CVE-2017-14980

This repository contains a functional buffer overflow exploit for CVE-2017-14980 in Sync Breeze Enterprise 10.0.28, leveraging an improperly validated password field in a POST request to execute arbitrary shellcode via EIP overwrite.

This repository contains a functional exploit for CVE-2017-14980, a stack-based buffer overflow in Sync Breeze Enterprise 10.0.28. The exploit includes Python scripts for fuzzing, offset discovery, bad character analysis, and achieving remote code execution via a crafted POST request to the /login endpoint.

This repository contains a functional exploit for CVE-2017-14980, targeting a buffer overflow vulnerability in Sync Breeze Enterprise 10.0.28. The exploit crafts an HTTP POST request with a malformed payload to overwrite the EIP register and execute arbitrary shellcode.

This repository contains a functional exploit for CVE-2017-14980, targeting a buffer overflow vulnerability in Sync Breeze Enterprise 10.0.28. The exploit crafts an HTTP POST request with a malformed body to overwrite the EIP register and execute arbitrary shellcode.

This repository contains a functional proof-of-concept exploit for CVE-2017-14980, a stack-based buffer overflow in Sync Breeze Enterprise 10.0.28. The exploit sends a crafted HTTP POST request to trigger the vulnerability and achieve remote code execution.

This is a functional proof-of-concept exploit for CVE-2017-14980, targeting a stack-based buffer overflow in Sync Breeze Enterprise 10.0.28. The exploit sends a maliciously crafted HTTP POST request to trigger remote code execution via shellcode injection.

This exploit targets a buffer overflow vulnerability in Sync Breeze Enterprise 10.0.28 via an HTTP POST request, allowing unauthenticated arbitrary code execution. It uses a static JMP ESP address in libspp.dll to redirect execution to shellcode on the stack.

This repository contains a buffer overflow exploit for Sync Breeze Enterprise v10.0.28, leveraging a JMP ESP address in libspp.dll to execute a reverse shell payload. The exploit is implemented in both C and Python, targeting a vulnerable HTTP endpoint.

This repository contains a working exploit for CVE-2017-14980, targeting SyncBreeze v10.0.28. The exploit leverages a buffer overflow vulnerability in the login functionality to achieve remote code execution via a reverse shell payload.

This Metasploit module exploits a stack-based buffer overflow in Sync Breeze Enterprise via malformed HTTP GET/POST requests. It includes SEH overwrites, egghunter techniques, and payload delivery for versions 9.4.28, 10.0.28, and 10.1.16.