linux/x86 - /bin/sh polymorphic shellcode 48 bytes

linux/x86 /bin/sh polymorphic shellcode 48 bytes. Shellcode exploit for linx86 platform / Title: Polymorphic Shellcode /bin/sh - 48 bytes Author: Jonathan Salwan Mail: submit ! shell-storm.org ! DataBase of shellcode : http://www.shell-storm.org/shellcode/ Original Informations...

Serveez 0.1.7 - If-Modified-Since Header Stack Buffer Overflow

Serveez 0.1.7 - If-Modified-Since Header Stack Buffer Overflow source: https://www.securityfocus.com/bid/42560/info Serveez is prone to a remote stack-based buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application...

MediaCoder 0.6.2.4275 (.lst File) Stack Buffer Overflow Exploit

Exploit for unknown platform in category local exploits =============================================================== MediaCoder 0.6.2.4275 .lst File Stack Buffer Overflow Exploit =============================================================== !/usr/bin/perl MediaCoder 0.6.2.4275 .lst Stack Bas...

Mediacoder 0.6.2.4275 - .lst Local Stack Buffer Overflow

Mediacoder 0.6.2.4275 - .lst Local Stack Buffer Overflow !/usr/bin/perl MediaCoder 0.6.2.4275 .lst Stack Based Overflow Discovered by : SKULL-HACKER my $header = "\x5B\x70\x6C\x61\x79\x6C\x69\x73\x74\x5D\x0A\x46\x69\x6C\x65\x31\x3D"; my $junk = "\x41" x 254; my $ret = "\x93\x43\x92\x7c"; my $nop ...

Linux Kernel SGI GRU驱动单字节漏洞

Bugraq ID: 35753 CNCAN ID：CNCAN-2009072204 Linux是一款开放源代码的操作系统。 Linux sgi-gru procfs接口实现存在内核栈缓冲区溢出，本地攻击者可以利用漏洞对系统进行拒绝服务攻击，可能导致以内核上下文执行任意指令。 optionswrite函数的"count"参数是用户可控制的，利用这个漏洞可以写'\0'字节到内核堆栈上大多数任意位置，可能导致任意代码执行。 Linux kernel 2.6.30 Linux kernel 2.6.29 4 Linux kernel 2.6.29 1 Linux kernel 2.6.29...

openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-237)

This update brings mozilla-xulrunner181 to security fix version 1.8.1.17. It contains the following security fixes: MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters...

ISC DHCP dhclient stack buffer overflow

Overview The ISC DHCP dhclient application contains a stack buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code with root privileges. Description As described in RFC 2131, "The Dynamic Host Configuration Protocol DHCP provides a framework for passing...

Microsoft Internet Explorer 'AddFavorite'方法拒绝服务漏洞

Bugraq ID: 35620 Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer添加收藏夹功能存在问题，远程攻击者可以利用漏洞使应用程序崩溃。 构建使用特殊构建的'AddFavorite'方法的恶意WEB页，诱使用户打开，可导致应用程序崩溃。 Microsoft Internet Explorer 8 Microsoft Internet Explorer 7.0 目前没有解决方案提供： http://www.microsoft.com/windows/ie/...

Microsoft Internet Explorer - AddFavorite Remote Crash (PoC)

Microsoft Internet Explorer - AddFavorite Remote Crash PoC ------------------------------------------- IE Add Favourites Stack Buffer Overflow POC Sberry, Compaq ------------------------------------------- function go var str =unescape'%u4141'; var finalstr = createInlineBufferstr, 5150000; var l...

MS Internet Explorer (AddFavorite) Remote Crash PoC

Exploit for unknown platform in category dos / poc ========================================================== Microsoft Internet Explorer AddFavorite Remote Crash PoC ========================================================== ------------------------------------------- IE Add Favourites Stack...

