter 1.2 contains a stack based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious license name string. Attackers can craft a payload with 780 bytes of junk data followed by structured shellcode and place it in the...

PT-2026-30487

RealTerm Serial Terminal 2.0.0.70 contains a structured exception handling SEH buffer overflow vulnerability in the Echo Port tab that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a buffer overflow payload with a POP POP RET gadget chain a...

HTTPS Fetch, Windows shellcode stage, Bind IPv6 TCP Stager with UUID Support (Windows x86)

Fetch and execute an x86 payload from an HTTPS server. Custom shellcode stage. Listen for an IPv6 connection with UUID Support Windows x86 Module Options msf use payload/cmd/windows/https/x86/custom/bindipv6tcpuuid msf payloadbindipv6tcpuuid show actions ...actions... msf payloadbindipv6tcpuuid s...

EUVD-2024-16374

Malicious code in bioql PyPI...

ASLRay

This repository contains a Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying. The exploit targets the test binary, which is a simple program that takes a string argument and prints it. The exploit works by spraying the stack with a large amount of data, which increases the chances ...

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387 regreSSHion Proof of concept python script for...

CVE-2024-0581

An Uncontrolled Resource Consumption vulnerability has been found on Sandsprite Scdbg.exe, affecting version 1.0. This vulnerability allows an attacker to send a specially crafted shellcode payload to the '/foff' parameter and cause an application shutdown. A malware program could use this...

CVE-2024-0581

An Uncontrolled Resource Consumption vulnerability has been found on Sandsprite Scdbg.exe, affecting version 1.0. This vulnerability allows an attacker to send a specially crafted shellcode payload to the '/foff' parameter and cause an application shutdown. A malware program could use this...

Code injection

An Uncontrolled Resource Consumption vulnerability has been found on Sandsprite Scdbg.exe, affecting version 1.0. This vulnerability allows an attacker to send a specially crafted shellcode payload to the '/foff' parameter and cause an application shutdown. A malware program could use this...

Sandsprite scdbg Security Vulnerability

Scdbg is sandsprite open source a multi-platform open source Shellcode simulation run, analysis tools. A security vulnerability exists in Sandsprite scdbg version 1.0 that stems from an uncontrolled resource consumption vulnerability found on Sandsprite Scdbg.exe that allows an attacker to send a...

Hacking Ham Radio: WinAPRS – Part 4

In part three of this series, we discovered and traced a memory corruption bug in WinAPRS using IDA Pro and WinDbg. We discovered that it could be used to gain control over the CPUs EIP register to obtain remote code execution. We found that there were limitations on the address that could be...

Microsoft Internet Explorer 11 Use-After-Free

Exploit Title: Microsoft Internet Explorer 11 32-bit - Use-After-Free Date: 2021-02-05 Exploit Author: deadlock Forrest Orr Vendor Homepage: https://www.microsoft.com/ Software Link: https://www.microsoft.com/en-gb/download/internet-explorer.aspx Version: IE 8, 9, 10, and 11 Tested on: Windows 7...

TipxD 1.1.1 - Not SETUID Local Format String

TipxD 1.1.1 - Not SETUID Local Format String / tipxdexp.c TipxD Format String Vulnerability TipxD - SECU No System Group - http://www.nosystem.com.ar / include include define PATH "/bin/tipxd" define OBJDUMP "/usr/bin/objdump" define GREP "/usr/bin/grep" unsigned char shellcode= / aleph1...

Icecast <= 2.0.1 Win32 Remote Code Execution Exploit

Exploit for unknown platform in category remote exploits ==================================================== Icecast iceexec 127.0.0.1 Icecast nc 127.0.0.1 9999 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001 Microsoft Corp. C:Icecast2 Win32...