AOL 9.5 .rtx Local Buffer Overflow

!/usr/bin/python Bug : AOL 9.5 rtx Local Buffer Overflow Exploit by sup3r Tested on : XP SP3 header1 = "\x3c\x48\x54\x4d\x4c\x3e\x3c\x46\x4f\x4e\x54\x20\x20\x53\x49\x5a" "\x45\x3d\x32\x20\x50\x54\x53\x49\x5a\x45\x3d\x31\x30\x20\x46\x41"...

NetZip Classic Buffer Overflow

+Exploit Title: Exploit Buffer Overflow NetZip ClassicSEH +Date: 01\30\2011 +Author: C4SS!0 G0M3S +Software Link: http://proforma.real.com/real/nzclassic/nzclassic.html +Version: 7.5.1.86 +Tested on: WIN-XP SP3 PORTUGUESE BRAZILIAN +CVE: N/A The structure of the zip file has been copied from the...

AOL 9.5 - '.rtx' Local Buffer Overflow

!/usr/bin/python Bug : AOL 9.5 rtx Local Buffer Overflow Exploit by sup3r Tested on : XP SP3 header1 = "\x3c\x48\x54\x4d\x4c\x3e\x3c\x46\x4f\x4e\x54\x20\x20\x53\x49\x5a" "\x45\x3d\x32\x20\x50\x54\x53\x49\x5a\x45\x3d\x31\x30\x20\x46\x41"...

Apple iPhone Browsing

The iPhone is a line of Internet and multimedia-enabled smartphones designed and marketed by Apple Inc. An iPhone functions as a video camera, camera phone with text messaging and visual voicemail, a portable media player, and an Internet client with e-mail, Web browsing, and both Wi-Fi and 3G...

NetZip Classic Buffer Overflow Exploit (SEH)

Exploit for windows platform in category local exploits +Exploit Title: Exploit Buffer Overflow NetZip ClassicSEH +Date: 01\30\2011 +Author: C4SS!0 G0M3S +Software Link: http://proforma.real.com/real/nzclassic/nzclassic.html +Version: 7.5.1.86 +Tested on: WIN-XP SP3 PORTUGUESE BRAZILIAN +CVE: N/A...

A-PDF All to MP3 Converter 2.0.0 - '.wav' Local Buffer Overflow (SEH)

Exploit Title: A-PDF All to MP3 Converter v.2.0.0 SEH overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP2 English Date: 29/01/2011 Author: m0nna Email: [email protected] triggering details: Open the app, drag the crafted .wav file, cal...

Opera Web Browser 11.00 - Integer Overflow

Opera Web Browser 11.00 - Integer Overflow +Exploit Title: Exploit Integer Overflow Opera Web Browser 11.00 +Date: 24\01\2011 +Author: C4SS!0 G0M3S +Software Link: http://get12.opera.com/pub/opera/win/1100/int/Opera1100intSetup.exe +Version: 11.00 +Tested On: WIN-XP SP3 PORTUGUESE BRAZILIAN +CVE:...

Opera Web Browser 11.00 Denial Of Service

+Exploit Title: Exploit Integer Overflow Opera Web Browser 11.00 +Date: 24\01\2011 +Author: C4SS!0 G0M3S +Software Link: http://get12.opera.com/pub/opera/win/1100/int/Opera1100intSetup.exe +Version: 11.00 +Tested On: WIN-XP SP3 PORTUGUESE BRAZILIAN +CVE: N/A Note: This exploit is only a Denial of...

Opera Web Browser 11.00 - Integer Overflow

+Exploit Title: Exploit Integer Overflow Opera Web Browser 11.00 +Date: 24\01\2011 +Author: C4SS!0 G0M3S +Software Link: http://get12.opera.com/pub/opera/win/1100/int/Opera1100intSetup.exe +Version: 11.00 +Tested On: WIN-XP SP3 PORTUGUESE BRAZILIAN +CVE: N/A Note: This exploit is only a Denial of...

