exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 8 of 8

Files from Jean-Sebastien Guay-Leroux

zoo-loop.txt

Posted May 4, 2007

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

Various anti-virus vendors are susceptible to an infinite loop denial of service vulnerability when analyzing the ZOO archives.

tags | advisory, denial of service, virus

SHA-256 | 3b658cea35cfa9bde250c49e4ba202f14f79b5eb8fcd042fa5192a57cab9a7d6

Download | Favorite | View

barracude-uulib.txt

Posted Dec 6, 2006

Authored by Jean-Sebastien Guay-Leroux

Further research has been performed against the Barracuda Convert-UUlib library buffer overflow.

tags | advisory, overflow

advisories | CVE-2005-1349

SHA-256 | f6951b1ebcbd690adceae17e1c1dfc054bf9a724c4c9727d2dd586cd08c7292f

Download | Favorite | View

pirana-0.3.1.tar.gz

Posted Dec 6, 2006

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

PIRANA is an exploitation framework that tests the security of a email content filter. By means of a vulnerability database, the content filter to be tested will be bombarded by various emails containing a malicious payload intended to compromise the computing platform. PIRANA's goal is to test whether or not any vulnerability exists on the content filtering platform.

Changes: Added uulib exploitation module and bindshell type of shellcode. Cleanup in the exploit codes. Modifications to the manpage, how the shellcode generator was called, and the README.

systems | unix

SHA-256 | 4f4bf22a3446dcede66d3f4fc60bfd1cdac5e6fd174c4f6f682bbdf405cdca09

Download | Favorite | View

Dr.Web4.33.txt

Posted Oct 4, 2006

Authored by Jean-Sebastien Guay-Leroux

Dr.Web 4.33 antivirus LHA long directory name heap overflow: When building a special LHA archive with a long directory name in an extended directory header, a fixed size buffer on the heap is overflowed. When processing this malicious archive, it is then possible to make Dr.Web run arbitrary code by overwriting some internal malloc management informations.

tags | advisory, web, overflow, arbitrary

SHA-256 | 2a30296b1d42bc902eefd52faffa18b6b2e14bb10873a005d4d3df2b73a5ab6c

Download | Favorite | View

pirana-0.2.1.tar.gz

Posted Apr 4, 2006

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

PIRANA is an exploitation framework that tests the security of a email content filter. By means of a vulnerability database, the content filter to be tested will be bombarded by various emails containing a malicious payload intended to compromise the computing platform. PIRANA's goal is to test whether or not any vulnerability exists on the content filtering platform.

systems | unix

SHA-256 | 3657e8c9cb39fe8805ada794f7b9e5b5c772a6b208998810e38934e7268cc63d

Download | Favorite | View

barracuda-advisory-LHA.txt

Posted Apr 4, 2006

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

The Barracuda Spam Firewall with firmware less than 3.3.03.022 and spamdef less than 3.0.10045 suffers from a remote compromise via an email containing a specially crafted LHA archive.

tags | advisory, remote

SHA-256 | 1fc543a965dad878e85c76e8374b6bf456536444e43cef102ce41c68fd3b54f1

Download | Favorite | View

barracuda-advisory-ZOO.txt

Posted Apr 4, 2006

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

The Barracuda Spam Firewall with firmware less than 3.3.03.022 and spamdef less than 3.0.9388 suffers from a remote compromise via an email containing a specially crafted ZOO archive.

tags | advisory, remote

SHA-256 | b1a125d11ebe95bcf9be62768a67891c17278898c0cd6217c2f1e78f625b5082

Download | Favorite | View

zooExec.txt

Posted Feb 26, 2006

Authored by Jean-Sebastien Guay-Leroux | Site guay-leroux.com

When feeding zoo a specially crafted archive, an attacker may be able to trigger a stack overflow and seize control of the program.

tags | advisory, overflow

SHA-256 | 9422982e39289d304e78eb097b387485df9810f1e7aa80c2b08a8bf23dce1d39

Download | Favorite | View