Author : craig freyman
Page 1 of 38 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
BigAnt Server 2.97 Buffer Overflow | Craig Freyman | na | packetstormsecurity.org | BigAnt Server version 2.97 DDNF username buffer overflow exploit with DEP and ASLR bypass. Binds a shell to port 4444. | April 11 |
|
|
BigAnt Server 2.97 - DDNF Username Buffer Overflow | Craig Freyman | windows | exploit-db.com | !/usr/bin/python Title: BigAnt Server 2.97 DDNF Username Buffer Overflow Author: Craig Freyman (@cd1zz) http://pwnag3.com Tested on: Windows 7 64 bit (DEP/ASLR Bypass) Similar Exploits: http://www.exploit-db.com/exploits/24528/ http://www.exploit-db.com/exploits/24527/ http://www.exp | April 10 |
|
|
BlazeDVD 6.1 PLF Exploit DEP/ASLR Bypass (MSF) | Craig Freyman | windows | exploit-db.com | This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasp | December 31 |
|
|
BlazeDVD 6.1 PLF Exploit DEP/ASLR Bypass | Craig Freyman | na | Gjoko Krstic | This Metasploit module updates an existing MSF module originally written for BlazeDVD 5.1. The new module will bypass DEP and ASLR on version 6. The original vulnerability is due to the handling of specially crafted PLF files. Exploiting this allows us to execute arbitrary code running under the context of the user. | December 30 |
|
|
Sysax FTP Automation Server 5.33 Privilege Escalation | Craig Freyman | na | packetstormsecurity.org | Sysax FTP Automation Server version 5.33 suffers from a local privilege escalation vulnerability. | November 5 |
|
|
ActiveFax (ActFax) 4.3 Client Importer Buffer Overflow | Craig Freyman | na | juan vazquez | This Metasploit module exploits a vulnerability in ActiveFax Server. The vulnerability is a stack based buffer overflow in the "Import Users from File" function, due to the insecure usage of strcpy while parsing the csv formatted file. The module creates a .exp file that must be imported with ActiveFax Server. The module has been tested successfully on ActFax Server 4.32 over Windows XP SP3 and Windows 7 SP1. In the Windows XP case, when ActFax runs as a service, it will execute as SYSTEM. | September 7 |
|
|
ActFax 4.31 Local Privilege Escalation | Craig Freyman | na | packetstormsecurity.org | ActFax version 4.31 local privilege escalation exploit that spawns cmd.exe. | August 29 |
|
|
Sysax Multi Server 5.64 Buffer Overflow | Craig Freyman | na | Matt Andreko | This Metasploit module exploits a stack buffer overflow in the create folder function in Sysax Multi Server 5.64. This issue was fixed in 5.66. You must have valid credentials to trigger the vulnerability. Your credentials must also have the create folder permission and the HTTP option has to be enabled. This Metasploit module will log into the server, get your a SID token and then proceed to exploit the server. Successful exploits result in LOCALSYSTEM access. This exploit works on XP SP3, and Server 2003 SP1-SP2. | July 29 |
|
|
Sysax 5.62 Admin Interface Local Buffer Overflow | Craig Freyman | na | packetstormsecurity.org | Sysax versions 5.62 ad below administrative interface local buffer overflow exploit that binds a shell to port 4444. | June 20, 2012 |
|
|
Sysax <= 5.60 Create SSL Certificate Buffer Overflow | Craig Freyman | windows | exploit-db.com | Title: Sysax <= 5.60 Create SSL Certificate Buffer Overflow Author: Craig Freyman (@cd1zz) Tested on: Windows XP SP3 Discovered: May 29, 2012 Vendor notified: May 30, 2012 Details: http://www.pwnag3.com/2012/06/sysax-create-ssl-certificate-buffer.html Go to Manage Server Settings -> S | June 4, 2012 |
|
|
Sysax Multi Server 5.57 Directory Traversal | Craig Freyman | na | packetstormsecurity.org | Sysax Multi Server versions 5.57 and below remote directory traversal tool that requires authentication. | April 4, 2012 |
|
|
Sysax <= 5.57 Directory Traversal | Craig Freyman | windows | exploit-db.com | !/usr/bin/python Title: Sysax Multi Server <= 5.57 Directory Traversal Tool (Post Auth) Author: Craig Freyman (@cd1zz) Tested on: XP SP3 32bit and Server 2003 SP2 32bit Date Discovere | April 3, 2012 |
|
|
Sysax Multi Server 5.53 SFTP Post Auth SEH Exploit | Craig Freyman | windows | exploit-db.com | !/usr/bin/python Title: Sysax Multi Server 5.53 SFTP Post Auth SEH Exploit (Egghunter) Author: Craig Freyman (@cd1zz) Tested on: XP SP3 32bit Software Versions Tested: 5.53 Date Discovere | February 27, 2012 |
|
|
Sysax <= 5.53 SSH Username BoF Pre Auth RCE (Egghunter) | Craig Freyman | windows | exploit-db.com | !/usr/bin/python Title: Sysax <= 5.53 SSH Username BoF Pre Auth RCE (Egghunter) Author: Craig Freyman (@cd1zz) OS Tested: XP SP3 32bit, 2003 Server SP2 (No DEP) Software Versions Tested: 5 | February 27, 2012 |
|
|
Sysax 5.53 SSH Username Buffer Overflow Exploit | Craig Freyman | na | packetstormsecurity.org | Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444. | February 27, 2012 |