222 matches found
Microsoft Windows 98SE User32.DLL Icon Handling Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13791/info The Microsoft 'user32.dll' library is prone to a denial of service vulnerability. The issue manifests when the library handles icon .ico files containing large size values. Reports indicate that this issue exis...
Windows XP PRO SP3 - Full ROP calc shellcode
No description provided by source. / Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato, Jahmel OS-DLL's used: Base | Top | Size | Version...
Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (SMTP)
No description provided by source. $Id: ms07017aniloadimagechunksize.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing...
Realtek Audio Microphone Calibration 1.1.1.6 Exploit
No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition App. has classic buffer overflow vulnerability it can be triggered by passing too long argument as a startup parameter. Shellcode can by run via...
Realtek Audio Control Panel 1.0.1.65 Exploit
No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.24 tested on: Windows XP SP3 Home Edition App. has classic buffer overflow vulnerability it can be triggered by passing a too long argument as a startup parameter. Shellcode can by run via...
PSOProxy 0.91 Remote Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/9706/info It has been reported that PSOProxy is prone to a remote buffer overflow vulnerability. The issue is due to the insufficient boundary checking. A malicious user may exploit this condition to potentially corrupt...
PrivateWire Gateway 3.7 - Remote Buffer Overflow Exploit (win32)
No description provided by source. This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artisti...
PCMAN FTP 2.07 - Buffer Overflow Exploit
No description provided by source. Exploit Title: PCMAN FTP 2.07 Long Command Buffer Overflow unauthenticated Date: Feb 19, 2014 Exploit Author: Sumit Version: 2.07 Tested on: Windows XP Professional SP3 Description: Buffer overflow is triggered upon sending long string to PCMAN FTP 2.07 in place...
Mini-Stream 3.0.1.1 - Buffer Overflow Exploit
No description provided by source. $Id: ministream.rb 11516 2011-01-08 01:13:26Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Ipswitch WS_FTP Server 3.4/4.0 FTP Command Buffer Overrun Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/8542/info Ipswitch WSFTP Server is reported to be prone to buffer overruns when handling data supplied to the APPE and STAT FTP commands. An FTP user who supplies excessive input to these commands could potentially execut...
Mini-Stream 3.0.1.1 - Buffer Overflow Exploit (Meta)
No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...
Qualcomm Eudora 5 MIME Multipart Boundary Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5397/info A buffer overflow vulnerability has been reported in Qualcomm's Eudora mail client for Windows systems. The condition occurs if a MIME multipart boundary is of excessive length. Remote attackers may exploit this...
PHP <= 5.2.3 snmpget() object id Local Buffer Overflow Exploit
No description provided by source. ?php //PHP = 5.2.3 snmpget object id local Buffer Overflow eip overwrite exploit //bug discovered by rgod //Original advisory: http://retrogod.altervista.org/php446snmpgetlocalbof.html //quote=rgodmore than 256 chars result in simple eip overwrite/quote //right!...
CoolPlayer - m3u File Local Buffer Overflow Exploit
No description provided by source. !/usr/bin/perl ksOSe - 07/29/2008 use warnings; use strict; http://www.metasploit.com EXITFUNC=seh, CMD=c:\WINDOWS\system32\calc.exe x86/shikataganai succeeded, final size 169 my $shellcode = \xd9\xca\xd9\x74\x24\xf4\x5e\xb8\xf5\x65\x2d\xfb\x31\xc9\xb1...
Cain & Abel 4.9.23 (rdp file) Buffer overflow Exploit
No description provided by source. exploit.py print print !R4Q!4N H4CK3R print Cain & Abel 4.9.23 rdp file Buffer overflow Exploit print By:Encrypt3d.M!nd print encrypt3d.blogspot.com print print Greetz:-=Mizo=-,L!0N,El Mariachi,MiNi SpIder..and all my friends print This is exploit for my PoC pri...
Easy FTP Server 1.7.0.11 - CWD Command Remote Buffer Overflow Exploit (Post Auth)
No description provided by source. Exploit Title: Easy FTP Server v1.7.0.11 CWD Command Remote Buffer Overflow Exploit Post Auth Date: 2010-07-18 Author: fdisk @fdiskyou e-mail: fdiskyou at deniable.org Software Link: Version: 1.7.0.11 Tested on: Windows XP SP3 en import socket import sys...
Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8827/info Microsoft has reported the existence of a local buffer overrun vulnerability in an undisclosed User32.dll library function. This function is used by applications implementing the use of ListBox or ComboBox...
Chasys Media Player 1.1 - (.m3u) Stack Overflow Exploit
No description provided by source. !/usr/bin/python Chasys Media Player 1.1 .m3u Stack Overflow Exploit By: Encrypt3d.M!nd Credit flys to: zAx the good thing in this one that the program won't crash when the playlist file imported,and will keep running. header = EXTM3U\n junk = \x41260 eip =...
3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow Exploit
No description provided by source. 3comtftpdxpsp2.rb Copyright C cthulhu This is a poc intended to exploit the 3Com TFTP Service version 2.0.1 long transporting mode buffer overflow under xp sp2 english Vulnerability discovered by Liu Qixu Usage : ruby 3comftpdxpsp2.rb victimhost victimport Defau...
Chasys Media Player 1.1 - (.pls) Stack Overflow Exploit (2)
No description provided by source. !/usr/bin/python Chasys Media Player 1.1 .pls Stack Overflow Exploit By: Encrypt3d.M!nd Credit flys to: zAx the good thing in this one that the program won't crash when the playlist file imported,and will keep running. header =...