Microsoft DirectShow Video ActiveX Control Stack Buffer Overflow (CVE-2008-0015)

The Microsoft Video Control object is a Microsoft ActiveX control that connects Microsoft DirectShow filters for use in capturing, recording, and playing video. A stack buffer overflow vulnerability has been discovered in Microsoft DirectShow. The flaw is in the way Microsoft Video ActiveX contro...

Microsoft DirectShow Video Streaming ActiveX IMPEG2TuneRequest Overflow

Added: 07/07/2009 CVE: CVE-2008-0015 BID: 35558 OSVDB: 55651 Background DirectX is a feature of the Windows operating system used for streaming media. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation and rendering. Problem A stack buffer overfl...

Microsoft DirectShow Video Streaming ActiveX IMPEG2TuneRequest Overflow

Added: 07/07/2009 CVE: CVE-2008-0015 BID: 35558 OSVDB: 55651 Background DirectX is a feature of the Windows operating system used for streaming media. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation and rendering. Problem A stack buffer overfl...

MDaemon WorldClient form2raw.cgi Stack Buffer Overflow

This module exploits a stack buffer overflow in Alt-N MDaemon SMTP server for versions 6.8.5 and earlier. When WorldClient HTTP server is installed default, a CGI script is provided to accept html FORM based emails and deliver via MDaemon.exe, by writing the CGI output to the Raw Queue. When...

VideoLAN VLC Media Player 0.9.9 - smb: URI Stack Buffer Overflow (PoC)

VideoLAN VLC Media Player 0.9.9 - smb: URI Stack Buffer Overflow PoC !/usr/bin/ruby VideoLAN VLC Media Player 0.9.9 smb:// URI Stack-based Buffer Overflow Proof-of-Concept Bugtraq ID: 35500 The vulnerability can also be triggered via the VLC web interface disabled by default:...

Timbuktu Pro < 8.6.7 PlughNTCommand Named Pipe Remote Stack Buffer Overflow

The remote Windows host contains a version of Motorola Inc.'s Timbuktu Pro that is earlier than 8.6.7. Timbuktu Pro allows remote access to a computer's desktop, and versions before 8.6.7 reportedly contain a stack-based buffer overflow that can be triggered when the 'PlughNTCommand' named pipe...

iDefense Security Advisory 06.25.09: Unisys Business Information Server Stack Buffer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 06.25.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 25, 2009 I. BACKGROUND The Unisys Business Information Server is a business information management package providing data access, analysis and reporting for...

TELUS Security Labs VR - Microsoft Office Excel Malformed Records Stack Buffer Overflow

Microsoft Office Excel Malformed Records Stack Buffer Overflow TSL ID : FSC20090609-01 Reference: http://telussecuritylabs.com/threats/show/FSC20090609-01 1. Affected Software Microsoft Office Excel 2000 Microsoft Office Excel 2002 Reference: http://office.microsoft.com/en-us/excel/default.aspx 2...

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow (SEH)

Atomix Virtual Dj Pro 6.0 - Local Stack Buffer Overflow SEH include include include include include unsigned char rawData = 0x23, 0x56, 0x69, 0x72, 0x74, 0x75, 0x61, 0x6C, 0x44, 0x4A, 0x20, 0x50, 0x6C, 0x61, 0x79, 0x6C, 0x69, 0x73, 0x74, 0x0D, 0x0A, 0x23, 0x4D, 0x69, 0x78, 0x54, 0x79, 0x70, 0x65,...

AIMP 2.51 build 330 - ID3v1ID3v2 Tag Remote Stack Buffer Overflow (PoC) (SEH)

AIMP 2.51 build 330 - ID3v1ID3v2 Tag Remote Stack Buffer Overflow PoC SEH | | / | AIMP 2.51 build 330 ID3v1/ID3v2 Tag | /---, | Remote Stack Buffer Overflow PoC SEH | ----- ==| | | | : ==| |......................................................| -----'---- | || | ' |==== | /,-,"--"------ //,-,...