what you don't know can hurt you
Showing 1 - 25 of 33 RSS Feed

Files from Jon Oberheide

Email addressjon at oberheide.org
First Active2005-03-17
Last Active2012-09-14
Linux udev Netlink Local Privilege Escalation
Posted Sep 14, 2012
Authored by Kingcope, Jon Oberheide, egypt | Site metasploit.com

Versions of udev < 1.4.1 do not verify that netlink messages are coming from the kernel. This allows local users to gain privileges by sending netlink messages from userland.

tags | exploit, kernel, local
advisories | CVE-2009-1185
MD5 | f530c8916556636af4ff58b2ba7cb938
Linux Kernel Econet Privilege Escalation
Posted Sep 6, 2011
Authored by Jon Oberheide

This exploit leverages three vulnerabilities to escalate privileges. The primary vulnerability is a kernel stack overflow, not a stack buffer overflow as the CVE description incorrectly states. This may be the first public exploit for a kernel stack overflow, and it turns out to be a bit tricky due to some particulars of the econet vulnerability. It involves the econet_sendmsg function, ec_dev_ioctl function, and the ipc subsystem. Linux kernel versions prior to 2.6.36.2 are affected.

tags | exploit, overflow, kernel, vulnerability
systems | linux
advisories | CVE-2010-3848, CVE-2010-3850, CVE-2010-4073
MD5 | bd4bed020aee338cfb73fae11991a04a
Linux 2.6 Kernel ACPI custom_method Privilege Escalation
Posted Dec 20, 2010
Authored by Jon Oberheide

Linux kernel versions prior to 2.6.37-rc2 ACPI custom_method local root privilege escalation exploit.

tags | exploit, kernel, local, root
systems | linux
advisories | CVE-2010-4347
MD5 | a41939e57f2a957032e77705b515d89f
Exploiting Stack Overflows In The Linux Kernel
Posted Nov 29, 2010
Authored by Jon Oberheide

Whitepaper called Exploiting Stack Overflows in the Linux Kernel.

tags | paper, overflow, kernel
systems | linux
MD5 | 82564d305e487def5750ceebb2687c81
Linux Kernel pktcdvd Kernel Memory Disclosure
Posted Sep 29, 2010
Authored by Jon Oberheide

Linux kernel versions prior to 2.6.36-rc6 pktcdvd kernel memory disclosure exploit.

tags | exploit, kernel
systems | linux
advisories | CVE-2010-3437
MD5 | bd262a32a99c96cc365a054ad47cdf65
Linux Kernel CAN BCM Privilege Escalation Exploit
Posted Aug 28, 2010
Authored by Jon Oberheide

Linux Kernel versions prior to 2.6.36-rc1 CAN BCM privilege escalation exploit.

tags | exploit, kernel
systems | linux
advisories | CVE-2010-2959
MD5 | 184242eae9777261f38c5fc68c4e74dc
Linux Kernel 2.6.33.3 SCTP INIT Denial Of Service
Posted Aug 12, 2010
Authored by Jon Oberheide

Linux kernel versions 2.6.33.3 and below SCTP INIT remote denial of service exploit.

tags | exploit, remote, denial of service, kernel
systems | linux
advisories | CVE-2010-1173
MD5 | 212a5fdca08c986c8e487687831c5032
Linux Kernel 2.6.34-rc3 ReiserFS xattr Privilege Escalation
Posted Apr 10, 2010
Authored by Jon Oberheide

Linux Kernel versions 2.6.34-rc3 and below ReiserFS xattr privilege escalation exploit.

tags | exploit, kernel
systems | linux
advisories | CVE-2010-1146
MD5 | cab9c613214bfe3439fcdb7d81b975d4
ISC DHCP dhclient Buffer Overflow
Posted Nov 17, 2009
Authored by Jon Oberheide

ISC DHCP dhclient scripts_write_params() stack buffer overflow exploit.

tags | exploit, overflow
advisories | CVE-2009-0692
MD5 | 0ec16a6f3d31b4088eedff4643bf281b
Dam Burst 1.2
Posted Sep 29, 2009
Authored by Jon Oberheide | Site jon.oberheide.org

Dam Burst is a simple utility that allows an unprivileged user to disable the censorship functionality of the Green Dam Youth Escort software. Dam Burst operates by injecting code into a running application and removing the Green Dam hooks that enable it to monitor and block user activity, effectively restoring the running application to its original uncensored state.

MD5 | bacb81fa63707e78ca1ec66d2241773a
Linux 2.6 Stack Disclosure
Posted Sep 1, 2009
Authored by Jon Oberheide

Linux 2.6 kernel versions prior to 2.6.31-rc7 AF_IRDA 29 byte stack disclosure exploit.

tags | exploit, kernel
systems | linux
MD5 | 8f5d17ba50188d6e80c694c11d316c19
Linux 2.6.31-rc7 AF_LLC getsockname Stack Disclosure
Posted Aug 25, 2009
Authored by Jon Oberheide

Linux kernel versions 2.6.31-rc7 and below AF_LLC getsockname 5-byte stack disclosure exploit.

tags | exploit, kernel
systems | linux
MD5 | 9caccbe69ebdbd5e222e541439400cb8
Linux Kernel 2.6 cfg80211 Denial Of Service
Posted Aug 18, 2009
Authored by Jon Oberheide

Linux kernel versions prior to 2.6.30.5 cfg80211 remote denial of service exploit.

tags | exploit, remote, denial of service, kernel
systems | linux
MD5 | 999d928aa852f96be0483b3d76cc9cec
Linux Kernel procfs Memory Disclosure
Posted Aug 5, 2009
Authored by Jon Oberheide

procfs memory disclosure exploit for Linux kernel versions prior to 2.6.14.6.

tags | exploit, kernel
systems | linux
advisories | CVE-2005-4605
MD5 | 8cc2cbdef15eb432257ab82c2a6f20ab
Linux Kernel sigaltstack Stack Disclosure
Posted Aug 5, 2009
Authored by Jon Oberheide

Linux kernel versions 2.6.31-rc5 and below sigaltstack 4-byte stack disclosure exploit.

tags | exploit, kernel
systems | linux
MD5 | c4eff56eb6753aab192fc13e326e8005
ISC DHCP dhclient Buffer Overflow
Posted Jul 28, 2009
Authored by Jon Oberheide

ISC DHCP dhclient versions below 3.1.2p1 remote buffer overflow proof of concept exploit.

tags | exploit, remote, overflow, proof of concept
advisories | CVE-2009-0692
MD5 | 5a864fd4128cd438f38a0e7b62ef558b
OpenSSL 0.9.8.h DTLS Denial Of Service
Posted Jun 4, 2009
Authored by Jon Oberheide

OpenSSL versions below 0.9.8i DTLS ChangeCipherSpec remote denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2009-1386
MD5 | 0f9054c289a0fab81f30c48e4f2e32df
OpenSSL 0.9.8k Memory Exhaustion
Posted May 19, 2009
Authored by Jon Oberheide

OpenSSL versions 0.9.8k and 1.0.0-beta2 DTLS remote memory exhaustion denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2009-1378
MD5 | 455eeeeabcfe361fef23f6b0686933fa
Linux Kernel 2.6 UDEV Privilege Escalation
Posted May 1, 2009
Authored by Jon Oberheide

Linux 2.6 kernel udev versions below 1.4.1 local privilege escalation exploit.

tags | exploit, kernel, local
systems | linux
advisories | CVE-2009-1185
MD5 | 88076ff8f3391f74c8c6c77d8b8343ff
libvirt_proxy 0.5.1 Privilege Escalation
Posted Apr 28, 2009
Authored by Jon Oberheide

libvirt_proxy versions 0.5.1 and below local privilege escalation exploit.

tags | exploit, local
advisories | CVE-2009-0036
MD5 | 93a22f575a7c2284af162d79660263e5
pam-krb5 Privilege Escalation
Posted Mar 30, 2009
Authored by Jon Oberheide

pam-krb5 versions below 3.13 local privilege escalation exploit.

tags | exploit, local
advisories | CVE-2009-0360
MD5 | 0d6c524308f164c89e349e687c6e32ad
D-Bus Daemon Denial Of Service
Posted Jan 20, 2009
Authored by Jon Oberheide

D-Bus Daemon versions prior to 1.2.4 remote denial of service exploit that uses a message with a malformed signature.

tags | exploit, remote, denial of service
advisories | CVE-2008-3834
MD5 | 15faf34c47571be3d19a6d68925af62d
Linux Kernel SCTP Kernel Memory Disclosure Exploit
Posted Dec 31, 2008
Authored by Jon Oberheide

Linux Kernel versions below 2.6.26.4 SCTP kernel memory disclosure exploit.

tags | exploit, kernel
systems | linux
advisories | CVE-2008-4113
MD5 | 353370e5d019f68d62c550da08ef3de6
CUPS Privilege Escalation Exploit
Posted Dec 30, 2008
Authored by Jon Oberheide

CUPS versions below 1.3.8-4 privilege escalation exploit.

tags | exploit
advisories | CVE-2008-5377
MD5 | 5c4bf25869b83e37410764017074420f
Avahi Remote Denial Of Service Exploit
Posted Dec 22, 2008
Authored by Jon Oberheide

Avahi mDNS daemon versions below 0.6.24 remote denial of service exploit.

tags | exploit, remote, denial of service
advisories | CVE-2008-5081
MD5 | 9cc5e7920bbe4ab0f87bfa1edf853d18
Page 1 of 2
Back12Next

File Archive:

April 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    21 Files
  • 2
    Apr 2nd
    35 Files
  • 3
    Apr 3rd
    21 Files
  • 4
    Apr 4th
    16 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    1 Files
  • 7
    Apr 7th
    2 Files
  • 8
    Apr 8th
    23 Files
  • 9
    Apr 9th
    19 Files
  • 10
    Apr 10th
    15 Files
  • 11
    Apr 11th
    14 Files
  • 12
    Apr 12th
    11 Files
  • 13
    Apr 13th
    2 Files
  • 14
    Apr 14th
    5 Files
  • 15
    Apr 15th
    14 Files
  • 16
    Apr 16th
    19 Files
  • 17
    Apr 17th
    19 Files
  • 18
    Apr 18th
    8 Files
  • 19
    Apr 19th
    4 Files
  • 20
    Apr 20th
    5 Files
  • 21
    Apr 21st
    1 Files
  • 22
    Apr 22nd
    10 Files
  • 23
    Apr 23rd
    22 Files
  • 24
    Apr 24th
    11 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close