Digit-Labs Security Advisory DLA-25-06-2002 - Microsoft Internet Information Server 5.0 Administration Web Site redirect proof of concept exploit.
e40dcfcc6dabff8f35bea63000df3a5800f306c939003f143fe14a75edeb7bc2
Argosoft Mail Server v1.8.1.5 Plus/Pro Webmail reverse directory traversal exploit which allows an attacker to retrieve any file on the disk readable by the mail server. The freeware edition of Argosoft Mail Server is not vulnerable. Fix available here.
dbf5946533d5cfe25aafbdf397ec1795b580feaef652930b1102653a65a17aa0
SunPCi II v2.3 comes with a modified VNC which allows an attacker to discover the password if he can sniff the traffic between client and server. Decoding program tested on Linux and Solaris.
83f20fd636916e33e4f70baf6cf2af906377f38df67863364a556367ebab2ae2
OpenSSH v2.9.9 to 3.1 remote root exploit for the default install of Openbsd 3.x. This tarball is a set of patches for the OpenSSH v3.4p1 client. Takes advantage of a bug in the challenge response handling code.
66673a2f309473738a39e0894fd315b3d7a3c3f6aaca9c1e1906fe2119ebf511
Lotus Domino Web Server R4 on AIX (other platforms not tested) allows remote users to download files in the web root regardless of ECL's or permissions.
e8fa238c58346a1f2b8e39af9e91b98c924e12b393308944758bac278c369ecd
OmniHTTPd v2.09 remote denial of service buffer overflow exploit. Uses a big in the handling of long HTTP versions.
438d93d987c2ef9ae6f8906bb799d03667857bc0fabb041a98c707bd5ee6efb0