exploit the possibilities
Showing 1 - 25 of 58 RSS Feed

Files

solaris-fifofs.txt
Posted Oct 11, 2007
Authored by qaaz

Solaris fifofs I_PEEK kernel memory disclosure exploit for x86/sparc.

tags | exploit, x86, kernel
systems | solaris
MD5 | e08e4cd99770e0ae8c488210ef5b41e5

Related Files

Solaris SunSSH 11.0 Remote Root
Posted Jun 22, 2021
Authored by Joe Rozner, Nathaniel Singer

Solaris SunSSH version 11.0 on x86 libpam remote root exploit.

tags | exploit, remote, x86, root
systems | solaris
advisories | CVE-2020-14871
MD5 | ad6170fd6c91ea4241f7bcc669da3838
Solaris SunSSH 11.0 x86 libpam Remote Root
Posted Dec 15, 2020
Authored by Hacker Fantastic

Solaris SunSSH versions 10 through 11.0 on x86 libpam remote root exploit.

tags | exploit, remote, x86, root
systems | solaris
advisories | CVE-2020-14871
MD5 | 8fbea7fde1a23252954cc85134e98724
Sun Solaris 11.3 AVS Local Kernel Root
Posted Aug 2, 2018
Authored by mu-b

Sun Solaris versions 10 and 11.3 and below local kernel root exploit.

tags | exploit, kernel, local, root
systems | solaris
advisories | CVE-2018-2892
MD5 | e87115e82276d32408f82a68e1b2de6f
Oracle Solaris 11.1 / 11.3 rsh Stack Clash Privilege Escalation
Posted Jun 29, 2017
Site qualys.com

Oracle Solaris versions 11.1 and 11.3 rsh local privilege escalation stack clash exploit.

tags | exploit, local
systems | solaris
advisories | CVE-2017-3629, CVE-2017-3630, CVE-2017-3631
MD5 | ecf04fec274290660dd63bc7b82fd227
Solaris x86 / SPARC EXTREMEPARR dtappgather Privilege Escalation
Posted Apr 13, 2017
Authored by Hacker Fantastic

Solaris versions 7 through 11 on both x86 and SPARC suffer from an EXTREMEPARR dtappgather local privilege escalation vulnerability.

tags | exploit, x86, local
systems | solaris
MD5 | 595fcc194d20c3822c1f5175c0a7f718
Solaris Recommended Patch Cluster 6/19 Local Root
Posted Jul 8, 2013
Authored by Larry W. Cashdollar

Solaris Recommended Patch Cluster 6/19 suffers from a local root command execution vulnerability on x86.

tags | exploit, x86, local, root
systems | solaris
advisories | CVE-2010-1183
MD5 | 70e5650e28f4a605da2b8b5cd42445ea
Solaris 10 Patch Cluster File Clobber
Posted Jun 19, 2013
Authored by Larry W. Cashdollar

Solaris 10 patch cluster suffers from a file clobber vulnerability in /tmp.

tags | exploit
systems | solaris
MD5 | 5c1579b191037722b61b309d19b1e2e3
Solaris 10 Patch Cluster Symlink Attack
Posted Aug 9, 2012
Authored by Larry W. Cashdollar

The Solaris 10 137097-01 patch suffers from a symlink attack that will let a user clobber a root owned file.

tags | exploit, root
systems | solaris
MD5 | 80d69d0bf6a46b0dd01a03f317d467fe
Solaris 10 Port Stealing
Posted Mar 29, 2011
Authored by Chris O'Regan

Solaris 10 suffers from a port stealing vulnerability that can be leveraged to enable denial of service and man-in-the-middle attacks.

tags | exploit, denial of service
systems | solaris
MD5 | 573265244b6312b673a031bf7fdfa35e
Solaris wbem Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris wbem suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2384
MD5 | 5ce987fd839678c8aa72d37ec77a29f0
Solaris nfslogd Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris nfslogd suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2382
MD5 | f8907a0809016a330f41cba6a063c9ff
Solaris Flar Unsafe Use Of Temporary Files
Posted Jul 21, 2010
Authored by Frank Stuart

Solaris flar suffers from an unsafe use of temporary files vulnerability.

tags | exploit
systems | solaris
advisories | CVE-2010-2382
MD5 | 0dd5e2ef5ad9ffeb543ccb3cc6119c03
Solaris sync / reboot / exit Shellcode
Posted Jun 8, 2010
Authored by Jonathan Salwan | Site shell-storm.org

48 bytes small sync() and reboot() and exit(0) Solaris / x86 shellcode.

tags | x86, shellcode
systems | solaris
MD5 | 622f08c557edf9f87dc23cee446f4773
Sun Solaris 10 libc/*convert Buffer Overflow
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 libc/*convert (*cvt) suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | solaris
MD5 | 54ce074f34d152ddc5a7f87d4cc902d2
Sun Solaris 10 filesystem rm(1),find(1),etc Denial Of Service
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 filesystem rm, find, etc suffers from a denial of service vulnerability.

tags | exploit, denial of service
systems | solaris
MD5 | 5a1a35c02ac50fa610c3b33e97f688eb
Sun Solaris 10 ftpd Cross Site Request Forgery
Posted May 22, 2010
Authored by Maksymilian Arciemowicz

Sun Solaris 10 ftpd suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
systems | solaris
MD5 | 7234a5fffc857a3c6e88a6409cbd9b3c
Solaris Update Manager / Sun Patch Cluster Symlink Attack
Posted Mar 25, 2010
Authored by Larry W. Cashdollar | Site vapid.dhs.org

Solaris Update manager and Sun Patch Cluster suffer from a symlink vulnerability.

tags | exploit
systems | solaris
MD5 | 93497148c976127f0595e511ce60b5e8
Samba trans2open Overflow (Solaris SPARC)
Posted Dec 31, 2009
Authored by H D Moore | Site metasploit.com

This exploits the buffer overflow found in Samba versions 2.2.0 to 2.2.8. This particular module is capable of exploiting the flaw on Solaris SPARC systems that do not have the noexec stack option set. Big thanks to MC and valsmith for resolving a problem with the beta version of this module.

tags | exploit, overflow
systems | solaris
advisories | CVE-2003-0201
MD5 | 5977afd803b48cf86e1c92220d95e3fb
Solaris x86 Portbinding Shellcode
Posted Jun 17, 2009
Authored by Jonathan Salwan | Site shell-storm.org

Solaris x86 portbinding TCP shellcode generator.

tags | x86, tcp, shellcode
systems | solaris
MD5 | b7276665da53dae72a9cc91b6ecd50c3
Solaris 10 / OpenSolaris Denial Of Service
Posted May 5, 2009
Authored by mu-b | Site digit-labs.org

Solaris 10 and OpenSolaris fasttrap local kernel denial of service proof of concept exploit.

tags | exploit, denial of service, kernel, local, proof of concept
systems | solaris
MD5 | 4e3185d1766408117e70eea4ab71d8bd
Solaris 10 / OpenSolaris Denial Of Service
Posted May 5, 2009
Authored by mu-b | Site digit-labs.org

Solaris 10 and OpenSolaris dtrace local kernel denial of service proof of concept exploit.

tags | exploit, denial of service, kernel, local, proof of concept
systems | solaris
MD5 | 814a97d288d8826fb2e50a782161caf7
User-land Solaris 10 libc accept() Call Rootkit
Posted Feb 25, 2009
Authored by Subere, C Papathanasiou

This user-land rootkit hijacks the libc accept() call via LD_PRELOAD and yields back a non-interactive shell on the remote host. The .so file is placed under the trusted library path. This has been written to specifically target sshd on Solaris, although other daemons (e.g. bind, sendmail, apached) can also be targeted. It has been tested on Solaris 10. Read the files inside for comments on further shell interaction.

tags | tool, remote, shell, rootkit
systems | unix, solaris
MD5 | 0dab00507d3dfcc24d413cffa63f9143
solaris-portbind-xdr-DoS.c
Posted Oct 17, 2008
Authored by Federico L. Bossi Bonin

Solaris 9 PortBind XDR-DECODE taddr2uaddr() remote denial of service exploit.

tags | exploit, remote, denial of service
systems | solaris
MD5 | ecb350e1db25b72f72403f88951a183d
solaris-memleak.txt
Posted Mar 13, 2008
Authored by Marco Ivaldi

Exploit that demonstrates how an integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative value to the I_PEEK ioctl.

tags | exploit, local, memory leak
systems | solaris
advisories | CVE-2007-5225
MD5 | 8d609ea4015453829d85d3f773acd6a3
solaris-ohday.txt
Posted Feb 13, 2007
Authored by Kingcope

SunOS 5.10/5.11 in.telnetd remote root exploit. This has to be the easiest remote root ever.. wait.. there was that other SunOS telnetd remote root.

tags | exploit, remote, root
systems | solaris
MD5 | caf667467ec98d3948bf347998699e70
Page 1 of 3
Back123Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close