exploit the possibilities
Showing 1 - 25 of 36 RSS Feed

Files from LMH

Email addresslmh at info-pull.com
First Active2006-10-27
Last Active2009-11-26
SHTTPD <= 1.34 URI-Encoded POST Request Overflow (win32)
Posted Nov 26, 2009
Authored by H D Moore, skOd, LMH | Site metasploit.com

This Metasploit module exploits a stack overflow in SHTTPD <= 1.34. The vulnerability is caused due to a boundary error within the handling of POST requests. Based on an original exploit by skOd but using a different method found by hdm.

tags | exploit, overflow
advisories | CVE-2006-5216
SHA-256 | bbf79a73aac5ea469215c707ea33d3bd1c106a494632ed021e897dc2cd38886f
wordpress-toolkit-gui.txt
Posted Sep 13, 2007
Authored by LMH | Site info-pull.com

Wordpress Pwnpress Exploitation Toolkit. Works on multiple versions. GUI version.

tags | exploit
SHA-256 | 4236e25c7800fe6d54c5450e16f609b6908b17972d3041718a691185d3b31202
wordpress-toolkit.txt
Posted Sep 13, 2007
Authored by LMH | Site info-pull.com

Wordpress Pwnpress Exploitation Toolkit. Works on multiple versions.

tags | exploit
SHA-256 | 8580b757e2416565607ead6887542d2326719b6a466bf96d6daa3fefa95ed7f0
MOAB-29-01-2007.rb.txt
Posted Jan 31, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Apple iChat Bonjour functionality is affected by several remotely exploitable denial of service flaws which can be triggered via advertising presence services over multicast DNS. This is the denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
systems | apple
SHA-256 | a256f4a5ef48238266e678eab766d0cb63eb44cfd99e5782f4b5fff8e5aed773
MOAB-28-01-2007.rb.txt
Posted Jan 29, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - crashdump follows symlinks within the /Library/Logs/CrashReporter/ directory, allowing admin-group users to execute arbitrary code and overwrite files with elevated privileges. In couple with a specially crafted Mach-O binary, this can be used to write a malicious crontab entry, which will run with root privileges. This ruby code demonstrates this vulnerability.

tags | exploit, arbitrary, root, ruby
systems | apple
advisories | CVE-2007-0467
SHA-256 | a2f484f050a3539545bc04527aebfb7718411d5e564498448fa7024d15700ebe
MOAB-27-01-2007.tgz
Posted Jan 29, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Flip4Mac fails to properly handle WMV files with a crafted ASF_File_Properties_Object size field, leading to an exploitable memory corruption condition, which can be abused remotely for arbitrary code execution. This tgz holds a malicious .wmv file that demonstrates this vulnerability.

tags | exploit, arbitrary, code execution
systems | apple
advisories | CVE-2007-0466
SHA-256 | 5b0f7f222237672bd530a2f1c52368b0a593f5907f49c47913ca01b2f7900a50
MOAB-25-01-2007.rb.txt
Posted Jan 27, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Ruby exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.

tags | exploit, web, denial of service, ruby
systems | apple
advisories | CVE-2007-0464
SHA-256 | f7406daaadebb8a416333b8bedaa7f1ba60dc4e0d60fe455f34deb18ee74e296
MOAB-25-01-2007.c
Posted Jan 27, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - C exploit that demonstrates how CFNetwork fails to handle certain HTTP responses properly, causing the _CFNetConnectionWillEnqueueRequests() function to dereference a NULL pointer, leading to a denial of service condition.

tags | exploit, web, denial of service
systems | apple
advisories | CVE-2007-0464
SHA-256 | 3199da9edd031aaa3b4b089d6910159ef30dde29e74ba47226c79241f26f3d3f
MOAB-23-01-2007.pct
Posted Jan 24, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - A vulnerability exists in the handling of ARGB records (Alpha RGB) within PICT images, that leads to an exploitable memory corruption condition. This is the proof of concept exploit in .pct format that demonstrates this vulnerability.

