Local root exploit for mtr versions lower than 4.0.6. Vulnerability originally found by KF of Snosoft.
dcc4e35730a2a0dca69cb23d2fbf53c3X2 exploits the SSH CRC-32 attack detection code buffer overflow vulnerability that exists in SSH1 implementations. The exploit is distributed in binary form and has been encrypted. Includes 45 target types. 319 target types are available Fair Use Law 17 U.S.C.A 107
5ad26f20c8eeae79c09718165e21621d7350fun is a remote exploit for mod_php v4.0.2rc1-v4.0.5 and v4.0.6-v4.0.7RC2. This exploit appears to be a revised version of the 73501867 exploit, which was written by the same author, contained less functionality and was not encrypted. Note: this exploit also causes PHP 4.1.2 versions to segfault. This code was abandoned in a honey pot and is published under Fair Use Law 17 U.S.C.A 107
55dd71bbb7d23d1220f8bb33a4b20eddSlrnpull '-d' buffer overflow exploit. Executes shellcode with group 'news' privileges. Tested to work on an Intel Red Hat 6.2 installation .
ddc9cde518d7a4282d6cb3248b448e48Packet Storm new exploits for April, 2002.
da76776c09caeb80dc346c3147fe4567Cisco 677/678 Telnet Overflow denial of service perl exploit.
71acdbfebdc481e031687d06bbb810e7AnalogX SimpleServer:WWW HTTP Server v1.1 denial of service buffer overflow exploit.
cb8368a36e1c06aa0f994e1dce369789Exploit for the local root bug in Kerberos IV TGT and AFS Token implementation of the OpenSSH server (sshd) version 2.2.0 - 3.1.0.
98f1f82d423d16819bc96da528d31ca8Food_for_the_poor is a linux exploit for a heap overflow in the Kerberos 4 ftp client which creates a suid shell in /tmp.
02f164a7343a06b6563818a43d6d73573CDaemon FTP Server v2.0 buffer overflow dos exploit.
2bf501dc4f6312377a58c1130e5beb44This exploit hangs WiredRed e/pop v2.0.3, probably works on all 2.x versions.
d53cc8ba199088d13beffe904c1f9450PsyBNC v2.3 has a problem dealing with oversized passwords, making it possible to tie up all the connection slots and consume a lot of CPU on the server.
72882c16409c851c3e19cdd8edf515a6Microsoft IIS .HTR heap overflow checker. Determines remotely if patch MS02-018 has been applied.
2b2edd24b76ee0b58d5186d14b8d3923Screen v3.9.11 local root linux/x86 exploit for braille module bug.
bf834c1357f2a2f6814bd7bf51ecea1dLocal root exploit for the "Suid application execution bug" (< FreeBSD 4.5-STABLE) that was discovered by Joost Pol from Pine.
6e686fc543c6ddbad436bfb0f81fd5beIosmash.c is an exploit for the stdio kernel bug that resides in all releases of FreeBSD up to and including 4.5-RELEASE. The exploit uses keyinit, which is part of the S/key package, to create 5 valid root passwords that give instant root access trough S/key.
5a17bababe3ea7ff5e73ed68e8bf079dPosadis m5pre1 local buffer overflow exploit.
aba3e4e67681520ccc17f4d5f548bbc0Posadis m5pre2 local format string exploit.
7475676aaa562e43d95925828590fb52Microsoft IIS W3SVC Denial of Service - Brings down the inetinfo.exe process, crashing IIS.
187ee85dc854e518c0b386d561dd3a33OpenBSD 3.0 cron / mail local root exploit. Creates a suid shell after /etc/daily runs.
72d35ea6ab315d9c96c3184343dee252A vulnerability in the ASP (Active Server Pages) ISAPI filter, loaded by default on all NT4 and Windows 2000 server systems (running IIS), can be exploited to remotely execute code of an attackers choice. Example which causes an application error included. Microsoft advisory on this vulnerability here.
4cdf305e59b0d7ba7de3156cc1e0c3c2Xtell from the Debian Linux distribution is a network messaging client for sending messages to users on different computers. Xtell 2.6.1 with at least 3 remote buffer overflows, symlink bug, ".." directory traversal, file race condition, and more. Exploit spawns a shell on port 12321. Tested against Red Hat 7.2, 7.1; Debian Potato.
1cafde97c61ae5070ffa7332f1bba3eaLogWatch 2.1.1 is a part of the Red Hat Linux 7.2 distribution, enabled by default and daily run by the cron daemon. On a system running LogWatch, a local user is able to gain unauthorized root access, due to a race condition during the temporary directory creation.
26509d094a11d67a23e651d2e6fd95a6Icecast v1.3.11 and below remote root exploit for linux/x86. Binds a shell to port 30464. Tested against SuSE 7.2, Debian 2.2r2, and Slackware 8.0.
30658aa7461384b8a294cfc3db8fab5aGeorgi Guninski security advisory #53, 2002 - Two serious security vulnerabilities have been found in Microsoft Office XP. It is possible to embed active content (object + script) in HTML mail which is triggered if the user replies to or forwards mail. In addition, a bug in the Host() function of the spreadsheet allows creating files with arbitrary names and their content may be specified to some extent at which is sufficient to place an executable file (.hta) in user's startup directory which may lead to taking full control over user's computer.
2fbb5a730b6516363c61c5ba49238bcb
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed