Eznet 3.5.0 - Remote Stack Overflow and Denial of Service Exploit

No description provided by source. !/usr/bin/perl -w Stack Overflow in eZnet.exe - Remote Exploit Will download a trojan from any address which you provide on the target system, then will execute the trojan. For this exploit I have tried several strategies to increase reliability and performance:...

Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (OS X)

No description provided by source. !/usr/bin/perl VERITAS-OSX.pl - VERITAS NetBackup Format Strings OSX/ppc Remote Exploit johnhatdigitalmunitiondotcom bug found by kflistsatdigitalmunitiondotcom http://www.digitalmunition.com/ use POSIX; use IO::Socket; use IO::Select; my $shellcode = / OSX...

freeBSD 4.8 realpath() Off-By-One Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8315/info The 'realpath' function is a C-library procedure to resolve the canonical, absolute pathname of a file based on a path that may contain values such as '/', './', '../', or symbolic links. A vulnerability that wa...

Dana IRC <= 1.3 - Remote Buffer Overflow PoC

No description provided by source. - Dana IRC = 1.3 Remote Buffer Overflow POC/Crash - Discovered On: 14 JUNE 2008 Discovered By: t0pP8uZz Download: diebestenbits.de - Info - Dana Irc client suffers from a remote buffer overflow, sending a buffer of around 2k overwrites the EIP therefor crashes t...

KnFTP 1.0.0 Server - Remote Buffer Overflow Exploit, 'USER' command

No description provided by source. Exploit Title: KnFTP 1.0.0 Server - Remote Buffer Overflow Exploit,'USER' command Date: 19/9/2011 Author: mr.pr0n @pr0n Homepage: http://ghostinthelab.wordpress.com/ - http://s3cure.gr Tested on: Windows XP SP3 En !/usr/bin/perl use IO::Socket; Exploit Title:...

BomberClone < 0.11.6.2 - (Error Messages) Remote Buffer Overflow Exploit

No description provided by source. / bomberclone 0.11.6.2 remote exploit CVE-2006-0460 3/14/06 [email protected] / include stdio.h include stdlib.h include string.h include unistd.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h / fork + bind port 31337 - ty izi...

Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 (.zip) SEH

No description provided by source. !/usr/bin/ruby Software : Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 Author : Lincoln Date : April 27, 2010 Reference : http://www.corelan.be:8800/advisories.php?id=CORELAN-10-034 OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH...

Boozt Standard 0.9.8 index.cgi Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6281/info A vulnerability has been discovered in Boozt. By passing a malicious parameter of excessive length to the index.cgi script, it is possible to overrun a buffer. This could be exploited by a remote attacker to...

A-PDF All to MP3 Converter 2.0.0 (.wav) Buffer Overflow Exploit

No description provided by source. Exploit Title: A-PDF All to MP3 Converter v.2.0.0 stack based buffer overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP3 French Date: 17/01/2011 Author: h1ch4m Email: [email protected] Home:...

BisonFTP Server <= 3.5 - Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/python BisonFTP Server =v3.5 Remote Buffer Overflow Exploit Newer version's not tested, maybe vulnerable too written by localh0t Date: 10/08/11 Contact: [email protected] Follow: @mattdch www.localh0t.com.ar | www.mfsec.com.ar Thanks to: Pr0zac,...

MNOGoSearch 3.1.20 Search.CGI UL Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/7865/info mnoGoSearch 'search.cgi' has been reported prone to a buffer overflow vulnerability. The issue is a result of a lack of sufficient bounds checking performed on user-supplied URI parameters that are passed to the...

sash <= 3.7 - Local Buffer Overflow Exploit

No description provided by source. / sash-3.7 buffer overflow in c argyment written by lammat for practice purposes http://grpower.ath.cx [email protected] gdb r -c perl -e 'print Ax10256' The program being debugged has been started already. Start it from the beginning? y or n y Starting program:...

Ultra Mini HTTPD 1.21 - POST Request Stack Buffer Overflow

No description provided by source. Exploit Title: Ultra Mini HTTPD stack buffer overflow POST request Date: 16 Feb 2014 Exploit Author: Sumit Vendor Homepage: http://www.picolix.jp/ Software Link: http://www.vector.co.jp/soft/winnt/net/se275154.html Version: 1.21 Tested on: Windows XP Professiona...

AVCon DEP Bypass

No description provided by source. DEP Bypass for OptIn/OptOut all modules used are not aslr aware script produces a text file, copy the contents paste in the input field next to the call button discovered by Dillon Beresford import sys from struct import pack print \n===================== print...

PCMAN FTP 2.07 STOR Command - Buffer Overflow Exploit

No description provided by source. !/usr/bin/python Exploit Title: PCMAN FTP 2.07 STOR Command - buffer overflow Date: 18 Agosto 2013 Exploit Author: Christian Polunchis Ramirez https://intrusionlabs.org Contact: [email protected] Version: PCMAN FTP 2.07 STOR Command Tested on: Windows ...

linux/x86 execve(/bin/dash) 42 bytes

No description provided by source. / linux/x86 execve/bin/dash 42 bytes Author : X-h4ck [email protected], [email protected] www.pirate.al , www.flashcrew.in Greetz : mywisdom - Danzel - Wulns - IllyrianWarrior- Ace - M4yh3m - Saldeath ev1lut1on - Lekosta - Pretorian - bi0 - Slimshaddy - d3trimentaL ...

161 bytes Drop suid shell root in /tmp/.hiddenshell Linux Polymorphic Shellcode

No description provided by source. / Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian special thanks to : r0073r inj3ct0r.com, d3hydr8 darkc0de.com, ty miller projectshellcode.com, jonathan...

34 bytes setreud(getuid(), getuid()) & execve("/bin/sh") Shellcode

No description provided by source. include stdio.h include string.h / by Magnefikko 14.04.2010 [email protected] promhyl.oz.pl Subgroup: PRekambr Name: 34 bytes setreudgetuid, getuid & execve/bin/sh shellcode Platform: Linux x86 setreuidgetuid, getuid; execve/bin/sh; gcc -Wl,-z,execstack...

Unreal Tournament Remote Buffer Overflow Exploit (SEH)

No description provided by source. Unreal Tournament Remote Buffer Overflow Exploit SEH Windows Discovered by: Luigi Auriemma http://aluigi.altervista.org/adv/unsecure-adv.txt Coded By: Fulcrum 08/02/2011 Patch: http://www.unrealadmin.org/forums/showthread.php?t=15616 Vulnerable: all ut99 servers...

Oracle OTRCREP Oracle 8/9 Home Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3139/info Oracle is an Enterprise level SQL database, supporting numerous features and options. It is distributed and maintained by Oracle Corporation. A buffer overflow has been discovered in the handling of $ORACLEHOME ...