VideoLAN VLC Media Player RealText File Buffer Overflow (CVE-2008-5036)

VLC Media Player is an open source multimedia player. It can play many audio and video formats MPEG, DivX, ogg, Wave etc. as well as various streaming protocols. It is highly portable and available for multiple platforms. Support for various formats is implemented in the form of plugins bundled...

Novell NetWare NFS Portmapper and RPC Module Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware NFS Portmapper daemon. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CALLIT RPC calls. The vulnerable daemon...

WS_FTP FTPD "STAT"command overflow parsing-vulnerability warning-the black bar safety net

The following analysis is based on the WSFTP Server 4.0.1. EVAL 4 7 1 5 6 3 1 4version, only the analysis of the“STAT”command overflow . In fact, WSFTP in processing STAT command, many places are length of the judgment, however, there is a place he has been missed, Well, our chance came.:...

Notepad++ 5.4.5 Buffer Overflow

/ 0dayNotepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow POC by fl0 fl0w / / LATEST FIXES Notepad++ v5.4.5 fixed bugs from v5.4.4 : 1. Fix plugins shortcuts not working bug. 2. Fix the tooltip on toolbar display bug for the plugins icons. 3. Fix a crash that was occurring when searching in files...

Notepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow PoC (0day)

Exploit for unknown platform in category dos / poc ============================================================= Notepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow PoC 0day ============================================================= / 0dayNotepad++ 5.4.5 Local .C/CPP Stack Buffer Overflow POC b...

HTMLDOC 1.8.27 - '.html' File Handling Stack Buffer Overflow

/ HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Kohli http://www.pank4j.com pankaj@zion:/test/htmldoc$ cat...

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow

HTMLDOC 1.8.27 - .html File Handling Stack Buffer Overflow / HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Exploit Linux Reference: https://www.securityfocus.com/bid/35727 Tested on HTMLDOC 1.8.27 on Debian 5.0 +ASLR Credit: ANTHRAX666 for finding the vulnerability Coded by Pankaj Koh...

HTMLDOC 1.8.27 (html File Handling) Stack Buffer Overflow Exploit

Exploit for linux platform in category local exploits ================================================================= HTMLDOC 1.8.27 html File Handling Stack Buffer Overflow Exploit ================================================================= / HTMLDOC 'html' File Handling Remote Stack...

SafeNet SoftRemote IKE Service Buffer Overflow

This module exploits a stack buffer overflow in Safenet SoftRemote IKE IreIKE.exe service. When sending a specially crafted udp packet to port 62514 an attacker may be able to execute arbitrary code. This module has been tested with Juniper NetScreen-Remote 10.8.0 Build 20 using...

MailEnable 1.52 - HTTP Mail Service Stack Buffer Overflow (PoC)

MailEnable 1.52 - HTTP Mail Service Stack Buffer Overflow PoC / MailEnable 1.52 HTTP Mail Service Stack Overflow POC Exploitencoded comand Debugging Info szAppName : MEHTTPS.EXE szAppVer : 1.0.0.1 szModName : MEHTTPS.EXE szModVer : 1.0.0.1 offset : 00010c21 Files that caused error :...

Microsoft Internet Information Server (IIS) FTP server NLST stack buffer overflow

Overview The Microsoft IIS FTP server contains a stack buffer overflow in the handling of directory names, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description IIS is a web server that comes with Microsoft Windows. IIS also includes FTP server...

Embedthis Appweb 3.0b.2-4 - Remote Buffer Overflow (PoC)

/ Embedthis Appweb Remote Stack Buffer Overflow Poc Embedthis Appweb Debugging Info ------------------------------- ASM INSTRUCTIONS ---------------- 100076CD 8B0A MOV ECX,DWORD PTR DS:EDX 100076CF 8B50 10 MOV EDX,DWORD PTR DS:EAX+10 100076D2 51 PUSH ECX 100076D3 52 PUSH EDX 100076D4 68 14040110...

linux/x86 - /bin/sh polymorphic shellcode 48 bytes

linux/x86 /bin/sh polymorphic shellcode 48 bytes. Shellcode exploit for linx86 platform / Title: Polymorphic Shellcode /bin/sh - 48 bytes Author: Jonathan Salwan Mail: submit ! shell-storm.org ! DataBase of shellcode : http://www.shell-storm.org/shellcode/ Original Informations...

Serveez 0.1.7 - If-Modified-Since Header Stack Buffer Overflow

Serveez 0.1.7 - If-Modified-Since Header Stack Buffer Overflow source: https://www.securityfocus.com/bid/42560/info Serveez is prone to a remote stack-based buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application...

Mediacoder 0.6.2.4275 - '.lst' Local Stack Buffer Overflow

!/usr/bin/perl MediaCoder 0.6.2.4275 .lst Stack Based Overflow Discovered by : SKULL-HACKER my $header = "\x5B\x70\x6C\x61\x79\x6C\x69\x73\x74\x5D\x0A\x46\x69\x6C\x65\x31\x3D"; my $junk = "\x41" x 254; my $ret = "\x93\x43\x92\x7c"; my $nop = "\x90" x 25; win32exec - EXITFUNC=seh CMD=calc.exe...

Mediacoder 0.6.2.4275 - .lst Local Stack Buffer Overflow

Mediacoder 0.6.2.4275 - .lst Local Stack Buffer Overflow !/usr/bin/perl MediaCoder 0.6.2.4275 .lst Stack Based Overflow Discovered by : SKULL-HACKER my $header = "\x5B\x70\x6C\x61\x79\x6C\x69\x73\x74\x5D\x0A\x46\x69\x6C\x65\x31\x3D"; my $junk = "\x41" x 254; my $ret = "\x93\x43\x92\x7c"; my $nop ...

MediaCoder 0.6.2.4275 (.lst File) Stack Buffer Overflow Exploit

Exploit for unknown platform in category local exploits =============================================================== MediaCoder 0.6.2.4275 .lst File Stack Buffer Overflow Exploit =============================================================== !/usr/bin/perl MediaCoder 0.6.2.4275 .lst Stack Bas...

Linux Kernel SGI GRU驱动单字节漏洞

Bugraq ID: 35753 CNCAN ID：CNCAN-2009072204 Linux是一款开放源代码的操作系统。 Linux sgi-gru procfs接口实现存在内核栈缓冲区溢出，本地攻击者可以利用漏洞对系统进行拒绝服务攻击，可能导致以内核上下文执行任意指令。 optionswrite函数的"count"参数是用户可控制的，利用这个漏洞可以写'\0'字节到内核堆栈上大多数任意位置，可能导致任意代码执行。 Linux kernel 2.6.30 Linux kernel 2.6.29 4 Linux kernel 2.6.29 1 Linux kernel 2.6.29...

openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-237)

This update brings mozilla-xulrunner181 to security fix version 1.8.1.17. It contains the following security fixes: MFSA 2008-45 / CVE-2008-4069: XBM image uninitialized memory reading MFSA 2008-44 / CVE-2008-4067 / CVE-2008-4068: resource: traversal vulnerabilities MFSA 2008-43: BOM characters...

Oracle 8i TNS Listener SERVICE_NAME Buffer Overflow

This module exploits a stack buffer overflow in Oracle. When sending a specially crafted packet containing a long SERVICENAME to the TNS service, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...