Recover is a tool to help undelete files in linux by automating some steps as described in the ext2-undeletion howto. It indexes all the deleted inodes with debugfs, then asks a series of questions about the deleted file. All deleted files which match your criteria are dumped to a directory.
e2fc9192f8fea4444fe4164dbd1554ce284504f8217b06fdb7d2839e400a645aThe ISC dhcp client contains a remote root hole. If the DHCP server gives out addresses containing backticks, shell commands can be run on the clients.
eef34ca1565e47d927a25f800efe9a7431b1dbae5b0b5733ac6817b7b74dc94fJava source to remotely crash LeafChat clients.
111817cbf650dae4d8d9a1dcd33e4c66c71ecc474ea139cbb49939ee45e73755Glftpd 1.18 through 1.21b8 has a serious problem with the privpath directives. Users with accounts can access directories on the site which they should not have access to.
447c8a95b7dd4d4d1f722081716ea2532f24a35d179abdb468144e471fc765c9Netscape Enterprise Server for Netware 5.0 and Netware 5.1 contain remote vulnerbailities. By issuing a malformed URL it is possible to cause a denial of service situation and/or execute arbitrary code on the server with the privileges of the web server.
87b98315b06d4cb218a9eb746cb54ba814c7a256db807a3dd35fbfaddd3befa1Nutcracker is a simple, fast, and effective password cracker for UNIX and Linux systems. It is faster than the other crackers available. Disabled accounts and accounts with no password are detected. Results are shown in a nicely-formatted table. A sample password file and dictionary file are included, although you can use any word list you wish (including the file '/usr/dict/words' included with most Linux distributions). Nutcracker will work with '/etc/passwd' or '/etc/shadow' files.
e7b8f62387296013de85198f7f51e2bf5494178987fd0ba798a78b2b1225e13fSuSE Security Advisory - Linux Kernel 2.2.x allows local root up to linux-2.2.16.
c0076bac48adc2c9e2c3573d080067b19b42213b21a688c388da664bd56f11b2SuSE Security Advisory - The wu-ftp FTP server does not do proper bounds checking while processing the SITE EXEC command, allowing a remote attacker to execute arbitrary machine code as root on a FTP server using wu-ftpd. SuSE recommends using the audited 2.4er version of wu-ftpd.
f75a345da50da0a1aeeb54882a3fe6fce1b92f2b6cf41bf6bbc6704dd7b20178xfwm buffer overflow exploit for Linux / x86. This will give you a euid=0 shell if /usr/X11R6/bin/xfwm is SUID(=4755), which isn't anywhere by default.
43eac56faef522e18d373dc452cee020f39fd7369f6f0bda40e910c89734352fxwhois buffer overflow, for Linux x86. This will give you a euid=0 shell if /usr/X11R6/bin/xwhois is SUID(=4755), which isn't anywhere by default.
cd3e6d87b5d6caa673ead4be3dac43675e7efaff01e57544d0ab5add0bd7a2fcQrack is a simple, fast, and quick unix password cracker. It brute forces ciphertext generated by the crypt() function. It can report disabled accounts as well as accounts with no passwords, a 2400 word dictionary file is included. Ideal for system administrators to look for weak passwords. Written in Perl, and tested on FreeBSD and Linux but should work on any Unix variety with Perl installed.
71db8c2bdc8b704a167349136c571d20bc502560957c657a6c0a0dcb3434d43eWeekly Newsletter from Help Net Security Issue 19 - 26.06.2000 - Covers weekly roundups of security related events. In this issue: Writing buffer overflow exploits for the PowerPC, JRun 2.3.x sample code vulnerabilities, BlackICE vulnerable to BO, Net Tools PKI Server exploits, Panda Antivirus allows remote access, and more.
e7e5335419f90eb9fea557c2aadfbaa2c9d0465df424890c66d70d1a25edcab9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed