seeing is believing
Showing 1 - 25 of 115 RSS Feed

Files

irix.telnetd.txt
Posted Sep 13, 2000
Authored by LSD | Site lsd-pl.net

A serious vulnerability has been found in IRIX telnetd which can give remote root access to any IRIX 6.2-6.5.8[m,f] system. The vulnerability occurrs when one of the environment variables contains a format string which is passed on to the syslog() function. Proof of concept exploit included (updated version - compiler and little endian fixes). Fix available here.

tags | exploit, remote, root, proof of concept
systems | irix
MD5 | 22385913d3970f9f00addf76aa299fee
horde.txt
Posted Sep 11, 2000

The $from-bug is in the horde library file 'horde.lib', (on debian systems installed in /usr/share/horde/lib/horde.lib) in line 1108 belonging to function "mailfrom". In this file there is a call to "popen" with an unchecked "from:"-line as argument. Bug found and exploited by Jens "atomi" Steube, fixed and documentated by Christian "thepoet" Winter

tags | exploit
systems | linux, debian
MD5 | 7ee65a0d5d1fa264e6a56df32877bea2
websitepro.txt
Posted Sep 11, 2000
Authored by Crono

WebSite Pro is a Web Server for Win95/98/NT platforms. The vulnerability (or bad server administration) allows any user to create arbitrary files with arbitrary text on the victim machine, from the Internet web browser. By a default installation, any user can create or uploads files to the victim machine running a vulnerable version of WebSite Pro. The problem is a bad "protection access" of the main directories on the machine.

tags | exploit, web, arbitrary
systems | windows
MD5 | 923f9c6216a742ebff00f589bf593f03
0008-exploits.tgz
Posted Sep 8, 2000
Authored by Todd J.

Packet Storm new exploits for August, 2000.

tags | exploit
MD5 | 3d58f82c7badff1819cdd9e0aebfdbe6
dmplay.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/sbin/dmplay local exploit for Irix 6.2 and 6.3.

tags | exploit, local
systems | irix
MD5 | ac9e33b42c4a60714cc75052c38c0cd9
trans.pl
Posted Sep 7, 2000
Authored by Roelof Temmingh

Win2k IIS remote exploit - Retrieves files using the Translate: f bug.

tags | exploit, remote
systems | windows
MD5 | ca39fae3ccf6cef0b09f5c8b1e171366
outlookmailxploit.zip
Posted Sep 7, 2000
Authored by Fbyte

Microsoft Outlook date header remote exploit - executes an arbitrary command on the machine reading mail when new mail is downloaded. Tested against Windows 98, 2000, and NT. Includes Delphi source.

tags | exploit, remote, arbitrary
systems | windows, 9x
MD5 | 609d7f1261dc06565e9076ce17f1b7c7
inpview.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/lib/InPerson/inpview local exploit for irix 6.5 and 6.5.8.

tags | exploit, local
systems | irix
MD5 | e451bb3c91d58f58a0be7cf74296cba9
eject3.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/sbin/eject local exploit for Irix 6.2.

tags | exploit, local
systems | irix
MD5 | b4d3a80494b3fd6e91498e0cc48548be
libxt2.c
Posted Sep 7, 2000
Site lsd-pl.net

libxt.so HOME environment variable local buffer overflow exploit for Irix 6.2 and 6.3.

tags | exploit, overflow, local
systems | irix
MD5 | 7f9f46d42599b7d53ae329ac72d78ee1
pset2.c
Posted Sep 7, 2000
Site lsd-pl.net

/sbin/pset local exploit for Irix 6.2 and 6.3.

tags | exploit, local
systems | irix
MD5 | 248262637213c4375240580b19979b36
gr_osview.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/sbin/gr_osview local exploit for Irix 6.2 and 6.3.

tags | exploit, local
systems | irix
MD5 | 5e2840ed7076d1cb5b71eb61c4225231
irix-libc.c
Posted Sep 7, 2000
Site lsd-pl.net

libc.so NLSPATH local exploit for Irix 6.2.

