7260 matches found
Solaris 7.0 CDE dtmail/mailtool Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/832/info here are three buffer overflow vulnerabilities in the CDE mail utilities, all of which are installed sgid mail by default. The first is exploited through overrunning a buffer in the Content-Type: field, which wou...
NVR SP2 2.0 (nvUnifiedControl.dll 1.1.45.0) - SetText() Remote Exploit
No description provided by source. ------------------------------------------------------------------------------------------ PoC2 NVR SP2 2.0 nvUnifiedControl.AUnifiedControl.1 nvUnifiedControl.dll v. 1.1.45.0 SetText Remote BoF Heap Spray Technique url: http://www.acti.com/index.asp author:...
Ntpd Remote Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2540/info NTP, the Network Time Protocol, is used to synchronize the time between a computer and another system or time reference. It uses UDP as a transport protocol. There are two protocol versions in use: NTP v3 and NT...
Polymorphic /bin/sh x86 linux shellcode
No description provided by source. / Title : Polymorphic /bin/sh x86 linux shellcode . Name : 116 bytes /bin/sh x86 linux polymorphic shellcode . Date : Tue Jun 29 22:08:59 WIT 2010 . Author : gunslinger yudha.gunslingeratgmail.com Web : http://devilzc0de.org blog :...
IMAP4rev1 10.190 - Authentication Stack Overflow Exploit
No description provided by source. !/usr/bin/perl Successfully tested on IMAP4rev1 v10.190 Written by: [email protected] / anno 2000 This is nothing new - just wrote it for fun. $shellcode = \xeb\x35\x5e\x80\x46\x01\x30\x80\x46\x02\x30\x80. \x46\x03\x30\x80\x46\x05\x30\x80\x46\x06\x30\x89...
freebsd 4.2-stable ftpd glob() Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/2548/info The BSD ftp daemon and derivatives such as IRIX ftpd or the ftp daemon shipped with Kerberos 5 contain a number of buffer overflows that may lead to a compromise of root access to malicious users. During parsing...
AtomixMP3 <= 2.3 - (playlist) Universal SEH Overwrite Exploit
No description provided by source. usage: exploit.py + Bug: AtomixMP3 = 2.3 playlist Universal Seh Overwrite Exploit + Exploit by : His0k4 + Software download : http://download.atomixmp3.com/atomixmp3trial.exe + Greetings : All friends & muslims HackErS DZ, secdz.com win32exec - EXITFUNC=seh...
File 3.x Utility Local Memory Allocation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7009/info It has been reported that a memory allocation issue exists the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to cause a denial of service...
FreeBSD 3.3 angband Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/840/info The version angband shipped with FreeBSD 3.3-RELEASE is vulnerable to a local buffer overflow attack. Since it is setgid games, a compromise of files and directories owned by group games is possible. / FreeBSD 3....
Linux x86 ASLR deactivation - 83 bytes
No description provided by source. / Title: Linux x86 ASLR deactivation - 83 bytes Author: Jean Pascal Pereira [email protected] Web: http://0xffe4.org Disassembly of section .text: 08048060 start: 8048060: 31 c0 xor %eax,%eax 8048062: 50 push %eax 8048063: 68 70 61 63 65 push $0x65636170 8048068...
Linux/ARM - Disable ASLR Security - 102 bytes
No description provided by source. / Title: Linux/ARM - Disable ASLR Security - 102 bytes Date: 2010-06-20 Tested: Linux ARM9 2.6.28-6-versatile Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Database of shellcodes http://www.shell-storm.org/shellcode/...
Microsoft SQL Server 7.0/2000,Data Engine 1.0/2000 xp_showcolv Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2038/info The API Srvparaminfo, which is implemented by Extended Stored Procedures XPs in Microsoft SQL Server and Data Engine, is susceptible to a buffer overflow vulnerability which may cause the application to fail or...
Roger Wilco 1.4.1 - Remote Server Side Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8566/info A vulnerability has been reported for various Roger Wilco server releases. The problem occurs server-side, and can be triggered when processing malformed client packets. Specifically, when connecting to a server...
Local Glibc shared library (.so) <= 2.11.1 exploit
No description provided by source. Exploit Title: Local Glibc shared library .so exploit Date: 07.04.10 Author: Rh0 [email protected] Software Link: NA Version: = 2.11.1, higher not tested Tested on: Debian stable x86-64, Ubunutu 9.10 x86, Fedora 12 x86 CVE : NA Code : !/bin/sh A lot of applications in...
PMsoftware Simple Web Server 1.0 - Remote Stack Overflow Exploit
No description provided by source. / PMsoftware mini http server remote stack overflow exploit author : c0d3r kaveh razavi [email protected] [email protected] package : PMsoftware Web Server version 1.0 advisory : http://www.securiteam.com/windowsntfocus/5TP0B2KFGA.html company address :...
DVD X Player 5.5.0 Pro / Standard - Universal Exploit, DEP+ASLR Bypass.
No description provided by source. // Author: sickness // Take a look at mona.py : awesome tool developed by corelanc0d3r and his team: https://www.corelan.be/index.php/2011/07/14/mona-py-the-manual/ // ----------------------------------------------------------- // Exploit Title: DVD X Player 5.5...
DIZzy 1.12 - Local Stack Overflow
No description provided by source. !/usr/bin/ruby Exploit Title: DIZzy 1.12 Local Stack Overflow Google Dork: n/a Date: 17/11/2010 Author: g30rg3x Version: 1.12 Tested on: Windows XP SP3 Eng/Spa CVE: n/a Notes: Bug was originally found on 22/02/2010 but since there is no response from developers ...
w32-speaking-shellcode
No description provided by source. A null-free shellcode for 32-bit versions of Windows 5.0-7.0 all service packs that uses Microsoft Speech API to say You got pwned! over the speakers. Includes optional code that fixes stack alignment adds 5 bytes and bypasses EAF adds 29 bytes. Features: NULL...
IrfanView <= 3.99 IFF File Local Stack Buffer Overflow Exploit
No description provided by source. /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to...
HP Photo Creative 2.x audio.Record.1 ActiveX Control Remote Stack Based Buffer Overflow
No description provided by source. !-- HP Photo Creative v 2.x audio.Record.1 ActiveX Control ContentMan.dll 1.0.0.4272 Remote Stack Based Buffer Overflow poc by rgod tested against Windows Vista / IE 7 download url:...