ignore security and it'll go away
Showing 1 - 25 of 97 RSS Feed

Files

BEADMIN.ZIP
Posted Aug 17, 1999
Authored by Cybermedia Software

Exploit source code for Windows NT Screen Saver Vulnerability that allows any local user to add self to admin group.

tags | exploit, local
systems | windows, nt
MD5 | 0b893a3b4f019bd85c18934661a9ecb3
lotus.notes.crypto.txt
Posted Aug 17, 1999

Lotus security advisory concerning a bug in the Lotus Notes Client which causes encrypted email messages to be saved in the sender's mailbox in unencrypted form.

tags | exploit
MD5 | 862992fe8840f908164628dc3226c1ad
lotus.notes.mail.crypto.txt
Posted Aug 17, 1999

Encrypted mail sent from the Lotus Notes Client (v4.5, probably others) may traverse the network in the clear and may be stored on the mail server unencrypted. Advisory by Martin Bartosch

tags | exploit
MD5 | a8be88cb0dd929688647905a47531c16
melissa.macro.virus.txt
Posted Aug 17, 1999

I am not going to make a habit of posting virus alerts, but this analysis of the fast spreading Melissa virus, including full source code, merits a posting. Excellent job by Nate Lawson of root.org

tags | exploit, root, virus
MD5 | 5fe5025944f1b46cfb6e77027470049e
ms.exchange.outlook.javascript.txt
Posted Aug 17, 1999

Vulnerabilities in Microsoft Exchange server allow remote attacker to delete user inbox and launch Denial of Service attack with embedded JavaScript.

tags | exploit, remote, denial of service, javascript, vulnerability
MD5 | 199edd03e1fe2230e6409c28c53f824e
ms.office.ole.samples.txt
Posted Aug 17, 1999
Authored by MacInTouch

Micrsoft Office/OLE security holes: Does Microsoft know that they are themselves vulnerable though? "clueserver.microsoft.com" is a non-existent host???

tags | exploit
MD5 | 9e155e4a5698d703216ab529c771aae2
ms.personal.webserver.txt
Posted Aug 17, 1999

Microsoft has released a patch for the File Access Vulnerability in Personal Web Server. All relevant details included in file.

tags | exploit, web
MD5 | c3324a54606912fa91a3b8f51781f7d9
ms.smtp.DoS.txt
Posted Aug 17, 1999

Microsoft's SMTP service (v5.5.1877.977.9) launches Denial of Service attacks. No, this is not a joke, either. Read it. You can download consolation patches at Macroshaft

tags | exploit, denial of service
MD5 | 50bad8df6b9d4a4f17dc881b26f925e4
ms.sql.enterprise.manager.txt
Posted Aug 17, 1999

Microsoft SQL Enterprise Manager stores usserid and passsword in plaintext.

tags | exploit
MD5 | 7bb84405b41ba2f30094498448ce21db
msie.5.0.cookies.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5.0 is susceptible to a very simple Denial of Service attack involving cookies. Default security settings open this hole, and there is currently no fix. Other problems with the way that MSIE 5 handles cookies are also discussed.

tags | exploit, denial of service
MD5 | e4328459eb80a9872a6d3f06d3b6c8b3
msie.5.0.javascript.txt
Posted Aug 17, 1999

Microsoft just released Internet Explorer 5.0, but apparently forgot to plug many of the JavaScript security holes documented by Georgi Guninski

tags | exploit, javascript
MD5 | b36f2278c1207a8b63f0eeece52915f7
msie.5.0.paste.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5.0 contains the recently discovered clipboard vulnerability, but now ALL HTML <INPUT> boxes, along with DHTML, can be used to grab your clipboard contents. The default clipboard setting for IE5 is also slacker than before.

tags | exploit
MD5 | 44cc84265780abeda710340622f1413b
msie.5.0.setup.wizard.txt
Posted Aug 17, 1999

The Microsoft Internet Explorer 5.0 installer (Setup Wizard) disables password protected screen savers and the Task Scheduler Service, effectively disabling whatever security you thought the screen saver afforded you, rendering your PC or workstation completely vulnerable to console-based (local-physical) compromises by anybody.

tags | exploit, local
MD5 | 6853a1874ab763ef575672e76a82c95a
msie.5.autocomplete.txt
Posted Aug 17, 1999

The "AutoComplete" feature? In Microsoft Internet Explorer 5.0 it's a big security risk.

