win32 VB6_vbaExceptHandler - SEH (calc.exe) ShellCode - 149 Bytes

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

linux/x86 Remote Download/Execute File - 44 Bytes + File

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

SPlayer 3.7 (build 2055) - Remote Buffer Overflow

!/usr/bin/python Exploit Title: SPlayer Software Link: http://www.splayer.org/index.en.html Versions: URL ctrl+u ... 3. Input the server URL and Click OK ... 4. Boom!/calc ... Method 2: 1. Execute this script ... 2. Launch SPlayer and click Open ctrl+o ... 3. Browse to any playlist file m3u, pls ...

win32/xp sp3 Force Kill explorer.exe process Shellcode 73 Bytes

Exploit Title: win32/xp sp3 Force Kill explorer.exe process Shellcode 73 Bytes + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0...

WRF files (CVE-2010-3269)

The Cisco WebEx Player is an application that is used to play back WebEx meeting recordings that have been recorded on the computer of an on-line meeting attendee. Cisco WebEx uses the proprietary WRF file format .wrf extension to store WebEx meeting recordings on the computer of an on-line meeti...

win32/xp sp3 cmd.exe Shellcode 50 bytes

Exploit Title: win32/xp sp3 cmd.exe Shellcode 50 bytes + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...

win32/xp sp3 Shutdown Windows Shellcode 56 Bytes (30sec Timer)

Exploit Title: win32/xp sp3 Shutdown Windows Shellcode 56 Bytes 30sec Timer + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /,...

OpenMyZip 0.1 .ZIP Buffer Overflow

!/usr/bin/perl +Exploit Title: OpenMyZip V0.1 .ZIP File Buffer Overflow Vulnerability +Date: 02\05\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/OpenMyZip/3000-22504-10657274.html +Version: v0.1 +Tested On: WIN-XP SP3 Brazil Portuguese +CVE: N/A use strict; use warnings; my...

os-x/x86 intel reverse_tcp shell x86_64 - 131 bytes

;osx x64 reverse tcp shellcode 131 bytes ;Jacob Hammack ;email protected ;http://www.hammackj.com ; ;props to http://www.thexploit.com/ for the blog posts on x64 osx asm ;I borrowed some of his code ; ;OSX reverse tcp shell 131 bytes ;replace FFFFFFFF around byte 43 with the call back ip in hex...

OSX/Intel reverse_tcp shell x86_64 - 131 bytes

OSX/Intel reversetcp shell x8664 - 131 bytes. Shellcode exploit for osx platform ;osx x64 reverse tcp shellcode 131 bytes ;Jacob Hammack ;[email protected] ;http://www.hammackj.com ; ;props to http://www.thexploit.com/ for the blog posts on x64 osx asm ;I borrowed some of his code ; ;OSX...

win32/xp sp3 Activate Guest Account Shellcode 67 Bytes

Exploit Title: win32/xp sp3 Activate Guest Account Shellcode 67 Bytes + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...

win32/xp sp3 MSPaint Shellcode 52 Bytes

Exploit Title: win32/xp sp3 MSPaint Shellcode 52 Bytes + Author : ^Xecuti0n3r + E-mail : xecuti0n3ryahoo.com + Category : win32-Shellcodes + Tested on : Windows Xp 32 bit 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...

Subtitle Processor 7.7.1 SEH Unicode Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/python I wanted to first of all thank all the people who took the time to help me. Peter Van Eeckhoutte AKA corelanc0d3r. Awesome tutorials and thanks for putting up with me! Jason Kratzer. Thanks a lot for helping me finish this...

NetOp Remote Control 8.0/9.1/9.2/9.5 - Local Buffer Overflow

Exploit Title: NetOp Remote Control Buffer Overflow Date: April 28, 2011 Author: chap0 Version: 8.0, 9.1, 9.2, 9.5 Possibly anything before ver 10 Upgrade to Version 10 for fix Tested on: Windows XP SP3 Greetz to JJ IE by day Ninja by night, br34dcrumb5, myne-us, Exploit-DB, Corelan !/usr/bin/per...

win32/xp pro sp3 MessageBox shellcode 11 bytes

/ Title: win32/xp pro sp3 MessageBox shellcode 11 bytes Author: d3c0der - d3c0derathotmaildotcom Tested on: WinXP Pro SP3 EN run MessageBox that show an error message website : Www.AttackerZ.ir spt : All friends ; / include include include char code = "\x33\xd2\x52\x52\x52\x52\xe8\xbe\xe9\x44\x7d...

Windows 32 bit/xp-Sp3 MessageBox ShellCode 73 Bytes

+Exploit Title: Windows 32 bit/xp-Sp3 MessageBox ShellCode 73 Bytes +Author : ^Xecuti0N3r +Tested On : WIN32-XP Sp3 + Date : 20.04.2011 + Hour : 13:37 + Proof : http://k.min.us/jkMNiM.jpg include include include char code = "\x68\x6e\x33\x72\x00\x68\x75\x74" "\x69\x30\x68\x5e\x58\x65\x63\x89"...

Win64 bit/xp Calculator Shellcode

+Exploit Title: Win64 bit/xp Calculator Shellcode +Author : ^Xecuti0N3r +Tested On : WIN64-XP include include include int main char shellc = "\xeb\x16\x5b\x50\x88\x43\x09\x53\xbb\x0d\x25\x86\x7c\xff\xd3\x31\xc0\xbb\x12\xcb\x81\x7c\xff\xd3\xe8\xe5\xff\xff\xff" "\x63\x61\x6c\x63\x2e" "\x65\x78\x65"...

Adobe Flash Player < 10.1.53.64 - Action Script Type Confusion (ASLR + DEP Bypass)

Source: http://www.abysssec.com/blog/2011/04/exploiting-adobe-flash-player-on-windows-7/ Adobe Flash player Action script type confusion exploit DEP+ASLR bypass advisory text : Here is another reliable windows 7 exploit . the main method used for exploitation is based on Haifei-li presentation at...

Microsoft Word 2003 - Record Parsing Buffer Overflow (MS09-027) (Metasploit)

$Id: ms09-027 10477 2011-04-13 11:59:02Z mc $ This file is not part of the Metasploit Framework and may not be subject to redistribution and commercial restrictions. TODO some testing to find the real banned characters and maxlen add those parameters to the .rb file drop in appropriate directory...

Analysis of the New Adobe Flash Attacks

When Adobe warned customers earlier this week about a newly discovered vulnerability in the Flash Player software, company officials said that there were already attacks underway against the bug. Those attacks are using malicious Flash files buried in Word documents and Microsoft’s security...