7260 matches found
httpdx 1.5.4 - Remote Heap Overflow
httpdx 1.5.4 - Remote Heap Overflow !/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host =...
httpdx 1.5.4 Heap Overflow
!/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host = "127.0.0.1"; The perl|php|py|.. page t...
httpdx 1.5.4 - Remote Heap Overflow
!/usr/bin/perl -w ====================================================================== Exploit Title: httpdx UnhandledExceptionFilter ====================================================================== use strict; use IO::Socket::INET; target my $host = "127.0.0.1"; The perl|php|py|.. page t...
linux/x86 - ASLR deactivation - 83 bytes
/ Title: Linux x86 ASLR deactivation - 83 bytes Author: Jean Pascal Pereira Web: http://0xffe4.org Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax 8048062: 50 push %eax 8048063: 68 70 61 63 65 push $0x65636170 8048068: 68 76 61 5f 73 push $0x735f6176 804806d: 68 69 7a 65 5f...
Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow
This module exploits a stack-based buffer overflow in Photodex ProShow Producer v5.0.3256 in the handling of the plugins load list file. An attacker must send the crafted "load" file to victim, who must store it in the installation directory. The vulnerability will be triggered the next time...
linux/x86 - execve("/bin/sh") - 28 bytes
/ Title: Linux x86 execve"/bin/sh" - 28 bytes Author: Jean Pascal Pereira Web: http://0xffe4.org Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax 8048062: 50 push %eax 8048063: 68 2f 2f 73 68 push $0x68732f2f 8048068: 68 2f 62 69 6e push $0x6e69622f 804806d: 89 e3 mov %esp,%e...
MyMp3 Player Stack - .m3u File DEP Bypass
MyMp3 Player Stack - .m3u File DEP Bypass ''' Title: MyMp3-Player '.m3u' Stack BOF Bypass DEP Author: Daniel Romero Perez @danielrome Software & Version: MyMp3-Player 3.02.067 Tested on: Windows XP SP3 - ES Mail: [email protected] Blog: unlearningsecurity.blogspot.com Advisor:...
MyMP3 Player .m3u Stack Buffer Overflow
''' Title: MyMp3-Player '.m3u' Stack BOF Bypass DEP Author: Daniel Romero Perez @danielrome Software & Version: MyMp3-Player 3.02.067 Tested on: Windows XP SP3 - ES Mail: [email protected] Blog: unlearningsecurity.blogspot.com Advisor: http://www.securityfocus.com/bid/38835/info Article:...
Simple Web Server 2.2 rc2 - Remote Buffer Overflow
Simple Web Server 2.2 rc2 - Remote Buffer Overflow use IO::Socket; Exploit Title: SimpleWebServer 2.2-rc2 - Remote Buffer Overflow Exploit Date: 19/07/2012 Author: mr.pr0n @pr0n Homepage: http://ghostinthelab.wordpress.com/ Software Link: http://www.pmx.it/download/sws-2.2-rc2-i686.exe Version: 2...
unix/x86 Backshell[/dev/tcp],Port(30) - 61 bytes Shellcode
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
win32/7 Ultimate MessageBox ShellCode
/ title : win32/7 Ultimate MessageBox ShellCode Author: Ayrbyte Link : - Version: - Category: local Tested on: Windows 7 Ultimate Code : c++ Site : 1337day.com Inj3ct0r Exploit Database ASSUME FS:NOTHING XOR ESI,ESI XOR ECX,ECX ; ECX = 0 MOV ESI,FS:ECX + 30h ; ESI = &PEB FS:0x30 MOV ESI,ESI + 0Ch...
Attackers Targeting MSXML Flaw With Malicious Flash Files
The unpatched vulnerability in Internet Explorer’s MSXML component that Microsoft warned users about earlier this month is being used in attacks that employ malicious Flash files. Researchers say that the attacks are taking the form of drive-by downloads launched from compromised legitimate sites...
URL Hunter - Local Buffer Overflow (DEP Bypass)
/ Exploit Title: URL Hunter buffer overflow DEP Bypass Author: Ayrbyte Vendor or Software Link: Mini-stream Software Link : http://mini-stream.net/url-hunter/ Version: 3.1.2.1 Category: local Tested on: Windows XP sp 2 Code : c++ Fb : /Ayrbyte Greetz To : XerkusR, Kira, 3|^^1x, WPFr, C-byte,...
JPEG Non-Compliant Marker ID
Multiple possible vulnerabilities have been discovered in JPEG image files .jpg. The vulnerabilities are caused while parsing JPEG files containing illegal marker ID values. Remote attackers may be able to exploit this issue by enticing target users to open a malformed JPEG file containing such...
Sielco Sistemi Winlog Buffer Overflow <= v2.07.14
!/usr/bin/ruby --------------------------------------------- Sielco Sistemi Winlog Buffer Overflow = v2.07.14 - Buffer overflow vulnerability Date: 04.06.2012 --------------------------------------------- - Description Winlog Lite is the entry level version of the SCADA/HMI software Winlog Pro...
win32/Seven Ultimate calc.exe ShellCode
/ title : win32/Seven Ultimate calc.exe ShellCode Author: Ayrbyte Link : - Version: - Category: local Tested on: Windows 7 Ultimate Code : c++ diasembly code 00401B62 DBD7 FCMOVNBE ST,ST7 00401B64 D97424 F4 FSTENV 28-BYTE PTR SS:ESP-C 00401B68 B8 79C464B7 MOV EAX,B764C479 00401B6D 33C9 XOR ECX,EC...
Lattice Semiconductor PAC-Designer 6.21 (*.PAC) Exploit
Exploit for windows platform in category local exploits !/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen -...
Lattice Semiconductor PAC-Designer 6.21 - .PAC Local Overflow
Lattice Semiconductor PAC-Designer 6.21 - .PAC Local Overflow !/usr/bin/python -w ------------------------------------------------------------------------------------ Exploit: Lattice Semiconductor PAC-Designer 6.21 possibly all versions CVE: CVE-2012-2915 Author: b33f Ruben Boonen -...
Sielco Sistemi Winlog 2.07.14 Buffer Overflow
!/usr/bin/ruby Exploit Title: Sielco Sistemi Winlog Buffer Overflow = v2.07.14 Date: 05.06.2012 Exploit Author: m1k3 Vendor Homepage: http://www.sielcosistemi.com/en/download/public/winloglite.html Software Link: http://www.sielcosistemi.com/en/download/public/winloglite.html Version: 2.07.14...
Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow
Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow !/usr/bin/ruby Exploit Title: Sielco Sistemi Winlog Buffer Overflow = v2.07.16 Date: 05.06.2012 Exploit Author: m1k3 Vendor Homepage: http://www.sielcosistemi.com/en/download/public/winloglite.html Software Link:...