tags | exploit
MD5 | b248e3e74d0601e736a599aa419d6ab1
msie.5.dhtml.cuartango.txt
Posted Aug 17, 1999
Authored by Juan Carlos Garcia Cuartango

More Microsoft Internet Explorer 5 vulnerabilities! Microsoft Active X control called "DHTML Edit control Safe for Scripting for IE 5" contains security holes that allow public access to the clipboard and cross-frame access, among other things. Exploit code examples included.

tags | exploit, vulnerability, activex
MD5 | e2fe2708e182aa7971209fcbccc5c672
msie.5.previous.inputs.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5 stores usernames, passwords, credit card, and other personal information unencrypted and insecure in dropdown box.

tags | exploit
MD5 | 0ea034906dbae4167f9f40c4d0a45515
msie.zone.confusion.txt
Posted Aug 17, 1999

Microsoft Internet Explorer still does not properly distinguish between sites that belong in the "Internet Zone" and sites that belong in the "Local Intranet Zone".

tags | exploit, local
MD5 | 97750f23ac2564a835207e02906bcd2b
mutt.tempfile.race.txt
Posted Aug 17, 1999

tempfile race condition in latest releases of mutt can result in typical symlink attacks.

tags | exploit
MD5 | 89e5a2b9fb26bc2fb3a96dd7e4cebb54
my_login.c
Posted Aug 17, 1999
Authored by stealth

A "patched" login.c that gives user privileged access and logs other user's passwords.

tags | exploit
MD5 | 122c000a51b7b3a7dfd382b839ccf6b8
netbsd.noexec.txt
Posted Aug 17, 1999

Security vulnerability in NetBSD 1.3.3 and prior; NetBSD-current until 19990318 permits local users to execute arbitrary binaries on the system, because the noexec mount flag is not properly handled by non-root mount. Vendor solutions and patches available.

tags | exploit, arbitrary, local, root
systems | netbsd
MD5 | 926df7a7db98909a9333ecd30229bc75
netbsd.umapfs.txt
Posted Aug 17, 1999

NetBSD 1.3.3 and prior, and NetBSD-current until 19990312 contain a security hole in "umapfs"; Insufficient kernel checking in the umapfs virtual file system allows local users to remap their user id to any other user including the root user. Exploit details, and NetBSD solutions, patches and workarounds included.

tags | exploit, kernel, local, root
systems | netbsd
MD5 | bc34b5a434fa694dcb86fc3112e5868d
netscape.4.5.talkback.txt
Posted Aug 17, 1999

Security hole in Netscape Communicator's 4.5 "talkback" function allows any local user to kill processes of any other users if their communicator crashes. Furthermore, a local malicious user can overwrite/create any file that any other user on the system has write access to. Potenial buffer overflow exists too. Vendor and third party solutions included.

tags | exploit, overflow, local
MD5 | a3b8b2e54fbb58ab36b515dffb784636
netscape.4.51.javascript.txt
Posted Aug 17, 1999

Netscape just released Netscape Communicator v4.51, but apparently forgot to patch some serious security holes related to JavaScript and reading your files, cache, and more.

tags | exploit, javascript
MD5 | 4dbfa8f2e759d21f991ad94daa68a6af
netscape.4.51.url.sniffing.txt
Posted Aug 17, 1999

Netscape Communicator 4.51 allows sniffing of URLs from another window. Exploit code and recommended solution included.

tags | exploit
MD5 | c3a27aaf96215671db0e3567ad0b3bb9
netscape.coredump.txt
Posted Aug 17, 1999
Authored by Echo8

Netscape Navigator 3.x and 4.x for Linux and UNIX contains security vulnerability in which sensitive user information is easily obtainable from core dumps.

tags | exploit
systems | linux, unix
MD5 | bb7dceed108822575edaf0e9daadabea
Page 1 of 4
Back1234Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Phishers Getting Smarter By Making Use Of User Location
Posted Oct 20, 2017

tags | headline, malware, cybercrime, fraud, phish
OSX Malware Spread Via Compromised Software Downloads
Posted Oct 20, 2017

tags | headline, malware, apple
Canadian Spooks Release Their Own Malware Detection Tool
Posted Oct 20, 2017

tags | headline, government, malware, canada, spyware
Judge: MalwareTech Is No Longer Under Curfew, GPS Monitoring
Posted Oct 20, 2017

tags | headline, hacker, government, malware, usa, conference
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close