trust is easily compromised

Register | Login

FilesNewsUsersAuthors

Home Files News About Contact Add New

Showing 101 - 125 of 1,487

Proof of Concept Files

Oracle AutoVue 20.0.1 AutoVueX Export3DBom Code Execution

Posted Oct 21, 2011

Authored by rgod | Site retrogod.altervista.org

Oracle AutoVue version 20.0.1 suffers from an AutoVueX Active-X Control Export3DBom remote code execution vulnerability. Proof of concept code included.

tags | exploit, remote, code execution, activex, proof of concept

systems | linux

MD5 | a476abce69a258c9812ab1161a7621fb

Download | Favorite | Comments (0)

Oracle AutoVue 20.0.1 AutoVueX ExportEdaBom Code Execution

Posted Oct 21, 2011

Authored by rgod | Site retrogod.altervista.org

Oracle AutoVue version 20.0.1 suffers from an AutoVueX Active-X Control ExportEdaBom remote code execution vulnerability. Proof of concept code included.

tags | exploit, remote, code execution, activex, proof of concept

systems | linux

MD5 | 6834ead3ed2a6b18b030e590d1c2d407

Download | Favorite | Comments (0)

Opera Use-After-Free Proof Of Concept

Posted Oct 20, 2011

Authored by Roberto Suggi Liverani

Opera use-after-free proof of concept denial of service exploit. A full analysis is provided as well.

tags | exploit, denial of service, proof of concept

MD5 | f9b81cf3c9630e77065b0807a084ad2b

Download | Favorite | Comments (0)

Oracle DataDirect Multiple Native Wire Protocol ODBC Drivers Buffer Overflow

Posted Oct 20, 2011

Authored by rgod | Site retrogod.altervista.org

Oracle DataDirect multiple native wire protocol ODBC drivers HOST attribute stack based buffer overflow proof of concept exploit. Oracle Hyperion Performance Management and BI version 11.1.2.1.0 is affected.

tags | exploit, overflow, protocol, proof of concept

MD5 | b45ff9698e86a1f31ad62dc540c6f3a1

Download | Favorite | Comments (0)

UnrealIRCd 3.2.8.1 Stack Overflow

Posted Oct 20, 2011

Authored by DiGMi

UnrealIRCd version 3.2.8.1 local configuration stack overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept

MD5 | fb1cbf7bb5cac0840b802d12560d3dbc

Download | Favorite | Comments (0)

Opera 11.52 Stack Overflow

Posted Oct 20, 2011

Authored by pigtail23

Opera versions 11.52 and below proof of concept stack overflow exploit.

tags | exploit, overflow, proof of concept

MD5 | b079250e550f9d8370daa2db5ece3245

Download | Favorite | Comments (0)

Opera 11.52 Denial Of Service

Posted Oct 20, 2011

Authored by pigtail23

Opera versions 11.52 and below proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept

MD5 | fe34293590459f9e2ce61f8b01aa7c63

Download | Favorite | Comments (0)

PROMOTIC 8.1.3 Directory Traversal / Overflows

Posted Oct 14, 2011

Authored by Luigi Auriemma | Site aluigi.org

PROMOTIC version 8.1.3 suffers from an ActiveX SaveCfg stack overflow, an ActiveX AddTrend heap overflow, and a directory traversal. Details and proof of concept included.

tags | exploit, overflow, activex, proof of concept, file inclusion

systems | linux

MD5 | efe9cdd1ed6f633152785788df750146

Download | Favorite | Comments (0)

MS11-077 .FON Kernel-Mode Buffer Overrun

Posted Oct 14, 2011

Authored by Byoungyoung Lee

Microsoft .fon extension kernel-mode buffer overrun proof of concept exploit and write-up.

tags | exploit, overflow, kernel, proof of concept

systems | linux

advisories | CVE-2011-2003

MD5 | 85aa828467209547b6d22d3cd4fb7cd6

Download | Favorite | Comments (0)

PHP Session Snooping

Posted Oct 14, 2011

Authored by Mango

Brief write up with a proof of concept explaining local session snooping in PHP.

tags | exploit, local, php, proof of concept

MD5 | eb89a38aaf8466ba830395ec99647b4b

Download | Favorite | Comments (0)

PHP Session Hijacking

Posted Oct 14, 2011

Authored by Mango

Brief write up with a proof of concept explaining local session hijacking in PHP.

tags | exploit, local, php, proof of concept

MD5 | 03479b7c5d36d52b2ac68b55be2e72ae

Download | Favorite | Comments (0)

Apache mod_proxy Proof Of Concept

Posted Oct 11, 2011

Authored by Rodrigo Marcos | Site secforce.co.uk

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character. This is a proof of concept exploit that demonstrates this vulnerability.

tags | exploit, remote, web, proof of concept

advisories | CVE-2011-3368

MD5 | 595c25bd025d51c132f83785da87856b

Download | Favorite | Comments (0)

DivX Plus Web Player 2.1.2.265 Buffer Overflow

Posted Oct 5, 2011

Authored by Snake

DivX Plus Web Player versions 2.1.2.265 and below file:// buffer overflow proof of concept exploit.

tags | exploit, web, overflow, proof of concept

MD5 | 4b1be038c32dbc8797dd3309dd57e278

Download | Favorite | Comments (0)

Google Chrome PDF File Handling Memory Corruption

Posted Oct 4, 2011

Authored by Mario Gomes

Google Chrome versions prior to 14.0.835.163 suffer from a PDF file handling memory corruption vulnerability. Full advisory and proof of concept pdf and code included.

tags | exploit, proof of concept

systems | linux

advisories | CVE-2011-2841

MD5 | c15ae3350d48b65817b382ea2653957c

Download | Favorite | Comments (0)

GenStat 14.1.0.5943 Array / Heap Overflows

Posted Oct 4, 2011

Authored by Luigi Auriemma | Site aluigi.altervista.org

GenStat versions 14.1.0.5943 and below suffer from an array overflow with write2 and a heap overflow. Proof of concept code included.

tags | exploit, overflow, proof of concept

systems | linux

MD5 | 7035146a73dc406ba921ccb610e5b139

Download | Favorite | Comments (0)

Cytel Studio: StatXact / LogXact / CrossOver 9.0.0 Overflows

Posted Oct 4, 2011

Authored by Luigi Auriemma | Site aluigi.altervista.org

Cytel Studio: StatXact / LogXact / CrossOver versions 9.0.0 and below suffer from multiple stack and integer overflows. Proof of concept code included.

tags | exploit, overflow, proof of concept

systems | linux

MD5 | 5707135ebec0baf7efe8e3b6b85ed840

Download | Favorite | Comments (0)

JBoss addURL Misconfiguration Attack

Posted Oct 3, 2011

Authored by y0ug

This is a proof of concept exploit that leverages the addUrl method in the DeploymentScanner module on an exposed JBoss JMX console.

tags | exploit, proof of concept

advisories | CVE-2010-0738

MD5 | 5dacc755b8a3e39cc0ea4915d4ca1983

Download | Favorite | Comments (0)

Browser Exploit Against SSL/TLS

Posted Oct 3, 2011

Authored by Juliano Rizzo, Thai Duong

Browser Exploit Against SSL/TLS, or BEAST, is a proof of concept tool that demonstrates a weakness in the SSL protocol. It allows attackers to silently decrypt data that's passing between a webserver and an end-user browser.

tags | exploit, protocol, proof of concept

MD5 | c0d832089612de08c6935977f7c401f5

Download | Favorite | Comments (0)

FreeBSD UIPC Socket Heap Overflow

Posted Sep 30, 2011

Authored by Shaun Colley

FreeBSD UIPC socket heap overflow proof of concept exploit that causes a kernel panic. Tested on FreeBSD 8.2-RELEASE.

tags | exploit, overflow, kernel, proof of concept

systems | freebsd

MD5 | 1b84cb92aacf8ffe51fd86111e69b1c1

Download | Favorite | Comments (0)

Mac OS X Kernel Panic

Posted Sep 28, 2011

Authored by Chanam Park

Proof of concept Mac OS X versions prior to 10.6.7 kernel panic exploit.

tags | exploit, kernel, proof of concept

systems | apple, osx

advisories | CVE-2011-0182

MD5 | 2b94d4a6dc10d98c4414fd985be66fbb

Download | Favorite | Comments (0)

Pytroj Tool Python Injector

Posted Sep 28, 2011

Authored by Itzik Kotler, Joey Geralnik, Leon Fedotov

Pytroj is a tool for infecting .pyc files with arbitrary code that spreads out to infect all other .pyc files. Pytroj is a proof of concept attack against .pyc files. It searches for other .pyc files and injects itself into them. The injected code can be any python code (in this case it prints "You have been exploited").

tags | arbitrary, proof of concept, python

systems | unix

MD5 | 9b0390ff1dd1ed77efa2b13e3d076290

Download | Favorite | Comments (0)

KnFTP 1.0.0 Buffer Overflow

Posted Sep 19, 2011

Authored by loneferret

KnFTP version 1.0.0 buffer overflow denial of service proof of concept exploit.

tags | exploit, denial of service, overflow, proof of concept

MD5 | 3bfe1bd5b29cc151d81ff1d2e30944a3

Download | Favorite | Comments (0)

Rockwell RSLogix 19 Denial Of Service

Posted Sep 14, 2011

Authored by Luigi Auriemma | Site aluigi.org

Rockwell RSLogix versions 19 and below suffer from a denial of service vulnerability. Proof of concept included.

tags | exploit, denial of service, proof of concept

systems | linux

MD5 | da63e8a2284c94897556356fb7ebaea2

Download | Favorite | Comments (0)

Carel PlantVisor 2.4.4 Directory Traversal

Posted Sep 14, 2011

Authored by Luigi Auriemma | Site aluigi.org

Carel PlantVisor versions 2.4.4 and below suffer from a directory traversal vulnerability. Proof of concept included.

tags | exploit, proof of concept

MD5 | 2a5177d1a8f0a6c588f695b75f4a2e6b

Download | Favorite | Comments (0)

Progea Movicon / PowerHMI 11.2.1085 Memory Corruption

Posted Sep 14, 2011

Authored by Luigi Auriemma | Site aluigi.org

Pragea Movicon / PowerHMI versions 11.2.1085 and below suffer from a memory corruption vulnerability. Proof of concept included.

tags | exploit, proof of concept

systems | linux

MD5 | 9cab05d26437a8fe4d378b5388aae180

Download | Favorite | Comments (0)