A basic backdoor program, but with a couple of neat features that "secure" the backdoor from being widely misused.
b5a5a5086575a9ed0afcdcd30a3641b9Security hole in the pop2 daemon packaged with imap-4.4 and earlier releases allows remote attacker to gain shell access as user 'nobody'. Solution: Upgrade to imap-4.5.
79c0282423763209c154065bcd97cc33Proof of concept exploit code that effectively demonstrates how the time() system call can be faked via procfs on Solaris. Numerous security implications.
1a1e4eb29fe02e777a84e46b7ff2c37eAnother Coldfusion exploit scanner, but this version scans entire subnets and is much faster than other Coldfusion exploit scanners. Excellent platform portability and clean, fresh code.
f948214d64d7f6e085632b4bed8df2a0"Exploiting Windows NT 4 Buffer Overruns - A Case Study: RASMAN.EXE" - excellent paper that details how to exploit Windows NT buffer overflows. Proof of concept exploit code and step-by-step exploit instructions included.
d06653c20673cde252e3250d1f4f7fc6Simple, but useful, code snippet that uses ptrace() to intercept and modify the return value of a system call.
4084b43ee9c23292a4328e4c36d4c6f5May SANS Security Digest Vol.3 Num.5 - the latest issue of the excellent, comprehensive SANS Security Digest, with information regarding Intrusion Detections and security issues and general info for all major operating systems. SANS
d93aaea84a837651d56f02e6fa9aeea9Shockwave v1.2 sends random data to random ports on a remote host at a very fast rate, disconnecting targeted remote hosts from ICQ/IRC servers, lagging remote machines, rendering dialup connections useless.
1c511b0711db6311e7bc539119931976Shockwave v1.1 is a Denial of Service program that sends random data to random ports on a remote host at a very fast rate. For Windows.
d8f37a91d79c756126285ff30b1278aeshowcode is a vulnerability scanner that checks for the Microsoft IIS 4.0 showcode.asp vulnerability. Optionally scans entire subnets.
f8b9721b5a5a52c7ed94583928b93e51Description of SunOS 5.7 rmmount exploit that allows local user to gain root privileges.
cbec665a86fc079b2ea632e1723375ecWhen installed under certain common conditions, a security bug in sshd allows any user to easily gain root access.
cd05935606507c660befa6108638a626Vulnerabilities in Sun Solaris 2.6 SNMP - excellent whitepaper that details security vulnerabilities in Sun's implementation of SNMP, with several exploit descriptions included. One of those "must read" documents for any Sun/Solaris admin.
347d1448b17f2a5fa5c9006c03fce492Brief description of the lpset buffer overflow present in Solaris 2.6 (x86).
c31586e474aa5c722f89a85adc351876Sun Microsystems SunSolve Online knowledge database allows malicious users to access privileged information, such as password files and network configurations, about other customers.
9436839ff07039ef34e73a0c55dc0c1aBuffer overflow in tcsh can potentially result in root compromise.
86e5beb370757118735f00a99262961btmp-racer is a shell script that exploits programs that make insecure uses of /tmp.
731df7d60aa1abab5d6a571be84d5599Another remote/local root exploit for wu-ftpd [12] through [18]. Featured in b4b0 #7, coded by smiler and cossack.
daac405b71bd87ade26592014e801e7aBuffer overflow in SmartDesk WebSuite v2.1 for Windows 98/NT allows remote attacker to execute denial of service attacks, crashing the SDWEBSRV.EXE server.
644f8b18a526d526c976bb5ea88333feExploit code and detailed analysis of the Winhlp32.exe buffer overrun. Source code for Windows NT exploit program included.
41cda4321d72f3e3a96514b39b241777Buffer overflow in the WinAMP Windows sound player allows remote attacker to launch simple denial of service attacks that crash WinAMP.
6cfa9b7be2becd5de5b305a630b7e458Details of the very weak encryption used by Windows applications, and a couple of good tips about ways to increase password security. Probably nothing new here for the veteran NT admin, but well worth reading if you use Win32 at all.
32642046175e7ab0a2a4e414adb564e9Compiled exploit code for Windows NT Winhlp32.exe buffer overrun condition.
4f432d9fd90bb58a296fe3702ca6fabbThe Freedom privacy software by Zero-Knowledge Systems is vulnerable to a practical attack, described by Wei Dai, that reveals the supposedly anonymous routes used by the ZKS Freedom software user. In other words, the use of only link padding (ZKS uses no end-to-end padding) means that ZKS Freedom actually provides no security or privacy at all for the end user.
96b6937617d0bd517615fdc2adcf2a4dNew Denial of Service suite that utilizes Back Orifice servers to launch very effective "spoofed" smurf-like attacks with malformed packets and a very impressive amplification ratio.
cca0a5f21a5f38caa25465ec4c25504a
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed