Local root exploit for mtr versions lower than 4.0.6. Vulnerability originally found by KF of Snosoft.
d8abcbb929ad05dfb21ec534c2ad715d568011e3df645bbfcfb8825327e5eb29X2 exploits the SSH CRC-32 attack detection code buffer overflow vulnerability that exists in SSH1 implementations. The exploit is distributed in binary form and has been encrypted. Includes 45 target types. 319 target types are available Fair Use Law 17 U.S.C.A 107
12258dcf8899d36e83ad1f68fd80e8b11b98188582068bf2c92b683f048f27117350fun is a remote exploit for mod_php v4.0.2rc1-v4.0.5 and v4.0.6-v4.0.7RC2. This exploit appears to be a revised version of the 73501867 exploit, which was written by the same author, contained less functionality and was not encrypted. Note: this exploit also causes PHP 4.1.2 versions to segfault. This code was abandoned in a honey pot and is published under Fair Use Law 17 U.S.C.A 107
8a1c0c6bcdd15226fa9559cd421b9ccc4eefd1e6864a6e563ecc6a07fb3258aaSlrnpull '-d' buffer overflow exploit. Executes shellcode with group 'news' privileges. Tested to work on an Intel Red Hat 6.2 installation .
eccfcdb6d3ad013958b3649b816be1230bf50ad9509fddc11a59fc1c14880407Packet Storm new exploits for April, 2002.
8b9eddaafaebf6f06350f3a4d1d0a213ef6be8a89e1286ebfcdb5c7a518ff599Cisco 677/678 Telnet Overflow denial of service perl exploit.
cb4e9ab3984d7182248fb779619975b9ac913a2df54b7cecd9ca0a65b3f66fe9AnalogX SimpleServer:WWW HTTP Server v1.1 denial of service buffer overflow exploit.
03c2897500c5a4b914acc5b464372800613e7e69016a97e8a3ab5d7d2919f9ffExploit for the local root bug in Kerberos IV TGT and AFS Token implementation of the OpenSSH server (sshd) version 2.2.0 - 3.1.0.
615c14091c2a14f0145ea91725a05309132d3183e87da264223c7b7de7a6d8aaFood_for_the_poor is a linux exploit for a heap overflow in the Kerberos 4 ftp client which creates a suid shell in /tmp.
bf578a293cf0fb675fef500fdd69f10ee9038332f6d871a043dc039d9beab1ce3CDaemon FTP Server v2.0 buffer overflow dos exploit.
f356eb7981527a6a7920c4ab593bce2ccab2cacf56294d5cb8ded14619d5adaeThis exploit hangs WiredRed e/pop v2.0.3, probably works on all 2.x versions.
b8a406b2935f40c49f13e6e3d79fda76022255d9736da36f4610cbda284aaf71PsyBNC v2.3 has a problem dealing with oversized passwords, making it possible to tie up all the connection slots and consume a lot of CPU on the server.
0076bdd43e597952dd16a6f401e73eea906e8ced691f051d4aff0d921f56940bMicrosoft IIS .HTR heap overflow checker. Determines remotely if patch MS02-018 has been applied.
52133ff9dadd4573b967bc8fb29cf1e30d48c51d0ca09a8652e9a86b701d1b23Screen v3.9.11 local root linux/x86 exploit for braille module bug.
90a3c9a09aff132ce76e2ff92bcfae748992637421e40057034ec7da4b1f6c8fLocal root exploit for the "Suid application execution bug" (< FreeBSD 4.5-STABLE) that was discovered by Joost Pol from Pine.
f0a04ead1fe242bd1e5e26bb4bf52e05952b5a51e90dc885185f96487aee999dIosmash.c is an exploit for the stdio kernel bug that resides in all releases of FreeBSD up to and including 4.5-RELEASE. The exploit uses keyinit, which is part of the S/key package, to create 5 valid root passwords that give instant root access trough S/key.
6a6a5e8af30ab97b224a0e42ecc45ae27efc070689420d081e0ef24f01aa745cPosadis m5pre1 local buffer overflow exploit.
02990a3bf9a9b52f587bd26ec96d8142429acc8d34e02e69e765ef4fb60221b1Posadis m5pre2 local format string exploit.
025e81c77e339b0490a61b132dcf3996293528d7e06703be59938c0e883873e7Microsoft IIS W3SVC Denial of Service - Brings down the inetinfo.exe process, crashing IIS.
81814de9d2e596727cfc98782533c7d68dd2b7ae0b565762aba72a987fd5e7bdOpenBSD 3.0 cron / mail local root exploit. Creates a suid shell after /etc/daily runs.
a5b14450d1deca2a74846d64060b6c511cf04d505827df0274ff8d1380dc0745A vulnerability in the ASP (Active Server Pages) ISAPI filter, loaded by default on all NT4 and Windows 2000 server systems (running IIS), can be exploited to remotely execute code of an attackers choice. Example which causes an application error included. Microsoft advisory on this vulnerability here.
4e83e6b8e01187a334ff07545a457cce7fd15e5e451d031b026e792361bb9d42Xtell from the Debian Linux distribution is a network messaging client for sending messages to users on different computers. Xtell 2.6.1 with at least 3 remote buffer overflows, symlink bug, ".." directory traversal, file race condition, and more. Exploit spawns a shell on port 12321. Tested against Red Hat 7.2, 7.1; Debian Potato.
6ed195d3194377e4df0ecc29f2f8cb1d1bf25bebd9ce482ebca0708bafb87e3bLogWatch 2.1.1 is a part of the Red Hat Linux 7.2 distribution, enabled by default and daily run by the cron daemon. On a system running LogWatch, a local user is able to gain unauthorized root access, due to a race condition during the temporary directory creation.
98ffcd498de4f7ca5cccf49a33a3d679c6ee9645522f117edf6b2e34c567d01aIcecast v1.3.11 and below remote root exploit for linux/x86. Binds a shell to port 30464. Tested against SuSE 7.2, Debian 2.2r2, and Slackware 8.0.
15679ffcee48c2b319d6b32319e3a3603c8e5e5f6e3e6fdca3e63eba9856f9bdGeorgi Guninski security advisory #53, 2002 - Two serious security vulnerabilities have been found in Microsoft Office XP. It is possible to embed active content (object + script) in HTML mail which is triggered if the user replies to or forwards mail. In addition, a bug in the Host() function of the spreadsheet allows creating files with arbitrary names and their content may be specified to some extent at which is sufficient to place an executable file (.hta) in user's startup directory which may lead to taking full control over user's computer.
3f49c6b96bb45bdcb1c169996f326348feabd1e79660329b74273529af5b2f1f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed