67 matches found
Ayukov NFTP FTP Client 2.0 - Remote Buffer Overflow (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ayukov NFTP FTP Client Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability against Ayukov NFTPD...
win32/xp pro sp3 (EN) 32-bit - add new local administrator 113 bytes
No description provided by source. / Title: win32/xp pro sp3 EN 32-bit - add new local administrator 113 bytes Author: Anastasios Monachos secuid0 - anastasiosmatgmaildotcom Method: Hardcoded opcodes kernel32.winexec@7c8623ad, kernel32.exitprocess@7c81cafa Tested on: WinXP Pro SP3 EN 32bit - Buil...
BS.Player <= 2.34 Build 980 (.bsl) Local Buffer Overflow Exploit (SEH)
No description provided by source. ?php / Bs.Player = 2.34 Build 980 .bsl local buffer overflow 0day exploit seh by Nine:Situations:Group::pyrokinesis Overlong hostnames in bsplayer playlist files causes eax and seh handlers to be overwritten. Cannot reliably debug with olly because of code...
EDraw Flowchart ActiveX Control 2.3 (EDImage.ocx) Remote DoS Exploit (IE)
No description provided by source. EDraw Flowchart ActiveX Control 2.3 EDImage.ocx Remote DoS Exploit IE Vendor: EdrawSoft - http://www.edrawsoft.com Platform Used: MS Win XP Pro SP3 en / IE 8.0 CompanyName EDrawSoft FileDescription EDraw Flowchart ActiveX Control Module FileVersion 2, 3, 0, 6...
TFTP Server 1.4 ST (RRQ) Buffer Overflow Exploit
No description provided by source. !/usr/bin/python --------------------------------------------------------------------------- Exploit: TFTP SERVER V1.4 ST RRQ Overflow OS: Windows XP PRO SP3 Author: b33f --------------------------------------------------------------------------- Smashing the...
AiO (All into One) Flash Mixer 3 (.afp File) Crash PoC
No description provided by source. !/usr/bin/perl + Bug : AiO All into One Flash Mixer 3 .afp File Crash Vulnerability Exploit + program Download : http://www.goztun.com/download/AiOFlashMixerSetup.exe + Author : theEdit0r Contact me : the3dit0ratYahoodotcoM + Greetz to all my friends + Tested on...
SDP Downloader 2.3.0 - (.ASX) Local Buffer Overflow Exploit (SEH)
No description provided by source. usage: exploit.py xNote: In this case we have the problem of the safeseh, but if the machine uses idm and the option Use advanced browser integration is selected,then idmmbc.dll will be loaded the most of time. print print SDP Downloader v2.3.0 .ASX Local Buffer...
Beatport Player 1.0.0.283 - (.m3u) Local SEH Overwrite Exploit
No description provided by source. usage: exploit.py Grab the exploit file into the program print print Beatport Player 1.0.0.283 .m3u Seh Overwrite Exploit\n print Refer: http://www.milw0rm.com/exploits/8588\n print Exploit code: His0k4\n print Tested on: Windows XP Pro SP3 EN\n print greetz: TO...
Easy FTP Server 1.7.0.11 - MKD Command Remote Buffer Overflow Exploit (Post Auth)
No description provided by source. !/usr/bin/python import socket,sys Tested on XP Pro SP2 Eng and XP Pro SP3 Eng print Easy FTP Server v1.7.0.11 MKD Remote BoF Exploit Post Authentication Author / Discovered by : Karn Ganeshen Date : July 5, 2010 KarnGaneshen aT gmail d0t com...
IrfanView <= 3.99 IFF File Local Stack Buffer Overflow Exploit
No description provided by source. /Irfan View 3.99 .IFF File Local Stack Buffer Overflow This sploit runs calc.exe tested on Win XP Pro sp3;If you run it on another vs of Win make sure you chance the retaddress,but it works almost all the time so.. . Credits for finding the bug and sploit go to...
