This Metasploit module exploits a stack-based buffer overflow vulnerability in the latest version 3.5 of TugZip archiving utility. In order to trigger the vulnerability, an attacker must convince someone to load a specially crafted zip file with TugZip by double click or file open. By doing so, an attacker can execute arbitrary code as the victim user.
0ac057d8b5dce6496b4b683ba3aea744Iconics GENESIS32 version 9.21.201.01 suffers from an integer overflow vulnerability. The GenBroker service on port 38080 is affected by three integer overflow vulnerabilities while handling opcode 0x4b0, which is caused by abusing the the memory allocations needed for the number of elements passed by the client. This results unexpected behaviors such as direct registry calls, memory location calls, or arbitrary remote code execution. Please note that in order to ensure reliability, this exploit will try to open calc (hidden), inject itself into the process, and then open up a shell session. Also, DEP bypass is supported.
598c01f621d3562c965ff0d9cbaa8d3cThis Metasploit module exploits a vulnerability in the igssdataserver.exe component of 7-Technologies IGSS up to version 9.00.00 b11063. While processing a ListAll command, the application fails to do proper bounds checking before copying data into a small buffer on the stack. This causes a buffer overflow and allows to overwrite a structured exception handling record on the stack, allowing for unauthenticated remote code execution.
869f7bc482600120671a510bc7e91beeThis Metasploit module exploits a stack-based buffer overflow vulnerability in version 3.0 of ediSys Corp.'s eZip Wizard. In order for the command to be executed, an attacker must convince someone to open a specially crafted zip file with eZip Wizard, and access the specially file via double-clicking it. By doing so, an attacker can execute arbitrary code as the victim user.
0abe052d47adcd6bbc48298caa1dedcaThis Metasploit module exploits a stack buffer overflow in Race river's Integard Home/Pro internet content filter HTTP Server. Versions prior to 2.0.0.9037 and 2.2.0.9037 are vulnerable. The administration web page on port 18881 is vulnerable to a remote buffer overflow attack. By sending an long character string in the password field, both the structured exception handler and the saved extended instruction pointer are over written, allowing an attacker to gain control of the application and the underlying operating system remotely. The administration website service runs with SYSTEM privileges, and automatically restarts when it crashes.
bb6a939603cc7cb3cca5941b99529d4aThis Metasploit module exploits a stack buffer overflow in Race river's Integard Home/Pro internet content filter HTTP Server. Versions prior to 2.0.0.9037 and 2.2.0.9037 are vulnerable. The administration web page on port 18881 is vulnerable to a remote buffer overflow attack. By sending an long character string in the password field, both the structured exception handler and the saved extended instruction pointer are over written, allowing an attacker to gain control of the application and the underlying operating system remotely. The administration website service runs with SYSTEM privileges, and automatically restarts when it crashes.
647d8990db0dbe0d59c18c7f7d7d73ffThis is a Metasploit module that exploits a remote buffer overflow in Integard Home and Pro version 2.
251a1fa774a8771e7fdd5c688a54d282123 Flashchat version 7.8 Remote suffers from clear text password disclosure, open crossdomain policy, cross site scripting and directory traversal vulnerabilities.
37a5625549a6c12775a159307f339e91Sygate Personal Firewall 5.6 build 2808 active-x exploit with DEP bypass.
ed3ddf488449bb61575e360b684ed367This Metasploit module exploits a stack buffer overflow in the ANSMTP.dll/AOSMTP.dll ActiveX Control provided by CommuniCrypt Mail 1.16. By sending a overly long string to the "AddAttachments()" method, an attacker may be able to execute arbitrary code.
6f6da2dce8e6111b69533304c52a3b65CommuniCrypt Mail version 1.16 (ANSMTP.dll/AOSMTP.dll) Active-X buffer overflow exploit.
9f9c60da6f2917eb5cae3cdfe8259b1bSyncBack Freeware version 3.2.20.0 local buffer overflow exploit that creates a malicious .sps file.
6ccdd9e93111100078bb4e350a2abf3eIncredimail suffers from an Active-X memory corruption vulnerability in ImShExtU.dll.
7d2dc7cbde253c562e85a113e06605ebUrgent Backup version 3.20, ABC Backup Pro version 5.20 and ABC Backup version 5.50 SEH exploit that creates a malicious .zip file.
89a505187bd8d44b91b8fb684d5ce048Archive Searcher version 2.1 suffers from a stack overflow vulnerability.
f2416853c78ec42000521fdc81ee7de1Tembria Server Monitor version 5.6.0 suffers from a stack overflow vulnerability.
dbba3c9ab99ad6479338f1fad1e5e128eZip Wizard version 3.0 buffer overflow exploit that creates a malicious .zip file.
53f7b33bea87252faa2402d14b2210aeZipScan version 2.2c buffer overflow exploit that creates a malicious .zip file.
bb916aa3b1c42584f44a404c66bbc4d3TugZip version 3.5 SEH buffer overflow exploit that creates a malicious .zip file.
6574c312b39c0270586c7e5fc6e9ca07Open and Compact FTPd pre-authentication remote exploit that binds a shell to port 4444.
32303e65b7147228aad8736f08543ca8This exploits a stack overflow in the BigAnt Messaging Service, part of the BigAnt Server product suite. This Metasploit module was tested successfully against version 2.52. NOTE: The AntServer service does not restart, you only get one shot.
9faf9e3ec743c3615196e705a8f3befcThis exploits a stack overflow in NetTransport Download Manager, part of the NetXfer suite. This Metasploit module was tested successfully against version 2.90.510.
d2c89b851a5704b877f97e26d833ec93NetTransport Download manager version 2.90.510 buffer overflow exploit.
92448b479431c871f50bb83cb72b28ceBigAnt Server version 2.52 SEH overflow exploit that binds a shell to port 4444.
58660742ab797a03d7ba1865a9d87392
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed