AMD remote exploit that uses the amq binary.
6eb651f99ca224a21516cffc64b70a50stream2.c is a remote dos attack which uses ACK packets to consume large amounts of CPU. This DoS targets FreeBSD, Linux, and Solaris.
0f4dc0edf009e44bca7f29205d0ebd29Debian 2.1 local root exploit - A vulnerability exists in the apcd package shipped with Debian 2.1.
8d27be1ebe179692a7b7c66470a3bcf8Packet Storm new exploits for February, 2000.
0623ca20f1859bda8dd0af395aefb73c/sbin/dump on Linux is vulnerable to a local buffer overflow attack. Patch included.
cd50968d3b66b0d036a477a0ac74bc52The Xitami Windows 95/98 webserver is vulnerable to a remote DoS attack.
5a11364f1694e39430340f910affb758Netscape and Outlook are vulnerable to a DoS attack involving bogus news group file entries. Demonstration page here.
16d447fc64e5d8f42f20956e6506a5bcRedhat /usr/bin/man exploit (gid=15 leads to potential root compromise).
534219ec78ffa72e140fa46ef0859a02Microsoft Media Server 4.1 - Denial of Service exploit. This code will crash the Microsoft Media Unicast Server for Windows NT. We have tested this against machines running SP4 and SP6. Exploits the bug in ms00-013
7dbf11966203ca1c5aae5047b90e1f49If X11forwarding is turned on, and remote xauth is patched, sshing into a compromised server can allow programs to be run on under your ssh client. This is turned on by default in ssh1, ssh2, and openssh.
28ae3a72c732362513ae2d5784ae8d3fFreeBSD is vulnerable to a DoS vulnerability involving high speed pinging with packets over 8184 bytes. Unofficial patch included.
4cb95ddec281aff341cb23f56666a720All versions of Sambar server running under Windows NT and 2000 (95/98 not vulnerable) have vulnerabilities which allow remote command execution.
cf1f6d345a3e18943dfe838e923143c3Georgi Guninski security advisory #7 - There is a vulnerability in Wordpad which allows executing arbitrary programs without warning the user after activating an embedded or linked object. This may be also exploited in IE for Win9x. Demonstration which starts AUTOEXEC.BAT available here.
20450982bcb5b6b9eed0336d9d040afaSun iPlanet Web Server, Enterprise Edition 4.1 on Linux is vulnerable to a remote DoS attack. Many GET requests cause a kernel panic.
47106fd1346778536e0a4a3b7eb9f0a5Remote vulnerabilies in the popular free email software Outblaze
55328ec5af165405bedbe4a40b2f094eDebian 2.1 local exploit - A vulnerability exists in the apcd package shipped with Debian 2.1.
2f8ca8704b62385f0f15f7e45bdcd21casmon.sh - A vulnerability exists in both the ascpu and asmon ports to FreeBSD. Local root overflow. FreeBSD 3.4, 3.3, 3.2, 3.1, and 3.0 are affected.
970b73b46b84a370b6a43bd9732f04feSolaris (x86/7.0/2.6) local exploit for Sun's WorkShop 5.0 compilers and other products which use the FlexLM license management system.
20df6cfa134d57e089c4b7ff9b49063dAn ActiveX control shipped with IE can be used to install software components signed by Microsoft without prompting the user. This of course raises trust issues. Someone, not necessarily Microsoft, could use this control to install a Microsoft signed component in your system.
a6f230dc95b98b2d73a0f82f61dfe607This script sniffs traffic on the network watching for ebay userids and passwords. This is only possible because (as of this writing), ebay does not encrypt passwords -- they are sent in the clear.
089c41fd118e2268f80957d3b5133f14Exploit for recent FW-1 FTP problems - Demonstrate a basic layer violation in "stateful" firewall inspection of application data (ftp within IP packets). Checkpoint alert about this vulnerability here.
835a52a28c324e1d897fde567b0680d0Qpop3.0b30 and below buffer overflow exploit. Remote, but requires username and password.
02a791442470952c4bc80b6082d11105Frontpage-PWS32/3.0.2.926 (probably others) allows reading of any file on the system by putting /.../ into the url.
65ac70283fd3b25fa31c76133ecc7a4eOn AIX 4.2 and 4.3, the SNMP daemon is enabled by default and two community names are enabled with read/write privileges. The community names are "private" and "system", but are only allowed from localhost connections. Nevertheless, a local user may install an SNMP client, and modify sensitive variables.
3a36c3e7f5f59c761b177d48eb494c8bDuring the installation process of Windows 2000 professionnal anyone can connect to the ADMIN$ share as ADMINISTRATOR whithout any password.
57d604a68b3547013c402175fa05435a
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed