7261 matches found
IE-object tag longtype exploit
!/usr/bin/perl =synopsis 06/06/03 - Proof of concept exploit by Sir Alumni [email protected] IE-Object longtype dynamic call oferflow ... url://$shellcode'/'x48jmp ptrsh the flaw actually exists in URLMON.DLL when converting backslashes to wide char, this can be seen on stack dump near...
Microsoft Internet Explorer - Object Tag (MS03-020)
Microsoft Internet Explorer - Object Tag MS03-020 !/usr/bin/perl Proof of concept exploit on IE 5.x - 6.x by Alumni IE-Object longtype dynamic call oferflow url:// the flaw actually exists in URLMON.DLL when converting backslashes to wide char, this can be seen on stack dump near...
Microsoft Internet Explorer - Object Tag (MS03-020)
!/usr/bin/perl Proof of concept exploit on IE 5.x - 6.x by Alumni IE-Object longtype dynamic call oferflow url:// the flaw actually exists in URLMON.DLL when converting backslashes to wide char, this can be seen on stack dump near '&CLSID=AAA...2F2F...'. To exploit: i start server perl script; ii...
kon2 exploit!!
I look kon2 source and -Console arg is the problem, so here go the PoC. ----cut here-------- !/usr/bin/perl Priv8security.com kon2 version 0.3.9b-16 and local root exploit. Tested on Redhat 8.0. should work on 9.0 and 7.3 Bug happens on -Coding arg. Based on Redhat Advisory. wsxz@localhost buffer...
xmame gain root exploit
/ --------------------------------------------------------------------------- Web: http://qb0x.net Author: Gabriel A. Maggiotti Date: March 31, 2003 E-mail: [email protected] --------------------------------------------------------------------------- / include stdio.h define OFFSET 1058 defi...
Batalla Naval 1.0 4 - Remote Buffer Overflow (1)
source: https://www.securityfocus.com/bid/7699/info Batalla Naval is prone to a remotely exploitable buffer overflow when handling requests of excessive length. This could allow for execution of malicious instructions in the context of the game server. !/usr/bin/perl Priv8security.com remote...
Maelstrom Server 3.0.x - Argument Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/7630/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It may be...
Microsoft Windows XP - 'explorer.exe' Local Buffer Overflow
include include include include include char shellcode= //download url and exec shellcode //doesn't have any hardcoded values //except the base address of the program //searches the import table for //LoadLibraryA, GetProcAddress and ExitProcess. //by .einstein., dH team...
MS Windows XP (explorer.exe) Buffer Overflow Exploit
Exploit for unknown platform in category local exploits ==================================================== MS Windows XP explorer.exe Buffer Overflow Exploit ==================================================== include include include include include char shellcode= //download url and exec...
Leksbot 1.2 - Multiple Vulnerabilities
/ source: https://www.securityfocus.com/bid/7505/info Multiple vulnerabilities have been reported for Leksbot. The precise nature of these vulnerabilities are currently unknown however, exploitation of this issue may result in an attacker obtaining elevated privileges. This is because in some...
Leksbot 1.2 - Multiple Vulnerabilities
Leksbot 1.2 - Multiple Vulnerabilities / source: https://www.securityfocus.com/bid/7505/info Multiple vulnerabilities have been reported for Leksbot. The precise nature of these vulnerabilities are currently unknown however, exploitation of this issue may result in an attacker obtaining elevated...
RealServer 8.0.2 (Windows Platforms) - Remote Overflow
RealServer 8.0.2 Windows Platforms - Remote Overflow // / THCunREAL 0.2 - Wind0wZ remote root exploit / / Exploit by: Johnny Cyberpunk [email protected] / / THC PUBLIC SOURCE MATERIALS / / / / / / This is the much more reliable version of the Realserver 8.0.2 exploit / / Tested with...
PoPToP PPTP 1.1.4-b3 - poptop-sane.c Remote Command Execution
PoPToP PPTP 1.1.4-b3 - poptop-sane.c Remote Command Execution / Fixed Exploit against PoPToP in Linux poptop-sane.c ./r4nc0rwh0r3 of blightninjas [email protected] blightninjas: bringing pain, suffering, and humiliation to the security world Expect more great release like...
PoPToP PPTP 1.1.4-b3 - 'poptop-sane.c' Remote Command Execution
/ Fixed Exploit against PoPToP in Linux poptop-sane.c ./r4nc0rwh0r3 of blightninjas [email protected] blightninjas: bringing pain, suffering, and humiliation to the security world Expect more great release like helloworld-annotated.c and cd explained whitepaper, we are working hard in da...
Snort <=1.9.1 Remote Root Exploit (p7snort191.sh)
Exploit for linux platform in category remote exploits ================================================= Snort =1.9.1 Remote Root Exploit p7snort191.sh ================================================= !/bin/sh p7snort191.sh by truff email protected Snort 1.9.1 and below remote exploit Tested on...
Linux Kernel 2.4.20 - Module Loader Privilege Escalation
Linux Kernel 2.4.20 - Module Loader Privilege Escalation / Linux Kernel Module Loader Local R00t Exploit Up to 2.4.20 By anonymous KuRaK include include include include include include include include include include include include include define TMPSIZE 4096 define FMAX 768 define UIDNUM 6 defi...
Linux Kernel < 2.4.20 - Module Loader Privilege Escalation
/ Linux Kernel Module Loader Local R00t Exploit Up to 2.4.20 By anonymous KuRaK include include include include include include include include include include include include include define TMPSIZE 4096 define FMAX 768 define UIDNUM 6 define MMSIZE 40961 define MAXSTACK 0xc0000000 // where to pu...
[email protected] Clients Buffer Overflow Exploit
Exploit for linux platform in category remote exploits ========================================= email protected Clients Buffer Overflow Exploit ========================================= / email protected exploit by zillionatsafemode.org 2003/01/07 Credits for the vulnerability go to: SkyLined...
SETI@home Clients - Remote Buffer Overflow
/ Seti@Home exploit by zillionatsafemode.org 2003/01/07 Credits for the vulnerability go to: SkyLined http://spoor12.edup.tudelft.nl/SkyLined%20v4.2/?Advisories/Seti@home Use this exploit in combination with a DNS spoofing utility such as the one provided in the Dsniff package...
SETI@home Clients - Remote Buffer Overflow
SETI@home Clients - Remote Buffer Overflow / Seti@Home exploit by zillionatsafemode.org 2003/01/07 Credits for the vulnerability go to: SkyLined http://spoor12.edup.tudelft.nl/SkyLined%20v4.2/?Advisories/Seti@home Use this exploit in combination with a DNS spoofing utility such as the one provide...