exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Zhodiac

tcpdump-xploit.c

Posted Jan 15, 2001

Authored by Zhodiac | Site hispahack.ccc.de

Tcpdump v3.5.2 remote root exploit - Tested against X86 Linux. Exploits an overflow in the AFS packet parsing which requires the snaplen (-s) to be set to 500 or greater. Fixed in v3.62.

tags | exploit, remote, overflow, x86, root

systems | linux

SHA-256 | f8bece3b4c4cdecd77844f75e71dd0972eedfa3379f9b4b2e2c8349ff924afcb

Download | Favorite | View

qpop-xploit.c

Posted Jan 27, 2000

Authored by Zhodiac | Site hispahack.ccc.de

Remote linux x86 exploit for Qpopper 3.0beta29 and below. (not 2.5.3) Overflows the LIST command and spawns a shell with the UID of the user who logged in (requires valid account), and GID mail.

tags | exploit, remote, overflow, shell, x86

systems | linux

SHA-256 | 6e03060d06070addc039c651e773cc7edd7dfdbf64902dcb1d4ab4b12b4e97df

Download | Favorite | View

mi021.htm

Posted Dec 27, 1999

Authored by Zhodiac | Site hispahack.ccc.de

w3-msql (miniSQL 2.0.4.1 - 2.0.11) Solaris x86 remote exploit. Distribution of miniSQL packet (http://hughes.com.au) comes with a cgi (w3-msql) that can be xploited to run arbitrary code under httpd uid.

tags | exploit, remote, web, arbitrary, x86, cgi

systems | solaris

SHA-256 | e538616d4a13d2a4606a6853e879530a658b5ddefbf3256ac599a2700782b79d

Download | Favorite | View