OpenBSD 2.x < 3.3 - 'exec_ibcs2_coff_prep_zmagic()' kernel stack overflow

/ OpenBSD 2.x - 3.3 / / execibcs2coffprepzmagic kernel stack overflow / / note: ibcs2 binary compatibility with SCO and ISC is enabled / / in the default install / / Copyright Feb 26 2003 Sinan "noir" Eren / / noir olympos org | noir uberhax0r net / / greets to brother nahual for making this...

IA WebMail Server 3.x - iaregdll.dll 1.0.0.5 Remote Overflow

IA WebMail Server 3.x - iaregdll.dll 1.0.0.5 Remote Overflow !/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit Application Specific Shellcode: URL Downloader - www elitehaven net/ncat.exe downloaded - c:\nc.exe created By Peter Winter-Smith peter4020 hotmail com Shellco...

OpenBSD 2.x - 3.3 exec_ibcs2_coff_prep_zmagic() Kernel Exploit

Exploit for bsd platform in category local exploits ============================================================== OpenBSD 2.x - 3.3 execibcs2coffprepzmagic Kernel Exploit ============================================================== / OpenBSD 2.x - 3.3 / / execibcs2coffprepzmagic kernel stack...

IA WebMail Server 3.x - 'iaregdll.dll 1.0.0.5' Remote Overflow

!/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit Application Specific Shellcode: URL Downloader - www elitehaven net/ncat.exe downloaded - c:\nc.exe created By Peter Winter-Smith peter4020 hotmail com Shellcode included - will need reassembling to use different urls an...

Microsoft Windows - ListBoxComboBox Control Local (MS03-045)

Microsoft Windows - ListBoxComboBox Control Local MS03-045 / \ local ListBox/ComboBox exploit for Win32 / \ Created by xCrZx crazyeinstein yahoo com /11.11.03/ / \ Usage: MS03-045.exe -r return address / \ there is two targets: CBDIR for ComboBox, LBDIR for ListBox. / \ As to return address it...

Microsoft Windows - ListBox/ComboBox Control Local (MS03-045)

/ \ local ListBox/ComboBox exploit for Win32 / \ Created by xCrZx crazyeinstein yahoo com /11.11.03/ / \ Usage: MS03-045.exe -r return address / \ there is two targets: CBDIR for ComboBox, LBDIR for ListBox. / \ As to return address it should be such as 0x0000XXYY / and you should know that this...

MS Windows (ListBox/ComboBox Control) Local Exploit (MS03-045)

Exploit for unknown platform in category local exploits ============================================================== MS Windows ListBox/ComboBox Control Local Exploit MS03-045 ============================================================== / \ local ListBox/ComboBox exploit for Win32 / \ Created...

MS Windows 2000/XP Workstation Service Overflow (MS03-049)

No description provided by source. / Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link mpr.lib ... I will not improv...

MS Windows 2000/XP Workstation Service Overflow (MS03-049)

Exploit for unknown platform in category remote exploits ========================================================== MS Windows 2000/XP Workstation Service Overflow MS03-049 ========================================================== / Proof of concept for MS03-049. This code was tested on a Win2K...

Microsoft Windows XP/2000 - Workstation Service Overflow (MS03-049)

/ Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link mpr.lib ... I will not improve this public version, do not bothe...

Microsoft Windows XP2000 - Workstation Service Overflow (MS03-049)

Microsoft Windows XP2000 - Workstation Service Overflow MS03-049 / Proof of concept for MS03-049. This code was tested on a Win2K SP4 with FAT32 file system, and is supposed to work only with that it will probably crash the the other 2Ks, no clue about XPs. To be compiled with lcc-win32 hint link...

Wireless Tools 26 (IWConfig) - ARGV Local Command Line Buffer Overflow (2)

Wireless Tools 26 IWConfig - ARGV Local Command Line Buffer Overflow 2 // source: https://www.securityfocus.com/bid/8901/info A problem has been identified in the iwconfig program when handling strings on the commandline. Because of this, a local attacker may be able to gain elevated privileges. ...

shatterCommCtrl.txt

Intro ----- Brett Moore from Security Assesment put me onto this one. XP's Visual Styles, the feature that makes various controls in Windows XP look a less dated, also introduce a new shatter type vulnerability into the OS. Vuln ------- Applications which have the new XPified appearance use...

Solaris Runtime Linker (ld.so.1) Buffer Overflow Exploit (SPARC version)

Exploit for solaris platform in category local exploits ======================================================================== Solaris Runtime Linker ld.so.1 Buffer Overflow Exploit SPARC version ======================================================================== / ld.so.1 exploit SPARC...

Solaris Runtime Linker (SPARC) - ld.so.1 Local Buffer Overflow

Solaris Runtime Linker SPARC - ld.so.1 Local Buffer Overflow / ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard...

Solaris Runtime Linker (SPARC) - 'ld.so.1' Local Buffer Overflow

/ ld.so.1 exploit SPARC coded by: osker178 bjr213 psu.edu Alright, so this exploits a fairly standard buffer overflow in the default Solaris runtime linker ld.so.1 discovery by Jouko Pynnonen Only real deviation here from the standard overflow and return into libc scenario is that at the time tha...

Shatter XP

Intro ----- Brett Moore from Security Assesment put me onto this one. XP's Visual Styles, the feature that makes various controls in Windows XP look a less dated, also introduce a new shatter type vulnerability into the OS. Vuln ------- Applications which have the new XPified appearance use...

mIRC 6.1 - IRC Protocol Remote Buffer Overflow

mIRC 6.1 - IRC Protocol Remote Buffer Overflow / remote mirc 998 chars to someone on IRC is simply NOT done : Then I remember the iframe-irc:// flaw found by uuuppzz 2 This exploit will write an malicious HTML file containing an iframe executing the irc:// address. So you can give this to anyone ...

mIRC 6.1 - 'IRC' Protocol Remote Buffer Overflow

/ remote mirc 998 chars to someone on IRC is simply NOT done : Then I remember the iframe-irc:// flaw found by uuuppzz 2 This exploit will write an malicious HTML file containing an iframe executing the irc:// address. So you can give this to anyone on IRC for example ; The shellcode included doe...

Microsoft Windows - DCOM RPC2 Universal Shellcode

MS Windows DCOM RPC2 Universal Shellcode. Shellcode exploit for win32 platform ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing, ds:nothing, fs:nothing, gs:nothing .386 assume cs:seg000 var29C = byte ptr -29Ch var28C = byte ptr...