Golden FTP Server 4.70 - 'PASS' Buffer Overflow

GoldenFTP 4.70 PASS Exploit Authors: Craig Freyman cd1zz and Gerardo Iglesias Galvan iglesiasgg Tested on XP SP3 Vendor Contacted: 1/17/2011 no response For this exploit to work correctly, you need to know the subnet that the server is running on. You also need to make sure that "show new...

bsd/x86 - portbind + fork shellcode (111 bytes)

Exploit for bsd/x86 platform in category shellcode / -------------- FreeBSD/x86 - portbind shell + fork 111 bytes-------------------- AUTHOR : Tosh OS : BSDx86 Tested on FreeBSD 8.1 EMAIL : email protected / include include include char shellcode =...

bsd/x86 - connect back Shellcode (81 bytes)

Exploit for bsd/x86 platform in category shellcode / -------------- FreeBSD/x86 - connect back /bin/sh. 81 bytes ---------------- AUTHOR : Tosh OS : BSDx86 Tested on FreeBSD 8.1 EMAIL : email protected / include include include char shellcode =...

BSD x86 portbind + fork shellcode 111 bytes

BSD x86 portbind + fork shellcode 111 bytes. Shellcode exploit for bsdx86 platform / -------------- FreeBSD/x86 - portbind shell + fork 111 bytes-------------------- AUTHOR : Tosh OS : BSDx86 Tested on FreeBSD 8.1 EMAIL : [email protected] / include include include char shellcode =...

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow

A-PDF All to MP3 Converter 2.0.0 - .wav Local Buffer Overflow Exploit Title: A-PDF All to MP3 Converter v.2.0.0 stack based buffer overflow Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: = 2.0.0 Tested on: Win XP SP3 French Date: 17/01/2011 Author: h1ch4m Email: h1ch4m@live....

eXtremeMP3 Player Buffer Overflow

+Exploit Title: Exploit Bufer Overflow eXtremeMP3 PlayerSEH +Date: 01\15\2010 +Author: C4SS!0 G0M3S +Software Link: http://ukms.tucows.com/files2/xtremv20RC1.exe +Version: 2.0 +Tested on: WIN-XP SP3 BRAZILIAN +CVE: N/A Create by C4SS!0 G0M3S WWW.INVASAO.COM.BR [email protected] / Note: To...

MS10-073: Win32k Keyboard Layout Vulnerability

Exploit for windows platform in category local exploits // My koala is staring at you CºgºD // Source: http://reversemode.com/index.php?option=comcontent&task=view&id=71&Itemid=1 include include include define MAGICOFFSET 0x6261 define InitializeUnicodeStrp,s \ p-Length= wcslens2; ...

Nokia Multimedia Player 1.0 SEH Unicode

Exploit Title: Nokia Multimedia player SEH Unicode Date: January 11 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.brothersoft.com/nokia-multimedia-player-download-46238.html Version: 1.00.55.5010 Tested on: Windows xp sp3 running on VMware Fusion 3.1 and VirtualBox 3.2.8...

Nokia MultiMedia Player 1.0 - Local Overflow (SEH Unicode)

Nokia MultiMedia Player 1.0 - Local Overflow SEH Unicode Exploit Title: Nokia Multimedia player SEH Unicode Date: January 11 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.brothersoft.com/nokia-multimedia-player-download-46238.html Version: 1.00.55.5010 Tested on: Windows xp...

Solar FTP Server 2.1 Buffer Overflow

------------------------------------------------------------------------ Software................Solar FTP Server 2.1 Vulnerability...........Buffer Overflow Download................http://www.solarftp.com/ Release Date............1/10/2011 Tested On...............Windows XP SP3 EN...

MS10-081: Windows Common Control Library (Comctl32) Heap Overflow

Exploit for windows platform in category remote exploits !/usr/bin/env ruby http://breakingpointsystems.com/community/blog/microsoft-vulnerability-proof-of-concept Nephi Johnson require 'socket' def httpsendsock, data, opts= defaults = :code="200", :message="OK", :type="text/html", :desc="content...