bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows_x86/local
History
Offensive Security 720fabd066 DB: 2020-07-28 
114 changes to exploits/shellcodes

Notepad++ < 7.7 (x64)  - Denial of Service

winrar 5.80 64bit - Denial of Service
WinRAR 5.80 (x64) - Denial of Service

Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - Netfilter target_offset Out-of-Bounds Privilege Escalation
Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - Netfilter 'target_offset' Out-of-Bounds Privilege Escalation

TeamViewer 11 < 13 (Windows 10 x86) - Inline Hooking / Direct Memory Modification Permission Change

Microsoft Windows 7 SP1 x86 - GDI Palette Objects Local Privilege Escalation (MS17-017)
Microsoft Windows 7 SP1 (x86) - GDI Palette Objects Local Privilege Escalation (MS17-017)

Microsoft Word 2007 (x86) - Information Disclosure

IKARUS anti.virus 2.16.7 - 'ntguard_x64' Local Privilege Escalation

ASX to MP3 Converter 1.82.50 (Windows 2003 x86) - '.asx' Local Stack Overflow
Linux Kernel < 3.5.0-23 (Ubuntu 12.04.2 x64) - 'SOCK_DIAG' SMEP Bypass Local Privilege Escalation
Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) - 'netfilter target_offset' Local Privilege Escalation
Linux Kernel < 3.16.39 (Debian 8 x64) - 'inotfiy' Local Privilege Escalation
Linux Kernel < 3.5.0-23 (Ubuntu 12.04.2 x64) - 'SOCK_DIAG' SMEP Bypass Local Privilege Escalation
Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) - 'netfilter target_offset' Local Privilege Escalation
Linux Kernel < 3.16.39 (Debian 8 x64) - 'inotfiy' Local Privilege Escalation

Microsoft Internet Explorer 11 (Windows 7 x64/x86) - vbscript Code Execution
Microsoft Internet Explorer 11 (Windows 7 x86/x64) - vbscript Code Execution

Linux Kernel 2.6.x / 3.10.x / 4.14.x (RedHat / Debian / CentOS) (x64) - 'Mutagen Astronomy' Local Privilege Escalation

R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEP/ASLR Bypass)

MySQL User-Defined (Linux) (x32/x86_64) - 'sys_exec' Local Privilege Escalation
MySQL User-Defined (Linux) (x86) - 'sys_exec' Local Privilege Escalation

Anyburn 4.3 x86 - 'Copy disc to image file' Buffer Overflow (Unicode) (SEH)

Microsoft Windows (x84/x64) - 'Error Reporting' Discretionary Access Control List / Local Privilege Escalation
Microsoft Windows (x86/x64) - 'Error Reporting' Discretionary Access Control List / Local Privilege Escalation

Microsoft Windows (x86) - Task Scheduler' .job' Import Arbitrary Discretionary Access Control List Write / Local Privilege Escalation

R 3.4.4 (Windows 10 x64) - Buffer Overflow SEH (DEP/ASLR Bypass)

Linux Kernel 4.4.0-21 < 4.4.0-51 (Ubuntu 14.04/16.04 x86-64) - 'AF_PACKET' Race Condition Privilege Escalation
Linux Kernel 4.4.0-21 < 4.4.0-51 (Ubuntu 14.04/16.04 x64) - 'AF_PACKET' Race Condition Privilege Escalation

Microsoft Windows 7 build 7601 (x86) - Local Privilege Escalation

Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)

Atomic Alarm Clock x86 6.3 - 'AtomicAlarmClock' Unquoted Service Path

DEWESoft X3 SP1 (64-bit) - Remote Command Execution
DEWESoft X3 SP1 (x64) - Remote Command Execution

CompleteFTP Professional 12.1.3 - Remote Code Execution

TeamCity Agent XML-RPC 10.0 - Remote Code Execution

eGroupWare 1.14 - 'spellchecker.php' Remote Command Execution

FreeBSD x86 / x64 - execve(/bin/sh) Anti-Debugging Shellcode (140 bytes)
FreeBSD x86/x64 - execve(/bin/sh) Anti-Debugging Shellcode (140 bytes)

Linux/x86 - /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)

