Twenty Year Anniversary
Showing 1 - 25 of 97 RSS Feed

Files

BEADMIN.ZIP
Posted Aug 17, 1999
Authored by Cybermedia Software

Exploit source code for Windows NT Screen Saver Vulnerability that allows any local user to add self to admin group.

tags | exploit, local
systems | windows, nt
MD5 | 0b893a3b4f019bd85c18934661a9ecb3
lotus.notes.crypto.txt
Posted Aug 17, 1999

Lotus security advisory concerning a bug in the Lotus Notes Client which causes encrypted email messages to be saved in the sender's mailbox in unencrypted form.

tags | exploit
MD5 | 862992fe8840f908164628dc3226c1ad
lotus.notes.mail.crypto.txt
Posted Aug 17, 1999

Encrypted mail sent from the Lotus Notes Client (v4.5, probably others) may traverse the network in the clear and may be stored on the mail server unencrypted. Advisory by Martin Bartosch

tags | exploit
MD5 | a8be88cb0dd929688647905a47531c16
melissa.macro.virus.txt
Posted Aug 17, 1999

I am not going to make a habit of posting virus alerts, but this analysis of the fast spreading Melissa virus, including full source code, merits a posting. Excellent job by Nate Lawson of root.org

tags | exploit, root, virus
MD5 | 5fe5025944f1b46cfb6e77027470049e
ms.exchange.outlook.javascript.txt
Posted Aug 17, 1999

Vulnerabilities in Microsoft Exchange server allow remote attacker to delete user inbox and launch Denial of Service attack with embedded JavaScript.

tags | exploit, remote, denial of service, javascript, vulnerability
MD5 | 199edd03e1fe2230e6409c28c53f824e
ms.office.ole.samples.txt
Posted Aug 17, 1999
Authored by MacInTouch

Micrsoft Office/OLE security holes: Does Microsoft know that they are themselves vulnerable though? "clueserver.microsoft.com" is a non-existent host???

tags | exploit
MD5 | 9e155e4a5698d703216ab529c771aae2
ms.personal.webserver.txt
Posted Aug 17, 1999

Microsoft has released a patch for the File Access Vulnerability in Personal Web Server. All relevant details included in file.

tags | exploit, web
MD5 | c3324a54606912fa91a3b8f51781f7d9
ms.smtp.DoS.txt
Posted Aug 17, 1999

Microsoft's SMTP service (v5.5.1877.977.9) launches Denial of Service attacks. No, this is not a joke, either. Read it. You can download consolation patches at Macroshaft

tags | exploit, denial of service
MD5 | 50bad8df6b9d4a4f17dc881b26f925e4
ms.sql.enterprise.manager.txt
Posted Aug 17, 1999

Microsoft SQL Enterprise Manager stores usserid and passsword in plaintext.

tags | exploit
MD5 | 7bb84405b41ba2f30094498448ce21db
msie.5.0.cookies.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5.0 is susceptible to a very simple Denial of Service attack involving cookies. Default security settings open this hole, and there is currently no fix. Other problems with the way that MSIE 5 handles cookies are also discussed.

tags | exploit, denial of service
MD5 | e4328459eb80a9872a6d3f06d3b6c8b3
msie.5.0.javascript.txt
Posted Aug 17, 1999

Microsoft just released Internet Explorer 5.0, but apparently forgot to plug many of the JavaScript security holes documented by Georgi Guninski

tags | exploit, javascript
MD5 | b36f2278c1207a8b63f0eeece52915f7
msie.5.0.paste.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5.0 contains the recently discovered clipboard vulnerability, but now ALL HTML <INPUT> boxes, along with DHTML, can be used to grab your clipboard contents. The default clipboard setting for IE5 is also slacker than before.

tags | exploit
MD5 | 44cc84265780abeda710340622f1413b
msie.5.0.setup.wizard.txt
Posted Aug 17, 1999

The Microsoft Internet Explorer 5.0 installer (Setup Wizard) disables password protected screen savers and the Task Scheduler Service, effectively disabling whatever security you thought the screen saver afforded you, rendering your PC or workstation completely vulnerable to console-based (local-physical) compromises by anybody.

tags | exploit, local
MD5 | 6853a1874ab763ef575672e76a82c95a
msie.5.autocomplete.txt
Posted Aug 17, 1999

The "AutoComplete" feature? In Microsoft Internet Explorer 5.0 it's a big security risk.

tags | exploit
MD5 | b248e3e74d0601e736a599aa419d6ab1
msie.5.dhtml.cuartango.txt
Posted Aug 17, 1999
Authored by Juan Carlos Garcia Cuartango

More Microsoft Internet Explorer 5 vulnerabilities! Microsoft Active X control called "DHTML Edit control Safe for Scripting for IE 5" contains security holes that allow public access to the clipboard and cross-frame access, among other things. Exploit code examples included.

