MagnetoSoft ICMP 4.0.0.18 - ActiveX AddDestinationEntry Buffer Overflow

MagnetoSoft ICMP 4.0.0.18 - ActiveX AddDestinationEntry Buffer Overflow 'Magneto Software ICMP ActiveX Control Buffer Overflow 'Discovered by: s4squatch 'website: www.securestate.com 'Date Discovered: 03/11/09 'Exploit Written: 02/02/10 'Vendor Notified: 02/02/10 -- NO RESPONSE 'Vendor Notified:...

MagnetoSoft ICMP ActiveX AddDestinationEntry BOF

Exploit for windows platform in category remote exploits ================================================ MagnetoSoft ICMP ActiveX AddDestinationEntry BOF ================================================ 'Magneto Software ICMP ActiveX Control Buffer Overflow 'Discovered by: s4squatch 'website:...

MagnetoSoft SNTP 4.0.0.7 - ActiveX SntpGetReply Buffer Overflow

'Magneto Software SNTP ActiveX SntpGetReply BOF 'Discovered by: s4squatch 'Site: www.securestate.com 'File Name = SKSntp.ocx 'www: http://www.magnetosoft.com/products/sksntp/sksntpfeatures.htm 'Download: http://www.magnetosoft.com/downloads/sksntpsetup.exe 'Vendor Notified: 02/02/10 -- NO RESPONS...

PHP 6.0 Dev str_transliterate() Buffer overflow - NX + ASLR Bypass

Exploit for windows platform in category local exploits ================================================================== PHP 6.0 Dev strtransliterate Buffer overflow - NX + ASLR Bypass ================================================================== whoami whoami nt authority\system /...

Microsoft-Visio

Drawing Exchange Format DXF is a kind of data file format for CAD which is designed by Autodesk for cooperation between Autocad and other software. Varius software supports dxf file and Microsoft Visio is one of them. Dxf file contain some section which every section contain some records. import...

Local Glibc Shared Library (.so) 2.11.1 - Code Execution

Local Glibc Shared Library .so 2.11.1 - Code Execution Exploit Title: Local Glibc shared library .so exploit Date: 07.04.10 Author: Rh0 [email protected] Software Link: NA Version: Tools-Plugins" in the menue or at latest when they are activated. dlopen is used for initializing and is part of glibc. Se...

PHP 6.0 Dev - str_transliterate() Local Buffer Overflow

PHP 6.0 Dev - strtransliterate Local Buffer Overflow Exploited by TheLeader, Debug SP. Thanks: HDM http://www.nullbyte.org.il This code should exploits a buffer overflow in the strtransliterate function to call WinExec and execute CALC Take a look, 'unicode.semantics' has to be on! php.ini...

PHP 6.0 Dev - 'str_transliterate()' Local Buffer Overflow

Exploited by TheLeader, Debug SP. Thanks: HDM http://www.nullbyte.org.il This code should exploits a buffer overflow in the strtransliterate function to call WinExec and execute CALC Take a look, 'unicode.semantics' has to be on! php.ini unicode.semantics = on ifinigetbool'unicode.semantics' $buf...

Free MP3 CD Ripper 2.6 Buffer Overflow

Exploit Title: Free MP3 CD Ripper 2.6 0 day Date: 30/03/2010 Author: Richard leahy Software Link: http://www.soft32.com/Download/Free/FreeMP3CDRipper/4-250188-1.html Version: 2.6 Tested on: Windows Xp Sp2 to exploit this open up the application select file - wav converter - wav to mp3 use your...

