WINMOD 1.4 - (.lst) Local Stack Overflow Exploit

No description provided by source. !/usr/bin/perl Winmod 1.4 .lst Local Stack Overflow Exploit Exploit by CWH Underground Tested on Win XP SP2 EN Download: http://www.software112.com/products/winmod+download.html print \n==================================================\n; print Winmod 1.4 .lst...

Half-Life StatsMe 2.6.x Plug-in MakeStats Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6578/info The Half-Life StatsMe plug-in is prone to an exploitable format string vulnerability. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute...

J-Integra 2.11 - ActiveX SetIdentity() Buffer Overflow Exploit

No description provided by source. !-- Exploit Title: J-Integra v2.11 ActiveX SetIdentity Buffer Overflow Exploit Found By: DrIDE Download: http://j-integra.intrinsyc.com/ Greets: bz1p, [email protected] for finding the app. Tested on: XP SP3 IE7 CVE: 0day Notes: This is not the same control as...

125 bind port to 6778 XOR encoded polymorphic linux shellcode .

No description provided by source. / Title : bind port to 6678 XOR encoded polymorphic linux shellcode . Name : 125 bind port to 6678 XOR encoded polymorphic linux shellcode . Date : Tue Jul 6 01:52:33 WIT 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog :...

Half-Life 1.1 Client Server Message Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6582/info It has been reported that the Half-Life client contains a format string vulnerability. When receiving messages from an administrator through the adminmod add-on package, the client does not properly handle input...

3R Soft MailStudio 2000 2.0 userreg.cgi Arbitrary Command Execution

No description provided by source. source: http://www.securityfocus.com/bid/1335/info MailStudio 2000 is vulnerable to multiple attacks. It is possible for a remote user to gain read access to all files located on the server via the usage of the /.. string passed to a CGI, thereby compromising th...

Rosoft Media Player 4.4.4 Buffer OverFlow Exploit (SEH)

No description provided by source. Exploit Title: Rosoft Media Player 4.4.4 Buffer OverFlow Exploit SEH Download : http://download.cnet.com/3001-204-10044022.html?spi=02537eab7f440a326729a3dd1f7c6485 Date: 16/01/2010 Author: Red-D3v1L Special Thx For : H1s0k4 bEst 0verflower In ThE World xD sh0ot...

eXtremeMP3 Player - Buffer Overflow (SEH)

No description provided by source. +Exploit Title: Exploit Bufer Overflow eXtremeMP3 PlayerSEH +Date: 01\15\2010 +Author: C4SS!0 G0M3S +Software Link: http://ukms.tucows.com/files2/xtremv20RC1.exe +Version: 2.0 +Tested on: WIN-XP SP3 BRAZILIAN +CVE: N/A Create by C4SS!0 G0M3S WWW.INVASAO.COM.BR...

Samhain Labs 1.x HSFTP Remote Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9715/info hsftp has been found to be prone to a remote print format string vulnerability. This issue is due to the application improper use of a format printing function. Ultimately this vulnerability could allow for...

TinyIdentD <= 2.2 - Remote Buffer Overflow Exploit

No description provided by source. tinyidentd exploit code by thomas . pollet at gmail . com bug by Maarten Boone usage: python exploit.py target import socket,sys jmp into nop sled payload = '\xeb\x20' ident crap payload += ', 28 : USERID : UNIX : ' nop sled payload +='XXXX' jmp %esi payload +=...

KenWard's Zipper 1.400 - Buffer Overflow - Method 2

No description provided by source. !/usr/bin/python KenWard's Zipper v1.400 File Name Buffer Overflow Coded by sinn3r x90.sinneratgmaild0tcom Tested on: Windows XP SP3 ENG Reference: http://www.exploit-db.com/exploits/11834 Big thanks to mrme, and corelanc0d3r. greetz to all the friends at Corela...

mpg123 pre0.59s Invalid MP3 Header Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6593/info A memory corruption vulnerability has been reported for mpg123 that may result in code execution. The vulnerability exists when mpg123 is used to play certain MP3 files. Specifically, when playing MP3 files with...

91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode .

No description provided by source. / Title : nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Name : 91 bytes nc -lp 31337 -e /bin//sh polymorphic linux shellcode . Date : Mon Jul 5 16:58:50 WIT 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog :...

PowerISO 4.0 - Local Buffer Overflow PoC

No description provided by source. !/usr/bin/env python Poweriso 4.0 Local Buffer Overflow PoC Found By: DrIDE Tested On: XPSP3 Usage: Create New ISO, Add a New Folder, Paste to Rename Folder, Click Save Notes: This must have been fixed somewhere between 4.0 and 4.7 ''' EAX 00ADDDC0 ECX 00000000...

Progress 9.1 sqlcpp Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4402/info Progress is a commercial database for Microsoft Windows and Unix systems. A buffer overflow has been reported in the sqlcpp program included with Progress, used as a SQL preprocessor. Execution of arbitrary code...

MiniShare <= 1.4.1 - Remote Buffer Overflow Exploit

No description provided by source. / MiniShare = 1.4.1, Remote Buffer Overflow Exploit v0.1. Bind a shellcode to the port 101. Full disclosure and exploit by class101 at DFind.kd-team.com & n3ws at EFnet 07 november 2004 Thanx to HDMoore and Metasploit.com for their kickass ASM work...

Sam Lantinga splitvt 1.6.3 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1346/info A buffer overflow condition that could be exploited to obtain root exists in splitvt 1.6.3 and earlier. Splitvt is distributed with several Linux distributions. / Local exploit for Debian splitvt 1.6.3-4 - by...

Qwik SMTP 0.3 - Remote Root Format String Exploit

No description provided by source. / qwik-smtp Remote Root Exploit ------------------------------- Bug found by: Dark Eagle darkeagle at list d0t ru Exploit coded by: Carlos Barros barros at barrossecurity d0t com Home Page: http://www.barrossecurity.com Exploitation techinique: This bug is a...

MagnetoSoft ICMP 4.0.0.18 - ActiveX AddDestinationEntry BOF

No description provided by source. html object classid='clsid:3A86F1F2-4921-4C75-AF2C-A1AA241E12BA' id='target'/object script language='vbscript' 'Magneto Software ICMP ActiveX Control Buffer Overflow 'Discovered by: s4squatch 'website: www.securestate.com 'Date Discovered: 03/11/09 'Exploit...

Acoustica MP3 Audio Mixer 2.471 Extended M3U directives SEH

No description provided by source. Exploit Title: Acoustica MP3 Audio Mixer 2.471 Extended M3U directives SEH Date: September 8 2010 Author: Carlos Hollmann Software Link: http://www.acoustica.com/downloading.asp?p=1 Version: 2.471 Tested on: Windows xp sp3 running on VMware Fusion 3.1 and...