CVE-2004-2176

The Internet Connection Firewall ICF in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls...

Understanding Network Access in Windows AppContainers

Posted by James Forshaw, Project Zero Recently I've been delving into the inner workings of the Windows Firewall. This is interesting to me as it's used to enforce various restrictions such as whether AppContainer sandboxed applications can access the network. Being able to bypass network...

MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow (EggHunter)

MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow EggHunter Exploit Title: MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow EggHunter Author: sasaga92 Discovery Date: 2019-07-18 Vendor Homepage: www.computerlab.com Software Link:...

MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow (EggHunter)

Exploit Title: MAPLE Computer WBT SNMP Administrator 2.0.195.15 - Remote Buffer Overflow EggHunter Author: sasaga92 Discovery Date: 2019-07-18 Vendor Homepage: www.computerlab.com Software Link: https://www.computerlab.com/index.php/downloads/category/27-device-manager Software Link:...

Windows Meterpreter Shell, Reverse HTTP Inline (x64)

Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 204892 include Msf::Payload::TransportConf...

PCMan FTP Server 2.0.7 - 'RENAME' Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Original Exploit Information Date: 29 Aug 2015 Exploit Author: Koby Tested on: Windows XP SP3 Link: https://www.exploit-db.com/exploits/38013/ Software Information Vendor...

PCMan FTP Server 2.0.7 - RENAME Remote Buffer Overflow (Metasploit)

PCMan FTP Server 2.0.7 - RENAME Remote Buffer Overflow Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Original Exploit Information Date: 29 Aug 2015 Exploit Author: Koby Tested on: Windows XP SP3 Link:...

PCMan FTP Server 2.0.7 - RENAME Command Buffer Overflow (Metasploit)

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Original Exploit Information Date: 29 Aug 2015 Exploit Author: Koby Tested on: Windows XP SP3 Link:...

Windows Meterpreter Shell, Reverse HTTPS Inline

Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 178780 include Msf::Payload::TransportConf...

Total Commander 8.52 Buffer Overflow

!/usr/bin/python EXPLOIT TITLE: Total Commander 8.52 Buffer Overflow AUTHOR: VIKRAMADITYA "-OPTIMUS" Credits: UnN0n Date of Testing: 19th September 2015 Download Link : http://tcmd852.s3-us-west-1.amazonaws.com/tc852x32b1.exe Tested On : Windows XP Service Pack 2 Steps to Exploit Step 1: Execute...

How I Got Here: Window Snyder

Dennis Fisher talks with Window Snyder of Fastly about her early interest in technology, what it was like meeting the L0pht crew at the MIT Flea as a teenager, her time at @stake, working on XP SP2 at Microsoft, Apple’s security evolution and much more. Download: 18snyder.mp3 Music by Chris...

Serenity Media Player 3.2.3 Buffer Overflow Exploit

Exploit for windows platform in category local exploits Serenity is a playlist based audio player for Windows. It features a clean and simple interface with minimal overhead.Formats supported are limited only by CODECs and drivers installed on the machine SEH Local buffer overflow in Serenity Aud...

Quick Search 1.1.0.189 - search textbox Unicode SEH egghunter Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/perl = Exploit Title: Quick Search 1.1.0.189 'search textbox' Unicode SEH egghunter Buffer Overflow Date: 2015-04-23 Exploit Author: Tomislav Paskalev Vulnerable Software: Quick Search v1.1.0.189 Vendor Homepage:...

MooPlayer 1.3.0 m3u SEH Buffer Overflow Exploit

Exploit for windows platform in category local exploits !/usr/bin/perl = Exploit Title: MooPlayer 1.3.0 'm3u' SEH Buffer Overflow Date: 09-02-2015 Exploit Author: Tomislav Paskalev Vulnerable Software: MooPlayer v1.3.0 Vendor Homepage: https://mooplayer.jaleco.com/ Software Link:...

Quick Search 1.1.0.189 - search textbox Buffer Overflow (SEH Unicode) (Egghunter)

Quick Search 1.1.0.189 - search textbox Buffer Overflow SEH Unicode Egghunter !/usr/bin/perl = Exploit Title: Quick Search 1.1.0.189 'search textbox' Unicode SEH egghunter Buffer Overflow Date: 2015-04-23 Exploit Author: Tomislav Paskalev Vulnerable Software: Quick Search v1.1.0.189 Vendor...

MooPlayer 1.3.0 - m3u Local Buffer Overflow (SEH) (2)

MooPlayer 1.3.0 - m3u Local Buffer Overflow SEH 2 !/usr/bin/perl = Exploit Title: MooPlayer 1.3.0 'm3u' SEH Buffer Overflow Date: 09-02-2015 Exploit Author: Tomislav Paskalev Vulnerable Software: MooPlayer v1.3.0 Vendor Homepage: https://mooplayer.jaleco.com/ Software Link:...

IceCream Ebook Reader 1.41 - Crash (PoC)

IceCream Ebook Reader 1.41 - Crash PoC Exploit Title: Icecream Ebook Reader v1.41 .mobi/.prc Denial of Service Date: 23/01/2015 Exploit Author: Kapil Soni Twitter: @Haxinos Vendor Homepage: http://icecreamapps.com/ Version: Icecream Ebook Reader v1.41 Tested on: Windows XP SP2 Technical Details &...

IceCream Ebook Reader 1.41 - Crash (PoC)

Exploit Title: Icecream Ebook Reader v1.41 .mobi/.prc Denial of Service Date: 23/01/2015 Exploit Author: Kapil Soni Twitter: @Haxinos Vendor Homepage: http://icecreamapps.com/ Version: Icecream Ebook Reader v1.41 Tested on: Windows XP SP2 Technical Details & Description:...

APPLE-SA-2014-10-16-6 iTunes 12.0.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-10-16-6 iTunes 12.0.1 iTunes 12.0.1 is now available and addresses the following: iTunes Available for: Windows 8, Windows 7, Vista, XP SP2 or later Impact: A man-in-the-middle attack while browsing the iTunes Store via iTunes may lead t...

Kolibri WebServer HTTP POST Request Handling Remote Stack Buffer Overflow

Added: 10/10/2014 CVE: CVE-2014-5289 BID: 69263 OSVDB: 110142 Background SENKAS Kolibri Webserver is a free very simple web server for Microsoft Windows that supports serving static web content. Problem Kolibri Webserver is vulnerable to a stack buffer overflow as a result of failure to properly...