Cfingerd prior to v1.4.3 remote root exploit for linux/x86. Exploits a format string vulnerability in the syslog() call. Ported to Cygwin by Luigi Grandini
001eab558ecb8deaea5ecfd0cb633b3f88ddc7ca656b976fb86de7009f824ec4A code red mass fix/abuse tool.
440b46e44ac239053727c665adfcf7a7c038fef3ee72cbc011b1cc58bba8decbSF (securefiles) is a local intrusion detection system (IDS) which will get the hashes for the specified files and create a database which is then then it is encrypted with AES. The executable checks itself, and a phrase is displayed (we select it on the installation) every time the program run successfully.
3149931855b0aa87c4b6852889675d677b6c52f94dc9e41de421798f404d911aCfingerd prior to v1.4.3 remote root exploit for linux/x86. Exploits a format string vulnerability in the syslog() call.
d8bf8ec5db51a03a2a06971d1a62f5b817394a89a0963c7f4adf17a3b5bfdc71Apache backdoor - Backdoors apache 1.3.17 / 1.3.19 to spawn a root shell when a certain page is requested.
e698c564d4808ff114e58bf39b34e7af99192e7dd9bcc390a7b4266e71965926PHP-Nuke v4.4.1a contains remote vulnerabilities because arbitrary information can be passed to MySQL via the saveuser() function and several others. It's possible for the attacker to change the e-mail address of one of the users and ask for the password to be sent to the e-mail address that the attacker have provided. Exploit URL included.
f3655876593a5a07c6c44ecd5198383aba17f78fc2b0cb266d390629ca65c07bHow to exploit format string vulnerabilities - In Spanish.
d30ae54998bb2cc00f334b5bae58862608dc3f8d9da7dce9df01a7975c7a1cc0LPRng v3.6.24 and below remote root exploit for Linux/x86 which exploits the syslog() format string vulnerability. Tested against the default install of Redhat 7.0 (LPRng-3.6.24-1) and LPRng3.6.22-1 installed on Slackware 7.0.
711ec9e53d55297ca043c724b126975613590c27a195978efaf80054e1390558Secure Files 0.1b is a security tool that checks system integrity by comparing the MD5 checksums of flagged files against their earlier recorded checksums.
caad669b0b465c73e0613d69b59ad4a8753e02d3a078318bc637439fcf97fe34overflow.txt is a paper written in Spanish which explains buffer overflows and includes sample code.
9f17d1e1309b6e4f54da9b694512de4fd015917ebdd3d4700e11a02c2f009890Ftpdse scans a list of IP addresses for FTP servers, logs the version, and can optionally see if site exec accepts format strings.
2203a1227b7895400cdfbf6ab6e306613fc5af3eea72148088c3760eb25d6eafvnsl (vENOMOUS Scripting Language version 0.1b) can be used to script connections to daemons and backdoors.
2ed8380b373a9e5cfa497c3e67cad65bd64226d22a3b4260b158ea294aa27b71ftpscan v1.0 will open a specific file [-f file], get the IPs from it, then, check if FTP port [ -p 21 ] is open and log the version. If you specify the [ -o ] flag it will try to log into the FTP server and execute the LIST command [recursive] (useful for checking for existence of world writeable directories).
cb276b9dcf748023e04975903a2173836b8ffd09a27fa979c110101e3ea26909
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed