http://www.ecbpxr.buzz/art/index.html 安全文章 zh-cn CopyRight&nbsp;&copy;&nbsp;2002-2020 <a href="/" target=_blank title=":::VITTERSAFE危特網安:::">VFocuS.Net</a> All Rights Reserved webmaster@mail.securitycn.net http://www.ecbpxr.buzz/art/20200918/15082.html # Exploit Title: Microsoft SQL Server Reporting Services 2016 - Remote Code Execution# Google Dork: inurl:ReportViewer.aspx# Date: 2020-09-17# Exploit Author: West Shepherd# Vendor Homepage: https://www.microsoft.com# Version: Microsoft SQL Server 2 2020-09-18 Exploits SHEPHERD https://www.mdsec.co.uk/2020/02/cve-2020-0618-rce- http://www.ecbpxr.buzz/art/20200805/15081.html # Exploit Title: CompleteFTP Professional 12.1.3 - Remote Code Execution# Date: 2020-03-11# Exploit Author: 1F98D# Original Author: Rhino Security Labs# Vendor Homepage: https://enterprisedt.com/products/completeftp/# Version: CompleteFTP Profession 2020-08-05 Exploits 1F98D https://rhinosecuritylabs.com http://www.ecbpxr.buzz/art/20200706/15080.html #!/usr/bin/python# Exploit Title: vCloud Director - Remote Code Execution# Exploit Author: Tomas Melicher# Technical Details: https://citadelo.com/en/blog/full-infrastructure-takeover-of-vmware-cloud-director-CVE-2020-3956/# Date: 2020-05-24# Vendor 2020-07-06 Exploits AARONSVK https://citadelo.com/en/blog/full-infrastructure-t http://www.ecbpxr.buzz/art/20200610/15079.html #!/usr/bin/env python'''# EDB Note ~ Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/48537.zip# SMBGhost_RCE_PoCRCE PoC for CVE-2020-0796 SMBGhostFor demonstration purposes only! Only use this a reference 2020-06-10 Exploits chompie1337 https://ricercasecurity.blogspot.com http://www.ecbpxr.buzz/art/20200610/15078.html #!/usr/bin/python# Exploit Title: vCloud Director - Remote Code Execution# Exploit Author: Tomas Melicher# Technical Details: https://citadelo.com/en/blog/full-infrastructure-takeover-of-vmware-cloud-director-CVE-2020-3956/# Date: 2020-05-24# Vendor 2020-06-10 Exploits aaronsvk https://citadelo.com/en/blog/full-infrastructure-t http://www.ecbpxr.buzz/art/20200225/15077.html ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::Tcp include Msf::Exp 2020-02-25 Exploits Metasploit metasploit.com http://www.ecbpxr.buzz/art/20200122/15076.html # Exploit Title: NEOWISE CARBONFTP 1.4 - Weak Password Encryption# discovery Date: 2019-01-24# published : 2020-01-20# Exploit Author: hyp3rlinx# Vendor Homepage: https://www.neowise.com# Software Link: https://www.neowise.com/freeware/# Version: 1. 2020-01-22 Exploits hyp3rlinx hyp3rlinx.altervista.org http://www.ecbpxr.buzz/art/20200122/15075.html ##################################################################### This module requires Metasploit: https://metasploit.com/download ## Current source: https://github.com/rapid7/metasploit-framework ################################################ 2020-01-22 Exploits TheCyberGeek metasploit.com http://www.ecbpxr.buzz/art/20200120/15074.html ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule Msf::Exploit::Local Rank = ExcellentRanking include Exploit::EXE include Post::File include 2020-01-20 Exploits Metasploit metasploit.com http://www.ecbpxr.buzz/art/20190103/15073.html # Exploit Title: Vtiger CRM 7.1.0 - Remote Code Execution# Date: 2018-12-27# Exploit Author: Azkan Mustafa AkkuA (AkkuS)# Contact: https://pentest.com.tr# Vendor