Twenty Year Anniversary
Showing 1 - 25 of 59 RSS Feed


Posted May 19, 2000
Authored by Todd J.

Packet Storm new exploits for March, 2000.

tags | exploit
MD5 | 95701a59743701a83fb0299332670474
Posted Apr 20, 2000
Authored by RUBINHO

More ways to abuse c|/con/con - In mail with html tags, in normal html, serv-u ftp, and win registry.

tags | exploit, registry
MD5 | c0b4300165f98b796552d4d6959b3013
Posted Apr 20, 2000
Authored by Chopsui-cide

Anyone who can execute CGIMailer (anyone who can use the forms that use CGIMailer) can specify what configuration file to use and this can be any file on the system CGIMailer is running on. This allows for the existance of private files to be detected. There are more dangerous implications though: this vulnerability could possibly be exploited to obtain private files from the target system. If there is an FTP server running on the target system on which an attacker has upload priviledges, he/she could upload a malicious configuration file, and then run it using CGIMailer. Configuration files can be used to send files to the attacker via e-mail (among other things).

tags | exploit
MD5 | f7de5eda40daf04436bf842b5da50d4e
Posted Apr 20, 2000
Authored by Bladi, Almudena

Two exploits are included in this. It is a dcc chat buffer overflow in seperate exploits for linux and mirc.

tags | exploit, overflow
systems | linux
MD5 | a5f3255a68ccceb208d72b8d2e5f1fbe
Posted Apr 19, 2000
Authored by Dethy

Local exploit for Linux Mandrake 7.0's wmcdplay 1.0 beta 1. Unlike the Teso exploit for wmcdplay, this code exploits the -position argument.

tags | exploit, local
systems | linux, mandrake
MD5 | 785feed4909216091acb3e38b39c0624
Posted Apr 19, 2000
Authored by Grampa Elite

Vulnerability: Any user can overwrite any file in the system with x11amp ver .70.

tags | exploit
MD5 | 6a3502236ea9eb76b2781d450922a5bb
Posted Apr 4, 2000
Authored by Marcy

SGI IRIX objectserver remote exploit - Remotely adds account to the IRIX system. Patched February, 1998. Tested on IRIX 5.2, 5.3, 6.0.1, 6.1 and even 6.2.

tags | exploit, remote
systems | irix
MD5 | f8f3902c4810ad26e5c2a990e4c83666
Posted Apr 1, 2000
Authored by Anathema

FreeBSD 3.2-REL AMD remote root exploit.

tags | exploit, remote, root
systems | freebsd
MD5 | 351208884d8865d37e90e355a1e8be3e
Posted Apr 1, 2000
Authored by Dug Song | Site

icadecrypt cracks the weak hash encryption on stored Citrix ICA passwords (in appsrv.ini).

tags | exploit
MD5 | de9aa7ad940c82d0edd4703d36cd2948
Posted Mar 31, 2000

Atsacd local root exploit. Halloween linux, possibly others affected.

tags | exploit, local, root
systems | linux
MD5 | f83769b2ead1d2061f05cddbbc0c92b8
Posted Mar 30, 2000
Authored by E-Mind | Site

BIND 8.2 - 8.2.2 remote root exploit how-to. Explains how to manipulate DNS records on a primary name server to exploit this vulnerability.

tags | exploit, remote, root
MD5 | 7d9cc546371b262932998b08e87fb80f
Posted Mar 29, 2000
Authored by Presto

Crash Exploit for AnalogX SimpleServer v1.03

tags | exploit
MD5 | c2fde24f4e43c6cbf56263a39c56d0f7
Posted Mar 29, 2000
Authored by Frankie Zie

Winmail 3.05 for Windows NT allows any file on the system to be read. Exploit code included.

tags | exploit
systems | windows, nt
MD5 | a5d9914f57188dd6dd5ca0b928c4145c
Posted Mar 29, 2000

kreatecd local root-exploit helper script - Halloween Linux 4.0 and SuSE 6.0 - 6.3.

tags | exploit, local, root
systems | linux, suse
MD5 | 29ce5fe6509e50d7519f3d4adf34192b
Posted Mar 29, 2000
Authored by Larry W. Cashdollar | Site

Overflows the -position arg buffer in wmcdplay due to a bad sprintf call.

tags | exploit, overflow
MD5 | 39c483ebee434226c7d9214e09d580c9
Posted Mar 26, 2000

Domain Socket Denial of Service Vulnerability affecting Linux kernel 2.3.99-pre2, Linux kernel 2.2.14, Linux kernel 2.2.12, RedHat Linux 6.2, RedHat Linux 6.1 sparc, RedHat Linux 6.1 i386, and RedHat Linux 6.1 alpha.

