Easy LAN Folder Share 3.2.0.100 - Local Buffer Overflow (SEH)

!/usr/bin/python ========================================================================================== Exploit Title: Easy LAN Folder Share Version 3.2.0.100 Buffer Overflow vulnerability SEH Date: 2013-08-03 Exploit Author: sagi- Original Bug Found By: ariarat Vendor Homepage:...

MIPS Little Endian Shellcode

MIPS Little Endian Shellcode. CVE-2013-4659. Shellcode exploit for mips platform Disassembled MIPS Little Endian Shellcode Shellcode was designed for ACSD exploit on the ASUS RT-AC66U SOHO router. CVE: CVE-2013-4659 Written by Jacob Holcomb, Security Analyst @ Independent Security Evaluators Blog...

Nginx 1.3.9 / 1.4.0 Buffer Overflow

encoding: ASCII abort"$0 host port" if ARGV.length 2 require 'ronin' $count = 0 rop address taken from nginx binary find in the repo poprdi = 0x00427006 poprsi = 0x0043a00e poprdx = 0x0041b8fa poprax = 0x00442c80 mmap64 = 0x4029b0 mmapgot = 0x67f290 mmapaddr = 0x00410000 rsitorax = 0x0042afcb...

Microsoft Windows Authenticated Powershell Command Execution

This Metasploit module uses a valid administrator username and password to execute a powershell payload using a similar technique to the "psexec" utility provided by SysInternals. The payload is encoded in base64 and executed from the commandline using the -encodedcommand flag. Using this method,...

Ultra Mini HTTPd 1.21 Buffer Overflow

? 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 Exploit Title: Ultra Mini HTTPD stack buffer overflow Date: 10 July 2013 Exploit Author: superkojiman -...

Ultra Mini HTTPD 1.21 - Stack Buffer Overflow Vulnerability

Exploit for windows platform in category remote exploits Exploit Title: Ultra Mini HTTPD stack buffer overflow Date: 10 July 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html...

Attackers Targeting MS13-055 IE Vulnerability

Attackers are using an Internet Explorer vulnerability, which Microsoft patched yesterday, in targeted attacks that also employ a malicious Flash file installed through a drive-by download launched by compromised Web pages. The exploit that’s being used is capable of bypassing both ASLR and DEP...

Linux/x86 - execve(/bin/sh) + Obfuscated Shellcode (30 bytes)

Linux/x86 - execve/bin/sh + Obfuscated Shellcode 30 bytes. Shellcode exploit for Linuxx86 platform / Title : Obfuscated execve /bin/sh 30 bytes Date : 3rd July 2013 Author : Russell Willis System : Linux/x86 SMP Debian 3.2.41-2 i686 To build: gcc -fno-stack-protector -z execstack -o shellcode...

Linux/x86 - Bind TCP Shell Shellcode (112 bytes)

Linux/x86 - Bind TCP Shell Shellcode 112 bytes. Shellcode exploit for Linuxx86 platform / Title : Obfuscated tcp bind shell 112 bytes Date : 3 July 2013 Author : Russell Willis System : Linux/x86 SMP Debian 3.2.41-2 i686 To build: gcc -fno-stack-protector -z execstack shellcode.c -o shellcode...

Static HTTP Server 1.0 - Local Overflow (SEH)

Static HTTP Server 1.0 - Local Overflow SEH !/usr/bin/env python import os TitleStatic HTTP Server SEH Overflow - HTTP Config - httptiplist Discovered and ReportedJune 2013 Discovered/Exploited ByJacob Holcomb/Gimppy, Security Analyst @ Independent Security Evaluators...

Bifrost 1.2d Remote Buffer Overflow

!/usr/bin/python2.7 By : Mohamed Clay import socket from time import sleep from itertools import izip, cycle import base64 import threading import sys def rc4cryptdata, key: x = 0 box = range256 for i in range256: x = x + boxi + ordkeyi % lenkey % 256 boxi, boxx = boxx, boxi x = 0 y = 0 out = for...

Bifrost 1.2.1 Remote Buffer Overflow

!/usr/bin/python2.7 By : Mohamed Clay import socket from time import sleep from itertools import izip, cycle import base64 import sys def rc4cryptdata, key: x = 0 box = range256 for i in range256: x = x + boxi + ordkeyi % lenkey % 256 boxi, boxx = boxx, boxi x = 0 y = 0 out = for char in data: x ...

PCMan FTP Server 2.0 - Remote Buffer Overflow

PCMan FTP Server 2.0 - Remote Buffer Overflow !/usr/bin/python Exploit Title: PCMan's FTP Server 2.0 Remote Buffer Overflow Exploit Date: 2013/6/26 Exploit Author: Chako Vendor Homepage: http://pcman.openfoundry.org/ Software Download Link: https://files.secureserver.net/1sMltFOsytirTG Version: 2...

Bifrost 1.2.1 - Remote Buffer Overflow

Bifrost 1.2.1 - Remote Buffer Overflow !/usr/bin/python2.7 By : Mohamed Clay import socket from time import sleep from itertools import izip, cycle import base64 import sys def rc4cryptdata, key: x = 0 box = range256 for i in range256: x = x + boxi + ordkeyi % lenkey % 256 boxi, boxx = boxx, boxi...

Bifrost 1.2d - Remote Buffer Overflow

Bifrost 1.2d - Remote Buffer Overflow !/usr/bin/python2.7 By : Mohamed Clay import socket from time import sleep from itertools import izip, cycle import base64 import threading import sys def rc4cryptdata, key: x = 0 box = range256 for i in range256: x = x + boxi + ordkeyi % lenkey % 256 boxi,...

PCMan's FTP Server 2.0 Buffer Overflow

!/usr/bin/python Exploit Title: PCMan's FTP Server 2.0 Remote Buffer Overflow Exploit Date: 2013/6/26 Exploit Author: Chako Vendor Homepage: http://pcman.openfoundry.org/ Software Download Link: https://files.secureserver.net/1sMltFOsytirTG Version: 2.0 Tested on: Windows 7 SP1 English EAX 000000...

PCMan FTP Server 2.0.7 - Remote Buffer Overflow

PCMan FTP Server 2.0.7 - Remote Buffer Overflow !/usr/bin/env python import signal from time import sleep from socket import from sys import exit, excinfo TitlePCMan FTP Server v2.0.7 Remote Root Shell Exploit - USER Command Discovered and ReportedJune 2013 Discovered/Exploited ByJacob...

Mediacoder (.lst) - Local Buffer Overflow (SEH)

Mediacoder .lst - Local Buffer Overflow SEH !/usr/bin/python import os import sys from struct import pack from time import sleep if os.name == "nt": os.system"cls" os.system"color 3f" else: os.system"clear" print """ +Exploit Title: All Mediacoder Product SEH Buffer Overflow +Download All Product...

aSc Timetables 2013 - Local Stack Buffer Overflow

!/usr/bin/python Title : ASC Timetables 2013 - Stack Buffer Overflow Vulnerability Researcher : Souhail Hammou Dark-Puzzle Research Team : http://itsecurity.ma Facebook : http://www.facebook.com/dark.puzzle.sec Date : 22/06/2013 Download Website : www.asctimetables.com/downloaden.html Software...

aSc Timetables 2013 - Local Stack Buffer Overflow

aSc Timetables 2013 - Local Stack Buffer Overflow !/usr/bin/python Title : ASC Timetables 2013 - Stack Buffer Overflow Vulnerability Researcher : Souhail Hammou Dark-Puzzle Research Team : http://itsecurity.ma Facebook : http://www.facebook.com/dark.puzzle.sec Date : 22/06/2013 Download Website :...