Homepage: https://www.vtiger.com# Software Link: https://sourceforge.net/projects/vtige 2019-01-03 Exploits Akkus https://pentest.com.tr http://www.ecbpxr.buzz/art/20190103/15072.html # Exploit Title: Ayukov NFTP FTP Client 2.0 - Buffer Overflow# Date: 2018-12-29# Exploit Author: Uday Mittal# Vendor Homepage: http://www.ayukov.com/nftp/# Software Link: ftp://ftp.ayukov.com/pub/src/nftp-1.72.zip # Version : below 2.0# Tested on: M 2019-01-03 Exploits Mittal vfocus.net http://www.ecbpxr.buzz/art/20190103/15071.html # Exploit Title: EZ CD Audio Converter 8.0.7 - Denial of Service (PoC)# Date: 2018-12-30# Exploit Author: Achilles# Vendor Homepage: https://www.poikosoft.com/# Software Link : https://download.poikosoft.com/ez_cd_audio_converter_setup_x64.exe# Expl 2019-01-03 Exploits Achilles vfocus.net http://www.ecbpxr.buzz/art/20190103/15070.html # Exploit Title: NetworkSleuth 3.0.0.0 - 'Key' Denial of Service (PoC)# Discovery by: Luis Martinez# Discovery Date: 2018-12-27# Vendor Homepage: www.nsauditor.com# Software Link : http://www.nsauditor.com/downloads/networksleuth_setup.exe# Tested V 2019-01-03 Exploits Martinez luismtzsilva at gmail.com http://www.ecbpxr.buzz/art/20190103/15069.html # Exploit Title: NBMonitor Network Bandwidth Monitor 1.6.5.0 - 'Name' Denial of Service (PoC)# Author: Luis Martinez# Date: 2018-12-27# Vendor Homepage: www.nsauditor.com# Software Link : http://www.nbmonitor.com/downloads/nbmonitor_setup.exe# Teste 2019-01-03 Exploits Martinez luismtzsilva at gmail.com http://www.ecbpxr.buzz/art/20181229/15068.html ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient includ 2018-12-29 Exploits Kaiser metasploit.com http://www.ecbpxr.buzz/art/20181229/15067.html ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient includ 2018-12-29 Exploits Kaiser metasploit.com http://www.ecbpxr.buzz/art/20181229/15066.html WebKit: JSC: A bug in AbstractValue::set CVE-2018-4443void AbstractValue::set(Graph graph, RegisteredStructure structure){ RELEASE_ASSERT(structure); m_structure = structure; m_arrayModes = asArrayModes(structure-indexingType()); m_type = speculatio 2018-12-29 Exploits lokihardt Google Security Research http://www.ecbpxr.buzz/art/20181229/15065.html WebKit: JSC: A bug in JSArray::shiftCountWithArrayStorage CVE-2018-4441bool JSArray::shiftCountWithArrayStorage(VM vm, unsigned startIndex, unsigned count, ArrayStorage* storage){ unsigned oldLength = storage-length(); RELEASE_ASSERT(count = oldLeng 2018-12-29 Exploits lokihardt Google Security Research http://www.ecbpxr.buzz/art/20181228/15064.html （原標題：史上最秀黑客：搶銀行，讓ATM狂吐10億歐，全部換成比特幣） 他們的故事全球幾乎無人知曉，但他們的名字卻是世界所有銀行共同銘記的噩夢。 Carbanak，這個名稱無法直譯成中文的黑客組織，在5年時間內，橫掃全球銀行，攫取至少10億歐元。他們創造的木馬病毒， 2018-12-28 黑客傳奇 31QU 31QU http://www.ecbpxr.buzz/art/20181228/15063.html # Exploit Title: Terminal Services Manager 3.1 - Buffer Overflow (SEH)# Date: 2018-12-25# Exploit Author: bzyo# Twitter: @bzyo_# Vulnerable Software: Terminal Services Manager 3.1# Vendor Homepage: https://lizardsystems.com# Version: 3.1 # Software 2018-12-28 Exploits bzyo @bzyo_ http://www.ecbpxr.buzz/art/20181228/15062.html # Exploit Title: Iperius Backup 5.8.1 - Buffer Overflow (SEH)# Date: 2018-12-26# Exploit Author: bzyo# Twitter: @bzyo_# Vulnerable Software: Iperius Backup 5.8.1# Vendor Homepage: https://www.iperiusbackup.com# Version: 5.8.1 Local Buffer Overflow ( 2018-12-28 Exploits bzyo @bzyo_ http://www.ecbpxr.buzz/art/20181228/15061.html Exploit Title: MAGIX Music Editor 3.1 - Buffer Overflow (SEH)# Exploit Author: bzyo# Twitter: @bzyo_# Date: 2018-12-24# Vulnerable Software: MAGIX Music Editor 3.1# Vendor Homepage: https://www.magix.com/us/# Version: 3.1# Software Link: https://www 2018-12-28 Exploits bzyo @bzyo_ http://www.ecbpxr.buzz/art/20181228/15060.html # Exploit Title: Armitage - Denial of Service (PoC)# Discovery by: Mr Winst0n# Discovery Date: 2018-12-26# Vendor Homepage: http://www.fastandeasyhacking.com/# Software Link : http://www.fastandeasyhacking.com/download/# Tested Version: 1.14.11# Tes 2018-12-28 Exploits Winst0n vfocus.net http://www.ecbpxr.buzz/art/20181228/15059.html # Exploit Title: NetShareWatcher 1.5.8 - Denial of Service (PoC)# Date: 2018-12-25# Exploit Author: T3jv1l# Vendor Homepage: :http://www.nsauditor.com# Software: http://netsharewatcher.nsauditor.com/downloads/NetShareWatcher_setup.exe# Contact: http 2018-12-28 Exploits T3jv1l https://twitter.com/T3jv1l http://www.ecbpxr.buzz/art/20181228/15058.html # Exploit Title:ShareAlarmPro 2.1.4 - Denial of Service (PoC)# Date: 2018-12-25# Exploit Author: T3jv1l# Vendor Homepage: :http://www.nsauditor.com# Software: http://sharealarm.nsauditor.com/downloads/sharealarmpro_setup.exe# Contact: https://twitte 2018-12-28 Exploits T3jv1l https://twitter.com/T3jv1l http://www.ecbpxr.buzz/art/20181228/15057.html # Exploit Title: Product Key Explorer 4.0.9 - Denial of Service (PoC)# Date: 2018-12-25# Exploit Author: T3jv1l# Vendor Homepage: :http://www.nsauditor.com# Software: http://www.nsauditor.com/downloads/productkeyexplorer_setup.exe# Contact: https:// 2018-12-28 Exploits T3jv1l https://twitter.com/T3jv1l http://www.ecbpxr.buzz/art/20181225/15056.html #!/usr/bin/env python3 import argparse from ssl import wrap_socket from socket import create_connection from secrets import base64, token_bytes def request_stage_1(namespace, pod, method, target, token): stage_1 = with open('stage_1', 'r') as stage_ 2018-12-25 Exploits evict vfocus.net http://www.ecbpxr.buzz/art/20181225/15055.html #!/usr/bin/env python3 import argparse from ssl import wrap_socket from json import loads, dumps from socket import create_connection def request_stage_1(base, version, target): stage_1 = with open('ustage_1', 'r') as stage_1_fd: stage_1 = stage_1_f 2018-12-25 Exploits evict vfocus.net http://www.ecbpxr.buzz/art/20181225/15054.html import socket import struct import sys if len(sys.argv) != 3: sys.exit(0) ip = sys.argv[1] port = int(sys.argv[2]) sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) print [+] Attempting connection to + ip + : + sys.argv[2] sock.connect((ip, po 2018-12-25 Exploits Tenable NS vfocus.net http://www.ecbpxr.buzz/art/20181225/15053.html keybase-redirector is a setuid root binary. keybase-redirector calls the fusermount binary using a relative path and the application trusts the value of $PATH. This allows a local, unprivileged user to trick the application to executing a custom fus 2018-12-25 Exploits mirchr vfocus.net http://www.ecbpxr.buzz/art/20181225/15052.html !