Exploit the possiblities
Showing 1 - 25 of 111 RSS Feed

Files

CA-99-03-FTP-Buffer-Overflows.txt
Posted Aug 17, 1999
Authored by CERT

Remote buffer overflows in various FTP servers leads to potential root compromise.

tags | exploit, remote, overflow, root
MD5 | dbea2205dda8ccac96f1c99e020cb168
website.pro.txt
Posted Aug 17, 1999

Default configuration of Website Pro 2.0 opens security hole allowing remote attackers to upload new files and overwrite existing files. This is how www.idsoftware.com got hacked this week.

tags | exploit, remote
MD5 | 26abac3db4e02e79064718c0c9ca5322
win98explorer.txt
Posted Aug 17, 1999

Buffer overflow in Windows Explorer can lead to Denial of Service attack, and possibly more.

tags | exploit, denial of service, overflow
systems | windows
MD5 | 495780f39b879aa7dcfc4b0bf3cc5a2d
windows-FAT-recursion.txt
Posted Aug 17, 1999
Authored by xm

Windows FAT Filesystem Advisory: Recursive directory creation can be used as a Denial of Service attack against Windows* servers that allow anonymous FTP upload, and any that allow users to create directories and execute files.

tags | exploit, denial of service
systems | windows
MD5 | c65ab9fc785e6fbe9ed312de9b0db492
windows.backdoors.txt
Posted Aug 17, 1999

ISS X-Force advisory concerning Windows backdoors, specifically NetBus 2.0 Pro, Caligula, and Picture.exe. An excellent analysis of the new NetBus 2.0 Pro is included, making this a "must read" file.

tags | exploit
systems | windows
MD5 | 48b58baf8280bf485b79628937757fc0
windows.registry.keys.txt
Posted Aug 17, 1999

This is nothing new, but is nevertheless a good reminder that Windows registry keys are never deleted, unless you "hack" the registry yourself. For details on how to edit your Windows registry, and take care of many of the rest of those "Windows annoyances", check out Annoyances.org

tags | exploit, registry
systems | windows
MD5 | 59d7ca77dcf306587c75502b69c017cd
windows98.bof.txt
Posted Aug 17, 1999

More Windows 98 buffer overflows detailed. The interesting thing about these is that it appears that Microsoft software developers define buffer values for each application without consulting one another. In other words, virtually every MS product allocates different amounts of space for buffers!

tags | exploit, overflow
systems | windows, 9x
MD5 | d9c92ebe1f9222ad00bcdde0586b6de1
windows98.pingflood.txt
Posted Aug 17, 1999

ISS X-Force advisory concerning Windows backdoors, specifically NetBus 2.0 Pro, Caligula, and Picture.exe. An excellent analysis of the new NetBus 2.0 Pro is included, making this a "must read" file.

tags | exploit
systems | windows
MD5 | 0c50cbff0567fe9b3b0fb84078d9f496
word98.mac.txt
Posted Aug 17, 1999
Authored by eEye Digital Security

Macintosh version of Microsoft Word '98 includes sensitive material in document files. Specifically, document files created in Word '98 frequently include unrelated data taken from the hard-drive. This data can contain passwords, or other confidential information that is on the hard-drive. 9902-exploits/ws_ftp-DoS.txt WS_FTP Server Remote Denial of Service Attack. Exploit example included.

tags | exploit, remote, denial of service
MD5 | 065dbafc4ae8140aef94bbfe2a92dab2
xnec_lpc.c
Posted Aug 17, 1999

Linux /usr/bin/lpc (PLP Line Printer Control program) contains buffer overflow with local root compromise. Exploit code and patch fix included.

tags | exploit, overflow, local, root
systems | linux
MD5 | aec9a0e09fe92f5cce168758e313fe9d
xtvscreen.suse6.txt
Posted Aug 17, 1999

The Xtvscreen program can be used to overwrite any file on SuSE 6 (and probably other distros and OS's).

tags | exploit
systems | linux, suse
MD5 | 0b8c52ed13792a58ba16a07caa5f360b
install.iss.txt
Posted Aug 17, 1999

ISS Internet Security Scanner for Linux (version 5.3) install.iss security hole is vulnerable to the standard tmp-symlink attack. Not much exploit potential here, as noted by Fyodor, but this problem raises serious questions about the overall integrity of proprietary ISS software that is distributed in binary form only.

tags | exploit
systems | linux
MD5 | e8599998de34f811628bf9405786aec2
interscan.viruswall.txt
Posted Aug 17, 1999
Authored by s10, unicorn

Trend Micro's InterScan VirusWall does not properly protect LANs from inbound traffic (any user can download binaries and virus infected files though the VirusWall). Exploit code included; no patch available from the vendor yet.

tags | exploit, virus
MD5 | 5b262315217f933c531b2d3408b823bd
iss.brute.force.txt
Posted Aug 17, 1999

The ISS Internet Scanner lets you brute force by using username/password pairs specified in the file default.login.

tags | exploit
MD5 | dc6d18282709f16988be856537aaadc4
iss.exploit.c
Posted Aug 17, 1999

Example generic tmp-symlink exploit code that can be used for Denial of Service attacks or root compromises.

tags | exploit, denial of service, root
MD5 | 771cc2a2d53d324079c36552bafd3e62
junk.tar.gz
Posted Aug 17, 1999
Authored by sw3

Example script that exploits the poc.mail.local.txt (mail.local) security hole.

tags | exploit, local
MD5 | bb54b64c3211442af77b5262adfc1b0e
linux2.2.1-proc-smp-race-sniffer.txt
Posted Aug 17, 1999

Detailed descriptions of SMP /proc race conditions in Linux 2.2.1 kernel. Patches and Linux-2.2.1 /proc SMP race sniffer exploit code included.

tags | exploit, kernel
systems | linux
MD5 | de9a3e3c3cad9d14621c7d3a34e8e869
listerine.tar.gz
Posted Aug 17, 1999
Authored by sw3

Example script to test for the ncftpd.txt (NcFTPd) security exploit.

tags | exploit
MD5 | de0425a0cf8ac4eff839d7f40d245a58
lsof-xploit.c
Posted Aug 17, 1999

Exploit code for buffer overflow in lsof versions 4.40 and earlier that enables any local user to obtain root privileges.

tags | exploit, overflow, local, root
MD5 | c29781c8c7cb0904a4c8e9f93e2b737d
lsof.txt
Posted Aug 17, 1999
Authored by HERT

Buffer overflow in lsof v4.40 and earlier allows local root compromise. Suggested patch and fix information included.

tags | exploit, overflow, local, root
MD5 | c3f4c5a1f70c668088b171904a92b62d
lydia.passwd.txt
Posted Aug 17, 1999

The Lydia pop3 email utility produced by Kabsoftware uses a weak encryption algorithm, leaving user passwords locally vulnerable.

tags | exploit
MD5 | f232b4ef6fea443cdcae843bd2dbaf44
lynxtmp.txt
Posted Aug 17, 1999

Lynx /tmp bug involving symlinks can lead to local root compromise.

tags | exploit, local, root
MD5 | 70cc0da358dc3e21589ce3cba3f73cf7
mail.local.diff
Posted Aug 17, 1999

Diff for mail.local security hole.

tags | exploit, local
MD5 | 34b0b99a5caad2eb9a54ed28d42c5daa
mailfrm.tar.gz
Posted Aug 17, 1999
Authored by sw3

Example script that exploits the poc.mail.local.txt (mail.local) security hole.

tags | exploit, local
MD5 | 13050863a413c950fa09286c786406c7
mailmaxbof.c
Posted Aug 17, 1999
Authored by _mcp_

Mail-Max SMTP server for windows 95/98/NT contains remote buffer overflows that can result in root compromise. Exploit code (compiles on Linux x86) included.

tags | exploit, remote, overflow, x86, root
systems | linux, windows, 9x
MD5 | 51fbd85cb953a231f73b2f56486701cd
Page 1 of 5
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Cash Converters Reveals Data Breach
Posted Nov 16, 2017

tags | headline, hacker, cybercrime, data loss, fraud, identity theft
Kaspersky Defends Its Role In NSA Breach
Posted Nov 16, 2017

tags | headline, government, malware, usa, russia, data loss, spyware, nsa
McAfee Anti-Hacking Service Exposed Users To Banking Malware
Posted Nov 16, 2017

tags | headline, malware, bank, cybercrime, fraud, flaw, identity theft, mcafee
DJI Bug Bounty NDA Is 'Not Signable', Say Irate Infosec Researchers
Posted Nov 16, 2017

tags | headline, hacker, flaw
Government Just Figures Out You Can Hack Planes Remotely Due To Poor Design
Posted Nov 15, 2017

tags | headline, government, usa, flaw, terror
UK Security Chief Blames Russia For Hacks
Posted Nov 15, 2017

tags | headline, hacker, government, britain, russia, cyberwar
Forbes 30 Under 30 Conference Site Exposed Attendee Details
Posted Nov 15, 2017

tags | headline, privacy, data loss, flaw, conference
The Motherboard Guide To Not Getting Hacked
Posted Nov 15, 2017

tags | headline, hacker, privacy, data loss, fraud, identity theft
Votes In 18 Nations 'Hacked' In Last Year
Posted Nov 14, 2017

tags | headline, government, usa, russia, fraud, cyberwar, social
Shut The Front Door: Jewson Admits To Data Breach
Posted Nov 14, 2017

tags | headline, hacker, privacy, data loss
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close