Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack jack\x40gulcas\x2Eorg 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the RewriteRule kung/. $1 rule if not you must...

CPE17 Autorun Killer <= 1.7.1 Stack Buffer Overflow Exploit

No description provided by source. CPE17 Autorun Killer = 1.7.1 Stack Buffer Overflow exploit by Xelenonz require 'msf/core' class Metasploit3 Msf::Exploit::Remote include Msf::Exploit::FILEFORMAT def initializeinfo = superupdateinfoinfo, 'Name' = 'CPE17 Autorun Killer = 1.7.1 Stack Buffer Overfl...

freebsd/x86-64 exec("/bin/sh") shellcode 31 bytes

No description provided by source. / | | | | | | | \ | | | | || |/ |/ | |/ / ' \ | | / | | | | | | | | | | | | | | | | || ||,|||\| || || \/||| http://www.hacknroll.com Description: FreeBSD x86-64 exec/bin/sh Shellcode - 31 bytes Authors: Maycon M. Vitali 0ut0fBound Milw0rm .:...

FreeBSD 2.2-4.2,NetBSD 1.2-4.5,OpenBSD 2.x ftpd glob() Buffer Overflow

No description provided by source. source: http://www.securityfocus.com/bid/2548/info The BSD ftp daemon and derivatives such as IRIX ftpd or the ftp daemon shipped with Kerberos 5 contain a number of buffer overflows that may lead to a compromise of root access to malicious users. During parsing...

VUPlayer <= 2.49 - (.m3u) Universal Buffer Overflow Exploit (DEP bypass)

No description provided by source. !/usr/bin/env python VUPlayer =2.49 .M3u Universal buffer overflow exploit w/ DEP bypass Author: mrme Download: http://vuplayer.com/ Tested on Wind0ws XP SP3 /noexecute=alwayson Greetz: Corelan Security Team...

JcomBand toolbar on IE ActiveX Buffer Overflow Exploit

No description provided by source. html head titleJcomBand Exploit heap spray /title object classid='clsid:952E3F80-0C34-48CD-829B-A45913B29670' id='test'/object script language='javascript' // Author: germayax & D3V!L FUCKER // Version: 2.5 // special thanx: for my best friend his0k4. // Geetz 2...

Linux/x86 - Disable randomize stack addresse - 106 bytes

No description provided by source. / Title: Linux/x86 - Disable randomize stack addresse - 106 bytes Set randomizevaspace to zero Author: Jonathan Salwan submit ! shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes...

freeBSD 4.8 realpath() Off-By-One Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that wa...

MailMax <= 4.6 - POP3 "USER" Remote Buffer Overflow Exploit (No Login Needed)

No description provided by source. !/usr/bin/python MailMax =v4.6 POP3 USER Remote Buffer Overflow Exploit No Login Needed Newer version's not tested, maybe vulnerable too A hard one this, the shellcode MUST be lowercase. Plus there are many opcode's that break the payload and opcodes that gets...

Elm Development Group ELM 2.4/2.5.1 Mail for UNIX (ELM) Buffer Overflow (2)

No description provided by source. source: http://www.securityfocus.com/bid/1276/info Buffer overflow vulnerabilities exist in elm Electronic Mail for Unix. / Elm 2.5 PL3 exploit Tested Under Linux Slackware 3.6, 4.0, 7.0 By xfer [email protected] Of Buffer0verfl0w Security At Sat May 27...

Aesop GIF Creator <= 2.1 - (.aep) Buffer Overflow Exploit

No description provided by source. !/usr/bin/python Exploit Title: Aesop GIF Creator = v2.1 .aep Buffer Overflow Exploit Date: 12/15/2010 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsec at x-sploited.com Software Link: http://www.yukudr.com/h84561/aesopsetup.exe...

BarCode ActiveX Control BarCodeAx.dll 4.9 - Remote Overflow Exploit

No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: BarCodeAx.dll v. 4.9 ActiveX Control Remote Stack Buffer Overflow ================================================================= Internal ID: VULWAR200706223 Introduction...

PCMAN FTP 2.07 ABOR Command - Buffer Overflow Exploit

No description provided by source. Exploit Title: PCMAN FTP 2.07 ABOR Command Buffer Overflow Date: Jan 25,2014 Exploit Author: Mahmod Mahajna Mahy Version: 2.07 Tested on: Windows 7 sp1 x64 english Email: [email protected] import socket as s from sys import argv iflenargv != 4: print USAGE: %s...

Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x

No description provided by source. !/usr/bin/python Exploit Title: Exploit for Microsoft IIS ASP Multiple Extensions Security Bypass 5.x/6.x Date: 29 dec 2009 Author: Emanuele 'emgent' Gentili and Emanuele 'crossbower' Acri Software Link: N/A Version: IIS 5.x/6.x Tested on: Windows 2003 Server SP...

YahooPOPs <= 1.6 SMTP Port Buffer Overflow Exploit

No description provided by source. / YahooPOPS v1.6 and prior SMTP port buffer overflow exploit v0.1 Exploit code by class101 at DFind.kd-team.com Bind a shellcode to the port 101. Thanx to Behrang [email protected] for the bug discovery Thanx to HDMoore and Metasploit.com for their...

GNU Sharutils <= 4.2.1 - Local Format String PoC Exploit

No description provided by source. / GNU sharutils = 4.2.1 Local Format String POC Code C0ded by n4rk0tix a.k.a nrktx [email protected] Below is a l4m3 proof of concept code for da recently reported lame bug; These binaryz have not only format bugz, but also buffer overflowz,etc.We also...

VideoCharge Studio 2.12.3.685 - Buffer Overflow (SEH)

No description provided by source. !/usr/bin/python Exploit Title: VideoCharge Studio SEH Buffer Overflow Date found: 27.10.2013 Exploit Author: metacom URL: http://www.videocharge.com/download.php Software Link: www.videocharge.com/download/VideoChargeStudioInstall.exe Version: 2.12.3.685 Tested...

S.u.S.E. 5.2 lpc Vulnerabilty

No description provided by source. source: http://www.securityfocus.com/bid/328/info The PLP Line Printer Control program, shipped with S.u.S.E. 5.2 is vulnerable to a local remote buffer overflow. You can determine whether you're vulnerable or not by typing 'lpc'. If you're presented with an lpc...

Linux x86 - polymorphic execve("/bin/bash","-p",NULL) - 57 bytes

No description provided by source. / Title: Linux x86 - polymorphic execve/bin/bash, /bin/bash, -p, NULL - 57 bytes Author: Jonathan Salwan Mail: [email protected] Web: http://www.shell-storm.org !Database of Shellcodes http://www.shell-storm.org/shellcode/ sh sets euid, egid to uid, gid if ...

VUPlayer 2.49 - (.wax File) Local Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl -w Author : Houssamix Download : http://vuplayer.com/files/vuplayersetup.exe tested in windows pro Sp 2 french -- Viva Gazza -- Viva Palestine -- print ===================================================================== \n; print Author :...