--- title: Crash Chrome 70 with the SQLite Magellan bug categories: chrome permalink: /sqlitebug/ layout: post ---! pThis proof-of-concept crashes the Chrome renderer process using a href= https://blade.tencent.com/magellan/index_en.htmlTencent Bla 2018-12-25 Exploits zhuowei https://github.com/zhuowei http://www.ecbpxr.buzz/art/20181225/15051.html #!/usr/bin/env python #coding: utf8 import socket import asyncore import asynchat import struct import random import logging import logging.handlers PORT = 3306 log = logging.getLogger(__name__) log.setLevel(logging.DEBUG) tmp_format = logging.handl 2018-12-25 Exploits VulnSpy vfocus.net http://www.ecbpxr.buzz/art/20181224/15050.html # Exploit Title: Kernel Pool Buffer Overflow ATool - 1.0.0.22 (0day)# CVE: CVE-2018-20331# Date: 21-12-2018# Software Link: http://www.antiy.net/ http://www.antiy.net/ # Exploit Author: Aloyce J. Makalanga# Contact: https://twitter.com/aloycemjr htt 2018-12-24 Exploits Makalanga https://twitter.com/aloycemjr http://www.ecbpxr.buzz/art/20181224/15049.html # Exploit Title: McAfee Foundstone SQLScan - Denial of Service (PoC) and EIP record overwrite# Discovery by: Rafael Pedrero# Discovery Date: 2018-12-20# Vendor Homepage: http://www.mcafee.com/us/downloads/free-tools/sqlscan.aspx# Software Link : htt 2018-12-24 Exploits Pedrero vfocus.net http://www.ecbpxr.buzz/art/20181224/15048.html # Exploit Title: Microsoft Edge edgehtml.dll!Tree::ANode::DocumentLayout. Denial of Service (PoC)# Google Dork: N/A# Date: 2018-11-11# Exploit Author: Bogdan Kurinnoy (b.kurinnoy@gmail.com)# Vendor Homepage: https://www.microsoft.com/# Version: Micr 2018-12-24 Exploits Kurinnoy b.kurinnoy@gmail.com http://www.ecbpxr.buzz/art/20181224/15047.html #!/usr/bin/env python# Exploit Title: AnyBurn 4.3 - Local Buffer Overflow (SEH Unicode)# Date: 20-12-2018# Exploit Author: Matteo Malvica# Vendor Homepage: http://www.anyburn.com/# Software Link : http://www.anyburn.com/anyburn_setup.exe# Tested Ver 2018-12-24 Exploits Malvica matteo at malvica.com http://www.ecbpxr.buzz/art/20181224/15046.html # Exploit Title: Angry IP Scanner - Denial of Service (PoC)# Discovery by: Mr Winst0n# Discovery Date: 2018-12-22# Vendor Homepage: https://angryip.org/# Software Link : https://angryip.org/download/# Tested Version: 3.5.3 (latest version)# Tested o 2018-12-24 Exploits Winst0n vfocus.net http://www.ecbpxr.buzz/art/20181224/15045.html SecureAuth - SecureAuth Labs Advisoryhttp://www.secureauth.com/GIGABYTE Drivers Elevation of Privilege Vulnerabilities*1. *Advisory Information**Title: GIGABYTE Drivers Elevation of Privilege VulnerabilitiesAdvisory ID: CORE-2018-0007Advisory URL:ht 2018-12-24 Exploits SecureAuth http://www.secureauth.com/ http://www.ecbpxr.buzz/art/20181224/15044.html SecureAuth - SecureAuth Labs Advisoryhttp://www.secureauth.com/ASUS Drivers Elevation of Privilege Vulnerabilities*1. *Advisory Information**Title: ASUS Drivers Elevation of Privilege VulnerabilitiesAdvisory ID: CORE-2017-0012Advisory URL:http://www 2018-12-24 Exploits SecureAuth http://www.secureauth.com/ http://www.ecbpxr.buzz/art/20181224/15043.html ### Exploit Title: Netatalk Authentication Bypass# Date: 12/20/2018# Exploit Author: Jacob Baines# Vendor Homepage: http://netatalk.sourceforge.net/# Software Link: https://sourceforge.net/projects/netatalk/files/# Version: Before 3.1.12# Tested on: 2018-12-24 Exploits Baines vfocus.net http://www.ecbpxr.buzz/art/20181221/15042.html #!/usr/bin/env python# -*- coding: utf-8 -*-# Exploit Title: XMPlay 3.8.3 - '.m3u' Code Execution (PoC)# Date: 2018-12-19# Exploit Author: s7acktrac3# Vendor Homepage: https://www.xmplay.com/# Software Link: https://support.xmplay.com/files_view.php 2018-12-21 Exploits s7acktrac3 vfocus.net http://www.ecbpxr.buzz/art/20181221/15041.html #!/usr/bin/env python# Exploit Author: bzyo# Twitter: @bzyo_# Exploit Title: Base64 Decoder 1.1.2 - Local Buffer Overflow (SEH)# Date: 12-20-18# Vulnerable Software: Base64 Decoder 1.1.2# Vendor Homepage: http://4mhz.de/b64dec.html# Version: 1.1.2# 2018-12-21 Exploits bzyo @bzyo_ http://www.ecbpxr.buzz/art/20181221/15040.html # Exploit Title: LanSpy 2.0.1.159 - Local Buffer Overflow (SEH) (Egghunter)# Exploit Author: bzyo# Date: 12-19-18# Twitter: @bzyo_# Vulnerable Software: LanSpy 2.0.1.159# Vendor Homepage: https://lizardsystems.com# Version: 2.0.1.159 # Software Link 2018-12-21 Exploits bzyo @bzyo_ http://www.ecbpxr.buzz/art/20181220/15039.html ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::Tcp def initialize(in 2018-12-20 Exploits wetw0rk metasploit.com http://www.ecbpxr.buzz/art/20181220/15038.html ### This module requires Metasploit: http://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##require 'msf/core'require 'uri'class MetasploitModule Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Expl 2018-12-20 Exploits AkkuS metasploit.com http://www.ecbpxr.buzz/art/20181220/15037.html #!/usr/bin/python#------------------------------------------------------------------------------------------------------------------------------------## Exploit: LanSpy 2.0.1.159 - Local Buffer Overflow RCE(PoC) ## Date: 2018-12-16 ## Author: Juan P 2018-12-20 Exploits Prescotto vfocus.net http://www.ecbpxr.buzz/art/20181220/15036.html # Exploit Title: PDF Explorer SEH Local Exploit# Original Discovery:Gionathan John Reale (DoS exploit)# Exploit Author: Achilles# Date: 18-12-2018# Vendor Homepage: http://www.rttsoftware.com/# Software Link: https://www.rttsoftware.com/files/PDFExp 2018-12-20 Exploits Achilles vfocus.net http://www.ecbpxr.buzz/art/20181220/15035.html # Exploit Title: PassFab RAR Password Recovery SEH Local Exploit# Date: 16-12-2018# Vendor Homepage:https://www.passfab.com/products/rar-password-recovery.html# Software Link: https://www.passfab.com/downloads/passfab-rar-password-recovery.exe# Expl 2018-12-20 Exploits Achilles vfocus.net http://www.ecbpxr.buzz/art/20181220/15034.html /* * [ Briefs ] * - CVE-2016-4486 has discovered and reported by Kangjie Lu. * - This is local exploit against the CVE-2016-4486. * * [ Tested version ] * - Distro : Ubuntu 16.04 * - Kernel version : 4.4.0-21-generic * - Arch : x86_64 * * [ Prerequi 2018-12-20 Exploits Park github.com/jinb-park http://www.ecbpxr.buzz/art/20181219/15033.html Windows: out-of-bounds write in jscript!JsArrayFunctionHeapSort CVE-2018-8631There is an out-of-bounds write vulnerability in jscript.dll in JsArrayFunctionHeapSort function. This vulnerability can be exploited through Internet Explorer or potential 2018-12-19 Exploits ifratric Google Security Research 中彩票的人之前的征兆 (*^▽^*)MGCashback先生如何爆大奖 江西快三走势一定牛 (*^▽^*)MG之书Oz在线客服 彩票36选7概率 湖北30选5中奖规则 (*^▽^*)MG冰球突破怎么玩容易爆分 波叔一波中特万料堂 (*^▽^*)MG樱桃之恋如何爆大奖 福彩上海快3走势图 (*^▽^*)MG罗曼诺夫财富巨额大奖视频 (*^▽^*)MG黄金之旅在线客服 (＾ω＾)MG爵士俱乐部爆分技巧 吉林快3预测一定牛 (＾ω＾)MG开心点心怎么玩 2020互联网彩票还会重启吗 (*^▽^*)MG中国厨房如何爆大奖