EFS Easy Chat Server 3.1 - Remote Stack Buffer Overflow

Exploit-DB Note: The offset to SEH is influenced by the installation path of the program. For this specific exploit to work, easy chat must be installed to: 'C:\Program Files\EFS Software\Easy Chat Server' Exploit Title: Easy Chat Server 3.1 stack buffer overflow Date: 9 May 2014 Exploit Author:...

Linux/x86 - setreuid() + execve(/usr/bin/python) Shellcode (54 bytes)

Linux/x86 - setreuid + execve/usr/bin/python Shellcode 54 bytes. Shellcode exploit for Linuxx86 platform Title: Shellcode Linux x86 54Bytes Run /usr/bin/python | setreuid,execve Date: 8/5/2014 Author: Ali Razmjoo Tested on: kali-linux-1.0.4-i386 3.7-trunk-686-pae 1 SMP Debian 3.7.2-0+kali8 i686...

Vionlink comments 2.2 Remote File Include Vulnerability

Exploit for php platform in category web applications Exploit-Title: vionlink comments 2.2 Remote File Include Vulnerability Date: 2014-05-06 Author: bd0rk Software-Link: http://www.vionlink.de/downloadcounter.php?version=vcomments2.2 Affected-Version: 2.2 G00gle-D0rK: n/a ---script-kiddieprotect...

Kolibri 2.0 Stack Buffer Overflow

!/usr/bin/python Exploit Title: Kolibri GET request Stack buffer Overflow Date: 25 April 2014 Exploit Author: Christian Polunchis Ramirez https://intrusionlabs.org Vendor Homepage: http://www.senkas.com/kolibri/download.php Version: Kolibri 2.0 Tested on: Windows XP SP3, Spanish Thanks:To my wife...

Acunetix 8 build 20120704 - Remote Stack Overflow

Acunetix 8 build 20120704 - Remote Stack Overflow !/usr/bin/python Title: Acunetix Web Vulnerability Scanner Buffer Overflow Exploit Version: 8 Build: 20120704 Tested on: Windows XP SP2 en Vendor: http://www.acunetix.com/ Original Advisory:...

Microsoft Windows 98 Operating System

Windows 98 is an older version of Microsoft Windows. Microsoft has ended the support for Windows 98 operating system on July 11th 2006. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

Microsoft Windows NT 4.0 Operating System

Windows NT 4.0 is an older version of Microsoft Windows. Microsoft ended the support for Windows NT 4.0 operating system on 2004. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

Microsoft Windows 95 Operating System

Windows 95 is an older version of Microsoft Windows. Microsoft ended the support for Windows 95 operating system on December 2001. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

Microsoft Windows 3.11 Operating System

Windows 3.11 is an older version of Microsoft Windows. Microsoft ended the support for Windows 3.11 operating system on December 2001. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

Microsoft Windows 2000 Operating System

Windows 2000 is an older version of Microsoft Windows. Microsoft has ended the support for Windows 2000 operating system on July 13th 2010. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by I...

Microsoft Windows XP Operating System

Windows XP is an older version of Microsoft Windows. Microsoft ended the support for Windows XP operating system on April 8th 2014. As a result computers using the OS might become more vulnerable to security risks and viruses. There are cases in which certain traffic, although not intended for...

April Patch Tuesday Fixes 11 Vulnerabilities, Last Updates for XP

As expected, Microsoft issued its final epitaph for Windows XP today, pushing out four security bulletins for 11 vulnerabilities, including the last updates for the oft-maligned, thirteen-year-old operating system. Despite it being XP’s last gasp from a security standpoint, it’s actually a...

BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP

Exploit-DB Note: XPSP3 - my $eip = pack'V',0x7c868667; jmp ESP on kernel32.dll Date: Tue Apr 8 2014 Vendor link: http://www.blazevideo.com/download.htmm Software Link: http://www.blazevideo.com/download.php?product=BlazeDVDPro App Version: 6.1 Tested on: Windows XP service pack 2 en my $file=...

Microsoft Internet Explorer 8

Internet Explorer 8 IE8 is an older version of Microsoft Internet Explorer. Using IE8 may indicate suspicious activity. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

AudioCoder 0.8.29 - Memory Corruption (SEH)

Exploit Title: AudioCoder-0.8.29 Memory Corruption to Code executionSEH Author: sajith version: AudioCoder-0.8.29 vulnerable app link: http://www.mediacoderhq.com/getfile.htm?site=dl.mediacoderhq.com&file=AudioCoder-0.8.29.exe Tested in windows Xp sp3,english import struct rawinput"Letz start...

Reads Data From /etc/passwd To /tmp/outfile 118 bytes

Reads Data From /etc/passwd To /tmp/outfile 118 bytes. Shellcode exploit for linx86-64 platform / Reads data from /etc/passwd to /tmp/outfile No null bytes Author: Chris Higgins @ch1gg1ns -- github.com/chiggins -- http://chigstuff.com/blog/2014/03/29/my-first-shellcode/ chigstuff.com Date:...

Word Zero Day Attacks Use Complex Chain of Exploits

The exploit that attackers are using to target a zero day vulnerability in Microsoft Word relies on a complex series of pieces, including an ASLR bypass, ROP techniques and shellcode with several layers of tools designed to detect and defeat analysis. Microsoft officials said the exploit is being...

VFU 4.10-1.1 Stack Buffer Overflow

Author: Provensec http://www.provensec.com Tested on GNU/Linux - Debian Wheezy Description: VFU v4.10-1.1 is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker can exploit this issue to execute...

[Peepdf] PDF Analysis and Creation/Modification Tool

peepdf is a Python tool to explore PDF files in order to find out if the file can be harmful or not. The aim of this tool is to provide all the necessary components that a security researcher could need in a PDF analysis without using 3 or 4 tools to make all the tasks. With peepdf it's possible ...

Linux Reboot

A very small shellcode for rebooting the system. This payload is sometimes helpful for testing purposes or executing other payloads that rely on initial startup procedures. This module requires Metasploit: https://metasploit.com/download Current source:...