Linux/x86 - Kill All Processes Shellcode (14 bytes)
Linux/x86 - Add User to /etc/passwd Shellcode (59 bytes)
Linux/x86 - adduser (User) to /etc/passwd Shellcode (74 bytes)
Linux/x86 - execve /bin/sh Shellcode (25 bytes)
Linux/x86 - Reverse Shell NULL free 127.0.0.1:4444 Shellcode (91 bytes)
Linux/x86 - execve(/bin/sh) socket reuse Shellcode (42 bytes)
Linux/x86 - (NOT|ROT+8 Encoded) execve(/bin/sh) null-free Shellcode (47 bytes)
Linux/x86 - Add User to /etc/passwd Shellcode (59 bytes)
Linux/x86 - adduser (User) to /etc/passwd Shellcode (74 bytes)
Linux/x86 - execve /bin/sh Shellcode (25 bytes)
Linux/x86 - Reverse Shell NULL free 127.0.0.1:4444 Shellcode (91 bytes)
Linux/x86 - execve(/bin/sh) socket reuse Shellcode (42 bytes)
Linux/x86 - (NOT|ROT+8 Encoded) execve(/bin/sh) null-free Shellcode (47 bytes)
Linux/x86 - Execve() Alphanumeric Shellcode (66 bytes)
Linux/x86 - Random Bytes Encoder + XOR/SUB/NOT/ROR execve(/bin/sh) Shellcode (114 bytes)
Linux/x86 - Execve() Alphanumeric Shellcode (66 bytes)
Linux/x86 - Random Bytes Encoder + XOR/SUB/NOT/ROR execve(/bin/sh) Shellcode (114 bytes)
Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode (571 Bytes)
Linux/x86 - Bind Shell Generator Shellcode (114 bytes)
Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode (571 Bytes)
Linux/x86 - Bind Shell Generator Shellcode (114 bytes)
Windows/x64 - Dynamic MessageBoxA or MessageBoxW PEB & Import Table Method Shellcode (232 bytes)
Linux\x86 - 'reboot' polymorphic Shellcode (26 bytes)
Windows/x64 - Dynamic MessageBoxA or MessageBoxW PEB & Import Table Method Shellcode (232 bytes)
Linux/x86 - 'reboot' polymorphic Shellcode (26 bytes)
Windows/x86 - MSVCRT System + Dynamic Null-free + Add RDP Admin + Disable Firewall + Enable RDP Shellcode (644 Bytes)
Linux/x64 - Password (P3WP3Wl4ZerZ) + Bind (0.0.0.0:4444/TCP) Shell (/bin/bash) + Null-free Shellcode (272 Bytes)
Windows/x86 - MSVCRT System + Dynamic Null-free + Add RDP Admin + Disable Firewall + Enable RDP Shellcode (644 Bytes)
Linux/x64 - Password (P3WP3Wl4ZerZ) + Bind (0.0.0.0:4444/TCP) Shell (/bin/bash) + Null-free Shellcode (272 Bytes)
2020-07-28 05:01:59 +00:00
..
3451.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
3888.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
3912.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
8799.txt DB: 2018-09-25 2018-09-25 05:01:51 +00:00
11112.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
11408.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
14373.pl DB: 2018-01-13 2018-01-13 05:02:13 +00:00
14961.py DB: 2018-01-13 2018-01-13 05:02:13 +00:00
16678.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
18137.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
18861.php DB: 2018-01-13 2018-01-13 05:02:13 +00:00
26452.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
33213.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
34037.txt DB: 2018-01-13 2018-01-13 05:02:13 +00:00
34167.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
34982.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
35020.rb DB: 2018-01-13 2018-01-13 05:02:13 +00:00