tags | exploit, denial of service, kernel
systems | linux, redhat
MD5 | d499f5779e57039381df358aabe37d48
Posted Mar 26, 2000
Authored by SET-FW | Site

Linux web browsers are affected by accessing devices, this bug may be considered similar to the \con\con bug except that the technological superiority of Linux will prevent a system crash.

tags | exploit, web
systems | linux
MD5 | 46f472e7290883f774edf84d22cad5e0
Posted Mar 25, 2000
Authored by Toxic Waste

A windows 9x machine that shares any of its files, even read only, can be crashed remotely via the con/con issue.

tags | exploit
systems | windows, 9x
MD5 | 41a940671ba3803de8923b03b899962f
Posted Mar 24, 2000
Authored by Fobic | Site

ZSH Advisory - Netscape WebPublisher Allows Directory Listing and Access. Netscape Webpublisher is an addon to Netscape's Enterprise webserver which allows remote file modifications, uploads and downloads. A third party user can access the WebPublisher via downloading a number of java applets and the webserver's directory structure without having a valid account on the system. Netscape v3.5.1 / 3.6 SP1-3 under solaris are vulnerable.

tags | exploit, java, remote
systems | solaris
MD5 | 5667dd97bbfa81899150d284dc189197
Posted Mar 24, 2000
Authored by Larry W. Cashdollar | Site

5 exploits for wmcdplay (A cd player designed for WindowMaker - Release 1.0 Beta1) Tested on Mandrake 7.0.

tags | exploit
systems | linux, mandrake
MD5 | 3cf6ace990d3090acd8dd556a16b0284
Posted Mar 21, 2000
Authored by Paulo Ribeiro

PAM/userhelper exploit - Ported to Mandrake 6.1. Also works on Red Hat 6.0 and 6.1, gives uid 0.

tags | exploit
systems | linux, redhat, mandrake
MD5 | 503fb14445e29d4a77c3a9234a5f26c8
Posted Mar 21, 2000
Authored by Obecian | Site

spoon.c - (ab)use dig.cgi to proxy DNS dig requests. Useful to request a zone transfer without revealing your IP.

tags | exploit, cgi
MD5 | babceccd9425d38d1d485e3dcb0404f7
Posted Mar 20, 2000

A vulnerability exists in the gpm-root program, part of the gpm package. A local console user can obtain root. Tested under RedHat Linux (6.2 / 6.1 / 6.0 / 6.0 / 5.2 / 5.1) and Debian Linux (2.2 / 2.1 / 2.0).

tags | exploit, local, root
systems | linux, redhat, debian
MD5 | 140d93251d1db3a2ddcaa1202e637d8b
Posted Mar 20, 2000
Authored by stealth, S. Krahmer | Site

Halloween 4 local root exploit for imwheel-solo. Other distros maybe affected as well.

tags | exploit, local, root
MD5 | c3666f47df53ac801b0213bec8395af0
Posted Mar 20, 2000
Authored by Larry W. Cashdollar | Site

Overflows the -l arg buffer in wmcdplay due to a bad sprintf call. Tested on Mandrake.

tags | exploit, overflow
systems | linux, mandrake
MD5 | a2c8588ba1ab3eff35b1566532d99a8e
Page 1 of 3

Top Authors In Last 30 Days

Recent News

News RSS Feed
One Email Account With Clout Can Unleash Phishing Hell
Posted Sep 24, 2018

tags | headline, cybercrime, fraud, password, phish
SHEIN Fashion Retailer Announces Breach Affecting 6.42 Million Users
Posted Sep 24, 2018

tags | headline, hacker, privacy, cybercrime, data loss, fraud
Code-Cracking WW2 Bombe Operation Recreated At Bletchley
Posted Sep 24, 2018

tags | headline, britain, cyberwar, germany, science, cryptography
Twitter Warns Direct Messages Were Exposed
Posted Sep 24, 2018

tags | headline, privacy, data loss, flaw, twitter
Scottish Brewery Recovers From Ransomware Attack
Posted Sep 21, 2018

tags | headline, malware, scotland
Romanian CCTV Ransomware Culprit Admits Guilt
Posted Sep 21, 2018

tags | headline, government, malware, usa, fraud, romania
Thousands Of WordPress Sites Backdoored With Malicious Code
Posted Sep 21, 2018

tags | headline, hacker, malware, flaw, wordpress
Facebook Told To Speed Up Changes Or Face Sanctions
Posted Sep 21, 2018

tags | headline, government, privacy, facebook, social
Equifax Fined By ICO Over Data Breach That Hit Britons
Posted Sep 20, 2018

tags | headline, privacy, britain, data loss, fraud, identity theft
Hackers Steal Credit Cards From Newegg, Researchers Say
Posted Sep 19, 2018

tags | headline, hacker, cybercrime, data loss, fraud
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Security Services
Hosting By