what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 58 RSS Feed

Files

solaris-fifofs.txt
Posted Oct 11, 2007
Authored by qaaz

Solaris fifofs I_PEEK kernel memory disclosure exploit for x86/sparc.

tags | exploit, x86, kernel
systems | solaris
SHA-256 | cda504ca70a36cef8226f4a95896c7dee7537f1fcc1ed72f7bfd6a7988fea5f7

Related Files

Solaris SunSSH 11.0 Remote Root
Posted Jun 22, 2021
Authored by Joe Rozner, Nathaniel Singer

Solaris SunSSH version 11.0 on x86 libpam remote root exploit.

tags | exploit, remote, x86, root
systems | solaris
advisories | CVE-2020-14871
SHA-256 | 678892d62f9d4edd74e135ec10ed7cd1fb0389a420617db1549d49e581caa0db
Solaris SunSSH 11.0 x86 libpam Remote Root
Posted Dec 15, 2020
Authored by Hacker Fantastic

Solaris SunSSH versions 10 through 11.0 on x86 libpam remote root exploit.

tags | exploit, remote, x86, root
systems | solaris
advisories | CVE-2020-14871
SHA-256 | 93c50138db56dcc96e612d0fa56cca01459695d4f656345667a2e4fdec807e5d
Sun Solaris 11.3 AVS Local Kernel Root
Posted Aug 2, 2018
Authored by mu-b

Sun Solaris versions 10 and 11.3 and below local kernel root exploit.

tags | exploit, kernel, local, root
systems | solaris
advisories | CVE-2018-2892
SHA-256 | 2d08f4f43178d23d7d2933165968bd31a37edc7843535db10ada38cc95a049da
Oracle Solaris 11.1 / 11.3 rsh Stack Clash Privilege Escalation
Posted Jun 29, 2017
Site qualys.com

Oracle Solaris versions 11.1 and 11.3 rsh local privilege escalation stack clash exploit.

tags | exploit, local
systems | solaris
advisories | CVE-2017-3629, CVE-2017-3630, CVE-2017-3631
SHA-256 | d6fc2124ab39b596a408ba197a8da71c03b284c1dac54ac107cc4d471c892d32
Solaris x86 / SPARC EXTREMEPARR dtappgather Privilege Escalation
Posted Apr 13, 2017
Authored by Hacker Fantastic

Solaris versions 7 through 11 on both x86 and SPARC suffer from an EXTREMEPARR dtappgather local privilege escalation vulnerability.

tags | exploit, x86, local
systems | solaris
SHA-256 | 1d0a7fc97f6c11277cffbbde3faa1e5dcaa3c351527a2b971ea140cbd1503bbb
Solaris Recommended Patch Cluster 6/19 Local Root
Posted Jul 8, 2013
Authored by Larry W. Cashdollar

Solaris Recommended Patch Cluster 6/19 suffers from a local root command execution vulnerability on x86.

tags | exploit, x86, local, root
systems | solaris
advisories | CVE-2010-1183
SHA-256 | 532e22bc6ff3e644f7b297fffe8d58e1796dc3a75b7965cd74a76062a5280627
Solaris 10 Patch Cluster File Clobber
Posted Jun 19, 2013
Authored by Larry W. Cashdollar

Solaris 10 patch cluster suffers from a file clobber vulnerability in /tmp.

tags | exploit
systems | solaris
SHA-256 | 03794219b3e100fca16c556ac9f4ccfaad291a40205e4a5a016b11eca6895b3e
Solaris 10 Patch Cluster Symlink Attack
Posted Aug 9, 2012
Authored by Larry W. Cashdollar

The Solaris 10 137097-01 patch suffers from a symlink attack that will let a user clobber a root owned file.

tags | exploit, root
systems | solaris
SHA-256 | 13b5efe587e83e9d28fceb6ebe9f80bdd07ca9622ef7767e9ebb53b9c4b62f13
Solaris 10 Port Stealing
Posted Mar 29, 2011
Authored by Chris O'Regan

Solaris 10 suffers from a port stealing vulnerability that can be leveraged to enable denial of service and man-in-the-middle attacks.

tags | exploit, denial of service
systems | solaris
SHA-256 | 48675e27be933162ec7baa7aa594498059d2ec27697cce05e158de2eb0bcbf53
Solaris wbem Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris wbem suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2384
SHA-256 | e25695c184c89f651bdda342eaad990a889f8c8d85453a12ab23d8db36072c2b
Solaris nfslogd Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris nfslogd suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2382
SHA-256 | 31a014d3634838be4d7686ca8bc19552353af446fcbb382d3cb0180cd390db98
Solaris Flar Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris flar suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2382
SHA-256 | 41138e9f4024ae9ce4907ba49bfb51b1831d03d76f597aaae4bc06f17d1bd299
Solaris sync / reboot / exit Shellcode
Posted Jun 8, 2010
Authored by Jonathan Salwan | Site shell-storm.org

48 bytes small sync() and reboot() and exit(0) Solaris / x86 shellcode.