Mediacoder (.m3u) - SEH Buffer Overflow
No description provided by source. !/usr/bin/python import os import sys from struct import pack from time import sleep if os.name == nt: os.systemcls os.systemcolor 3f else: os.systemclear print +Exploit Title: All Mediacoder Product SEH Buffer Overflow +Download All Product:...
Aladdin Knowledge System Ltd - PrivAgent.ocx ChooseFilePath BOF
No description provided by source. !--------------------------------------------------------------------------- | Exploit: Aladdin Knowledge System Ltd - PrivAgent.ocx ChooseFilePath BOF | | Author: b33f - http://www.fuzzysecurity.com/ | | OS: Tested on XP PRO SP3 | | Browser: IE 4.01, IE 5.01, I...
MinaliC Webserver 2.0.0 Buffer Overflow
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 !/usr/bin/env python Exploit Title: MinaliC...
MediaCoder PMP Edition 0.8.17 Buffer Overflow
print """ +Exploit Title: MediaCoder PMP Edition 0.8.17 Buffer Overflow Exploit SEH +Download link: http://www.mediacoderhq.com/device/mpx.htm +Vulnerable Product: MediaCoder Personal Media Player Edition +Date found: 21.06.2013 +Date publish: 21.06.2013 +Founder: metacom +RST +Tested on: Windows...
Windows XP Pro SP3 - Full ROP calc shellcode
Windows XP Pro SP3 - Full ROP calc shellcode. Shellcode exploit for windows platform / Shellcode: Windows XP PRO SP3 - Full ROP calc shellcode Author: b33f http://www.fuzzysecurity.com/ Notes: This is probably not the most efficient way but I gave the dll's a run for their money ; Greets: Donato,...
Aladdin Knowledge System Ltd - PrivAgent.ocx ChooseFilePath Buffer Overflow
Aladdin Knowledge System Ltd - PrivAgent.ocx ChooseFilePath Buffer Overflow //Messagebox jsle var MessageBox = unescape '%ue9be%uac66%udb2b%ud9c2%u2474%u58f4%uc931%u3fb1%uc083%u3104%u1070%u7003%u0b10'+ '%u7593%u50c0%uf285%u9233%u2907%u2d89%u0459%u5a8a%ua6e8%u2ad8%u4c07%ucea8%u149c'+...
Aladdin Knowledge System Ltd Buffer Overflow
//Messagebox jsle var MessageBox = unescape '%ue9be%uac66%udb2b%ud9c2%u2474%u58f4%uc931%u3fb1%uc083%u3104%u1070%u7003%u0b10'+ '%u7593%u50c0%uf285%u9233%u2907%u2d89%u0459%u5a8a%ua6e8%u2ad8%u4c07%ucea8%u149c'+ '%u655d%ub8dc%u4fd6%uf619%udaf0%u51aa%uf500%u83b2%u7e62%u6020%u0b47%u54fc%u5f0c'+...
Aladdin Knowledge System Ltd - 'PrivAgent.ocx' ChooseFilePath Buffer Overflow
//Messagebox jsle var MessageBox = unescape '%ue9be%uac66%udb2b%ud9c2%u2474%u58f4%uc931%u3fb1%uc083%u3104%u1070%u7003%u0b10'+ '%u7593%u50c0%uf285%u9233%u2907%u2d89%u0459%u5a8a%ua6e8%u2ad8%u4c07%ucea8%u149c'+ '%u655d%ub8dc%u4fd6%uf619%udaf0%u51aa%uf500%u83b2%u7e62%u6020%u0b47%u54fc%u5f0c'+...
Surgemail 6.0a4 - Persistent Cross-Site Scripting
!/usr/bin/python ''' Author: loneferret of Offensive Security Product: SurgeMail Version: 6.0a4 Vendor Site: http://www.netwinsite.com Software Download: http://netwinsite.com/download.htm Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response received from CERT with disclosu...
TFTP Server 1.4 ST RRQ Overflow
!/usr/bin/python --------------------------------------------------------------------------- Exploit: TFTP SERVER V1.4 ST RRQ Overflow OS: Windows XP PRO SP3 Author: b33f --------------------------------------------------------------------------- Smashing the stack for fun and practise... This tf...