Exim v4.10 and below local exploit for the Exim MTA which can only be successfully run by the compiled-in "admin user" of Exim. Also tested on v3.55.
f3366b3718e07411077b06e36bcf5883Putty v0.52 and below remote exploit which poses as an ssh daemon and will bind cmd.exe on port 31337 of the victim sshing inbound. Tested against Windows XP and 98SE.
2206764e00e116039f1aa555975291d6Solaris /bin/login remote exploit in perl. Vuln info here.
cd59fb013592a65e59ad3015ba9e7ad9Packet Storm exploits added in the year 2002.
f0066cc261cc0c756fa7c55e478f8821Packet Storm new exploits for December, 2002.
453e3d39455acc5c7122b54181521176Mdaemon v6.0.7 and below remote denial of service exploit in perl. Exploits the bug described in mdaemon-dos.txt.
c95b1b65abc81c62640de36bf94c38c5IBM Websphere 4.0.3 for Windows 2000 Server remote denial of service exploit in perl. Exploits the bug described in websphere.crash.txt.
3c7aacf9698a10ab71781ea6ced694ef/usr/sbin/rpc.mountd Local Exploit tested on Slackware 8.1. Test only - not setuid.
9c5108f6f9cb3decf85a8ce507021c58Linksys BEFSR41 EtherFast Cable/DSL Router remote denial of service exploit in perl.
a4b67b702b4045bae93608c4ba317be6IBM Web Traffic Express Caching Proxy Server v3.6 and 4.x (bundled with IBM WebSphere Edge Server v2.0) remote denial of service exploit in perl. Exploits the bug described in R7-0007.txt.
373793432a81107beaf59a83fb7bb138DSINet Security Advisory DSINET-SA-02-01 - Web-CyrAdm v0.5.2 and below contains a remote denial of service vulnerability.
9e05f4bff7b36055b12b943053e7f744Efs_local.c is a stack based local root buffer overflow exploit for Linux/x86. Tested against Gentoo Linux 1.4-rc1, RedHat Linux 8.0, and Slackware Linux 8.0 and 8.1.
f29042b9530123b03028e704e90234b6Local proof of concept for non-setuid binary /bin/sfxload which overflows the $HOME environment variable. Tested on Red Hat 7.0 and 7.2. Other setuid programs may call this binary, leading to privilege escalation.
386bbe466f4dc4f6b60932f86f505f57Cups-1.1.17 and below remote denial of service exploit. Tested against Red Hat Linux 7.0 and 7.3.
33fa36c03919bbd5f1ee1380d2894ad8Putty v0.52 and below remote exploit which is a fake ssh server to exploit connecting putty clients. Downloads and executes an attacker supplied URL. Tested on linux and Cygwin against putty 0.52 running on WinXP and Win2000.
88a62418d110db66cf4e541618555d63Efshit is an exploit for the efstool vulnerability. Unlike other exploits for this vulnerability, Efshit is robust, has a wide range of attack options, incorporates brute forcing, and actually works.
c86684fda6ee684ff958d8fa296443cfRemote buffer overflow exploit for the melange chat server v1.10. Tested on SuSE 8.0 and Redhat 7.3.
eb0643524b95dd0331af7784ffa7fcf1Krb 4-1.2 kadmind remote stack overflow remote root exploit for FreeBSD 4.x, BSD/OS 4.2, SUSE 8.0, OpenBSD 2.9 and 3.0, Slackware 8.0, and OpenWall 0.10.
8552bda183d078984fb3df592e0d2a7cFake Freebsd-4.6 remote telnetd setenv() heap overflow exploit which is very similar to 7350854.c.
434ec5141e899879ea5f80edadf2238eCyrus-imap v2.1.10 remote exploit. Tested against Slackware linux v8.0 with glibc-2.2.3 and kernel 2.4.19. Localhost IP is hard coded.
afbe9453571139bd2ac3ca8601630a09Tcpdump v3.6.3 remote root exploit. Tested against FreeBSD-4.6.
dd364284b9e6dca09cb5ff4e7d13c6b5Local /sbin/ifenslave buffer overflow exploit tested on Redhat 8.0.
da70c26f960c310b74891c2f214de527WU-IMAP v2000.287 linux/x86 remote root exploit. Tested against Debian 2.2. This code is also known as 7350owex.c.
8d14482320cf3f9273391a43e04ffa6b0x09wule.c is a Linux/x86 wu-ftpd v2.6.2(1) remote root exploit. Tested against RedHat 7.2 running wu-ftpd-2.6.2(1) on the default install. Note: This exploit is reported to be old and does not work.
a7b2bf13c624a3f76c3a4f0b91a59c30Cobalt RaQ 4 and possibly others overflow.cgi remote root exploit which takes advantage of a flaw in the Security Hardening Package.
40a09252eaa231589406cc33f8cef2da
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed