7261 matches found
SoX - (.wav) Local Buffer Overflow Exploiter
No description provided by source. //--------------------------------- Begin Code: sox-exploiter.c --------------------------------- / Copyright Rosiello Security 2004 http://www.rosiello.org CVE Reference: CAN-2004-0557 Bug Type: Stack Overflow Date: 01/08/2004 Ulf Harnhammar reported that there...
DIZzy 1.12 - Local Stack Overflow
No description provided by source. !/usr/bin/ruby Exploit Title: DIZzy 1.12 Local Stack Overflow Google Dork: n/a Date: 17/11/2010 Author: g30rg3x Version: 1.12 Tested on: Windows XP SP3 Eng/Spa CVE: n/a Notes: Bug was originally found on 22/02/2010 but since there is no response from developers ...
MS Excel Malformed FEATHEADER Record Exploit (MS09-067)
No description provided by source. MS Excel Malformed FEATHEADER Record Exploit CVE-2009-3129, MS09-067, OSVDB-59860 Vulnerble application MS office 2003/2007 Tested on XP SP2 - MS Ofice 2003 v. 11.5604.5606 Sean Larsson - Original Discovery !/usr/bin/python import sys import zlib Allwin WinExec...
MIPS Little Endian Shellcode
No description provided by source. Disassembled MIPS Little Endian Shellcode Shellcode was designed for ACSD exploit on the ASUS RT-AC66U SOHO router. CVE: CVE-2013-4659 Written by Jacob Holcomb, Security Analyst @ Independent Security Evaluators Blog: http://infosec42.blogspot.com Company Websit...
Sendmail 8.12.x Header Processing Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/6991/info Sendmail is prone to a remotely buffer-overflow vulnerability in the SMTP header parsing component. Successful attackers may exploit this vulnerability to gain control of affected servers. Reportedly, this...
Amaya Web Browser <= 11.0.1 - Remote Buffer Overflow Exploit (vista)
No description provided by source. !/usr/bin/perl Amaya Web Browser = 11.0.1 Remote Buffer Overflow Exploit Found/Exploit by SkD [email protected] [email protected] ----------------------------------------------- This is advanced buffer overflow exploitation using my new method called shellhuntin...
change mode 0777 of "/etc/passwd" with sys_chmod syscall
No description provided by source. / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site :...
Exim <= 4.41 dns_build_reverse Local Exploit PoC
No description provided by source. / This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avoid...
htpasswd Apache 1.3.31 - Local Exploit
No description provided by source. !/usr/bin/perl Proof Of Concept exploit for htpasswd of Apache. Read the advisory for more information. - Luiz Fernando Camargo - foxtrotatflowsecurity.org $shellcode = \x31\xdb\x6a\x17\x58\xcd\x80\x31\xc0\x50\x68\x2f\x2f\x73\x68...
Safari JS JITed shellcode - exec calc (ASLR/DEP bypass)
No description provided by source. !-- JIT-SPRAY for Safari 4.0.5 - 5.0.0 JavaScript JIT SHELLCODE and spray for ASLR / DEP bypass Win x32 By Alexey Sintsov from Digital Security Research Group Special for Hack In The Box 2010 Amsterdam PAYLOAD - exec calc Tested on Windows7 and Windows XP. Sorry...
AIMP2 Audio Converter <= 2.53 build 330 Playlist (.pls) Unicode BOF
No description provided by source. !/usr/bin/python Author contact : seeleymagicathotmaildotcom For educational purposes only You have been warned My original crash breakdown: EAX 001B0020 UNICODE AAAAAAAAAAAAAAAAAAAA ECX 00000273 EDX 00000C4C EBX 00000000 ESP 0012DCA8 EBP 0012DD64 ESI 001B6610...
Unrar 3.9.3 - Local Stack Overflow Exploit
No description provided by source. !/usr/bin/perl =head1 TITLE Winrar = v3.93 Local Stack-based Overflow exploit =head2 DESCRIPTION This script triggers a buffer overflow attack against Unrar, the linux popular version of WinRar extractor. It was not developped to bypass non-executing stack...
Cain & Abel <= 4.9.24 - .RDP Stack Overflow Exploit
No description provided by source. !/usr/bin/perl Cain & Abel = v4.9.24 .RDP Stack Overflow Exploit Exploit by SkD [email protected] ----------------------------------------------- Nothing much to say about this one. This works on an updated Windows XP SP3. On Vista this exploit is way easier th...
BigAnt Server 2.52 SP5 - SEH Stack Overflow ROP-based exploit (ASLR + DEP bypass)
No description provided by source. Exploit Title: BigAnt Server 2.52 SP5 SEH Stack Overflow ROP-based exploit ASLR + DEP bypass Date: 03/11/2012 Exploit Author: Lorenzo Cantoni Vendor Homepage: http://www.bigantsoft.com/ Version: BigAnt Console 2.52 SP5 Tested on: Windows 7 SP0 x86 Italian -...
Realtek Sound Manager (rtlrack.exe 1.15.0.0) - PlayList BOF Exploit
No description provided by source. usage: exploit.py print -------------------------------------------------------------------------- print Realtek Sound Manager rtlrack.exe v. 1.15.0.0 PlayList Buffer Overflow\n print url: http://www.realtek.com.tw/\n print download:...
MS Index Server 2.0 and Indexing Service for Win 2000 ISAPI Extension Buffer Overflow (2)
No description provided by source. source: http://www.securityfocus.com/bid/2880/info Windows Index Server ships with Windows NT 4.0 Option Pack; Windows Indexing Service ships with Windows 2000. An unchecked buffer resides in the 'idq.dll' ISAPI extension associated with each service. A...
Marty Bochane MDBMS 0.9 xbx Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1252/info A vulnerability exists in the MDBMS database, written by Marty Bochane. By supplying a line of sufficient length to the MDBMS server, containing machine executable code, it is possible for a remote attacker to...
Microsoft Internet Explorer 5.0.1 Content Advisor File Handling Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13117/info Microsoft Internet Explorer is prone to a remote buffer overflow vulnerability when handling malformed Content Advisor files. An attacker can exploit this issue by crafting a Content Advisor file with excessive...
Winamp <= 5.541 Skin Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl WinAmp = 5.541 Skin Universal Buffer Overflow Exploit Discovered and Exploited by SkD [email protected] ----------------------------------------------------- WinAmp = http://www.winamp.com Who doesn't use WinAmp? This was an 0day for sometime but...
Realtek Audio Control Panel 1.0.1.65 Exploit
No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition App. has classic buffer overflow vulnerability it can be triggered by passing a too long argument as a startup parameter. Shellcode can by run via...