tags | exploit, proof of concept
systems | apple
advisories | CVE-2007-0462
SHA-256 | cae45c1818004c6d0fa86b4df9d9713a53b3af47e14c3b7813983523855384ba
MOAB-22-01-2007.rb.txt
Posted Jan 24, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - InputManager provided by the user. Code within the input manager will run under wheel privileges. In combination with diskutil and a wheel-writable setuid binary, this allows unprivileged users to gain root privileges. This is the proof of concept exploit that demonstrates this vulnerability.

tags | exploit, root, proof of concept
systems | apple
advisories | CVE-2007-0023
SHA-256 | 649846dcedfd17c9b293d5b586249ab6641f7f2f4b7077ce8728d64523c3794e
MOAB-21-01-2007.rb.txt
Posted Jan 24, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - The preference panes setuid helper, writeconfig, makes use of a shell script which lacks of PATH sanitization, allowing users to execute arbitrary binaries under root privileges. This is the proof of concept exploit that demonstrates this vulnerability.

tags | exploit, arbitrary, shell, root, proof of concept
systems | apple
advisories | CVE-2007-0022
SHA-256 | bc6a6482959f9f36bea4aefc8de705de29960037c93a88c4c71f6382b1e18c26
MOAB-20-01-2007.tgz
Posted Jan 24, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Apple iChat AIM URI scheme (referred as the 'url handler') handling is affected by a classic format string vulnerability, allowing remote users to cause a denial of service condition or arbitrary code execution. This is the proof of concept exploit that demonstrates this vulnerability.

tags | exploit, remote, denial of service, arbitrary, code execution, proof of concept
systems | apple
advisories | CVE-2007-0021
SHA-256 | c72c10a4e48008dc4508828d784627e557382e0c510236900986c74a82eab3f4
MOAB-19-01-2007.tgz
Posted Jan 24, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Transmit does not allocate enough space when dealing with the string passed on via the ftps:// URL handler, leading to an exploitable heap-based buffer overflow condition. This is the proof of concept exploit.

tags | exploit, overflow, proof of concept
systems | apple
advisories | CVE-2007-0020
SHA-256 | 9080e0d951067307f9ad1fe2f1c855dcceaac4dd146e38b6c610d666ed9c242f
MOAB-18-01-2007.rb.txt
Posted Jan 20, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Proof of concept exploit rumpusd. rumpusd is vulnerable to different remotely exploitable heap-based buffer overflows, denial of service conditions and local privilege escalation issues.

tags | exploit, denial of service, overflow, local, proof of concept
systems | apple
advisories | CVE-2007-0019
SHA-256 | 324e1c2a699138a78ea18bf0111256c4c75fe4eedb6f2baead3e5c38d188b60e
MOAB-17-01-2007.rb.txt
Posted Jan 20, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Proof of concept exploit for slpd. slpd is vulnerable to a buffer overflow condition when processing the attr-list field of a registration request, leading to an exploitable denial of service condition and potential arbitrary execution. It would allow unprivileged local (and possibly remote) users to execute arbitrary code under root privileges.

tags | exploit, remote, denial of service, overflow, arbitrary, local, root, proof of concept
systems | apple
SHA-256 | b43cb8369fd15b26f59289ce05b054d9e9b5ee73e4ea4f070c7f378698fc6935
MOAB-16-01-2007.rb.txt
Posted Jan 20, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Proof of concept exploit for Colloquy. Colloquy is vulnerable to a format string vulnerability in the handling of INVITE requests, that can be abused by remote users and requires no interaction at all, leading to a denial of service and potential arbitrary code execution.

tags | exploit, remote, denial of service, arbitrary, code execution, proof of concept
systems | apple
SHA-256 | ecc8ca506c0501b6a06a3dce70b0267fdd8463686c38cd7f7364ee7acf7ad640
MOAB-15-01-2007.rb.txt
Posted Jan 20, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Proof of concept exploit for a local privilege escalation vulnerability on Mac OS X. Multiple binaries inside the /Applications directory tree are setuid root, but remain writable by users in the admin group (ex. first user by default in a non-server Mac OS X installation), allowing privilege escalation.

