Mercury Mail <= 4.01a (Pegasus) IMAP Buffer Overflow Exploit

No description provided by source. / Mercury imap4 server remote buffer overflow exploit author : c0d3r kaveh razavi [email protected] [email protected] package : Mercury mail transport system 4.01a and prolly prior workaround : upgrade to 4.01b version advisory : not available right now company...

Windows XP PRO SP3 - Full ROP calc shellcode

No description provided by source. / Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato, Jahmel OS-DLL's used: Base | Top | Size | Version...

KingView 6.5.3 SCADA ActiveX Exploit

No description provided by source. Exploit Title: KingView 6.5.3 SCADA ActiveX Date: March 07 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://download.kingview.com/software/kingview%20English%20Version/kingview6.53EN.rar Version: 6.53 English Tested on: Windows xp sp3 running on...

Windows XP Pro Sp2 English "Wordpad" Shellcode

No description provided by source. +-------------------------------------------------+ | Windows XP Pro Sp2 English Wordpad Shellcode. | +-------------------------------------------------+ Size : 12 Bytes,Null Free. Author : Aodrulez. Email : [email protected] Milw0rm :...

Linux/x86 Polymorphic ShellCode - setuid(0)+setgid(0)+add user 'iph' without password to /etc/passwd

No description provided by source. / Exploit Title: Linux/x86 Polymorphic ShellCode - setuid0+setgid0+add user 'iph' without password to /etc/passwd setuid - setgid - open - write - close - exit Date: 30/12/2011 Author: pentesters.ir Tested on: Linux x86 - CentOS 6.0 - 2.6.32-71 Website:...

ISDN4Linux 3.1 IPPPD Device String SysLog Format String Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/5437/info isdn4linux is a freely available, open source package of isdn compatibility tools. It is available for Linux operating systems. isdn4linux contains a format string vulnerability in the ipppd utility. In some...

Linux x86 - polymorphic shellcode ip6tables -F - 71 bytes

No description provided by source. / Linux x86 - polymorphic shellcode ip6tables -F - 71 bytes Jonathan Salwan submit ! shell-storm.org ! DataBase of Shellcodes and you can share your shellcodes : http://www.shell-storm.org/shellcode/ ! The Gnuser Project Gnu Users Manager = http://www.gnuser.org...

Linux x86 - ip6tables -F - 47 bytes

No description provided by source. / Linux x86 - ip6tables -F - 47 bytes Jonathan Salwan submit ! shell-storm.org ! DataBase of Shellcodes and you can share your shellcodes : http://www.shell-storm.org/shellcode/ ! The Gnuser Project Gnu Users Manager = http://www.gnuser.org Disassembly of sectio...

OpenDcHub 0.8.1 - Remote Code Execution Exploit

No description provided by source. !/usr/bin/python OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Nogues - http://www.indahax.com Description: OpenDcHub is a direct connect hub for Linux OpenDcHub doesn't handle specially crafted MyINFO message which lead to a stack overflow. Affected...

MinaliC Webserver 2.0.0 - Buffer Overflow (Egghunter)

No description provided by source. !/usr/bin/env python Exploit Title: MinaliC Webserver buffer overflow egghunter Date: August 13 2013 Exploit Author: PuN1sh3r Email: [email protected] Vendor Homepage: http://minalic.sourceforge.net/ Version: MinaliC Webserver 2.0.0 Tested on: Windows XP Pro...

Kerio Personal Firewall 2.1.4 - Remote Code Execution Exploit

No description provided by source. / Kerio Personal Firewall v2.1.4 remote code execution exploit Tested on Windows XP with SP1 In order to exploit, for ease of mind, set the firewall to permit all traffic, or allow a connection to port 44334 from your testing unix shell ip. It is also possible t...

A-PDF Wav to MP3 Converter 1.2.0 - DEP Bypass

No description provided by source. Exploit Title: A-PDF Wav to MP3 Converter v 1.2.0 DEP Bypass Software Link: http://www.a-pdf.com/wav-to-mp3/a-pdf-wtm.exe Version: 1.2.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Hicham Oumounid Email: [email protected] Home:...

CdRecord Version <= 2.0 - Mandrake local root exploit

No description provided by source. !/usr/bin/perl Cdrecord version 2.0 and local root exploit. wsxz@localhost buffer$ perl priv8cdr.pl 4 Using target number 4 Using Mr .dtors 0x808c82c Cdrecord 2.0 i586-mandrake-linux-gnu scsibus: -1 target: -1 lun: -1 Warning: Open by 'devname' is unintentional...

Linux i686 - pacman -R <package> - 59 bytes

No description provided by source. / Title : Linux i686 - pacman -R package - 59 bytes Author : Jonathan Salwan Mail : submit ! shell-storm.org Web : http://www.shell-storm.org Pacman is a software package manager, developed as part of the Arch Linux distribution. With this shellcode you can remo...

Windows XP SP3 English MessageBoxA Shellcode - 87 bytes

No description provided by source. / Title: Windows XP SP3 English MessageBoxA Shellcode 87 bytes Date: August 20, 2010 Author: Glafkos Charalambous glafkos@astalavistadotcom Tested on: Windows XP SP3 En Thanks: ishtus Greetz: Astalavista, OffSEC, Exploit-DB Exploit-DB Notes: Tested under Windows...

Linux bin/cat /etc/passwd 43 bytes

No description provided by source. include stdio.h const char shellcode=\x31\xc0 // xorl %eax,%eax \x99 // cdq \x52 // push edx \x68\x2f\x63\x61\x74 // push dword 0x7461632f \x68\x2f\x62\x69\x6e // push dword 0x6e69622f \x89\xe3 // mov ebx,esp \x52 // push edx \x68\x73\x73\x77\x64 // pu sh dword...

Safari 4.0.5 - parent.close() Memory Corruption exploit (ASLR and DEP bypass)

No description provided by source. Download: http://www.exploit-db.com/sploits/safariparentclosesintsov.zip Unzip and run START.htm This exploit use JIT-SPRAY for DEP and ASLR bypass. jit-shellcode: systemnotepad 0day.html - use 0x09090101 address for CALL JITed shellcode. START.htm - iff.htm -...

Win32 Shellcode (cmd.exe) for XP SP3 English 26 Bytes

No description provided by source. / 26 Bytes Win32 Shellcode cmd.exe for XP SP3 English Author: Hellcode Research || TCC The Computer Cheats http://tcc.hellcode.net memberz: celil 'karak0rsan unuver , murderkey, murat kaslioglu, bob from murderkey: I love you merve lol from karak0rsan: fuck u ys...

Apache 2.0 mod_jk2 2.0.2 - Remote Buffer Overflow Exploit (win32)

No description provided by source. / Dreatica-FXP crew ---------------------------------------- Target : modjk2 v2.0.2 for Apache 2.0 Win32 Found by : IOActive Security Advisory ---------------------------------------- Exploit : modjk2 v2.0.2 Buffer Overflow Exploit win32 Exploit date : 01.03.200...

Atftpd 0.6 - Remote Root Exploit (atftpdx.c)

No description provided by source. / PoC linux/86 remote exploit against atftpd c gunzip FIXED / include stdio.h include stdlib.h include unistd.h include string.h include netdb.h include sys/types.h include sys/socket.h include netinet/in.h include arpa/inet.h include signal.h define HEAPSTART...