AltaVista Software's Firewall97 for Digital Unix contains security hole that allows remote attacker to gain root access.
8b99fc149ae38f05110e3b193881b1bcd75c4c63c1c79adeb73e2f59331073fcRemote buffer overflow in AOL 4.0 email client. Simple exploit description included.
7e6c4e43b93ab23118a55abdb9f4f85c372b1b9e960492b6df1431008747b38dSevere Security Hole in ARCserve NT agents allows usernames and passwords to easily be sniffed and decrypted. Exploit details included.
e5a23a42a11b7dc76b71ca5a00d73494514bc7825294c25ce7150cd200a93c2cVulnerability in Ascend's multilink PPP implementation over ISDN can lead to remote Denial of Service attack.
6239abe37b4febe1d6111000953629b907d36cbbcb91cf5e857fe66c2ac7c8d1Linux autofs buffer overflow in 2.0.36 - 2.2.1 can result in local Denial of Service attacks and root compromise by non-privleged users.
5403f54814ab57fec237e5f4f838acb7a55037bb1a2d819595a55b4237d6094fMicrosoft BackOffice Server 4.0 does not delete installation setup files, resulting in possibility of local root compromise. No patch available yet, but temporary solutions are described.
3017d4823a3c29a018c8537a468880ec322788d5be2c9287827a17e5daf828abVulnerability in Bintec Firmware BOSS V4.9 Release 1 and earlier permits remote attacker to gain unauthorized access.
e78543aaf1b1cd1137e6c281f9025af0ca1a1ff9a280c7e68251a0e4501e85ddLinux BNC remote exploit for versions earlier than 2.4.4.
6e14b9760dd6af7d70a111a484a3e3996ec16f016c658886ba4025e1891369e6Cold Fusion v4.0 security - A variety of security holes described in Cold Fusion v4.0.
230ff3e0a74a6aa551135eb38cf3d5bd7af5e943be271533a4de040b6cca45dfError in the way cfengine handles temporary files when it runs the tidy action on homedirectories makes it suspectible to a symlink attack. Fixes available.
e404dbfaafe1061210f3fefdcc6eef521c1ef1f429192e6319647fd618a8e79dUpdated version of cgi exploit scanner, with additional checks for new exploits.
c62d6178c4b5ea44b60d8e433c016dcee55f3ea9036fdc47f21330b0c6fe6b76Poor security coding leaves several race conditions and other security problems in Clear Case, a configuration management program from Rational Software. Local root compromise. "clear_waste.sh" exploit code included.
956fb8fc120b620f5d57d1e03ed6693777c34c60bb007966b51b57d0a9569947More security holes found in Rational Software ClearCase - race conditions result in local root compromise.
c7c1a496fcf1561cc777e6e00366a968dc29c080d56478709f93125f6f7d356bSecurity hole in Cobalt RaQ web servers allows malicious attacker to enter remote systems, find the system administrator's password, and gain root access. Simple exploit description and suggested fixes included.
ec1f24ef42ccf410b66f0d39457c6e4ccc8c5378dd483d4cc3eff2b727e3eb59cprobe v1.0 mass cgi scanner shell script. There are plenty of cgi vulnerability scanners on the Net, but this one has some really nice features: scans for over 23 cgi scripts with known security vulnerablities, checks for httpd version information, if server is running frontpage extentions checks for 4 major pwd files, scans a single host or a list of hosts, reports whether file is not found, access is forbidden, a server error was encountered, or connection timed out, logs findings to individual files. Requires netcat.
e367c2a7794b9b3b2bea03a0c90b5f6aa6c6213cd19ce4eac722232c05f1fc4eA simple shell script that binds a root shell to a socket, on selected port and for specific amount of time (controlled by crontab).
50d0302f20e2707713ca0abe33d3bee0f5323fe4e6a09c9dc8738c00c4db410eDCC Sending the device files /dev/ttyp1 - ? while someone is logged in on that ttyp to an outside client will send all information sent from that user to the target client, making it possible to snoop his connection, password and login through IRC.
e5841bbbea15e38f1e004c167858f61cd7910fd6a7ae689b7d1fabb7daab08faA variety of Buffer Overflows in Digital Unix that can lead to problems as severe as remote root compromise are described in detail by Lamont Granquist.
15a859c82b2dcdf2362e61af7d682c81f394bdc7c09f0646a99a07f4a871be53Potential exists for Denial of Service attacks and domain hijacking of any .nu domains due to poorly implemented Niu DNS setup process.
74899ae44bce9f1c8367da69ea4f8e05e4bbe0abb34d9c80c47c5927fb77879aBuffer overflow in latest version of fakebo (v0.31) allows remote code execution, potential remote root compromise.
813410e74d64cf524ded3afb7f8bc0cf5c050c2e8833947624642d5466d87b56frame.spoof.txt
0607ed5c7567bc7f2d7a0270a2802f8203454298ff7fe4a1e8fa5fe52cbf31a0Remote buffer overflows in FTP servers lead to potential root compromise. ProFTPD (1.2.0pre1) and Wuarchive ftpd (2.4.2-academ[BETA-18]).
11962d5d14060eab6c9e7f83b9167220b8a89d7614d1e7ea1e621e0fdd643eabDenial of Service attack against newly patched ProFTPD servers. Coded in perl, kills ftpd.
d82a712267a14207aa485915b4d673c5ddc89f37418855ca923732c4358c64c5Denial of Service attack against HP printers.
00cef7bdcd63f5f26d61266f6c23438d62e914d1e603076934a016a18401f681Basic Linux rpc.mountd remote exploit.
88e20e2186233407362f18873a0c50698ffc34b617f17e75b13db7e0080a8fe1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed