exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from hal

Nginx HTTP Server 1.3.9-1.4.0 Chunked Encoding Stack Buffer Overflow

Posted May 23, 2013

Authored by Greg MacManus, hal, saelo | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngx_http_parse_chunked() by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read into a stack buffer, thus the overflow becomes possible.

tags | exploit, overflow

advisories | CVE-2013-2028, OSVDB-93037

SHA-256 | 5caa8725f0b0e52002e2804749d851584f474a1d0b411c2a827865afd2da031c

Download | Favorite | View

HP Diagnostics Server magentservice.exe Overflow

Posted Jan 28, 2012

Authored by AbdulAziz Hariri, hal | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in HP Diagnostics Server magentservice.exe service. By sending a specially crafted packet, an attacker may be able to execute arbitrary code. Originally found and posted by AbdulAziz Harir via ZDI.

tags | exploit, overflow, arbitrary

advisories | CVE-2011-4789, OSVDB-72815

SHA-256 | c6a14560edab2b9d9defb11e36b12526fd6aaa6d5fa8fa8faa2534b45739ade1

Download | Favorite | View

FactoryLink vrn.exe Opcode 9 Buffer Overflow

Posted Jun 21, 2011

Authored by Luigi Auriemma, hal | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in FactoryLink 7.5, 7.5 SP2, and 8.0.1.703. By sending a specially crafted packet, an attacker may be able to execute arbitrary code. Originally found and posted by Luigi Auriemma.

tags | exploit, overflow, arbitrary

advisories | OSVDB-72815

SHA-256 | 180a8907d61d69a4ded59759afdcd03ea9f1757008b99fd69ef2a1c78f4f6f23

Download | Favorite | View