Free WMA MP3 Converter Buffer Overflow

sorry was missing some text from my previous email Exploit Title: Free WMA MP3 Converter Date: 02/04/2010 Author: Richard leahy Software Link: http://www.freewarefiles.com/downloadscounter.php?programid=44210 Version: 1.1 Tested on: Windows Xp Sp2 category local exploit to trigger vulnrability op...

linux x86 nc -lvve/bin/sh -p13377 shellcode

Exploit for linux/x86 platform in category shellcode =========================================== linux x86 nc -lvve/bin/sh -p13377 shellcode =========================================== linux x86 nc -lvve/bin/sh -p13377 shellcode This shellcode will listen on port 13377 using netcat and give /bin/...

linux x86 - nc -lvve/bin/sh -p13377 shellcode

linux x86 nc -lvve/bin/sh -p13377 shellcode. Shellcode exploit for linux platform linux x86 nc -lvve/bin/sh -p13377 shellcode This shellcode will listen on port 13377 using netcat and give /bin/sh to connecting attacker Author: Anonymous Site: http://chaossecurity.wordpress.com/ Here is code...

Free MP3 CD Ripper 2.6 - .wav Local Overflow

Free MP3 CD Ripper 2.6 - .wav Local Overflow Exploit Title: Free MP3 CD Ripper 2.6 0 day Date: 30/03/2010 Author: Richard leahy Reference: http://www.exploit-db.com/exploits/11975/ Software Link: http://www.soft32.com/Download/Free/FreeMP3CDRipper/4-250188-1.html Version: 2.6 Tested on: Windows X...

Free MP3 CD Ripper 2.6 - '.wav' Local Overflow

Exploit Title: Free MP3 CD Ripper 2.6 0 day Date: 30/03/2010 Author: Richard leahy Reference: http://www.exploit-db.com/exploits/11975/ Software Link: http://www.soft32.com/Download/Free/FreeMP3CDRipper/4-250188-1.html Version: 2.6 Tested on: Windows Xp Sp2 to exploit this open up the application...

OpenDcHub 0.8.1 Code Execution

!/usr/bin/python OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Nogues - http://www.indahax.com Description: OpenDcHub is a direct connect hub for Linux OpenDcHub doesn't handle specially crafted MyINFO message which lead to a stack overflow. Affected versions : OpenDcHub 0.8.1 Plateforms :...

RM Downloader 3.0.2.1 Buffer Overflow

!/usr/bin/python Title: RM Downloader 3.0.2.1 .asx Local Buffer Overflow SEH Date: 03-29-2010 Author: b0telh0 Link: http://www.mini-stream.net/downloads/RMDownloader.exe Tested on: Windows XP SP3 windows/exec - 227 bytes EXITFUNC=process, CMD=calc.exe shellcode =...

Shadow Stream Recorder 3.0.1.7 Buffer Overflow

!/usr/bin/python Title: Shadow Stream Recorder 3.0.1.7 .asx Local Buffer Overflow Date: 03-29-2010 Author: b0telh0 Link: http://www.rm-to-mp3.net/downloads/ssrecordersetup.exe Tested on: Windows XP SP3 windows/exec - 228 bytes EXITFUNC=seh, CMD=calc.exe shellcode =...

Firefox 3.5 Stack Overflow Exploit

Exploit for windows platform in category local exploits ================================== Firefox 3.5 Stack Overflow Exploit ================================== !bin/ruby Exploit : Shellcode Stack Overflow Firefox 3.5 Date : 23/03/2010 Author : Whivack Gsk? Software Link :...

OpenDcHub 0.8.1 - Remote Code Execution

!/usr/bin/python OpenDcHub 0.8.1 Remote Code Execution Exploit Pierre Nogues - http://www.indahax.com Description: OpenDcHub is a direct connect hub for Linux OpenDcHub doesn't handle specially crafted MyINFO message which lead to a stack overflow. Affected versions : OpenDcHub 0.8.1 Plateforms :...

WM Downloader 3.0.0.9 - '.asx' Local Buffer Overflow

!/usr/bin/python Title: WM Downloader 3.0.0.9 .asx Local Buffer Overflow Date: 03-29-2010 Author: b0telh0 Tested on: Windows XP SP3 windows/exec - 227 bytes EXITFUNC=process, CMD=calc.exe shellcode = "\x29\xc9\xb1\x33\xda\xd3\xbd\x07\x4a\x9e\x37\xd9\x74\x24\xf4"...