tags | x86, shellcode
systems | solaris
SHA-256 | 76856ffb4dd467201e8a6f8120d47007a8b706b4fedd091602534c770d126311
Sun Solaris 10 libc/*convert Buffer Overflow
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 libc/*convert (*cvt) suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | solaris
SHA-256 | 9b14cab195e419fc0bf7bb1409772fa4266c6cf1aed8fedf93eec1a3dff9a281
Sun Solaris 10 filesystem rm(1),find(1),etc Denial Of Service
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 filesystem rm, find, etc suffers from a denial of service vulnerability.

tags | exploit, denial of service
systems | solaris
SHA-256 | 1e273224020c7a25c0ba05d1352ca20c832b1e821ac772c1024178bcdeab6176
Sun Solaris 10 ftpd Cross Site Request Forgery
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 ftpd suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
systems | solaris
SHA-256 | 7c3ed2c5a6f4bc2080796dcb6ccb70ee63dd0b5d4ad81d589821c55d8d7da5d7
Solaris Update Manager / Sun Patch Cluster Symlink Attack
Posted Mar 25, 2010
Authored by Larry W. Cashdollar | Site vapid.dhs.org

Solaris Update manager and Sun Patch Cluster suffer from a symlink vulnerability.

tags | exploit
systems | solaris
SHA-256 | 2c5e6fb72b5483c114e659a98e04e40c8239612c494aab80a6f8827baed220f6
Samba trans2open Overflow (Solaris SPARC)
Posted Dec 31, 2009
Authored by H D Moore | Site metasploit.com

This exploits the buffer overflow found in Samba versions 2.2.0 to 2.2.8. This particular module is capable of exploiting the flaw on Solaris SPARC systems that do not have the noexec stack option set. Big thanks to MC and valsmith for resolving a problem with the beta version of this module.

tags | exploit, overflow
systems | solaris
advisories | CVE-2003-0201
SHA-256 | 48fe6c9e19f75786c1b1abb6aa3114673fe6ce806ec1a7f209d21ef0aa51d85a
Solaris x86 Portbinding Shellcode
Posted Jun 17, 2009
Authored by Jonathan Salwan | Site shell-storm.org

Solaris x86 portbinding TCP shellcode generator.

tags | x86, tcp, shellcode
systems | solaris
SHA-256 | 230744b84b6f7e60ccd26a70589da276754ed6f6e289798b095b034d38023ef2
Solaris 10 / OpenSolaris Denial Of Service
Posted May 5, 2009
Authored by mu-b | Site digit-labs.org

Solaris 10 and OpenSolaris fasttrap local kernel denial of service proof of concept exploit.

tags | exploit, denial of service, kernel, local, proof of concept
systems | solaris
SHA-256 | 396881a9a1a20e6e2dc5db085482bf8059a06acea737bd27fc8266edbab7331a
Solaris 10 / OpenSolaris Denial Of Service
Posted May 5, 2009
Authored by mu-b | Site digit-labs.org

Solaris 10 and OpenSolaris dtrace local kernel denial of service proof of concept exploit.

tags | exploit, denial of service, kernel, local, proof of concept
systems | solaris
SHA-256 | b0c6ddc4479ab756016675a410aa2e05eccd12b1c05b67d65b7e67e15aab0b8c
User-land Solaris 10 libc accept() Call Rootkit
Posted Feb 25, 2009
Authored by Subere, C Papathanasiou

This user-land rootkit hijacks the libc accept() call via LD_PRELOAD and yields back a non-interactive shell on the remote host. The .so file is placed under the trusted library path. This has been written to specifically target sshd on Solaris, although other daemons (e.g. bind, sendmail, apached) can also be targeted. It has been tested on Solaris 10. Read the files inside for comments on further shell interaction.

tags | tool, remote, shell, rootkit
systems | unix, solaris
SHA-256 | 7987443dddeca5ef652aa2a782472ce53514e94d8e6bc5c72c114202001251b2
solaris-portbind-xdr-DoS.c
Posted Oct 17, 2008
Authored by Federico L. Bossi Bonin

Solaris 9 PortBind XDR-DECODE taddr2uaddr() remote denial of service exploit.

tags | exploit, remote, denial of service
systems | solaris
SHA-256 | 47a035e276559f3b0b8ad758e68ca4f3f6a498f904430fda5165850a3aae742a
solaris-memleak.txt
Posted Mar 13, 2008
Authored by Marco Ivaldi

Exploit that demonstrates how an integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative value to the I_PEEK ioctl.

tags | exploit, local, memory leak
systems | solaris
advisories | CVE-2007-5225
SHA-256 | f0c326bfdb2529000939fd6e18cf2fa23f145f6daed7c64061963e03af1958f4
solaris-ohday.txt
Posted Feb 13, 2007
Authored by Kingcope

SunOS 5.10/5.11 in.telnetd remote root exploit. This has to be the easiest remote root ever.. wait.. there was that other SunOS telnetd remote root.

tags | exploit, remote, root
systems | solaris
SHA-256 | 717ba32b723518e0fae9769ba3d757fa95ff039e7d79b97b2e23ab1a16df2c18
Page 1 of 3
Back123Next

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close