tags | exploit, local, root, proof of concept
systems | apple, osx
SHA-256 | 5d79f7e869386b86fb511af90c48ec4794090cc26d9550ab41fb92e9be07807c
MOAB-14-01-2007.c
Posted Jan 20, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Proof of concept exploit for the _ATPsndrsp function. The _ATPsndrsp function is vulnerable to a heap-based buffer overflow condition, due to insufficient checking of user input. This leads to a denial of service condition and potential arbitrary code execution by unprivileged users.

tags | exploit, denial of service, overflow, arbitrary, code execution, proof of concept
systems | apple
advisories | CVE-2007-0236
SHA-256 | ecaf4e16cc626471b59446fc33fded909708cba04efa57ef9ad8f795f1e0ead4
MOAB-13-01-2007.dmg.gz
Posted Jan 20, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - This is a specially crafted HFS+ filesystem in a DMG image that can cause the do_hfs_truncate() function to panic the kernel (denial of service), when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+ filesystems corruption.

tags | exploit, denial of service, arbitrary, kernel, local, code execution
systems | apple
advisories | CVE-2006-5482
SHA-256 | 2dad00428d7585a35288df4bbecb6e942d5b73244ab459f875cd6d71f91ea91e
MOAB-09-01-2007.dmg
Posted Jan 13, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Exploit for a vulnerability in Finder. Finder is affected by a memory corruption vulnerability, which leads to an exploitable denial of service condition and potential arbitrary code execution, that can be triggered by DMG images. One of two exploits.

tags | exploit, denial of service, arbitrary, code execution
systems | apple
SHA-256 | 641c56a3c3546d6881d7d441e3203e4a9130560679f14bc12df8f0bb36e7d662
MOAB-09-01-2007.rb.txt
Posted Jan 13, 2007
Authored by LMH | Site projects.info-pull.com

Month of Apple Bugs - Exploit for a vulnerability in Finder. Finder is affected by a memory corruption vulnerability, which leads to an exploitable denial of service condition and potential arbitrary code execution, that can be triggered by DMG images. One of two exploits.

tags | exploit, denial of service, arbitrary, code execution
systems | apple
SHA-256 | b981e4326e87927ea14c54f445d1d8c91ca8bad5b3c606732b39860b492a641a
exploit-of-the-apes.rb.txt
Posted Jan 13, 2007
Authored by LMH, Johnny Pwnerseed | Site projects.info-pull.com

Month of Apple Bugs - Exploit for the Application Enhancer (APE), which is affected by a local privilege escalation vulnerability that allows local users to gain root privileges.

tags | exploit, local, root
systems | apple
SHA-256 | 022ab59da53042f4ad0dadf5efb09eb65b8d7f1c45cfc3279afa1c3afbd66fbf
MOAB-07-01-2007.html
Posted Jan 13, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - This HTML file is an exploit for OmniWeb. OmniWeb is affected by a format string vulnerability in the handling of Javascript alert() function, which could allow remote arbitrary code execution.

tags | exploit, remote, arbitrary, javascript, code execution
systems | apple
SHA-256 | 297d0995c250f8cc72592389a406917ac1bf22428361bbff663a27278cf94085
MOAB-06-01-2007.pdf
Posted Jan 13, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Warning, this pdf is an exploit. The current PDF specification is affected by a design flaw, a rogue Pages entry or malicious catalog dictionary could cause a denial of service (memory corruption condition, memory leakage, etc) or potential arbitrary code execution in the reader application.

tags | exploit, denial of service, arbitrary, code execution, memory leak
systems | apple
SHA-256 | 7befba5152c7b30d54a97e3a52d7ff58a3858ea958dac2460153bce1334d0e22
MOAB-05-01-2007_cron.rb.txt
Posted Jan 13, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Exploit for a vulnerability in the handling of BOM files by the DiskManagement/diskutil that allows the setting of rogue permissions on the filesystem. This can be used to execute arbitrary code and escalate privileges. One of two exploits.

tags | exploit, arbitrary
systems | apple
SHA-256 | d23d1ffe7410fc22b798de3144cff78a0f519bb100421ea6abce589bef246321
Page 1 of 2
Back12Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close