tags | exploit, vulnerability, activex
MD5 | e2fe2708e182aa7971209fcbccc5c672
msie.5.previous.inputs.txt
Posted Aug 17, 1999

Microsoft Internet Explorer 5 stores usernames, passwords, credit card, and other personal information unencrypted and insecure in dropdown box.

tags | exploit
MD5 | 0ea034906dbae4167f9f40c4d0a45515
msie.zone.confusion.txt
Posted Aug 17, 1999

Microsoft Internet Explorer still does not properly distinguish between sites that belong in the "Internet Zone" and sites that belong in the "Local Intranet Zone".

tags | exploit, local
MD5 | 97750f23ac2564a835207e02906bcd2b
mutt.tempfile.race.txt
Posted Aug 17, 1999

tempfile race condition in latest releases of mutt can result in typical symlink attacks.

tags | exploit
MD5 | 89e5a2b9fb26bc2fb3a96dd7e4cebb54
my_login.c
Posted Aug 17, 1999
Authored by stealth

A "patched" login.c that gives user privileged access and logs other user's passwords.

tags | exploit
MD5 | 122c000a51b7b3a7dfd382b839ccf6b8
netbsd.noexec.txt
Posted Aug 17, 1999

Security vulnerability in NetBSD 1.3.3 and prior; NetBSD-current until 19990318 permits local users to execute arbitrary binaries on the system, because the noexec mount flag is not properly handled by non-root mount. Vendor solutions and patches available.

tags | exploit, arbitrary, local, root
systems | netbsd
MD5 | 926df7a7db98909a9333ecd30229bc75
netbsd.umapfs.txt
Posted Aug 17, 1999

NetBSD 1.3.3 and prior, and NetBSD-current until 19990312 contain a security hole in "umapfs"; Insufficient kernel checking in the umapfs virtual file system allows local users to remap their user id to any other user including the root user. Exploit details, and NetBSD solutions, patches and workarounds included.

tags | exploit, kernel, local, root
systems | netbsd
MD5 | bc34b5a434fa694dcb86fc3112e5868d
netscape.4.5.talkback.txt
Posted Aug 17, 1999

Security hole in Netscape Communicator's 4.5 "talkback" function allows any local user to kill processes of any other users if their communicator crashes. Furthermore, a local malicious user can overwrite/create any file that any other user on the system has write access to. Potenial buffer overflow exists too. Vendor and third party solutions included.

tags | exploit, overflow, local
MD5 | a3b8b2e54fbb58ab36b515dffb784636
netscape.4.51.javascript.txt
Posted Aug 17, 1999

Netscape just released Netscape Communicator v4.51, but apparently forgot to patch some serious security holes related to JavaScript and reading your files, cache, and more.

tags | exploit, javascript
MD5 | 4dbfa8f2e759d21f991ad94daa68a6af
netscape.4.51.url.sniffing.txt
Posted Aug 17, 1999

Netscape Communicator 4.51 allows sniffing of URLs from another window. Exploit code and recommended solution included.

tags | exploit
MD5 | c3a27aaf96215671db0e3567ad0b3bb9
netscape.coredump.txt
Posted Aug 17, 1999
Authored by Echo8

Netscape Navigator 3.x and 4.x for Linux and UNIX contains security vulnerability in which sensitive user information is easily obtainable from core dumps.

tags | exploit
systems | linux, unix
MD5 | bb7dceed108822575edaf0e9daadabea
Page 1 of 4
Back1234Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Recent News

News RSS Feed
Hackers Who Sabotaged The Olympic Games Return For More Mischief
Posted Jun 19, 2018

tags | headline, hacker, cyberwar
Alleged Leaker Of Vault7 Cache Busted By Poor OpSec
Posted Jun 19, 2018

tags | headline, government, usa, data loss, cyberwar, password, fbi, cia
7 Time Jeopardy! Winner Pleads Guilty To Hacking
Posted Jun 19, 2018

tags | headline, hacker, privacy, email
FBI Recovers WhatsApp, Signal Data Stored On Michael Cohen's BlackBerry
Posted Jun 18, 2018

tags | headline, government, usa, phone, russia, fraud, fbi
US Exposes North Korea Government's Typeframe Malware
Posted Jun 18, 2018

tags | headline, government, malware, usa, cyberwar, korea
PageUp Confirms Some Data Compromised In Breach
Posted Jun 18, 2018

tags | headline, hacker, data loss
Huawei Rejects Australia Security Concerns
Posted Jun 18, 2018

tags | headline, government, australia, china, flaw, cyberwar, backdoor
Ex-Fitbit Employees Indicted For Allegedly Stealing Secrets
Posted Jun 15, 2018

tags | headline, data loss, fraud
This New Android Malware Delivers Banking Trojan, Keylogger And Ransomware
Posted Jun 15, 2018

tags | headline, malware, phone, google
Xen Project Patches Intel's Lazy FPU Flaw
Posted Jun 15, 2018

tags | headline, flaw, patch, intel
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close