Twenty Year Anniversary
Showing 1 - 25 of 33 RSS Feed

Files from Dark-Puzzle

First Active2012-06-25
Last Active2014-05-05
Windows Heap Overflow Exploitation
Posted May 5, 2014
Authored by Dark-Puzzle

This article goes into detail on how to overflow a custom heap in Microsoft Windows 7.

tags | paper, overflow
systems | windows, 7
MD5 | 864670304d3ffa9a9f96099e7be1f91a
64-bit calc.exe Stack Overflow Root Cause Analysis
Posted Dec 22, 2013
Authored by Dark-Puzzle

This is a brief write up discussing a root cause analysis of why spawning calc.exe triggered a stack overflow.

tags | paper, overflow, root
MD5 | 6cf6663c4ae9aadd82ad553d36e41a07
OllyDbg / Immunity Debugger Crash
Posted Jul 29, 2013
Authored by Dark-Puzzle

OllyDbg / Immunity debugger crash proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
MD5 | a9156179e9f9c0a479e08a3641d064aa
aSc Timetables 2013 Stack Buffer Overflow
Posted Jun 22, 2013
Authored by Dark-Puzzle

aSc Timetables 2013 suffers from a stack-based buffer overflow vulnerability.

tags | exploit, overflow
MD5 | bb06b5b207e534a641d852a58bded32d
Beating A SEH/VEH Based Crackme
Posted Jun 22, 2013
Authored by Dark-Puzzle

In this paper, the author demonstrates how to beat an advanced crackme using an interesting way to calculate the length.

tags | paper
MD5 | 84489d703355cfa51ef44d430ac6bbf4
Reversing Offline Games
Posted Apr 20, 2013
Authored by Dark-Puzzle

This is a brief tutorial that demonstrates how to reverse engineer an offline game (3D Pinball).

tags | paper
MD5 | 4354b4c3d5702117c63f23f608e917fc
Twitter Cookie Handling Issue
Posted Jan 24, 2013
Authored by Dark-Puzzle

Twitter apparently fails to zero out and invalidate cookies upon logout, allowing for replay later.

tags | advisory
MD5 | 820ece9630771cca6aaaa219d0b17ede
Huawei UTPS Back-End Buffer Overflow
Posted Oct 18, 2012
Authored by Dark-Puzzle, Huawei PSIRT | Site huawei.com

Huawei Security Advisory 20120922-01-UTPS - The back-end UTPS software suffers from a buffer overflow vulnerability. The UTPS 1.0 back-end does not fully verify the incoming parameters when copying the character strings during the process of uploading the plug-in configuration files, which leads to the overflow (HWNSIRT-2012-0994). As a result, the script which is specified by some malicious users may be executed to run the application program which is specified by the malicious users.

tags | advisory, overflow
MD5 | a0db05a02644d11113dfda636a5e726a
Joomla iCagenda SQL Injection / Path Disclosure
Posted Oct 16, 2012
Authored by Dark-Puzzle

The Joomla iCagenda component suffers from remote blind SQL injection and path disclosure vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, info disclosure
advisories | OSVDB-85148
MD5 | 807492f294f9bf9d64b835d2c113bfb5
FL Studio 10 Producer Edition Buffer Overflow
Posted Oct 9, 2012
Authored by Dark-Puzzle

FL Studio 10 Producer Edition SEH based buffer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
MD5 | 6f256240475820178f5f4e4fdc1fa9a3
Huawei Internet Mobile Overflow
Posted Sep 16, 2012
Authored by Dark-Puzzle

Huawei Technologies Internet Mobile unicode SEH-based buffer overflow exploit. Works only on Windows XP SP1.

tags | exploit, overflow
systems | windows, xp
MD5 | 1365389cc7039d81b94991d8bd4086cc
Linux Nmap Default Router Services Scan Shellcode
Posted Sep 14, 2012
Authored by Dark-Puzzle

73 bytes small Linux/x86 Nmap default router services scan shellcode.

tags | x86, shellcode
systems | linux
MD5 | d66e38d76117b73716fd5f1b5df85f1e
Linux man /bin/cat Shellcode
Posted Sep 14, 2012
Authored by Dark-Puzzle

121 bytes small Linux/x86 man /bin/cat shellcode.

tags | x86, shellcode
systems | linux
MD5 | cda34ca20bc0e93c47a5030666c4410b
Linux cp/chmod /etc/shadow Shellcode
Posted Sep 14, 2012
Authored by Dark-Puzzle

126 bytes small Linux/x86 cp /etc/shadow /tmp && chmod 777 /tmp/shadow shellcode.

tags | x86, shellcode
systems | linux
MD5 | 64bcd8fa3985cce3297412b851446610
Internet Download Manager SEH Based Buffer Overflow
Posted Sep 14, 2012
Authored by Dark-Puzzle

Internet Download Manager SEH based buffer overflow exploit that spawns cmd.exe.

tags | exploit, overflow
MD5 | 9f1c1d7c422c003904d7f3edc912f3c3
Internet Download Manager Buffer Overflow
Posted Sep 13, 2012
Authored by Dark-Puzzle

Internet Download Manager suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 6350f613853b85e3086fdd4029ef50d8
WordPress Krea3AllMedias SQL Injection
Posted Sep 12, 2012
Authored by Dark-Puzzle

WordPress Krea3AllMedias third party plugin suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
MD5 | 50cd215c71e18edbf131cab795d13d6f
WordPress Tierra Audio Path Disclosure
Posted Sep 12, 2012
Authored by Dark-Puzzle

WordPress Tierra Audio third party plugin suffers from full path disclosure and directory listing vulnerabilities. Note that this finding houses site-specific data.

tags | exploit, vulnerability, info disclosure
MD5 | 79b0d0d33d7fd499c131e832d71a7be6
Spam And Hackers
Posted Sep 2, 2012
Authored by Dark-Puzzle

This is a whitepaper discussing spam and hackers.

tags | paper
MD5 | 26e304e28af22201f36b870ee8bd3ab9
Joomla ICAgenda SQL Injection / Path Disclosure
Posted Aug 31, 2012
Authored by Dark-Puzzle

The Joomla ICAgenda component suffers from remote blind SQL injection and path disclosure vulnerabilities. Note that this finding houses site-specific data.

tags | exploit, remote, vulnerability, sql injection
MD5 | 89590f3718db06f428e17447f6c958a3
WordPress BBPress SQL Injection / Path Disclosure
Posted Aug 31, 2012
Authored by Dark-Puzzle

The WordPress BBPress third party plugin suffers from path disclosure and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, info disclosure
MD5 | ee59ac0508c0fe04fde47049dc5864ea
WordPress NextGen Cu3er Gallery Information Disclosure
Posted Aug 31, 2012
Authored by Dark-Puzzle

The WordPress NextGen Cu3er Gallery third party plugin suffers from multiple information disclosure vulnerabilities. Note that this finding houses site-specific data.

tags | exploit, vulnerability, info disclosure
MD5 | fc373774c8b69c7a849259badbe8db2e
Internet Download Manager Memory Corruption
Posted Aug 30, 2012
Authored by Dark-Puzzle

Internet Download Manager suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 83ac42cbe69282ccfae3dd4314d477b2
Divx 6.8.2 Denial Of Service
Posted Aug 20, 2012
Authored by Dark-Puzzle

Divx version 6.8.2 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 024bea783395e36718f72329eb049668
VLC 2.0.2 Division By Zero
Posted Aug 2, 2012
Authored by Dark-Puzzle

VLC version 2.0.2 suffers form a division by zero vulnerability when parsing .3gp files.

tags | exploit
MD5 | eb1d96e622bec9eb788c32117385d337
Page 1 of 2
Back12Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

July 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    1 Files
  • 2
    Jul 2nd
    26 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    13 Files
  • 6
    Jul 6th
    4 Files
  • 7
    Jul 7th
    4 Files
  • 8
    Jul 8th
    1 Files
  • 9
    Jul 9th
    16 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    32 Files
  • 12
    Jul 12th
    22 Files
  • 13
    Jul 13th
    15 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    1 Files
  • 16
    Jul 16th
    21 Files
  • 17
    Jul 17th
    15 Files
  • 18
    Jul 18th
    15 Files
  • 19
    Jul 19th
    17 Files
  • 20
    Jul 20th
    11 Files
  • 21
    Jul 21st
    1 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close