Unichk is a tool for Linux which checks for 224 Unicode vulnerabilities in Microsoft IIS.
2943d568f744cc6ec23a8b8cb87e9e38Packet Storm new exploits for 2001.
77aee8be15fceb090950605ec8e7a4f3WinME/XP UPNP remote dos and buffer overflow overflow exploit. Sends malformed data to TCP port 5000. Includes the option to spawn a shell on port 7788.
f9206046fe2db51c88104dea21788ee8Solaris x86 v2.8 /bin/login via telnet remote buffer overflow exploit. Uses fixed addresses. Executes any command as root.
a738b5f4370aa08653cf62c7c419bf8bPmake <= 2.1.33 local root exploit. Some distributions have pmake suid root by default.
60072037d04fb99236213b82a4239fdfNb-isakmp.pl is a proof of concept exploit for Bugtraq # 3652 - ISAKMP/IKE remote denial of service against Win2k. This code may exploit other bugs as well. Perl version.
f5af9905a00822bcb51cfbd06064da72Nb-isakmp.c is a proof of concept exploit for Bugtraq # 3652 - ISAKMP/IKE remote denial of service against Win2k. This code may exploit other bugs as well. C version.
690321d47ef04f0d314c84e8da296191AdStreamer is a cgi package with several remote vulnerabilities, one of which allows remote command execution. Buggy open calls were found in addbanner.cgi, banner.cgi, bannereditor.cgi, and report2.cgi.
06fc404d3b77658241ef7dfe94f0d8bfA flaw in Microsoft Internet Explorer allows an attacker to perform a SSL Man-In-The-Middle attack without the majority of users recognizing it. In fact the only way to detect the attack is to manually compare the server name with the name stored in the certificate due to a flaw in the way IE checks HTTPS objects that are embedded into normal HTTP pages.
813b3f6b340271cde3c512bb61deeb01Plesk, a popular server administration tool used by many web hosting companies, has a bug which allows remote users to view the source of .php hosted files. All versions prior to v2.0 are affected.
a7d92ef2dc4845c652651a3543755d05The script command overwrites hardlinks named typescript in the current directory.
e546ea507ca071abe3463d61624074c1ATPhttpd v0.4a remote denial of service buffer overflow Tested against OpenBSD 2.9.
392571248a30489738ca74447900141aATPhttpd v0.4b remote buffer overflow exploit. Tested on and against OpenBSD 2.8. Binds a shell to port 6969 which has the UID of the webserver.
ebcb55b399e6cc1df9b8a7590bfa606bA security flaw in the itransact.com credit card payment system allows users to change the price of merchandise ordered.
156e08a83f72f8a46397366a52e8ad1fSpeedXess DSL routers come with a default password of speedxess.
415cfed7781561fcb5133a3b24345773Wu-Ftpd v2.6.1 and below remote root exploit which takes advantage of the SITE EXEC globbing vulnerability. Includes instructions on finding the offset with gdb.
faa411281a9318348a43d54c8ab92769Ettercap v0.6.2 local root format string exploit. Works if the administrator made Ettercap SUID.
d6e5951f7604f7851edf50f992c03724OpenSSH v3.0.1p1 and below root exploit which only works of the administrator has turned on the UseLogin feature. Uses the libroot library. Requires an account on the remote machine.
ee90a8217d3ebac2b297609567373f38The Kebi Webmail server allows remote users to have administrator access by going to http://site.com/a/.
faaf892f274f6a268f6768e4f56b1b5dJack.c is a remote exploit for the Active Perl ISAPI overflow described in Bugtraq ID 3526. Sends you a shell with SYSTEM level access.
485e818e6aa9c8cd8c3a3d692a4a084fJim.c is an exploit for the remote IIS server side include buffer overflow vulnerability. Tested on Linux and Win32. To exploit this vulnerability you must have write access to the web root of the target web server. Causes the server to send you a shell with SYSTEM level access.
ce7ba29b042a913db88bb171d6db8db4Badboy.c is a remote exploit for the Win32 Checkpoint Firewall-1 GUI log viewer program. Binds a shell to a port with SYSTEM level access. Must be run from a valid GUI client machine.
30aecb9b9cc3b85879d290607853efe9
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed