LPPlus is Plus Technologies print management system for unix. Versions prior to 3.3.x contain several serious security holes, some of which undermine the integrity of the printing subsystem, others threaten the security of the system on which the product is installed. Upgrade available here.
f8eacbf074a5a8841982762a92fe33ddThe CNN Unsubscribe Bot can Un-Subscribe other users from CNN's distribution list by placing a random number at the end of unsubscribe cgi URL's member_id.
7559650c2e76073b04fb8c48d57ba4ecRUS-CERT Advisory - Several Apache authentication modules which use SQL databases have remote vulnerabilities. Any Apache server using database-based authentication with the following modules is vulnerable - AuthPG 1.2b2, mod_auth_mysql 1.9, mod_auth_oracle 0.5.1, mod_auth_pgsql 0.9.5, and mod_auth_pgsql_sys 0.9.4. An attacker can execute arbitrary PostgreSQL or Oracle statements.
9193b07708544bcfec9f707cd421690cBSD Auto-rooter - Runs a trojan on many machines using the telnetd exploit.
aed68be6b47a4a4221296d75fabe9899Solaris 2.8 patchadd local exploit. Takes advantage of a symlink vulnerability to clobber files with output from patchadd. Tested on Solaris 2.8 Sparc with the current patch cluster applied.
e82cc2d3f9571ccb3e3fc241ddaebb1aAOLserver v3.0 and 3.2 remote denial of service bug. Sends a long HTTP request.
3a23c1a446ea4da1a8848ba87ea5811dNtop v1.1 for Solaris/x86 contains a remotely exploitable buffer overflow in the http server which defaults to tcp port 8080.
b835b14e9bd0431144499b6dc3c5e6c7Sendmail 8.11.5 and below local root exploit for linux.
945b1ee84290d2a8d065d059bc740dc3Sendmail-8.11.x linux x86 local exploit. Takes advantage of a memory access violation when specifying out-of-bounds debug parameters.
9ca3b58dee980471ff0c1c8d15d79a94BSDI v3.0 / 3.1 local dos exploit which reboots the system by running some shellcode.
1bb16ade4069cba6748f2563429b8bbcAIX PowerPC v4.3.x ftpd remote exploit (yyerror() bug).
87d572a2ae96a7adfa4f4f7365d3530dAIX PowerPC v4.1 and 4.2 remote exploit for pdnsd.
fc1a5da75298c8259b7a0027949821cbAIX PowerPC 4.1, 4.2, and 4.3.x local exploit for /usr/bin/setsenv.
de69263c8a6387806065612ff62b7c7cAIX PowerPC 4.2 and 4.3.x local exploit for /usr/sbin/portmir.
6517db6eaf1f8adff7b7b39a53b03a9fAIX PowerPC 4.1, 4.2, and 4.3.x local /usr/lib/lpd/piobe exploit.
78b06fc6e92bb13de9ff91dca89dec14AIX PowerPC 4.1, 4.2, and 4.3 local exploit for /usr/lib/lpd/digest.
1878d266f1c3d3f1d93458ab0ff630a0xlock.c - Proof of Concept Code for xlock heap overflow bug. Tested in Solaris 8 x86.
31f5870f393a6e156a20c61243890a7fMailex.c is a Solaris x86 mail HOME environment variable buffer overflow exploit. Tested on Solaris 8 (x86).
5d7612e078c5e26ab2a4f5710c5bd2fcSolaris 7/8 kcms_configure command line buffer overflow on both sparc/Intel platforms.
a5c2ec7e56db53af52ff19608a06d752FreeBSD 3.3 x86 top format string exploit. Tested against top-3.5beta9.
0541d60fbd5725a324bab97615d1c1a7Windows 2000 + IIS .ida exploit in perl. Binds a shell to port 8008.
36c21688844e275f4f528a8716e9dd22w3m remote buffer overflow exploit for FreeBSD. Runs as a daemon and waits for w3m to connect. FreeBSD advisory about w3m here.
544144fce48058a131724c9c40bfd1fbNSFOCUS Security Advisory SA2001-06 - A buffer overflow vulnerability has been found in ssinc.dll which is triggered when Microsoft IIS 4.0/5.0 when processes server side include files. An attacker could obtain SYSTEM privilege if he can save html on the server. Discussed in ms01-046.
9ced457870402db712f9b5caf630cd0aNetWare Enterprise Web Server 5.1 has a couple security problems - When NDS browsing via the web server is enabled, if an attacker can reach that server's port 80 they can enumerate information such as user names, group names, and other system information. In addition, poor handling of GET commands will allow for GroupWise WebAccess servers to display indexes of the directories instead of HTML files.
3b5768becf6d2f625d569d0330371237PHP-Nuke Written by Sequioa Software contains sendmail.php, which allows remote users to execute commands and see files on the web server.
66597f55d0a77fbc8df3117555e97aad
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed