accept no compromises

Register | Login

FilesNewsUsersAuthors

Home Files News About Contact Add New

Showing 1 - 6 of 6

Files from Alexander Gavrun

FlexNet License Server Manager lmgrd Buffer Overflow

Posted May 22, 2012

Authored by Luigi Auriemma, sinn3r, Alexander Gavrun, juan vazquez | Site metasploit.com

This Metasploit module exploits a vulnerability in the FlexNet License Server Manager. The vulnerability is due to the insecure usage of memcpy in the lmgrd service when handling network packets, which results in a stack buffer overflow. In order to improve reliability, this module will make lots of connections to lmgrd during each attempt to maximize its success.

tags | exploit, overflow

advisories | OSVDB-81899

MD5 | 19d930127fce9ef37c1be58047232c2e

Download | Favorite | Comments (0)

Adobe Flash Player .mp4 'cprt' Overflow

Posted Mar 8, 2012

Authored by sinn3r, Alexander Gavrun, juan vazquez | Site metasploit.com

This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt .mp4 file loaded by Flash, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "Iran's Oil and Nuclear Situation.doc" phishing campaign.

tags | exploit, remote, arbitrary, code execution

advisories | CVE-2012-0754, OSVDB-79300

MD5 | 2626d08c17b93cf4cd5a93c330ea5ab0

Download | Favorite | Comments (0)

Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow

Posted Feb 10, 2012

Authored by Abysssec, sinn3r, Alexander Gavrun | Site metasploit.com

This Metasploit module exploits a vulnerability found in Adobe Flash Player's Flash10u.ocx component. When processing a MP4 file (specifically the Sequence Parameter Set), Flash will see if pic_order_cnt_type is equal to 1, which sets the num_ref_frames_in_pic_order_cnt_cycle field, and then blindly copies data in offset_for_ref_frame on the stack, which allows arbitrary remote code execution under the context of the user. Numerous reports also indicate that this vulnerability has been exploited in the wild. Please note that the exploit requires a SWF media player in order to trigger the bug, which currently isn't included in the framework. However, software such as Longtail SWF Player is free for non-commercial use, and is easily obtainable.

tags | exploit, remote, arbitrary, code execution

advisories | CVE-2011-2140, OSVDB-74439

MD5 | fa4f5d5aff50cce0a0d0d58669a8f81a

Download | Favorite | Comments (0)

Winamp 5.61 Heap Overflow

Posted May 15, 2011

Authored by Alexander Gavrun

Winamp version 5.61 suffers from an in_midi component heap overflow vulnerability. Crash proof of concept included.

tags | exploit, overflow, proof of concept

MD5 | aed3b962ece6293ebdd85c7b99e760b3

Download | Favorite | Comments (0)

PHP Phar Extension Heap Overflow

Posted Apr 22, 2011

Authored by Alexander Gavrun

The PHP phar extension suffers from a heap overflow vulnerability. PHP version 5.3.6 is affected with phar extension version 1.1.1.

tags | exploit, overflow, php

MD5 | 96f83d972431367d5fdce697500af028

Download | Favorite | Comments (0)

Edraw Office Viewer Component 7.4 Active-X Buffer Overflow

Posted Feb 25, 2011

Authored by Alexander Gavrun

Edraw Office Viewer component version 7.4 active-x related stack buffer overflow exploit.

tags | exploit, overflow, activex

MD5 | cbda59e598c9219aa5a7fbcb04fa2bdf

Download | Favorite | Comments (0)