what you don't know can hurt you
Showing 1 - 25 of 100 RSS Feed

Files

pppd 2.4.8 Buffer Overflow
Posted Mar 9, 2020
Authored by Marcin Kozlowski

Proof of concept crash exploit for pppd versions 2.4.2 through 2.4.8. It leverages a rhostname buffer overflow in the eap_request and eap_response functions in eap.c.

tags | exploit, overflow, proof of concept
advisories | CVE-2020-8597
MD5 | 694ecff0fb2c7aa589655a4edc33f057

Related Files

pppd 2.4.8 Buffer Overflow
Posted Mar 18, 2020
Authored by nu11secur1ty, Ventsislav Varbanovski

pppd versions 2.4.2 through 2.4.8 buffer overflow exploit.

tags | exploit, overflow
advisories | CVE-2020-8597
MD5 | c66aef2c81ab020e40674a238fc9d130
Ubuntu Security Notice USN-2595-1
Posted May 5, 2015
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2595-1 - It was discovered that ppp incorrectly handled large PIDs. When pppd is used with a RADIUS server, a remote attacker could use this issue to cause it to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2015-3310
MD5 | b086634e63bcb5994e064a5d90eeffec
Wvdial / usb_modeswitch File Overwrite
Posted Jan 19, 2012
Authored by srm

When using usb_modeswitch and invoking pppd from wvdial in -detach mode. a /tmp/debug file is created. A local Attacker could overwrite arbitrary files.

tags | exploit, arbitrary, local
MD5 | f6613eb3493fd001a067ea44bef97ceb
CVE Checker 0.3
Posted Aug 21, 2010
Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Cleanups in the CSV output have been made, and a few sample reporting files have been added. This release fixes a few bugs in file matching support and adds --no-check-certificates to the wget command.
tags | vulnerability
systems | unix
MD5 | 1de655f957214c0c9da92df1fadce655
Apache CouchDB Cross Site Request Forgery
Posted Aug 17, 2010
Authored by Jan Lehnardt | Site couchdb.apache.org

Apache CouchDB versions prior to version 0.11.1 are vulnerable to cross site request forgery (CSRF) attacks. A malicious website can POST arbitrary JavaScript code to well known CouchDB installation URLs (like http://localhost:5984/) and make the browser execute the injected JavaScript in the security context of CouchDB's admin interface Futon.

tags | advisory, web, arbitrary, javascript, csrf
MD5 | 65d8869788216e6c830f5184962e2e09
CVE Checker 0.2
Posted Aug 17, 2010
Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This release fixes ./configure to fail when sqlite3 or libconfig isn\'t present. It fixes make to support make install. It fixes compiler warnings on size_t usage.
tags | vulnerability
systems | unix
MD5 | 10d25a36b8ae26465de794551a8fd3c8
Apache Tomcat Remote Denial Of Service / Information Disclosure
Posted Jul 10, 2010
Authored by Mark Thomas | Site tomcat.apache.org

Apache Tomcat suffers from denial of service and information disclosure vulnerabilities. Versions 5.5.0 through 5.5.29, 6.0.0 through 6.0.27 and 7.0.0 are affected.

tags | advisory, denial of service, vulnerability, info disclosure
advisories | CVE-2010-2227
MD5 | c6c324200350deaf9fdba926a4f1be01
Apache Tomcat Information Disclosure
Posted Apr 23, 2010
Authored by Mark Thomas | Site tomcat.apache.org

Apache Tomcat suffers from an information disclosure vulnerability. Versions 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 are affected.

tags | advisory, info disclosure
advisories | CVE-2010-1157
MD5 | 51af7a60ff81be104c205365d3c31233
Apache CouchDB Timing Attack
Posted Apr 1, 2010
Authored by Jason Davies | Site couchdb.apache.org

Apache CouchDB versions prior to version 0.11.0 are vulnerable to timing attacks, also known as side-channel information leakage, due to using simple break-on-inequality string comparisons when verifying hashes and passwords.

tags | advisory
advisories | CVE-2010-0009
MD5 | 61ea8042b421c171d4b868ee462b5e83
Apache ActiveMQ Persistent Cross-Site Scripting
Posted Apr 1, 2010
Authored by Rajat Swarup | Site activemq.apache.org

Remote unauthenticated exploitation of an input validation vulnerability in Apache Software Foundation's ActiveMQ server could allow an attacker to perform a stored or persistent cross-site scripting (XSS) attack.

tags | advisory, remote, xss
advisories | CVE-2010-0684
MD5 | 120a93a37c3ceb14995b35370a832550
Adobe PDF LibTiff Integer Overflow
Posted Mar 13, 2010
Authored by villy

Adobe PDF LibTiff integer overflow code execution exploit that affects versions 8.3.0 and below and 9.3.0 and below.

tags | exploit, overflow, code execution
advisories | CVE-2010-0188
MD5 | 6ba7b757db6d3c366588eb9286f5a578
Solaris / OpenSolaris UCODE_GET_VERSION ioctl Denial Of Service
Posted Feb 9, 2010
Authored by Tobias Klein | Site trapkit.de

This is a denial of service (kernel panic) proof of concept exploit for the UCODE_GET_VERSION ioctl NULL pointer dereference vulnerability on Solaris / OpenSolaris.

tags | exploit, denial of service, kernel, proof of concept
systems | solaris
advisories | CVE-2010-0453
MD5 | 2a0447bcfa866c531eb52571f1f41998
Apache Tomcat Insecure Partial Deploy After Failed Undeploy
Posted Jan 26, 2010
Authored by Mark Thomas | Site tomcat.apache.org

Apache Tomcat suffers from an insecure partial deploy after failed deploy vulnerability.

tags | advisory
advisories | CVE-2009-2901
MD5 | c2585e66384b114bf2a39ffdfab80a65
Apache Tomcat Unexpected File Deletion In Work Directory
Posted Jan 26, 2010
Authored by Mark Thomas | Site tomcat.apache.org

Apache Tomcat suffers from an unexpected file deletion in work directory vulnerability. Versions 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 are affected.

tags | advisory
advisories | CVE-2009-2902
MD5 | 5c6028b28581f02f5b89e29c451906a4
Oracle TNS Listener Denial Of Service
Posted Jan 22, 2010
Authored by Dennis Yurichev

Oracle RDBMS TNS Listener proof of concept exploit that causes the listener to crash.

tags | exploit, proof of concept
advisories | CVE-2010-0071
MD5 | 9db9475c08b68a1521a9a1ff413e1c0f
ISC DHCP dhclient Buffer Overflow
Posted Nov 17, 2009
Authored by Jon Oberheide

ISC DHCP dhclient scripts_write_params() stack buffer overflow exploit.

tags | exploit, overflow
advisories | CVE-2009-0692
MD5 | 0ec16a6f3d31b4088eedff4643bf281b
Apache Tomcat On Windows Blank Password
Posted Nov 17, 2009
Authored by Mark Thomas | Site tomcat.apache.org

The Apache Tomcat Windows installer insecurely leaves the default install with a blank administrator password. Versions 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 are affected.

tags | advisory
systems | windows
advisories | CVE-2009-3548
MD5 | a7ad56830eb83b64cf4dfde5bc78a28f
Oracle Database AUTH_SESSKEY Exploit
Posted Oct 30, 2009
Authored by Dennis Yurichev

Proof of concept exploit for Oracle Database versions 10.1.0.5 and 10.2.0.4 that relates to an improper AUTH_SESSKEY parameter length validation.

tags | exploit, proof of concept
advisories | CVE-2009-1979
MD5 | 660b662ab4b883cfab9655f94f942ca7
Microsoft TCP/IP Orphaned Connections
Posted Sep 10, 2009
Authored by Fabian Yamaguchi | Site recurity-labs.com

The TCP/IP-Stack of the Microsoft Windows XP/Vista Operating System is vulnerable to a remote resource exhaustion vulnerability. By taking advantage of this vulnerability, an attacker can cause a connection's Transmission Control Block (TCB) to remain in memory for an indefinite amount of time without the need for the attacker to further maintain the connection's activity.

tags | advisory, remote, tcp
systems | windows, xp
advisories | CVE-2009-1926
MD5 | a6db4b7c9fc168d5c98697fc58b7a950
Adobe Reader Collab.getIcon() Buffer Overflow
Posted Sep 3, 2009
Authored by Kralor

Adobe Reader Collab.getIcon() buffer overflow exploit.

tags | exploit, overflow
advisories | CVE-2009-0927
MD5 | 4cce506924a5ac785d4dae13690d8666
Linux 2.6 Stack Disclosure
Posted Sep 1, 2009
Authored by Jon Oberheide

Linux 2.6 kernel versions prior to 2.6.31-rc7 AF_IRDA 29 byte stack disclosure exploit.

tags | exploit, kernel
systems | linux
MD5 | 8f5d17ba50188d6e80c694c11d316c19
Linux Kernel procfs Memory Disclosure
Posted Aug 5, 2009
Authored by Jon Oberheide

procfs memory disclosure exploit for Linux kernel versions prior to 2.6.14.6.

tags | exploit, kernel
systems | linux
advisories | CVE-2005-4605
MD5 | 8cc2cbdef15eb432257ab82c2a6f20ab
Oracle Network Foundation Vulnerability
Posted Jul 25, 2009
Authored by Dennis Yurichev

The Network Foundation component in Oracle Database versions 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 suffers from an unspecified vulnerability. Proof of concept code included.

tags | exploit, proof of concept
advisories | CVE-2009-1020
MD5 | 5cbe81ca8ff50bd26315940033c3a0f3
Oracle 11.1.0.6.0 Denial Of Service
Posted Jul 25, 2009
Authored by Dennis Yurichev

Oracle version 11.1.0.6.0 win32 denial of service exploit.

tags | exploit, denial of service
systems | windows
advisories | CVE-2009-1019
MD5 | 56de590482620d9eed57ab2616404d58
Oracle 11g win32 Denial Of Service
Posted Jul 25, 2009
Authored by Dennis Yurichev

This advisory and proof of concept code demonstrates a denial of service vulnerability in Oracle 11g.

tags | exploit, denial of service, proof of concept
advisories | CVE-2009-1963
MD5 | 76fa54dfec37f0978cb2618e5821c487
Page 1 of 4
Back1234Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    9 Files
  • 17
    Jun 17th
    33 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close