Packet Storm new exploits for September, 2004.
2fb304d87dca78c323690298ac9d1a9eLocal exploit for flc versions 1.0.4 and below. Note that flc is not setuid by default and this is completely proof of concept. Tested on Slackware 10.0.
6bde4a3aa0db275b740ec679ab535911Remote denial of service proof of concept exploit that makes use of a buffer overflow in Mdaemon SMTP server version 6.5.1.
c739d6439f26297b8ad85526974ad8abRemote proof of concept exploit for MDaemon IMAP server version 6.5.1 that makes use of an overflow in the LIST command.
70e53f1694ce2dc74788bb19d73ba65eBoth aspWebCalendar and aspWebAlbum are susceptible to SQL injection attacks.
07b2490102b9e85da521cac1613b0434Proof of concept exploit ActivePost Standard versions 3.1 and below that makes use of a denial of service flaw.
81fde4a9ca937dcd9ff4d85f145b658fLocal root exploit that makes use of a buffer overflow in the Software Distributor utilities for HP-UX.
bf7861c01af82d7529cd185de3d067c3Local format string exploit for /usr/sbin/ping under HP-UX.
7e1d1355b210a0d35793c8ab4027be3eLocal format string exploit for /usr/bin/cu under HP-UX.
b748cf28bffa5f4f981fde36ce42112cGDI+ JPEG remote exploit that is a modified version of the FoToZ exploit that has reverse connect-back functionality as well as a bind feature that will work with all NT based OSes. This even-moreso enhanced version also has the ability add a user to the administrative group and can perform a file download.
f7f34642b20f482a8ce7f619bb239501Microsoft Windows JPEG GDI+ Overflow Download Shellcoded exploit.
aa804f40ffe756a77f4906e51432550eGDI+ JPEG remote exploit that is a modified version of the FoToZ exploit that has reverse connect-back functionality as well as a bind feature that will work with all NT based OSes.
f782b4f39d2b36dae9a9c07dd5d1f11eMicrosoft Windows proof of concept JPEG GDI+ overflow shellcoded exploit that launches a local cmd.exe.
fbed06712fd1e70c91a66c5074f84768GNU sharutils versions 4.2.1 and below local format string vulnerability proof of concept exploit.
9ecf1cbfab55330974d86f8b8bb291eaDenial of service exploit for PopMessenger versions 1.60 that makes use of a flaw when handling dialog boxes in relation to illegal characters.
fa8e6ccb5da245d2006d941cb65672f3Emulive Server4 Commerce Edition Build 7560 suffers from a denial of service vulnerability and allows for unauthorized administrative access due to insufficient input verification.
473a1647cd41c7d4d3c4eb2f29e8aa3dProof of concept local exploit that creates a jpeg image to test for the buffer overrun vulnerability discovered under Microsoft Windows. Shellcode and valid addresses have been removed.
78666a3a509861cea8ca1d0780d0d134Remote denial of service exploit for Lords of the Realm III versions 1.01 and below that will crash the server.
bb718b4f3b9b9ef2ccf38c6c95124664Mambo versions 4.5 and below are susceptible to cross site scripting and remote command execution flaws.
28348285c00be6936bce480a3500a65cThe dupescan binary from glFTPd versions 2.00RC3 and below suffers from a stack overflow that can be exploited locally. Full exploit included.
373e7c82d4e8791105b347c2dc1e2f45Local exploit for sudo version 1.6.8p1 that makes use of a flaw in sudoedit.
fdc1b829ba7147a4d81881f9024a77e2Mambo versions 4.5.1 and below are susceptible to a SQL injection vulnerability.
283ff13906e0284c2fd5d25332a7eca4ZyXEL Prestige 650HW-31 and 650R-11 DSL Router denial of service exploit.
4ddeb67d399010a73d714184f015d6b1RsyncX version 2.1, the frontend for rsync on OS X, fails to drop a group id of wheel and allows for arbitrary program execution.
aeee8859225c9e39d64b96750688797aRemote denial of service exploit for Pigeon versions 3.02.0143 and below.
c3f7120052e9f64d8c48787b8d6bbbb7
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed