7259 matches found
File 3.x Local Stack Overflow Code Execution Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/7008/info It has been reported that a stack overflow exists in the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to execute code as the user invoki...
Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (x86)
No description provided by source. !/usr/bin/perl getpwnedmail.pl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom This is a canibalized version of Kansas City POP Daemon Version 0.0 - Copyright c 1999 David Nicol [email protected] kevin-finisterres-mac-mini:...
gaestebuch 1.2 - Remote File Inclusion Vulnerability
No description provided by source. HINNENDAHL.COM Gaestebuch 1.2 Remote File Inclusion Vulnerability by bd0rk || SOH-Crew www.soh-crew.it.tt Contact: bd0rkathackermail.com Affected-Software: HINNENDAHL.COM Gaestebuch 1.2 Vendor: http://www.hinnendahl.com/ Download:...
SigPlus Pro 3.74 - ActiveX LCDWriteString() Remote BoF JIT Spray - aslr/dep bypass
No description provided by source. html !-- =================================================================================================== SigPlus Pro v3.74 ActiveX Signature Capture LCDWriteString Remote BoF JIT Spray - aslr/dep bypass Author: mrme - @StevenSeeley Download:...
Sielco Sistemi Winlog <= 2.07.16 Buffer Overflow
No description provided by source. !/usr/bin/ruby Exploit Title: Sielco Sistemi Winlog Buffer Overflow = v2.07.16 Date: 05.06.2012 Exploit Author: m1k3 Vendor Homepage: http://www.sielcosistemi.com/en/download/public/winloglite.html Software Link:...
httpdx <= 0.5b FTP Server (CWD) Remote BOF Exploit (SEH)
No description provided by source. !/usr/bin/python Usage : httpdxcwd.py targetip user pass Example : httpdxcwd.py 192.168.1.3 ftp 123 Stack encouraged me to exploit this bug , so thx brotha | || | / \ | | | | | | | | | - | | | / / | | |||| || // / |\ || Bug : httpdx = 0.5b FTP Server CWD Remote...
AtomixMP3 <= 2.3 - (playlist) Universal SEH Overwrite Exploit
No description provided by source. usage: exploit.py + Bug: AtomixMP3 = 2.3 playlist Universal Seh Overwrite Exploit + Exploit by : His0k4 + Software download : http://download.atomixmp3.com/atomixmp3trial.exe + Greetings : All friends & muslims HackErS DZ, secdz.com win32exec - EXITFUNC=seh...
Winamp <= 5.06 IN_CDDA.dll Remote Buffer Overflow Exploit
No description provided by source. / Credits go to the author How to fix and study the bug: - The cdda library only reserves 20 bytes for names when files are .cda - run Winamp with ollye - when loaded locate and break at: 10009BBB 8D4C24 20 LEA ECX,DWORD PTR SS:ESP+20 10009BBF 84C0 TEST AL,AL...
HTMLDOC 1.9.x-r1629 local .html buffer overflow(win32) exploit
No description provided by source. /HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit download: http://www.htmldoc.org/software.php?VERSION=1.9.x-r1629&FILE=htmldoc/snapshots/htmldoc-1.9.x-r1629.tar.bz2 header 19 bytes junk 268 bytes EIP register 4 bytes NOP SLEED 15 bytes calc.exe...
linux/x86 setuid(0),setgid(0) execve(/bin/sh, [/bin/sh, NULL]) 37 bytes
No description provided by source. / Linux/x86 setuid0 + setgid0 + execve/bin/sh, /bin/sh, NULL - 37 bytes - [email protected] / char shellcode = \x6a\x17 // push $0x17 \x58 // pop %eax \x31\xdb // xor %ebx, %ebx \xcd\x80 // int $0x80 \x6a\x2e // push $0x2e \x58 // pop %eax \x53 // push %ebx...
linux/x86 execve("/bin/sh", ["/bin/sh", NULL]) 25 bytes
No description provided by source. / Linux/x86 execve/bin/sh, /bin/sh, NULL - 25 bytes - [email protected] / char shellcode = \x31\xc0 // xor %eax, %eax \x50 // push %eax \x68\x2f\x2f\x73\x68 // push $0x68732f2f \x68\x2f\x62\x69\x6e // push $0x6e69622f \x89\xe3 // mov %esp, %ebx \x50 // push %eax...
BitchX 1.1 Final - MODE Remote Heap Overflow Exploit (0day)
No description provided by source. !/usr/bin/env ruby BitchX-1.1 Final MODE Heap Overflow 0-day By bannedit Discovered May 16th 2007 - Yet another overflow which can overwrite GOT I found this vuln after modifying ilja's ircfuzz code. Currently this exploit attempts to overwrite the GOT with the...
OpenVMPSd <= 1.3 - Remote Format String Exploit (Multiple Targets)
No description provided by source. / gexp-openvmpsd.c OpenVMPSd v1.3 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-openvmpsd.c / include getopt.h include sys/types.h include...
GKrellM Mailwatch Plugin 2.4.1/2.4.2 From Header Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8118/info It has been reported that the Mailwatch plugin for GKrellM is vulnerable to a remotely exploitable buffer overflow. This may permit the execution of arbitrary code with the privileges of the GKrellM program. /...
Solaris/x86 - execve("/bin/sh","/bin/sh",NULL) - 27 bytes
No description provided by source. / Title: Solaris/x86 - execve/bin/sh,/bin/sh,NULL - 27 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan Date: 2010-05-19 Tested: SunOS opensolaris 5.11 snv111b i86pc i386 i86pc...
Minishare 1.5.5 - Buffer Overflow Vulnerability (users.txt)
No description provided by source. Exploit Title: Minishare 1.5.5 Buffer Overflow Vulnerability users.txt Date: 11/02/2010 Author: Chris Gabriel Software Link: http://sourceforge.net/projects/minishare Version: 1.4.0 - 1.5.5 Tested on: Windows XP SP3 EN CVE: MessageBoxA TITLE=HAX TEXT=HAX WIN XP...
Atftpd 0.6 - Remote Root Exploit (atftpdx.c)
No description provided by source. / PoC linux/86 remote exploit against atftpd c gunzip FIXED / include stdio.h include stdlib.h include unistd.h include string.h include netdb.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h include signal.h define HEAPSTART...
x86 linux hard / unclean reboot (33 bytes)
No description provided by source. / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...
RealNetworks RealPlayer 16.0.3.51/16.0.2.32 - (.rmp) Version Attribute Buffer Overflow
No description provided by source. !/usr/bin/perl ----------------------------------------------------------------------------- Exploit Title: RealNetworks RealPlayer Version Attribute Buffer Overflow Date: Dec 20 2013 Exploit Author: Gabor Seljan Vendor Homepage: http://www.real.com Software Lin...
MS Windows 2000 sp1/sp2 isapi - .printer Extension Overflow Exploit (2)
No description provided by source. / IIS 5 remote .printer overflow. jill.c don't ask. by: dark spyrit [email protected] respect to eeye for finding this one - nice work. shouts to halvar, neofight and the beavuh bitchez. this exploit overwrites an exception frame to control eip and get to our...