tags | exploit, local
systems | irix
MD5 | 2b1f37157932fbf6eba526123da8636f
libgl.c
Posted Sep 7, 2000
Site lsd-pl.net

libgl.so HOME environment variable local exploit for irix 6.2.

tags | exploit, local
systems | irix
MD5 | 7d324da5715b5fe5187746417eff352c
login2.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/lib/iaf/scheme (login) local exploit for Irix 5.3.

tags | exploit, local
systems | irix
MD5 | ccb17fe3c022a4e18e6bdbfe5af14102
libxaw.c
Posted Sep 7, 2000
Site lsd-pl.net

libxaw.so inputmethod local exploit for irix 6.2.

tags | exploit, local
systems | irix
MD5 | f021df30c7f4708c805d9116ac2dc5f9
mail.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/bin/mail local exploit for Irix 6.2 and 6.3.

tags | exploit, local
systems | irix
MD5 | 7ebdbdd3a3ce3f6fb2be68925c40d8ff
irix-xlock.c
Posted Sep 7, 2000
Site lsd-pl.net

Irix 6.3/6.2 /usr/bin/X11/xlock local buffer overflow exploit.

tags | exploit, overflow, local
systems | irix
MD5 | 19d26832ec333919d795f33bfc09de1f
named2.c
Posted Sep 7, 2000
Site lsd-pl.net

Irix 6.2/5.3 named iquery remote root buffer overflow exploit. Spawns a bindshell.

tags | exploit, remote, overflow, root
systems | irix
MD5 | ae79a7e9edab60e1b0a4d70a00b1c04b
autofsd.c
Posted Sep 7, 2000
Site lsd-pl.net

Autofsd remote buffer overflow exploit for Irix 6.4 and 6.5.

tags | exploit, remote, overflow
systems | irix
MD5 | 01378a7a7c5f88bb5c1927e293890131
arrayd.c
Posted Sep 7, 2000
Site lsd-pl.net

Irix 6.5/6.4/6.3/6.2 arrayd remote buffer overflow exploit as described in CA-99-09-arrayd.txt.

tags | exploit, remote, overflow
systems | irix
MD5 | e14c5e74a826f15f48e76a155fec4eb9
objectserver2.c
Posted Sep 7, 2000
Site lsd-pl.net

SGI objectserver "export" exploit - Remotely adds new entry to the export list on the IRIX system. See our SGI objectserver "account" exploit for more information. Only directories that aren't supersets of already exported ones can be added to the export list.

tags | exploit
systems | irix
MD5 | 7819f36ebeb0df0e7d844ea40bc548a4
irix_rpc_ttdbserverd.c
Posted Sep 7, 2000
Site lsd-pl.net

rpc.ttdbserverd remote root exploit for irix 5.2 5.3 6.2 6.3 6.4 6.5 6.5.2.

tags | exploit, remote, root
systems | irix
MD5 | 983cc713413d355851a1143d56d1b1e5
lp.c
Posted Sep 7, 2000
Site lsd-pl.net

/usr/bin/lp local root exploit for solaris 2.7 x86.

tags | exploit, x86, local, root
systems | solaris
MD5 | 706bd11fe7e7a238911ed863d11ec443
libc2-x86.c
Posted Sep 7, 2000
Site lsd-pl.net

libc.so LC_MESSAGES local exploit for solaris 2.7 x86.

tags | exploit, x86, local
systems | solaris
MD5 | 39fa1e883a0035bd2109d6da65288055
Page 1 of 5
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, flaw, patch, oracle
Child Safety Smartwatches Easy To Hack, Watchdog Says
Posted Oct 18, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, privacy, flaw
Domino's Pizza Delivers User Details To Spammers
Posted Oct 18, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, privacy, email, spam, fraud
Microsoft Never Disclosed 2013 Hack Of Secret Vulnerability Database
Posted Oct 18, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, hacker, microsoft, data loss, flaw
Adobe Patches Zero-Day Used To Plant Gov't Spying Software
Posted Oct 17, 2017

This is an article straight from the wires, you can read the full story here.

tags | headline, hacker, government, usa, flaw, cyberwar, adobe, zero day, nsa
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close