BigAnt Server 2.52 SP5 - SEH Stack Overflow ROP-based exploit (ASLR + DEP bypass)

No description provided by source. Exploit Title: BigAnt Server 2.52 SP5 SEH Stack Overflow ROP-based exploit ASLR + DEP bypass Date: 03/11/2012 Exploit Author: Lorenzo Cantoni Vendor Homepage: http://www.bigantsoft.com/ Version: BigAnt Console 2.52 SP5 Tested on: Windows 7 SP0 x86 Italian -...

Firefox XMLSerializer Use After Free

This module exploits a vulnerability found on Firefox 17.0 'Firefox XMLSerializer Use After Free', 'Description' = %q This module exploits a vulnerability found on Firefox 17.0 MSFLICENSE, 'Author' = 'regenrecht', Vulnerability Discovery, Analysis and PoC 'juan vazquez' Metasploit module ,...

Firebird - Relational Database CNCT Group Number Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Firebird Relational Database CNCT Group Number Buffer Overflow', 'Description' = %q This module exploits a vulnerability in...

Enterasys NetSight nssyslogd.exe Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Enterasys NetSight nssyslogd.exe Buff...

MPlayer - '.SAMI' Subtitle File Buffer Overflow (DEP Bypass) (Metasploit)

require 'msf/core' class MetasploitModule 'Mplayer SAMI Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in SMPlayer 0.6.9 Permanent DEP /AlwaysON. The overflow is triggered during the parsing of an overly long string found in a malicious SAMI subtitle...

7-Technologies IGSS 9 - IGSSdataServer .Rms Rename Buffer Overflow (Metasploit)

$Id: igss9igssdataserverrename.rb 12886 2011-06-09 06:04:04Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

A-PDF All to MP3 Converter v.2.0.0 DEP Bypass

Exploit for windows platform in category local exploits Exploit Title: A-PDF All to MP3 Converter v.2.0.0 DEP Bypass Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: 2.0.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Email: email protected Home:...

A-PDF WAV To MP3 Converter 1.2.0 DEP Bypass

Exploit Title: A-PDF Wav to MP3 Converter v 1.2.0 DEP Bypass Software Link: http://www.a-pdf.com/wav-to-mp3/a-pdf-wtm.exe Version: 1.2.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Hicham Oumounid Email: [email protected] Home: http://net-effects.blogspot.com Big thanks to...

A-PDF All to MP3 Converter 2.0.0 - DEP Bypass

A-PDF All to MP3 Converter 2.0.0 - DEP Bypass Exploit Title: A-PDF All to MP3 Converter v.2.0.0 DEP Bypass Software Link: http://www.a-pdf.com/all-to-mp3/download.htm Version: 2.0.0 Tested on: Win XP SP3 French Date: 12/05/2011 Author: h1ch4m Email: [email protected] Home:...

AoA Audio Extractor v2.x ActiveX ROP exploit

Exploit for windows platform in category remote exploits ============================================ AoA Audio Extractor v2.x ActiveX ROP exploit ============================================ AoA Audio Extractor v2.x ActiveX ROP exploit Hadji Samir - s-dzhotmail.fr & mrme - mrmenet-ninja.net ' RO...

AoA Audio Extractor 2.x - ActiveX ROP

AoA Audio Extractor v2.x ActiveX ROP exploit Hadji Samir - s-dzhotmail.fr & mrme - mrmenet-ninja.net ' ROP magic begins here: Stack pivot seh = unescape"%72%2a%02%10"' 0x10022a72 == ADD ESP,604; RETN 4 ' VirtualProtect placeholders ; vp = "AAAA" vp = vp + "BBBB" vp = vp + "CCCC" vp = vp + "DDDD" ...