ScriptFTP <=3.3 Remote Buffer Overflow Exploit (MSF)

Posted on Oct 3, 2011 in Security Advisory

You might be read about the previous post ScriptFTP Remote BOF, if you are a Metasploit user, you can add this exploit module to your Metasploit Framework. UPDATE: Metasploit has released their module for ScriptFTP. You can use it now on Metasploit. Thanks to: Cyberheb < mrs[at]infosec-id.com > Otoy < otoy[at]digital-echidna.org > TecR0c < roccogiovannicalvi[at]gmail.com > mr_me < steventhomasseeley[at]gmail.com...

read more

Batch Audio Converter

Posted on Jul 10, 2010 in Vulnerability

Iseng-iseng nyari aplikasi yang bisa diotak-atik buat maenan SEH, dapet juga aplikasi Batch Audio Converter <= v.0.4.0.0 dan berhasil di eksploitasi dengan sukses melalui SEH Overflow (tulisan mengenai SEH secara jelas bisa dilihat di situs Peter Van Eeckhoutte dan situs underground Indonesia tertua, Kecoak Elektronik). Ngeliat versi dari aplikasinya, saya liat di Help/About pada aplikasi tersebut dan mengunjungi situs pembuatnya. Pembuatnya adalah Freewaretoolbox, langsung aja saya download versi terakhir, yaitu versi 1.0.0 dan ternyata masih kena juga dengan buffer overflow. Saya...

read more

PHP include exploitation with Metasploit

Posted on May 21, 2010 in Web Hacking

Metasploit support for PHP Include exploitation, or simply known as RFI (Remote File Inclusion). I will show you how this work on CS-Cart 1.3.3 which vulnerable to remote file inclusion. The vulnerable path is at classes/phpmailer/class.cs_phpmailer.php?classes_dir=[include arbitrary php code] so in Metasploit, the PHPURI PATH will be like this: classes/phpmailer/class.cs_phpmailer.php?classes_dir=XXpathXX let see how this exploitation works. msf > search php_include [*] Searching loaded modules for pattern ‘php_include’… Exploits...

read more
Wordpress Themes - Wordpress Video Themes - Wordpress Travel Themes - WordPress Restaurant Themes