Hylafax Hylafax 4.0.2 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/765/info Hylafax is a popular fax server software package designed to run on multiple UNIX operating systems. Some versions of Hylafax ship with a vulnerable sub program 'faxalter'. This program is installed SUID UUCP and...

Debian Linux 2.0/2.0 r5,FreeBSD <= 3.2,OpenBSD 2.4,RedHat Linux 5.2 i386,S.u.S.E. Linux <= 6.1 Lsof Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/496/info Lsof is an open file management utility included with many linux distributions. When run setuid root or setgid kmem, it is subject to a buffer overflow that can lead to regular users gaining root priveleges. /...

AT-TFTP <= 1.9 (Long Filename) Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl -w acaroatjervus.it http://www.securityfocus.com/bid/21320 [email protected] is credited with the discovery of this vulnerability use IO::Socket; if!$ARGV1 print Uso: atftp-19.pl victim port\n\n; exit; $victim = IO::Socket::INET-newProto='udp',...

62 bytes setreuid(0,0) execve("/bin/sh",NULL,NULL) XOR Encoded Linux Shellcode

No description provided by source. / Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian special thanks to : r0073r inj3ct0r.com, d3hydr8 darkc0de.com, ty miller projectshellcode.com, jonathan...

win32 Download & Exec Shellcode 226 bytes+

No description provided by source. / \ WINSHELLCODE / :: win32 download & exec shellcode :: \ :: by Darkeagle of Unl0ck Research Team http://exploiterz.org :: / :: to avoid 0x00 use ^^xor^^ : :: \ :: greets goes to: Sowhat, 0x557 guys, 55k7 guys, RST/GHC guys. :: / ::cya:: \ / include stdio.h...

Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability

No description provided by source. Vuln Title: Winlog Lite SCADA HMI system SEH 0verwrite Vulnerability Author: FaryadR a.k.a Ciph3r tested on : winXp sp3 and Winlog Lite 2.06.17 Version Twitter : https://twitter.com/faryadR Mail : [email protected] Website : http://0c0c0c0c.com Vendor :...

ABBS Electronic Flash Cards 2.1 .fcd Buffer Overflow Exploit

No description provided by source. Exploit Title: ABBS Electronic Flash Cards Buffer Overflow Exploit Software Link: http://abbs.qsnx.net/downloads/abbs-flashcards.zip Version: 2.1 triggering details : open the app, go to test, click on random, and start test, then chose the fcd file, and booom...

SnackAmp 3.1.3B - SMP Buffer Overflow Vulnerability (SEH)

No description provided by source. Exploit Title: SnackAmp 3.1.3B Malicious SMP Buffer Overflow Vulnerability SEH Date: 09/24/10 Author: james AT learnsecurityonline DOT com Software Link: http://snackamp.sourceforge.net/ Version: 3.1.3 Beta Tested on: Windows XP SP3 CVE: N/A Just like the previo...

Half-Life 1.1 Client Server Message Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6582/info It has been reported that the Half-Life client contains a format string vulnerability. When receiving messages from an administrator through the adminmod add-on package, the client does not properly handle input...

x86 linux hard / unclean reboot (29 bytes)

No description provided by source. / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

Linux/x86 Reverse TCP Bind Shellcode (92 bytes)

No description provided by source. / Title : reversetcpbindshell 92 bytes Date : 16 May 2013 Author : Russell Willis [email protected] Testd on: Linux/x86 SMP Debian 3.2.41-2 i686 $ objdump -D reversetcpbindshell -M intel reversetcpbindshell: file format elf32-i386 Disassembly of section .text:...

Ada Image Server <= 0.6.7 imgsrv.exe Buffer Overflow

No description provided by source. !/usr/bin/python Only usable module with safeseh disabled on XP SP2 and XP SP3 is imgsrv.exe. However, it contains a null character in the address ex: XP SP3 = 00689aff. Versions above 0.6.7 do not seem to be vulnerable. $ ./imgsrv.py 192.168.1.146 Ada Image...

Mediacoder 0.7.5.4710 Buffer Overflow Exploit

No description provided by source. media coder 0.7.5.4710 0 day buffer overflow exploit vulnerble application link http://www.mediacoderhq.com/dlfull.htm tested on XP SP2 !/usr/bin/python to exploit load the crash.m3u file and double click on it filename = crash.m3u junk = \x41 256 eip =...

Fred N. van Kempen dip 3.3.7 - Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/86/info A buffer overflow resides in 'dip-3.3.7o' and derived programs. This is a problem only on systems where 'dip' is installed setuid. The culpable code is an 'sprintf' in line 192 in 'main.c': sprintfbuf, %s/LCK..%s,...

Cisco IOS Tiny Shellcode 1.0

No description provided by source. ---------------------------------------------------------------------------------------- Cisco IOS Tiny shellcode v1.0 c 2007 IRM Plc By Gyan Chawdhary ---------------------------------------------------------------------------------------- The code creates a ne...

DVD X Player 5.5 Pro SEH Overwrite

No description provided by source. DVD X Player 5.5 Pro Bypass ASLR by using non-aslr enabled module SEH Overwrite Egghunter is not needed as there is at least 2000 bytes for shellcode import sys print ==================================== print DVD X Player 5.5 Pro Buffer Overflow print SEH...

CodeBlue 5.1 SMTP Response Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5300/info CodeBlue is an Apache httpd log scanning utility that attempts to contact the administrators of hosts infected with worms. A buffer overflow vulnerability has been reported in CodeBlue. The condition occurs when...

Courier-IMAP <= 3.0.2-r1 auth_debug() Remote Format String Exploit

No description provided by source. / courier-imap = 3.0.2-r1 Remote Format String Vulnerability exploit Author: ktha at hush dot com Tested on FreeBSD 4.10-RELEASE with courier-imap-3.0.2 Special thanks goes to andrewg for providing the FreeBSD box. Greetings: all the guys from irc pulltheplug co...

WinSoftMagic Photo Editor PNG File Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/39354/info WinSoftMagic Photo Editor is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. Successful...

BomberClone < 0.11.6.2 - (Error Messages) Remote Buffer Overflow Exploit

No description provided by source. / bomberclone 0.11.6.2 remote exploit CVE-2006-0460 3/14/06 [email protected] / include stdio.h include stdlib.h include string.h include unistd.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h / fork + bind port 31337 - ty izi...