37732.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
38403.txt DB: 2018-09-25 2018-09-25 05:01:51 +00:00
38457.c DB: 2020-07-28 2020-07-28 05:01:59 +00:00
39432.c DB: 2019-03-08 2019-03-08 05:01:50 +00:00
39446.py DB: 2018-01-13 2018-01-13 05:02:13 +00:00
39574.cs DB: 2018-01-13 2018-01-13 05:02:13 +00:00
40039.cpp DB: 2018-09-25 2018-09-25 05:01:51 +00:00
40564.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
40627.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
41705.cpp DB: 2018-06-08 2018-06-08 05:01:44 +00:00
42432.cpp DB: 2020-07-28 2020-07-28 05:01:59 +00:00
42930.txt DB: 2020-07-28 2020-07-28 05:01:59 +00:00
43192.c DB: 2018-01-13 2018-01-13 05:02:13 +00:00
43366.md DB: 2020-07-28 2020-07-28 05:01:59 +00:00
44167.c DB: 2018-02-23 2018-02-23 05:01:47 +00:00
44438.txt DB: 2018-04-11 2018-04-11 05:01:46 +00:00
44472.py DB: 2018-04-26 2018-04-26 05:01:48 +00:00
44478.cpp DB: 2018-04-18 2018-04-18 05:01:47 +00:00
44479.cpp DB: 2018-04-18 2018-04-18 05:01:47 +00:00
44480.cpp DB: 2018-04-18 2018-04-18 05:01:47 +00:00
44499.py DB: 2018-04-27 2018-04-27 05:01:49 +00:00
44680.py DB: 2018-05-22 2018-05-22 05:01:47 +00:00
44787.py DB: 2018-05-29 2018-05-29 05:01:46 +00:00
44838.py DB: 2018-06-06 2018-06-06 05:01:46 +00:00
44840.py DB: 2018-06-06 2018-06-06 05:01:46 +00:00
44841.py DB: 2018-06-06 2018-06-06 05:01:46 +00:00
45181.py DB: 2018-08-14 2018-08-14 05:01:45 +00:00
45235.py DB: 2018-08-23 2018-08-23 05:01:49 +00:00
45259.py DB: 2018-08-28 2018-08-28 05:01:59 +00:00
45312.c DB: 2019-03-08 2019-03-08 05:01:50 +00:00
45325.py DB: 2018-09-05 2018-09-05 05:01:52 +00:00
45349.py DB: 2018-09-08 2018-09-08 05:01:54 +00:00
45350.py DB: 2018-09-11 2018-09-11 05:01:54 +00:00
45352.py DB: 2018-09-11 2018-09-11 05:01:54 +00:00
45353.py DB: 2018-09-11 2018-09-11 05:01:54 +00:00
45355.py DB: 2018-09-11 2018-09-11 05:01:54 +00:00
45403.py DB: 2018-09-14 2018-09-14 05:01:54 +00:00
45412.py DB: 2018-09-15 2018-09-15 05:01:52 +00:00
45442.py DB: 2018-09-21 2018-09-21 05:01:43 +00:00
45467.py DB: 2018-09-26 2018-09-26 05:02:43 +00:00
45492.py DB: 2018-09-26 2018-09-26 05:02:43 +00:00
45505.py DB: 2018-10-02 2018-10-02 05:01:58 +00:00
45531.py DB: 2018-10-05 2018-10-05 05:02:07 +00:00
45598.py DB: 2018-10-16 2018-10-16 05:01:45 +00:00
45627.py DB: 2018-10-18 2018-10-18 05:01:46 +00:00
45687.txt DB: 2018-10-26 2018-10-26 05:01:46 +00:00
45710.pl DB: 2018-10-30 2018-10-30 05:01:46 +00:00
45796.py DB: 2018-11-07 2018-11-07 05:01:44 +00:00
45888.py DB: 2018-11-20 2018-11-20 05:01:39 +00:00
45907.txt DB: 2018-11-28 2018-11-28 11:08:29 +00:00
46018.py DB: 2018-12-21 2018-12-21 05:01:52 +00:00
46056.py DB: 2018-12-28 2018-12-28 05:01:43 +00:00
46058.py DB: 2018-12-28 2018-12-28 05:01:43 +00:00
46059.py DB: 2018-12-28 2018-12-28 05:01:43 +00:00
46070.py DB: 2019-01-03 2019-01-03 05:01:43 +00:00
46507.py DB: 2020-07-28 2020-07-28 05:01:59 +00:00
46918.txt DB: 2020-07-28 2020-07-28 05:01:59 +00:00
47176.cpp DB: 2020-07-28 2020-07-28 05:01:59 +00:00
48314.py DB: 2020-07-28 2020-07-28 05:01:59 +00:00
48352.txt DB: 2020-07-28 2020-07-28 05:01:59 +00:00