pgp4pine local exploit for version 1.76 (and possibly below) for the buffer overflow which allows specially crafted emails the ability to execute arbitrary code on the recipient box when the mail is opened.
545d8fd34ef6f8607b75bf17ccd6329330bc302651c8b71b3853971f90a102b2
PHP Nuke 6.0 has vulnerabilities in the Forums and Private_Messages modules which allow attackers to save forum information and user data to a text file.
7b1313ba497ad7dec8ca3b3a90d79592630c5aa71b940def865f36032997e154
Remote CGI exploit written in Perl for Cpanel 5 Guestbook. Spawns a bash shell with the uid of the webserver. Windows version. Warning: Use this binary at your own risk.
6b94af34f927331d86b03d701534fcd53fc85dcaded9fca70821ecfdfa6e7123
Postnuke v0.723 has SQL injection and directory traversal vulnerabilities which allow an attacker to view directories and perform remote command execution.
c7174c9efaf63c50640a797daaf52e208c587ea7527c490209c5b8d8130f87bc
Win32hlp exploit for the :LINK overflow that traps a .CNT file with arbitrary code that once downloaded will execute without a user being prompted for verification. Tested against Windows 2000 PRO/SERVER SP0/SP1/SP2.
4a9d7740766726256679babfae4710b20451e06922ced940aa5e2331fab55f08
Local exploit for Unreal IRC daemon 3.2.
e50479b8ae3686d516f7edd3b95bdd081d79cb14541fca5c08905c7229d76008
Local exploit to get gid of games for toppler.
dafe4a741510221ea6c66764660c6cb121ba22750610c8274faa4a3558e27179
PHP Nuke 6.0 is vulnerable to multiple SQL injection attacks that will allow an attacker to access member lists, show users by user ID, show moderators, show administrators, privilege escalation, and more.
fe41573d8793ef04be219cd767b52d76999813cb7aff1ed34330fd4dc79bbdee
Security Corporation Security Advisory [SCSA-009]: PHP ping, a utility that allows an end user to ping a remote machine, has a vulnerability which allows remote attackers to execute commands remotely and could lead to compromise of some, if not all, the operating system.
031b912addcb3c18b62ac88374185cd3296050827930d08e79d32eef7c10ea8c
Forum Web Server v1.60 has multiple vulnerabilities including a directory traversal that can be used to get usernames and passwords for the server and a cross site scripting vulnerability during message replies.
c66b4e90a5ebfd225573a6e8e31055827254f3feadb7378c9169997431bc15e7
Exploit for the file(1) buffer overflow vulnerability found by iDEFENSE. When file is run upon this binary, a shell is bound to port 2003.
3cd39a300697230bb93932f5c217630f5baeee36b12e0e1b50ced39e0099e3be
LHTTPd 0.1 remote buffer overflow exploit for the Win32 platform. This exploits a buffer overflow in GET request handling of HTTPd 0.1 for Microsoft Windows and binds a shell to the desired port.
e3b0756feee4859c9ccd059b46aea7ceda8413cd43a9835c285f5ca13378fb75
oC-localX.c is a XFree86 Version 4.2.x local root exploit which overflows the XLOCALEDIR environment variable. Tested against Slackware 8.1.
fb610c66411a60250a69a3a1d93f310f0bfdc820a0f8d690ee68b5d271fe7e8a
0x333cya.tar.gz is a Mandrake 9.0 local root exploit which uses bugs in the printer-drivers package. Cya.c gets group sys privileges with a bug in /usr/bin/mtink, and anger.c uses the sys privileges to exploit a bug in /usr/bin/ml85p, spawning a root shell.
70657304dd82f3abb9e1d3e4213fb7c9ef61e403dcb80f896244e21d59e50168
ST-tcphump.c is a remote tcpdump ISAKMP denial of service exploit. Sends a packet on UDP port 500 which sends tcpdump into an infinite loop upon receipt of the specially crafted packet. Supports spoofed and non-spoofed packets.
c8f9cc46ac6820bd2764aa4c3b6fe5f5341798724b26174de0811a67929b4e98