7259 matches found
36 bytes chmod("/etc/shadow", 0666) shellcode
No description provided by source. include stdio.h include string.h / by Magnefikko 14.04.2010 [email protected] promhyl.oz.pl Subgroup: PRekambr Name: 36 bytes chmod/etc/shadow, 0666 shellcode Platform: Linux x86 chmod/etc/shadow, 0666; gcc -Wl,-z,execstack filename.c shellcode:...
Xion Audio Player 1.0.127 - (m3u) Buffer Overflow Vulnerability
No description provided by source. Exploit Title: Xion Audio Player 1.0.127 m3u Buffer Overflow Vulnerability Date: 11/23/2010 Author: 0v3r Software Link: http://www.r2.com.au/downloads/files/xionv1.0b127.exe Version: 1.0.127 Tested on: Windows XP SP3 EN CVE: N/A !/usr/bin/python encoded with...
Rosoft Media Player 4.4.4 Buffer OverFlow Exploit (SEH)
No description provided by source. Exploit Title: Rosoft Media Player 4.4.4 Buffer OverFlow Exploit SEH Download : http://download.cnet.com/3001-204-10044022.html?spi=02537eab7f440a326729a3dd1f7c6485 Date: 16/01/2010 Author: Red-D3v1L Special Thx For : H1s0k4 bEst 0verflower In ThE World xD sh0ot...
JcomBand toolbar on IE ActiveX Buffer Overflow Exploit
No description provided by source. html head titleJcomBand Exploit heap spray /title object classid='clsid:952E3F80-0C34-48CD-829B-A45913B29670' id='test'/object script language='javascript' // Author: germayax & D3V!L FUCKER // Version: 2.5 // special thanx: for my best friend his0k4. // Geetz 2...
OSX universal ROP shellcode
No description provided by source. ; universal OSX dyld ROP shellcode ; tested on OS X 10.6.8 ; ; if you don't want to compile, copy stage0 code from precompiled.txt ; and append your normal shellcode to it. ; ; usage: ; - put your 'normal' shellcode in x64shellcode.asm ; - make ; - ./sc ; ; if y...
Freefloat FTP Server MKD Buffer Overflow (MSF)
No description provided by source. require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = AverageRanking include Msf::Exploit::Remote::Ftp def initializeinfo = superupdateinfoinfo, 'Name' = 'Freefloat FTP Server MKD Command Stack Overflow', 'Description' = %q This module exploits a buff...
Windows XP Pro Sp2 English "Message-Box" Shellcode
No description provided by source. +-----------------------------------------------------+ | Windows XP Pro Sp2 English Message-Box Shellcode. | +-----------------------------------------------------+ Size : 16 Bytes, Null-Free. Author : Aodrulez. Email : [email protected] Shellcode =...
Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution
No description provided by source. !-- | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 3 Binary Analysis | | | | || / \ || | | | || ||// \/|/ Title : Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution Version : UfPBCtrl.DLL...
VLC Media Player < 0.9.6 .RT Stack Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl VLC Media Player 0.9.6 .RT File Buffer Overflow Stack Based --------------------------------------------------------------- Exploit by SkD [email protected] This should work on a fully up-to-date Windows XP SP3. If you want it to work on your OS...
freeBSD 4.8 realpath() Off-By-One Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that wa...
Borland Interbase <= 2007 SP1 Create-Request Remote Overflow Exploit
No description provided by source. / http://lists.grok.org.uk/pipermail/full-disclosure/2007-July/064882.html Groetjes aan mijn sletjes: Doopie, Sjaakhans, PS en Sleepwalker :P All your base are belong to FD2K2! / include stdio.h include stdlib.h include string.h include winsock2.h include...
Oracle 8/9i DBSNMP Oracle Home Environment Variable Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/3138/info Oracle is an Enterprise level SQL database, supporting numerous features and options. It is distributed and maintained by Oracle Corporation. When the ORACLEHOME environment variable is filled with 750 bytes or...
Photofiltre Studio 8.1.1 - (.TIF File) Local Buffer Overflow Exploit
No description provided by source. / Photofiltre Studio v8.1.1 .TIF File Buffer Overflow Photofiltre is vulnerable to an unspecified buffer overflow when processing a crafted .TIF file. This exploit just beeps useless but incredibly noisy!!. Tested against Win XP SP2 FR. Have Fun! Coded and...
VCDGear <= 3.56 Build 050213 (FILE) Local Code Execution Exploit
No description provided by source. / 0day Discovered by: InTeL Auther: InTeL Attack Vector: SEH overwrite Type: Local Tested on Win2k SP4 English Software: VCDGear v3.56 build 050213 Website: www.vcdgear.com Description: VCDGear is a program designed to allow a user to extract MPEG streams from C...
SureThing CD Labeler (m3u/pls) - Unicode Stack Overflow PoC Exploit
No description provided by source. / surethingcdlabelerbofpoc.c SureThing cd labeler m3u/pls - unicode stack overflow PoC exploit Found by: Ruben Alejandro - chap0 Author: Steven Seeley - mrme http://net-ninja.net/ Greetz to: Corelan Security Team...
Alt-N WebAdmin 2.0.x USER Parameter Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/8024/info Alt-N WebAdmin is prone to a buffer overflow condition. This is due to insufficient bounds checking on the USER parameter. Successful exploitation could result in code execution with SYSTEM level privileges. /...
Linux/ARM - setuid(0) & kill(-1, SIGKILL) - 28 bytes
No description provided by source. / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Dtabase of shellcodes...
OTSTurntables 1.00.048 - (m3u/ofl) Local BOF Exploit (SEH)
No description provided by source. Exploit Title: OTSTurntables 1.00.028 m3u/ofl Local BOF Exploit SEH Date: 11/24/2010 Author: 0v3r Software Link: http://www.otsturntables.com/download-otsturntables-free/ Version: 1.00.048 Tested on: Windows XP SP3 EN CVE: N/A !/usr/bin/python import sys win32bi...
Linux kernel <= 2.2.18 ptrace/execve Race Condition Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/2529/info The Linux kernel is the core of all distributions of the Linux Operating System. It was originally written by Linus Torvalds, and is maintained by a community of developers. A problem in the Linux Kernel could...
Linux/ARM - execve("/bin/sh", [0], [0 vars]) - 27 bytes
No description provided by source. / Title: Linux/ARM - execve/bin/sh, 0, 0 vars - 27 bytes Date: 2010-08-31 Tested on: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan - twitter: @jonathansalwan shell-storm.org Shellcode ARM with not a 0x20, 0x0a and 0x00 Disassembly of section .text: 00008054 start...