7261 matches found
Realtek HD Audio Control Panel 2.1.3.2 Exploit
No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition SafeSEH bypass App. has classic buffer overflow vulnerability it can be triggered by passing a too long argument as a startup parameter. Shellcode ca...
Triologic Media Player 8 (.m3u) Local Universal Unicode Buffer Overflow (SEH)
No description provided by source. Exploit Title: Triologic Media Player 8 .m3u Local Universal Unicode Buffer Overflow SEH Date: August 17, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Software Link: http://download.cnet.com/Triologic-Media-Player/3000-21394-10691520.html Version:...
RM Downloader 3.0.2.1 (.asx) Local Buffer Overflow (SEH)
No description provided by source. !/usr/bin/python Title: RM Downloader 3.0.2.1 .asx Local Buffer Overflow SEH Date: 03-29-2010 Author: b0telh0 Link: http://www.mini-stream.net/downloads/RMDownloader.exe Tested on: Windows XP SP3 windows/exec - 227 bytes EXITFUNC=process, CMD=calc.exe shellcode ...
mIRC 6.1 "IRC" Protocol Remote Buffer Overflow Exploit
No description provided by source. / remote mirc 6.11 exploit by blasty TESTED ON: Windows XP No SP, Ducth Build: 2600.xpclient.010817-1148 A few days ago, I saw a mIRC advisory on packetstorm 1 and was surprised nobody had written an exploit yet. So I decided to start writing one. Since this was...
RSP MP3 Player OCX 3.2 ActiveX Buffer Overflow
No description provided by source. html object classid='clsid:3C88113F-8CEC-48DC-A0E5-983EF9458687' id='target'/object script language='vbscript' ' Exploit Title: RSP MP3 Player OCX 3.2 ActiveX Buffer Overflow ' Date: July 9, 2010 ' Author: Blake ' Software Link:...
linux/ppc read & exec shellcode 32 bytes
No description provided by source. / readnexecppc-core.c by Charles Stevenson [email protected] / char hellcode = / read0,stack,1028; stack; linux/ppc by core / \x7c\x63\x1a\x79 / xor. r3,r3,r3 / \x38\xa0\x04\x04 / li r5,1028 / \x30\x05\xfb\xff / addic r0,r5,-1025 / \x7c\x24\x0b\x78 / mr r4,r1 /...
Linux bin/cat /etc/passwd 43 bytes
No description provided by source. include stdio.h const char shellcode=\x31\xc0 // xorl %eax,%eax \x99 // cdq \x52 // push edx \x68\x2f\x63\x61\x74 // push dword 0x7461632f \x68\x2f\x62\x69\x6e // push dword 0x6e69622f \x89\xe3 // mov ebx,esp \x52 // push edx \x68\x73\x73\x77\x64 // pu sh dword...
BarCode ActiveX Control BarCodeAx.dll 4.9 - Remote Overflow Exploit
No description provided by source. :. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: BarCodeAx.dll v. 4.9 ActiveX Control Remote Stack Buffer Overflow ================================================================= Internal ID: VULWAR200706223 Introduction...
PCMAN FTP 2.07 ABOR Command - Buffer Overflow Exploit
No description provided by source. Exploit Title: PCMAN FTP 2.07 ABOR Command Buffer Overflow Date: Jan 25,2014 Exploit Author: Mahmod Mahajna Mahy Version: 2.07 Tested on: Windows 7 sp1 x64 english Email: [email protected] import socket as s from sys import argv iflenargv != 4: print USAGE: %s...
HP-UX 9.x/10.x/11.x cu Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1886/info cu is a unix utility that is used for communication between two hosts usually over phone lines. It is typically isntalled setuid root so that it can access communications hardware when executed by a regular user...
Linux x86 - execve("/bin/bash","-p",NULL) - 33 bytes
No description provided by source. / Title: Linux x86 - execve/bin/bash, /bin/bash, -p, NULL - 33 bytes Author: Jonathan Salwan Mail: [email protected] Web: http://www.shell-storm.org !Database of Shellcodes http://www.shell-storm.org/shellcode/ sh sets euid, egid to uid, gid if -p not...
XFree86 4.3 Font Information File Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9636/info It has been reported that the XFree86 X Windows system is prone to a local buffer overflow vulnerability. The issue arises from improper bounds checking when parsing the 'font.alias' file. Successful exploitatio...
Macromedia Flash 6.0.47 .0 SWRemote Heap Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6196/info A buffer overrun condition has been discovered in the SWRemote parameter used in Macromedia Flash objects. By triggering the overrun it is possible for an attacker to corrupt sensitive heap memory. Exploiting th...
PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit
No description provided by source. ?php / Inphex 317 Bytes , Windows Command Shell Bind TCP Inline , Architecture x86 , Windows TinyXP - vm. GET /script.php HTTP/1.1\n telnet 192.168.2.32 4444 Microsoft Windows XP Version 5.1.2600 C Copyright 1985-2001 Microsoft Corp. C:\apache 7ffdf020 7c911005...
VCDGear 3.50 (.cue) - Stack Buffer Overflow Exploit
No description provided by source. !/usr/bin/ruby ''' Author: Provensec www.provensec.com [email protected] Tested on XP SP3 / Windows 7 Description: VCDGEAR 3.50 is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on...
Polymorphic Bindport 31337 with setreuid (0,0) linux/x86
No description provided by source. / Title : Polymorphic shellcode that bindport to 31337 with setreuid 0,0 x86 linux shellcode. Name : 131 bytes bind port 31337 x86 linux polymorphic shellcode. Date : Sat Jun 17 21:27:03 2010 Author : gunslinger yudha.gunslingeratgmail.com Web :...
CoolPlayer 2.18 - DEP Bypass
No description provided by source. Exploit Title: CoolPlayer 2.18 DEP Bypass Date: January 2, 2011 Author: Blake Version: 2.18 Tested on: Windows XP SP3 running in Virtualbox Uses SetProcessDEPPolicy to disable DEP for the process Thanks to mrme for the encouragement Exploit-DB Notes: May not wor...
91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode .
No description provided by source. / Title : nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Name : 91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Date : Mon Jul 5 16:58:50 WIT 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog :...
PeerCast <= 0.1216 (nextCGIarg) Remote Buffer Overflow Exploit (2)
No description provided by source. / \ PeerCast =0.1216 remote exploit / by Darkeagle \ / 09.03.06 \ / \ gr33tz: bl4ck guys, unl0ck guys, rst/ghc guys, 0x557 guys, ph4nt0m guys, sh0k and many otherz. / \ / http://unl0ck.net root@localhost darkeagle telnet localhost 36864 Trying 127.0.0.1...
Winamp <= 5.12 - (.pls) Remote Buffer Overflow Exploit (0Day)
No description provided by source. / Winamp 5.12 Remote Buffer Overflow Universal Exploit Zero-Day Bug discovered & exploit coded by ATmaCA Web: http://www.spyinstructors.com && http://www.atmacasoft.com E-Mail: [email protected] Credit to Kozan / / Tested with : Winamp 5.12 on Win XP Pro Sp2 / ...