Local root exploit for mtr versions lower than 4.0.6. Vulnerability originally found by KF of Snosoft.
d8abcbb929ad05dfb21ec534c2ad715d568011e3df645bbfcfb8825327e5eb29
X2 exploits the SSH CRC-32 attack detection code buffer overflow vulnerability that exists in SSH1 implementations. The exploit is distributed in binary form and has been encrypted. Includes 45 target types. 319 target types are available Fair Use Law 17 U.S.C.A 107
12258dcf8899d36e83ad1f68fd80e8b11b98188582068bf2c92b683f048f2711
7350fun is a remote exploit for mod_php v4.0.2rc1-v4.0.5 and v4.0.6-v4.0.7RC2. This exploit appears to be a revised version of the 73501867 exploit, which was written by the same author, contained less functionality and was not encrypted. Note: this exploit also causes PHP 4.1.2 versions to segfault. This code was abandoned in a honey pot and is published under Fair Use Law 17 U.S.C.A 107
8a1c0c6bcdd15226fa9559cd421b9ccc4eefd1e6864a6e563ecc6a07fb3258aa
Slrnpull '-d' buffer overflow exploit. Executes shellcode with group 'news' privileges. Tested to work on an Intel Red Hat 6.2 installation .
eccfcdb6d3ad013958b3649b816be1230bf50ad9509fddc11a59fc1c14880407
Packet Storm new exploits for April, 2002.
8b9eddaafaebf6f06350f3a4d1d0a213ef6be8a89e1286ebfcdb5c7a518ff599
Cisco 677/678 Telnet Overflow denial of service perl exploit.
cb4e9ab3984d7182248fb779619975b9ac913a2df54b7cecd9ca0a65b3f66fe9
AnalogX SimpleServer:WWW HTTP Server v1.1 denial of service buffer overflow exploit.
03c2897500c5a4b914acc5b464372800613e7e69016a97e8a3ab5d7d2919f9ff
Exploit for the local root bug in Kerberos IV TGT and AFS Token implementation of the OpenSSH server (sshd) version 2.2.0 - 3.1.0.
615c14091c2a14f0145ea91725a05309132d3183e87da264223c7b7de7a6d8aa
Food_for_the_poor is a linux exploit for a heap overflow in the Kerberos 4 ftp client which creates a suid shell in /tmp.
bf578a293cf0fb675fef500fdd69f10ee9038332f6d871a043dc039d9beab1ce
3CDaemon FTP Server v2.0 buffer overflow dos exploit.
f356eb7981527a6a7920c4ab593bce2ccab2cacf56294d5cb8ded14619d5adae
This exploit hangs WiredRed e/pop v2.0.3, probably works on all 2.x versions.
b8a406b2935f40c49f13e6e3d79fda76022255d9736da36f4610cbda284aaf71
PsyBNC v2.3 has a problem dealing with oversized passwords, making it possible to tie up all the connection slots and consume a lot of CPU on the server.
0076bdd43e597952dd16a6f401e73eea906e8ced691f051d4aff0d921f56940b
Microsoft IIS .HTR heap overflow checker. Determines remotely if patch MS02-018 has been applied.
52133ff9dadd4573b967bc8fb29cf1e30d48c51d0ca09a8652e9a86b701d1b23
Screen v3.9.11 local root linux/x86 exploit for braille module bug.
90a3c9a09aff132ce76e2ff92bcfae748992637421e40057034ec7da4b1f6c8f
Local root exploit for the "Suid application execution bug" (< FreeBSD 4.5-STABLE) that was discovered by Joost Pol from Pine.
f0a04ead1fe242bd1e5e26bb4bf52e05952b5a51e90dc885185f96487aee999d
Iosmash.c is an exploit for the stdio kernel bug that resides in all releases of FreeBSD up to and including 4.5-RELEASE. The exploit uses keyinit, which is part of the S/key package, to create 5 valid root passwords that give instant root access trough S/key.
6a6a5e8af30ab97b224a0e42ecc45ae27efc070689420d081e0ef24f01aa745c
Posadis m5pre1 local buffer overflow exploit.
02990a3bf9a9b52f587bd26ec96d8142429acc8d34e02e69e765ef4fb60221b1
Posadis m5pre2 local format string exploit.
025e81c77e339b0490a61b132dcf3996293528d7e06703be59938c0e883873e7
Microsoft IIS W3SVC Denial of Service - Brings down the inetinfo.exe process, crashing IIS.
81814de9d2e596727cfc98782533c7d68dd2b7ae0b565762aba72a987fd5e7bd
OpenBSD 3.0 cron / mail local root exploit. Creates a suid shell after /etc/daily runs.
a5b14450d1deca2a74846d64060b6c511cf04d505827df0274ff8d1380dc0745
A vulnerability in the ASP (Active Server Pages) ISAPI filter, loaded by default on all NT4 and Windows 2000 server systems (running IIS), can be exploited to remotely execute code of an attackers choice. Example which causes an application error included. Microsoft advisory on this vulnerability here.
4e83e6b8e01187a334ff07545a457cce7fd15e5e451d031b026e792361bb9d42
Xtell from the Debian Linux distribution is a network messaging client for sending messages to users on different computers. Xtell 2.6.1 with at least 3 remote buffer overflows, symlink bug, ".." directory traversal, file race condition, and more. Exploit spawns a shell on port 12321. Tested against Red Hat 7.2, 7.1; Debian Potato.
6ed195d3194377e4df0ecc29f2f8cb1d1bf25bebd9ce482ebca0708bafb87e3b
LogWatch 2.1.1 is a part of the Red Hat Linux 7.2 distribution, enabled by default and daily run by the cron daemon. On a system running LogWatch, a local user is able to gain unauthorized root access, due to a race condition during the temporary directory creation.
98ffcd498de4f7ca5cccf49a33a3d679c6ee9645522f117edf6b2e34c567d01a
Icecast v1.3.11 and below remote root exploit for linux/x86. Binds a shell to port 30464. Tested against SuSE 7.2, Debian 2.2r2, and Slackware 8.0.
15679ffcee48c2b319d6b32319e3a3603c8e5e5f6e3e6fdca3e63eba9856f9bd
Georgi Guninski security advisory #53, 2002 - Two serious security vulnerabilities have been found in Microsoft Office XP. It is possible to embed active content (object + script) in HTML mail which is triggered if the user replies to or forwards mail. In addition, a bug in the Host() function of the spreadsheet allows creating files with arbitrary names and their content may be specified to some extent at which is sufficient to place an executable file (.hta) in user's startup directory which may lead to taking full control over user's computer.
3f49c6b96bb45bdcb1c169996f326348feabd1e79660329b74273529af5b2f1f