Remote denial of service exploit for wzdftpd FTP server version 0.1rc5 that sends a single CRLF sequence at login causing an Unhandled exception.
e7efd476b7117d05c238ecce4243452ePacket Storm new exploits for September, 2003.
59467f6e73e9c68cdd7add8c6a4a0c31GuppY versions 2.4p1 and below are susceptible to cross site scripting attacks.
d9b975da70fae430922d7527eeb5c876Version three of this paper discussing more shatter attacks that are possible using progress bars. Related information available here.
1135794bd92aa08169c33e449387a87cGeeklog versions 2.x and below are susceptible to cross site scripting vulnerabilities and various SQL injection attacks.
5e292ac0ff2be42ecabd916e479a3305Remote exploit for Cfengine versions 2.-2.0.3 that makes use of a stack overflow discussed here. Binds a shell to port 26112. Tested against RedHat.
cc32ba54fe67a178fcd9b423342f3643Local root exploit for IBM DB2 Universal Database version 7.2 for Linux/s390 which makes use of the db2licm binary that is setuid by default.
66f6d20f27d150e451308763e3f84b2fExploit that causes a denial of service against the SMC2404WBR BarricadeT Turbo 11/22 Mbps wireless cable/dsl broadband router by sending random UDP packets to multiple ports.
cd13536a95ff8f037417abe72891e053Remote exploit for Cfengine versions 2.-2.0.3 that makes use of a stack overflow discussed here. Tested against FreeBSD 4.8-RELEASE. Binds a shell to port 45295.
bec7a5ae73b4eb63bb76d5151e18f80bRemote exploit for atphttpd version 0.4b and below on Linux x86 that binds a shell to port 65535. Tested against Debian 3.0 and RedHat 8.0.
12201535f967d9970d38c353615b22a4MyServer 0.4.3 is susceptible to a directory traversal attack that allows access to files and directories outside of the web root.
b0cc267b208678ec8492add73805049fRemote MIRC proof of concept exploit that makes use of an overflow in the USERHOST reply to the mirc-client.
0c6308f424c2487217ea6a89f381c512Proof of concept exploit for /usr/sbin/chat on RedHat Linux 7.3. Note: chat is not setuid by default on most installations.
824304839459bd776fac887b83886e13WebWeaver version 1.06 and below allows for anonymous surfing of the server if the Host field is set excessively long. It is also susceptible to various denial of services attacks.
7ab029ca9b5cfba5799d80bcd08c6871602PRO LanSuite 2003 for Windows is vulnerable to sensitive information disclosure, logs freely being accessible to any remote attacker, the ability to read any file on the server, and directory traversal attacks.
3f7b94da5c8b74ee04a3d3dcc11918d5The Savant Web Server version 3.1 for Windows 95, 98, ME, NT, and 2000 is remotely vulnerable to a denial of service condition when various malformed GET requests are passed to the server.
1b6abe30608b8908694266f9448c5acfmpg123 v0.59r and 0.59s remote client-side heap corruption exploit that makes use of the overflow found in the readstring() function of httpget.c which does not limit the amount of data written to a buffer.
578765a85ce61b5cbc41aa2541e2d7dcRemote exploit for lsh 1.4.x that makes use of a boundary error in read_line.c when checking for errors. Spawns a bindshell on port 45295.
60a9d09b21839048217308ccd3cf3dd4A detailed analysis and exploitation of the RPC Long Filename heap overflow found in the CoGetInstanceFromFile API that was originally discovered by NSFOCUS.
0c78799bf2460199a346ad31c4598e7dRemote exploit for netris version 0.5 on RedHat 8.0 that makes use of a buffer overflow vulnerability where a client connecting to an untrusted netris server could be sent an unusually long data packet, which would be copied into a fixed-length buffer without bounds checking.
b41e303ebc81036b1621bb7f2266048bLocal root exploit for hztty 2.0 that makes use of the buffer overflows discovered by Jens Steube.
1d319b945284869c7bd86d5af02d4d0eRemote exploit for Solaris that only requires a single UDP packet to the sadmind service to execute commands.
866bc503fccd155f0a660998fd1ee863The Plug and Play Web Server version 1.0002c is susceptible to multiple buffer overflow attacks that cause the server to crash.
3ad96e586456835afc357813677d3683The Plug and Play Web Server version 1.0002c is susceptible to multiple directory traversal attacks allowing a remote attacker to gain access to internal system files.
0aa35da7a4f31656a6ae8a61cb6f88aeRemote Pine exploit for versions 4.56 and below. Makes use of a vulnerability discussed here. Binds a shell to port 10000. Tested against RedHat Linux 7.0.
2b5be512d212c9827dc8c6867ec28473
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed