Recover is a tool to help undelete files in linux by automating some steps as described in the ext2-undeletion howto. It indexes all the deleted inodes with debugfs, then asks a series of questions about the deleted file. All deleted files which match your criteria are dumped to a directory.
e2fc9192f8fea4444fe4164dbd1554ce284504f8217b06fdb7d2839e400a645a
The ISC dhcp client contains a remote root hole. If the DHCP server gives out addresses containing backticks, shell commands can be run on the clients.
eef34ca1565e47d927a25f800efe9a7431b1dbae5b0b5733ac6817b7b74dc94f
Java source to remotely crash LeafChat clients.
111817cbf650dae4d8d9a1dcd33e4c66c71ecc474ea139cbb49939ee45e73755
Glftpd 1.18 through 1.21b8 has a serious problem with the privpath directives. Users with accounts can access directories on the site which they should not have access to.
447c8a95b7dd4d4d1f722081716ea2532f24a35d179abdb468144e471fc765c9
Netscape Enterprise Server for Netware 5.0 and Netware 5.1 contain remote vulnerbailities. By issuing a malformed URL it is possible to cause a denial of service situation and/or execute arbitrary code on the server with the privileges of the web server.
87b98315b06d4cb218a9eb746cb54ba814c7a256db807a3dd35fbfaddd3befa1
Nutcracker is a simple, fast, and effective password cracker for UNIX and Linux systems. It is faster than the other crackers available. Disabled accounts and accounts with no password are detected. Results are shown in a nicely-formatted table. A sample password file and dictionary file are included, although you can use any word list you wish (including the file '/usr/dict/words' included with most Linux distributions). Nutcracker will work with '/etc/passwd' or '/etc/shadow' files.
e7b8f62387296013de85198f7f51e2bf5494178987fd0ba798a78b2b1225e13f
SuSE Security Advisory - Linux Kernel 2.2.x allows local root up to linux-2.2.16.
c0076bac48adc2c9e2c3573d080067b19b42213b21a688c388da664bd56f11b2
SuSE Security Advisory - The wu-ftp FTP server does not do proper bounds checking while processing the SITE EXEC command, allowing a remote attacker to execute arbitrary machine code as root on a FTP server using wu-ftpd. SuSE recommends using the audited 2.4er version of wu-ftpd.
f75a345da50da0a1aeeb54882a3fe6fce1b92f2b6cf41bf6bbc6704dd7b20178
xfwm buffer overflow exploit for Linux / x86. This will give you a euid=0 shell if /usr/X11R6/bin/xfwm is SUID(=4755), which isn't anywhere by default.
43eac56faef522e18d373dc452cee020f39fd7369f6f0bda40e910c89734352f
xwhois buffer overflow, for Linux x86. This will give you a euid=0 shell if /usr/X11R6/bin/xwhois is SUID(=4755), which isn't anywhere by default.
cd3e6d87b5d6caa673ead4be3dac43675e7efaff01e57544d0ab5add0bd7a2fc
Qrack is a simple, fast, and quick unix password cracker. It brute forces ciphertext generated by the crypt() function. It can report disabled accounts as well as accounts with no passwords, a 2400 word dictionary file is included. Ideal for system administrators to look for weak passwords. Written in Perl, and tested on FreeBSD and Linux but should work on any Unix variety with Perl installed.
71db8c2bdc8b704a167349136c571d20bc502560957c657a6c0a0dcb3434d43e
Weekly Newsletter from Help Net Security Issue 19 - 26.06.2000 - Covers weekly roundups of security related events. In this issue: Writing buffer overflow exploits for the PowerPC, JRun 2.3.x sample code vulnerabilities, BlackICE vulnerable to BO, Net Tools PKI Server exploits, Panda Antivirus allows remote access, and more.
e7e5335419f90eb9fea557c2aadfbaa2c9d0465df424890c66d70d1a25edcab9