NetSetMan 4.7.1 Buffer Overflow

Exploit Title: NetSetMan 4.7.1 - Local Buffer Overflow SEH Unicode Exploit Author: Devin Casadey Discovery Date: 2019-03-11 Vendor Homepage: https://www.netsetman.com/ Software Link: https://www.netsetman.com/netsetman.exe Tested Version: 4.7.1 Tested on: Windows XP SP3...

R 3.4.4 XP SP3 - Buffer Overflow (Non SEH)

R 3.4.4 XP SP3 - Buffer Overflow Non SEH !/usr/bin/python Exploit Title: R 3.4.4 - Local Buffer Overflow Windows XP SP3 Date: 21/01/2019 Exploit Author: Dino Covotsos - Telspace Systems Vendor Homepage: https://cloud.r-project.org/bin/windows/ Contact: [email protected] Twitter:...

DiskSavvy Enterprise 9.1.14 / 9.3.14 GET Buffer Overflow Exploit

This Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of DiskSavvy Enterprise versions 9.1.14 and 9.3.14, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested...

uSQLite 1.0.0 Denial Of Service

!/usr/bin/python Exploit Title: Remote buffer overflow vulnerability in uSQLite 1.0.0 PoC Date: 27/10/1016 Exploit Author: Peter Baris Software Link: https://sourceforge.net/projects/usqlite/?source=directory Version: 1.0.0 Tested on: windows 7 and XP SP3 Longer strings will cause heap based...

Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Exploit

Exploit for windows platform in category remote exploits Exploit Title: Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Exploit Author: ArminCyber Version: 7.2 Tested on: XP SP3 EN category: Remote Exploit Usage: ./exploit.py ip port import socket import sys host =...

Easy File Sharing Web Server 7.2 HEAD SEH Buffer Overflow

Exploit Title: Easy File Sharing Web Server 7.2 - HEAD HTTP request SEH Buffer Overflow Date: 12/2/2015 Exploit Author: ArminCyber Contact: [email protected] Version: 7.2 Tested on: XP SP3 EN category: Remote Exploit Usage: ./exploit.py ip port import socket import sys host = strsys.argv1...

Adobe-Flash-Player-SequenceParameterSetNALUnit

Abysssec Public Exploit CVE-2011-2140 This exploit tested on Adobe Flash Player 10.3.181.34 XP sp3 contact : info at abysssec.com...

Windows TrackPopupMenu Win32k NULL Pointer Dereference Exploit

This Metasploit module exploits a NULL Pointer Dereference in win32k.sys, the vulnerability can be triggered through the use of TrackPopupMenu. Under special conditions, the NULL pointer dereference can be abused on xxxSendMessageTimeout to achieve arbitrary code execution. This Metasploit module...

CVE-2014-4971

Microsoft Windows XP SP3 does not validate addresses in certain IRP handler routines, which allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted address in an IOCTL call, related to 1 the MQAC.sys driver in the MQ Access Control subsystem...

Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation

Title: Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation Advisory ID: KL-001-2014-003 Publication Date: 2014.07.18 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt 1. Vulnerability Details Affected Vendor: Microsoft Affected Product: MQ Access Contr...

Win32 Shellcode (cmd.exe) for XP SP3 English 26 Bytes

No description provided by source. / 26 Bytes Win32 Shellcode cmd.exe for XP SP3 English Author: Hellcode Research || TCC The Computer Cheats http://tcc.hellcode.net memberz: celil 'karak0rsan unuver , murderkey, murat kaslioglu, bob from murderkey: I love you merve lol from karak0rsan: fuck u ys...

Exploit: NCMedia Sound Editor Pro 7.5.1 - SEH & DEP

No description provided by source. !/usr/bin/python --------------------------------------------------------------------------- Exploit: NCMedia Sound Editor Pro v7.5.1 SEH&DEP Author: b33f - http://www.fuzzysecurity.com/ OS: Windows 7 Pro SP1 probably universal across 32-bit POC - Julien Ahrens ...

Hanso Player 1.4.0.0 - Buffer Overflow - DoS Skinfile

No description provided by source. Exploit Title: Hanso Player 1.4.0.0 Buffer Overflow - DoS Skinfile Date: 05.02.2011 Author: Dame Jovanoskibadc0re Software Link: http://www.hansotools.com/downloads/hanso-player-setup.exe Version: 1.4.0.0 Tested on: XP sp3 from struct import import time...

CoreFTP 2.1 b1637 - (password field) Universal BOF Exploit

No description provided by source. !/usr/bin/python Vulnerability : CoreFTP v2.1 b1637 password field Universal BOF exploit Found by : mrme seeleymagic at hotmail dot com Coded by : mrme & corelanc0d3r Download from : http://www.coreftp.com/download.html Tested on : XP SP3 En VirtualBox Greetz to...

ActiTime 2.0-MA CSRF Vulnerability

No description provided by source. |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | |...

Unreal Tournament Remote Buffer Overflow Exploit (SEH)

No description provided by source. Unreal Tournament Remote Buffer Overflow Exploit SEH Windows Discovered by: Luigi Auriemma http://aluigi.altervista.org/adv/unsecure-adv.txt Coded By: Fulcrum 08/02/2011 Patch: http://www.unrealadmin.org/forums/showthread.php?t=15616 Vulnerable: all ut99 servers...

SolarWinds TFTP Server <= 9.2.0.111 - Remote DoS Exploit

No description provided by source. !/usr/bin/perl SolarWinds TFTP Server =9.2.0.111 Remote DoS Exploit by Gaurav Baruah TFTP Server Service stops after payload is sent, and has to be started again in Config Tested on XP SP3 Big thnx: dragunov Greetz: Sanjay use IO::Socket; $port = 69; $host =...

WorldMail imapd 3.0 SEH overflow (egg hunter)

No description provided by source. !/usr/bin/python import sys import socket Exploit Title: WorldMail imapd 3.0 SEH overflow egg hunter Tested on: XP SP3 en-us Author: TheXero Website: www.thexero.co.uk http://www.nullsecurity.net Check for parameters if lensys.argv != 3: print Usage: + sys.argv0...

Adobe Illustrator CS4 14.0.0 - Encapsulated Postscript (.eps) Buffer Overflow Exploit

No description provided by source. ?php / Adobe Illustrator CS4 V14.0.0 Encapsulated Postscript .eps overlong DSC Comment Buffer Overflow Exploit by Nine:Situations:Group::pyrokinesis site: http://retrogod.altervista.org/ An overlong string as DSC comment more than 42000 bytes results in a direct...

Sysax Multi-Server 5.64 Create Folder Buffer Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit...