6841 matches found
EMC AlphaStor Device Manager Arbitrary Command Execution
EMC AlphaStor Device Manager is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
PHP Execute Command
Execute a single system command This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Payload::Php def initializeinfo =...
Windows Upload/Execute, Reverse TCP Stager (IPv6)
Uploads an executable and runs it staged. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
Windows Inject DLL, Reverse TCP Stager (IPv6)
Inject a custom DLL into the exploited process. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
Windows Upload/Execute, Bind IPv6 TCP Stager (Windows x86)
Uploads an executable and runs it staged. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
Windows Command Shell, Reverse TCP Stager (IPv6)
Spawn a piped command shell staged. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
VNC Server (Reflective Injection), Reverse TCP Stager (IPv6)
Inject a VNC Dll via a reflective loader staged. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
Reflective DLL Injection, Bind IPv6 TCP Stager (Windows x86)
Inject a DLL via a reflective loader. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
Windows Command Shell, Bind IPv6 TCP Stager (Windows x86)
Spawn a piped command shell staged. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
Windows Meterpreter (Reflective Injection), Reverse TCP Stager (IPv6)
Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module...
Reflective DLL Injection, Reverse TCP Stager (IPv6)
Inject a DLL via a reflective loader. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
Windows Meterpreter (skape/jt Injection), Bind IPv6 TCP Stager (Windows x86)
Inject the meterpreter server DLL staged. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
VNC Server (Reflective Injection), Bind IPv6 TCP Stager (Windows x86)
Inject a VNC Dll via a reflective loader staged. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
Windows Meterpreter (Reflective Injection), Bind IPv6 TCP Stager (Windows x86)
Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module...
Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (IPv6)
Inject the meterpreter server DLL staged. Connect back to the attacker over IPv6 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 289 include Msf::Payload::Stager include...
Windows Inject DLL, Bind IPv6 TCP Stager (Windows x86)
Inject a custom DLL into the exploited process. Listen for an IPv6 connection Windows x86 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 298 include Msf::Payload::Stager include...
Reflective DLL Injection, Reverse TCP Stager (No NX or Win7)
Inject a DLL via a reflective loader. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Reflective DLL Injection, Bind TCP Stager (No NX or Win7)
Inject a DLL via a reflective loader. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include Msf::Payload::Windows d...
VNC Server (Reflective Injection), Reverse TCP Stager (No NX or Win7)
Inject a VNC Dll via a reflective loader staged. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Windows Inject DLL, Reverse TCP Stager (No NX or Win7)
Inject a custom DLL into the exploited process. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (No NX or Win7)
Inject the meterpreter server DLL staged. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Windows Command Shell, Reverse TCP Stager (No NX or Win7)
Spawn a piped command shell staged. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include Msf::Payload::Window...
Windows Command Shell, Bind TCP Stager (No NX or Win7)
Spawn a piped command shell staged. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include Msf::Payload::Windows def...
Windows Inject DLL, Bind TCP Stager (No NX or Win7)
Inject a custom DLL into the exploited process. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include...
Windows Meterpreter (Reflective Injection), Bind TCP Stager (No NX or Win7)
Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModul...
Windows Upload/Execute, Reverse TCP Stager (No NX or Win7)
Uploads an executable and runs it staged. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Windows Upload/Execute, Bind TCP Stager (No NX or Win7)
Uploads an executable and runs it staged. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include Msf::Payload::Windo...
Windows Meterpreter (skape/jt Injection), Bind TCP Stager (No NX or Win7)
Inject the meterpreter server DLL staged. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include Msf::Payload::Windo...
VNC Server (Reflective Injection), Bind TCP Stager (No NX or Win7)
Inject a VNC Dll via a reflective loader staged. Listen for a connection No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 201 include Msf::Payload::Stager include...
Windows Meterpreter (Reflective Injection), Reverse TCP Stager (No NX or Win7)
Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module...
Now SMS/MMS Gateway Buffer Overflow
This module exploits a stack buffer overflow in Now SMS/MMS Gateway v2007.06.27. By sending a specially crafted GET request, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
MS00-094 Microsoft IIS Phone Book Service Overflow
This is an exploit for the Phone Book Service /pbserver/pbserver.dll described in MS00-094. By sending an overly long URL argument for phone book updates, it is possible to overwrite the stack. This module has only been tested against Windows 2000 SP1. This module requires Metasploit:...
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request rxsUseLicenseIni, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit:...
DNS Lookup Result Comparison
This module can be used to determine differences in the cache entries between two DNS servers. This is primarily useful for detecting cache poisoning attacks, but can also be used to detect geo-location load balancing. This module requires Metasploit: https://metasploit.com/download Current sourc...
Wireshark LDAP Dissector DOS
The LDAP dissector in Wireshark 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service application crash via a malformed packet. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModu...
DNS Spoofing Helper Service
This module provides a DNS service that returns TXT records indicating information about the querying service. Based on Dino Dai Zovi DNS code from Karma. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'resol...
SpamAssassin spamd Remote Command Execution
This module exploits a flaw in the SpamAssassin spamd service by specifying a malicious vpopmail User header, when running with vpopmail and paranoid modes enabled non-default. Versions prior to v3.1.3 are vulnerable This module requires Metasploit: https://metasploit.com/download Current source:...
UoW pop2d Remote File Retrieval Vulnerability
This module exploits a vulnerability in the FOLD command of the University of Washington ipop2d service. By specifying an arbitrary folder name it is possible to retrieve any file which is world or group readable by the user ID of the POP account. This vulnerability can only be exploited with a...
UoW IMAP Server LSUB Buffer Overflow
This module exploits a buffer overflow in the 'LSUB' command of the University of Washington IMAP service. This vulnerability can only be exploited with a valid username and password. This module requires Metasploit: https://metasploit.com/download Current source:...
Novell GroupWise Messenger Client Buffer Overflow
This module exploits a stack buffer overflow in Novell's GroupWise Messenger Client. By sending a specially crafted HTTP response, an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Novell iPrint Client ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Novell iPrint Client 4.34. When sending an overly long string to the GetDriverSettings property of ienipp.ocx an attacker may be able to execute arbitrary code. -- coding: binary -- This module requires Metasploit: https://metasploit.com/download...
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Creative Software AutoUpdate Engine. When sending an overly long string to the cachefolder property of CTSUEng.ocx an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
Asus Dpcproxy Buffer Overflow
This module exploits a stack buffer overflow in Asus Dpcroxy version 2.0.0.19. It should be vulnerable until version 2.0.0.24. Credit to Luigi Auriemma This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
GLD (Greylisting Daemon) Postfix Buffer Overflow
This module exploits a stack buffer overflow in the Salim Gasmi GLD 'GLD Greylisting Daemon Postfix Buffer Overflow', 'Description' = %q This module exploits a stack buffer overflow in the Salim Gasmi GLD 'aushack' , 'Arch' = ARCHX86, 'Platform' = 'linux', 'References' = 'CVE', '2005-1099' ,...
DoubleTake/HP StorageWorks Storage Mirroring Service Authentication Overflow
This module exploits a stack buffer overflow in the authentication mechanism of NSI Doubletake which is also rebranded as HP Storage Works. This vulnerability was found by Titon of Bastard Labs. This module requires Metasploit: https://metasploit.com/download Current source:...
CA BrightStor HSM Buffer Overflow
This module exploits one of the multiple stack buffer overflows in Computer Associates BrightStor HSM. By sending a specially crafted request, an attacker could overflow the buffer and execute arbitrary code. This module requires Metasploit: https://metasploit.com/download Current source:...
VNC Authentication None Detection
Detect VNC servers that support the "None" authentication method. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VNC Authentication None Detection', 'Description' = 'Detect VNC servers that...
Anonymous FTP Access Detection
Detect anonymous read/write FTP server access. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anonymous FTP Access Detection', 'Description' = 'Detect anonymous read/write FTP server access.',...
Matt Wright guestbook.pl Arbitrary Command Execution
The Matt Wright guestbook.pl 'Matt Wright guestbook.pl Arbitrary Command Execution', 'Description' = %q The Matt Wright guestbook.pl 'aushack' , 'License' = MSFLICENSE, 'References' = 'CVE...
WinVNC Web Server GET Overflow
This module exploits a buffer overflow in the AT WinVNC version 'WinVNC Web Server GET Overflow', 'Description' = %q This module exploits a buffer overflow in the AT&T WinVNC version 'aushack', 'License' = MSFLICENSE, 'References' = 'BID', '2306' , 'OSVDB', '6280' , 'CVE', '2001-0168' , ,...