This exploit targets a memory corruption vulnerability in all versions of Adobe Acrobat Reader. By exploiting this vulnerability, an attacker can execute arbitrary code on the affected system.
This exploit allows an attacker to hijack the Microsoft Internet Connection Signup Wizard DLL and execute arbitrary code. By compiling and renaming the provided code as smmscrpt.dll and creating a file with one of the vulnerable extensions (.isp) in the same directory, the attacker can trigger the execution of the 'evil' function, which opens the Windows calculator (calc).
This module exploits a code execution vulnerability in the Mozilla Firefox browser. To reliably exploit this vulnerability, we need to fill almost a gigabyte of memory with our nop sled and payload. This module has been tested on Gentoo Linux with the stock Firefox 1.5.0 package.
This exploit allows an attacker to hijack the dwmapi.dll file in Firefox version 3.6.8 or earlier. The vulnerable extensions are .htm, .html, .jtx, and .mfp. By exploiting this vulnerability, an attacker can execute arbitrary code on the victim's system.
This exploit targets a vulnerability in MS Excel which allows an attacker to execute arbitrary code by exploiting a malformed FEATHEADER record. The vulnerability has been assigned CVE-2009-3129 and is covered by the Microsoft security bulletin MS09-067. The affected versions of MS Office are 2003 and 2007. The exploit has been tested on Windows XP SP2 with MS Office 2003 v. 11.5604.5606. The original discovery of this exploit was made by Sean Larsson.
This exploit targets a buffer overflow vulnerability in Microsoft HTML Help Workshop. By creating a specially crafted .hhp file, an attacker can trigger a buffer overflow and execute arbitrary code on the target system. The exploit code includes a bindshell payload that opens a listening port (13579) on the target machine. This exploit is based on code from realplayer .smil exploit.
This exploit allows an attacker to include arbitrary files on the server, leading to potential information disclosure or code execution.
This exploit triggers a buffer overflow in Triologic Media Player 8 (.m3u) file format. It allows an attacker to execute arbitrary code on the target system.
The win32k.sys module in Microsoft Windows 7 does not perform proper bounds checks on HBITMAP handles, which allows local users to gain privileges via a crafted application that triggers a NULL pointer dereference, aka a 'Windows Kernel Elevation of Privilege Vulnerability'.
A race condition exists in the validation stage of the NtCreateThread function in Microsoft Windows. This can be exploited to set the SegCs register to rpl0 and execute code with kernel privileges.
Services By CQR