Proof of concept exploit that will patch an ELF binary to utilize the stack overflow in file 3.39 and below. If someone runs file against said binary, a suid shell is created as /tmp/.sh of that uid. New version works on both Linux and the BSDs .
7d7f9c560785a0ae752cb43a175504baProof of concept exploit that will patch an ELF binary to utilize the stack overflow in file 3.39 and below. If someone runs file against said binary, a suid shell is created as /tmp/.sh of that uid.
b1285b85abea7af08f5c4dc1bf2c4338Zlib gzprintf() proof-of-concept buffer overflow exploit.
d5b1906d63b88374446744f7749febd4Local root exploit utilizing the overflow in XLOCALEDIR under XFree86 Version 4.2.x using xterm. Tested against Slackware 8.1 with kernel version 2.2.25.
c6db6a549211c9f37b33706e6efd1435Packet Storm new exploits for March, 2003.
8de821018c3d03573538a1be238a2355Local exploit that yields gid of games for /usr/bin/toppler. Tested against RedHat 8.0.
3227eb42cffcb5a73535d8935e16bc6cExploit for the win32 Sphere Server .55i from the Ultima Online Server Emulator.
e74b4d13c36b0b4a46576a1bf92939ffExploit for remote administrative access on the freeware Ultima Online server emulator from sphereserver.com. Tested against axissvr 0.13.3.0.
a91fed4ea17cee3ec66f075169cff84eProof of concept exploit that will bind a cmd.exe shell on a given port utilizing the vulnerability in ntdll.dll described in ms03-007.
bde683df66587c96ac1fc655a0bcd706Rs_iis_xpl.pl is a remote exploit for rs_iis.c, a remote IIS exploit. Sets up a web server, and if rs_iis.c is used to attempt an exploit, a shell will be spawned on the attacking host. Tested against FreeBSD 4.7-RELEASE-p7.
666e7e0351c92f9cd0454a234f39b9e9Alexandria versions 2.5 and 2.0, the open-source project management system used by Sourceforge, has multiple vulnerabilities in its PHP scripts. In the upload scripts there is a lack of input validation that allows an attacker to remotely retrieve any files off of the system, such as /etc/passwd. Other vulnerabilities including the sendmessage.php script allowing spammers to make use of it to mask real source identities and various cross site scripting problems exist as well.
53ef53a2cf3fb8f1209246dfd6d1f124CORE Security Technologies Advisory - A vulnerability exists in GNOME's Eye of Gnome versions 2.2.0 and below that is locally exploitable. When EOG is used as a default image viewer, it takes in the image name as a command line argument and in turn can execute arbitrary commands with the privileges of the user attempting to view the image.
b683e87cc57b124ad78cf448c8ab8409Gespuis acts as an irc bouncer and exploits BitchX/Epic clients spawning a bindshell.
3ca5ef2ff1acf701252d9a1695323968Security Corporation Security Advisory [SCSA-012]: The Sambar server default installation has a cgi-bin directory which contains executables that allow remote users to view information regarding the operating system and web server's directory. It also path disclosure and tons of cross site scripting vulnerabilities.
2c0035655e239bc15b151194d7f7a88dNSFOCUS Security Advisory SA2003-01 - The NSFOCUS Security Team has found a buffer overflow vulnerability in Microsoft Windows XP Redirector that can be exploited locally and can allow attackers to crash the system or gain local system privilege by carefully crafted code.
32f822ed02f74b915809f044498b5f9fThe CuteFTP 5.0 client is vulnerable to an overflow in the LIST response. This exploit spawns a fake FTP daemon that will take advantage of an inbound vulnerable client.
2ec2f7ed3b9660b30d8669fe95b5e839Wd.pl is a remote IIS exploit in perl which exploits the bug in ntdll.dll described inms03-007. Tested on Windows 2000 Advanced Server SP3 - Korean language edition.
bc7a10f11c570c05c9270352b83bc6cbNtdll.dll remote IIS exploit which exploits the bug described inms03-007. Attempts to spawn a remote shell.
ad7e1825587e07dd7be6c3a99a53089bOutblaze web based email is vulnerable to user cookie spoofing that will allow an attacker to retrieve a user's password.
e5b6b1ace59084e8b7a607d370416569INetCop Security Advisory #2002-0x82-013 - The Kebi Academy 2001 Web Solution suffers from a basic directory traversal vulnerability which may allow remote attackers to execute code on the server.
170b01b195b33ebb9f6ea136257d9c6bRemote exploit for Intel's PXE (Pre-boot eXecution Environment) daemon on RedHat Linux 8.0.
2f512e5088c11ba8c64b2bfd733a7f06Local exploit for the SUNWlldap library buffer overflow vulnerability on Sun Solaris x86.
61e4ea12099a43481c81da63481e4cc7Remote exploit for Apache + OpenSSL v0.9.6d and below. This exploit is based upon the openssl-too-open exploit by Solar Eclipse and offers more than 130 targets including various flavors of Linux.
b6a3b4dc6f8899a7d85a1f7318d8bce4Remote CGI exploit written in Perl for Cpanel 5 Guestbook. Spawns a bash shell with the uid of the webserver.
b74b98833c694b43c9004d61d7c35c97IS 5.0 / Windows 2000 mass scanner / rooter which spawns a shell from a vulnerable system back over to the machine from where the attack is launched.
f2661e8b34090be5c1ebafa036fe7f79
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed