ypk.tar.gz exploits the remote root sunos 4.1.3 ypupdated / keyserv vulnerability.
79ae5b06658658ab3b6bb9054e00ace0Exploit information for the "Virtualized UNC Share" problem talked about in MS00-019 which yeilds the source of .asp's.
8c156cef23f80484481a45aa924f138bMailForm v1.91 for Windows 95 and NT 4.0 allows potentially dangerous parameters to be specified by anyone who can execute it. The web interface allows remote users to execute arbitrary commands. Exploit code included.
4b3fb51c03bea99a8e748d3b763f7e34This script exploits a vulnerability in the default installation of Caldera OpenLinux 2.3 which allows an attacker to obtain a listing of the packages, and versions of packages installed on this system, allowing an attacker to remotely determine vulnerabilities.
f17f0f49d6ca66b080791b5537200e8aircii-4.4 exploit - buffer overflow in ircii dcc chat's allows arbitrary code execution. Tested against SuSE 6.x and Redhat.
8fa058ae2888e79fbb22209b4615455aFcheck, a file integrity checker written in perl, can be subverted by a malicious user to execute arbitrary commands as root by creating files with shell metacharacters in their names. Version v.2.7.45 and below is vulnerable.
b774f77d8c850e34a261d057d7b92d7fThere is a buffer overflow in the Win32 RealPlayer Basic client versions 6 and 7 which occurs when a long location to play string is entered. Using the HTML "EMBED" tag to embed RealPlayer in a webpage and setting the "AUTOSTART=true" flag, you can force RealPlayer to start automatically, triggering the overflow condition. It appears that arbitrary code could be exploited simply by *VISITING* a webpage with the malicious embedded RealPlayer tags. MacOS and linux versions appear not to be vulnerable.
b8c2dcb92a8fa7a9286d90addc4f56b8Linux 2.2.x IP Masquerading allows UDP packets in from the outside until the firewall times out. Under certain rare conditions, a UDP based service could be exploited from the outside.
919d8ea78b3ca44795aaf4924e4cf2b1HTTP cache-control headers such as If-Modified-Since allow servers to track individual users in a manner similar to cookies, but with less constraints. This is a problem for user privacy against which browsers currently provide little protection.
8812472989a4bf4862b008ab8381cfe9mh/msgchk and mh/inc demonstration local exploit for FreeBSD / BSDI.
b616ceb70882512a64c1275bceb83170fdmount local root exploit - tested on Slackware 4.0. Must be in the floppy group.
d2464a783b9ec3c30fce40f27d993b78Solaris 2.6 snmpdx remote exploit.
de1986c50333fff0165c22918029c381Oracle 8.1.5i install exploit - If Oracle is installed after this script has ran, roots .rhosts can be overwritten.
6b1540dd152e2e295fae90c778085420
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed