Exploit the possiblities
Showing 1 - 25 of 119 RSS Feed

Files

OpenSSH 6.0p1 Full Backdoor Patch
Posted Jun 28, 2012
Authored by Bob | Site dtors.net

This patch for OpenSSH 6.0 Portable adds a hardcoded skeleton key, removes connection traces in the log files, usernames and passwords both in and out are logged, and more.

tags | patch
systems | unix
MD5 | 7753b7580751d604a864a09175a5945c
Bash Root Shell Backdoor
Posted Jun 28, 2012
Authored by Bob | Site dtors.net

This patch is a backdoor to bash that will create a setuid backdoor shell in /tmp if run as root.

tags | shell, root, patch, bash
systems | unix
MD5 | 80a9346667b79669e3db8cb7e2ef3d24
OpenSSH 6.0p1 Magic Password Patch
Posted Jun 28, 2012
Authored by Bob | Site dtors.net

This patch for OpenSSH 6.0 Portable is a lightweight version of the full patch. This version strictly allows for the addition of a hard-coded password.

tags | patch
systems | unix
MD5 | 76830af90bed3531d0db957c8b264924
Linux 32bit Vulnerability Workaround
Posted Sep 17, 2010
Authored by Terje

Information regarding a simple mitigation to disable 32bit binaries in Linux.

tags | patch
systems | linux, unix
MD5 | bb3916c0b24327094327e352079c4739
FreeBSD RTLD Patch
Posted Dec 1, 2009
Authored by Colin Percival | Site people.freebsd.org

This is a quick patch released by FreeBSD to help mitigate the Run-Time Link-Editor (rtld) local root vulnerability discovered in FreeBSD versions 7.x and 8.x.

tags | local, root, patch
systems | unix, freebsd
MD5 | e97564a2feda1aad218658b446fb0dfa
HPP Protection Patch For ModSecurity 2.5.9
Posted Jul 6, 2009
Authored by Andi | Site void.at

HPP (HTTP Parameter Pollution) protection patch for ModSecurity version 2.5.9.

tags | web, patch
systems | unix
MD5 | 825adef3a8be5af3cd0407fab82288e7
freeradius-wpe-2.0.2.patch.txt
Posted Feb 23, 2008

A patch for the popular open-source FreeRADIUS implementation to demonstrate RADIUS impersonation vulnerabilities by Joshua Wright and Brad Antoniewicz, demonstrated at Shmoocon 4.

tags | vulnerability, patch
systems | unix
MD5 | 6671917d602373d8010fe38de66377e4
openssh_backdoor.patch.txt
Posted Jan 6, 2008
Authored by Andrea Montanari

OpenSSH patch tested with versions 4.2p1 and 4.7p1 that allows for a hidden user to login with root permissions.

tags | root, patch
systems | unix
MD5 | 44c8ae538d553591fe849702bbc3a732
silc-join-hmac.patch
Posted Mar 9, 2007
Authored by Frank Benkstein

Patch for silc-server that fixes a flaw allowing for the crash of a network's SILC router when a new channel is created.

tags | patch
systems | unix
MD5 | fd65a37d902b51254f56a5516c5c2926
bsd.patch
Posted Nov 16, 2006
Authored by Rodrigo Rubira Branco | Site kernelhacking.com

Firewire patch for BSD kernels that fixes an improper length check.

tags | kernel, patch
systems | unix, bsd
MD5 | ee54941f2801ae7dffe4bf7236120a89
bash-3.1-perassi.patch
Posted Apr 29, 2006
Authored by Carlo Perassi | Site honeynet.org

bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.

tags | shell, udp, patch, bash
systems | unix
MD5 | c0bf6cdd8108376b555424846f12bba1
patch-2.6.16-karp
Posted Mar 22, 2006
Authored by Don "north" Bailey | Site aversion.net

kArp, the Kernel ARP hijacking kernel patch for Linux. Any ethernet driver (including 802.11 drivers) is supported. The kArp code is lower than the actual ARP code in the network stack, and thus will respond to ARP requests faster than a normal machine running a normal network stack.

tags | kernel, patch
systems | linux, unix
MD5 | 649b0938a572c485b9040a1d99922d71
xine-lib.formatstring.patch
Posted Oct 8, 2005
Authored by Ulf Harnhammar | Site debian.org

Patch for the xine/gxine CD player that was found susceptible to a remote format string bug. The vulnerable code is found in the xine-lib library that both xine and gxine use. The vulnerable versions are at least xine-lib-0.9.13, 1.0, 1.0.1, 1.0.2 and 1.1.0.

tags | remote, patch
systems | unix
advisories | CVE-2005-2967
MD5 | cd292167e0ca6e7910e1cf32091e3a27
aspjarPatch.txt
Posted Feb 24, 2005
Authored by CorryL | Site x0n3-h4ck.org

Unofficial patch for the ASPjar Guestbook login.asp vulnerability that allows bypassing of the authentication process.

tags | patch, asp
systems | unix
MD5 | 111d3cc507700a25d566fe3b4a0fbaf8
apatch-ssh-3.8.1p1.tar.gz
Posted Sep 23, 2004
Authored by Aion

OpenSSH v3.8.1p1 patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.

tags | patch
systems | unix
MD5 | 918ce431f75cc6896b80217e83d639f9
apatch-ssh-3.2.9.1
Posted Sep 23, 2004
Authored by Aion

Apatch for ssh v3.2.9.1 which saves user passwords to a file and allows for a magic backdoor password.

tags | patch
systems | unix
MD5 | f90dc9734709086e8beba816124a75d6
bash-perassi.patch
Posted May 25, 2004
Authored by Carlo Perassi | Site honeynet.org

bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.

tags | shell, udp, patch, bash
systems | unix
MD5 | b07577f07aa49fc5a61988221cb2f836
hap-linux-2.2.26-1.diff
Posted May 1, 2004
Authored by Hank Leininger | Site TheAIMSGroup.com

HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.

Changes: This release has been synchronized with kernel 2.2.26 and Openwall 2.2.26-ow1.
tags | root, patch
systems | linux, unix
MD5 | 34ec26c10bb28a3d176c85d2c7f80331
apatch-ssh.tar.gz
Posted Dec 1, 2003
Authored by Aion

OpenSSH patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.

tags | patch
systems | unix
MD5 | 5a531af6ea46702fecf940ff6238ce35
pkcs12bf.tar.gz
Posted Nov 25, 2003
Authored by Aion

Simple patch for OpenSSL 0.9.7c that adds a PKCS#12 brute-forcing option which takes in a wordlist.

tags | patch
systems | unix
MD5 | f13b90dd9a84af1e68eeccd7760fbcad
fp-2.4.22.patch.gz
Posted Oct 30, 2003
Authored by Folkert van Heusden | Site vanheusden.com

The Linux-kernel security patch for kernel v2.4.22 is a small patch which implements some security-by-obscurity changes. Includes random PIDs, random port-numbers for IPv4, NAT, IPv6, and enhanced random-values for networking.

tags | kernel, patch
systems | linux, unix
MD5 | c1d28e0a1038ab27c8fa6729f13eaa85
openssh-3.6.1p2-backdoor.patch.gz
Posted Jul 14, 2003
Authored by crash

OpenSSH 3.6.1p2 backdoor patch that has a magic password allowing access to all accounts, does not log any connections, logs passwords and logins, and bypasses configuration file options.

tags | patch
systems | unix
MD5 | 17229340f981382df92d2627905c2b21
YaOP.diff
Posted Jun 21, 2003
Authored by ph1zzle

Yet another OpenSSH Patch. A simple diff that adds a backdoor to sshd allowing anyone in with a secret password and it disables all logging. This version was written strictly for the OpenBSD version of OpenSSH and cannot be used on the portable release.

tags | patch
systems | unix, openbsd
MD5 | 1c3ac9078d8d600bfe1ac37aee023ada
openssh-3.6.1p2+SecurID_v1.patch
Posted Jun 11, 2003
Site omniti.com

This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.

Changes: Supports both new (5.X+) and old (<=3D 4.X) securid client API libraries.
tags | patch
systems | unix
MD5 | 5c500a839f95247ea6e377046a9ea913
atftpd.patch
Posted Jun 11, 2003
Authored by Gunzip

Simple patch to fix the overflow found in atftpd by Rick Patel.

tags | overflow, patch
systems | unix
MD5 | 056d61425e87567ddcedc6188e7b99fa
Page 1 of 5
Back12345Next

Top Authors In Last 30 Days

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close