Massrooter takes advantage of remote vulnerabilities in bind, PHP, lpd, rpc, wuftpd, null httpd, telnet, mail, ssl, and ssh on multiple systems.
f104041ba08694e3bfdd9e511715d7c5Packet Storm new exploits for October, 2002.
47543d2f228312316b7dee8cf60d6850Sambar Webserver v5.1 for Windows Pbcgi.exe remote denial of service exploit in perl.
fd9bc557a02bc20a56871b03f3fb968bOracle9iAS Web Cache Denial of Service exploit in perl, as described in Atstake advisory a102802-1.
5587607f8f49ffd172b5844f93e01670Solarhell is a remote root exploit shell script which abuses the Solaris /bin/login bug by using telnet. Solaris 2.6, 2.7 and 2.8 (7.0 and 8.0) is vulnerable. More information available here.
750b7545abb4813fae07fb331e4b0c43Solarwinds TFTP server v5.0.55 and below remote denial of service exploit in perl.
940a91e472909d558a7cf5bdf8d5360bVirgil CGI Scanner by Mark Ruef has a vulnerability where user input is trusted without being sanitized and is actually populating bash variables which end up getting executed. Simple exploit examples are included.
db03d67f3f01a9badd1d398868b94862Microsoft Internet Explorer versions 5.5 and 6.0 are susceptible to 9 attacks involving object caching. When communicating between windows, security checks ensure that both pages are in the same security zone and on the same domain. These crucial security checks wrongly assume that certain methods and objects are only going to be called through their respective window. This assumption enables some cached methods and objects to provide interoperability between otherwise separated documents.
1f5a5fed0d2cb400606aef190e3eef9fTwo modified versions of the slapper worm exploit made more user-friendly with simple interaction to define what host and port will be hit with the exploit.
4c26c877c1f0530353bfc2ef74331c67Zone-Labs ZoneAlarm Pro 3.1.291 and 3.0 remote denial of service exploit which consumes all available CPU via synflooding. To fix, update to the newest zonealarm and run windows update.
820d0cd440c7a6ca25f87098cfb94cd5AN HTTPD v1.30 to 1.41c remote heap overflow exploit written in java for Japanese Windows 2000 Pro (SP2).
1f1b01d7ab128a508febb5ff2176e78aSendmail 8.11.x linux/x86 local root exploit. Uses gdb to find offsets.
2fe9594bfd8aa84b38546e5e85f92b8aWeb602 webserver remote denial of service exploit which uses the com1 windows flaw.
073f82729fa7fdf2640bda249a4d2743Web602 (Czech version) directory tree exploit.
c3828ca76731be0eeaafc1af5b545a8dPlanetDNS v1.14 remote buffer overflow exploit which sends 6K of data to port 80 of PlanetWeb.
9350db07af8a58ea99c7d027033e8a96Apache Tomcat 3.3 and 4.0.4 for Windows NT and 2000 remote denial of service exploit. Uses device names like AUX, LPT1, CON, and PRN to crash the server.
d350ab2f1f17570561020752a2d24d68Kitkat.pl exploits a directory traversal bug in webMathematica v1.0.0 and 1.0.0.1.
bf6c938417e1bb5537a706e1f973e070GetAd.c is a new Windows 2000 local exploit which gains Local System rights on Win2k SP1-3 be taking advantage of the NetDDE window of winlogon with a shatter attack. Binaries available here.
5aaf16bbab2ab14dcbff5aa6879af839Internet Explorer 5.5 SP2 and Internet Explorer 6 allow the oIFrameElement.Document reference to return a document with no security restrictions, allowing remote attackers to steal cookies from any site, gain access to content in sites (forging content), read local files and execute arbitrary programs on the client's machine. Exploit HTML included which reads the client's google.com cookie. IE6 SP1 is not affected. Four demonstration exploits are available here.
c4e9108a3cc65e6a2d639324e9ba64d3Remote denial of service exploit that can be used against systems running Apache Tomcat (versions prior to 4.1.10) combined with IIS.
309ea638b470473176e87002adebaf66This is an exploit for AnalogX Proxy 4.10 configurations running on Windows 2000 Pro (SP2). The exploit binds a shell to port 8008 TCP.
c262c0d90d724ec4b9601631e027d683Mod_ssl off-by-one bug exploitation toolkit for OpenBSD. Creates a malicious .htaccess file which replaces the apache server process with an included HTTP server.
01386026a91e1adfdfa0829e0c211b3fRemote exploit for the Eudora v5.x boundary buffer overflow. Works against Eudora v5.1 and 5.1.1 and is independent of Windows version.
796d31fc38fbdbd23f050a46fee29a69Windows Help Buffer Overflow proof of concept remote exploit in Visual Basic 6. Starts a cmd.exe shell on Microsoft Windows XP Kernel Version 5.1.2600.0. Includes source.
3e134633e8a21051ff9f3c15d47c266dLinux Traceroute v1.4a5 and below local root exploit which takes advantage of a malloc chunk vulnerability. Uses gdb to find offsets.
b8b7f19d1870423e791ef80cef6f50a7
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed