Security vulnerability in OmniHTTPd Web Servers allows remote attacker to execute denial fo service attacks by filling the server hard drive. Exploit description included. Recommended fix included.
2e1b7f67dff2f1cc9ad27eff6d7c74fcDenial of service exploit code (modified newtear.c) that sends lots of fragmented UDP packets. Crashes OpenBSD 2.3 and 2.4.
5ae2338313add43e6524b781d26f1b33Win32 port of exploit code for Microsoft Windows 2000 FTP server (and many others too!) PASV vulnerability that allows malicious attacker to 'hijack' your connection and steal the files you attempt to download. No vendor fix.
a4ca63230e0ff81c2376b05af0a33007Linux Red Hat 6.0 /dev/hd[abcd] CD-ROM permissions are world readable, along with several other /dev/* programs.
e7b0f234efa0234fdd75999df3de71d3Linux RedHat 6.0 contains a /dev/pts permissions bug that can be exploited by local users if other users are using X-windows. Denial of service attacks, and more possible. Exploit description included.
f3d5ecb6b4e49cd43537a304ca2401a4Possible security hole in the 'su' program shipped with Red Hat allows unprivileged user to gain superuser access.
363be86959b74a357192ff15a115fef6ActivePerl v516 and earlier for Windows IIS leave the server vulnerable to denial of service attacks. Exploit description included.
57ee4e95363a4c81d5194c6b2ae7d2a9Security hole, due to improper implementation of pgp, exists in afio ('afio -P pgp') pgp encrypted archives that renders the encryption useless and the archives easily accessible by anybody.
e544e1deb0387291acf20768837593deSecurity hole in AOL's AIM v2.0 (latest release) allows remote attacker to get AIM user IP address. No more anonymity on AOL?
a54fb88771e842f89bd0391310575e99The actual Brain File used by Retina to uncover the IIS4 URL buffer overflow.
56d9bd9decb9ceb77393b821cd6651d2The Broker FTP Server v3.0 for Windows NT allows remote attacker to climb directory tree and view any files on system. No fix available.
3437ba4e86b9af19242f3ddf4edd0a66Excellent, detailed description of how to exploit cable modem security flaws and effectively hijack IP addresses.
369c8d7e3eaa2e7218e08bdbadb24266Security hole in the e-commerce software used by CDNow! allows anybody to access any user account, view account details, and place orders.
93de88528094942e6d9dfe75965b892fREBOL-based cgi vulnerability scanner. 70 remote cgi holes.
73fc77e0a5784a939f82cccfa1f9f2aaCGI scanner v1.51.11 is a program that scans remote hosts for over 70 common CGI security holes.
97c2fb3081d9b819dac36b31594db503Cisco 12000 series Gigabit Switch Routers running certain versions of Cisco IOS software forward unauthorized traffic due to an error encountered while processing the established keyword in an access-list statement. The resulting vulnerability could be exploited to circumvent a site's security policy. Vendor fixes available.
07e2b0a86f7e465ab5c63641b948f60aExploit code for C-Mail SMTP Server remote buffer overflow that allows malicious attacker to execute arbitrary code remotely.
ba765ac915c775651f2f7df65c488e24Security vulnerability in the /usr/dt/bin/dtlogin program in Compaq's Tru64/DIGITAL UNIX software, under certain circumstances, allows user to gain unauthorized access as superuser. Vendor patch information included.
822887b1b7b7690aaf204baf0577ea12Security hole in Windows NT 4 web servers running IIS allows remote attacker to execute arbitrary code. Detailed exploit description, four exploit scripts (2 perl, 2 C), VB app fix, Microsoft advisory, CERT advisory, more.
6c6a426509d8785a6ee08bb7a8ba82f0Complete package of the eEye NT4+IIS4 URL buffer overflow remote exploit advisory and code. Includes: retina.vs.iis4-round2.txt, retina.vs.iis4-round2-the.brain.txt, retina.vs.iis4-round2-the.exploit.txt, brain.ini, iishack.asm, iishack.exe, ncx.exe, ncx99.exe.
d49298a0e3ebc80e3fcf01b8cc71159f
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed