Explanation of how to exploit the rpc.sadmind bug on Solaris.
be1ae7f11bc82103d3ad0d2ed147e147The Sambar web server version 4.3 Beta 2 is vulnerable to remote buffer overflow. Dos example included.
0b0f8d9b9c0fbc7545614821d17db79dNetscape Navigator/Communicator 4.5 buffer overflow advisory - I recently uncovered a stack based buffer overflow in NN which allowed me to execute arbitrary code. Exploit included. Tested with Netscape Navigator 4.5 using Windows98.
c6ec66586571c4658f296f0917c7aecaMobileunit Security Advisory 001 - Privacy hole in Go Express Search. Disney's Go Express Search operates an http server at port 1234 without authentication. Remote users can submit search queries, and view queries and personal links left by other users. It's possible to access the configuration interface, which can reveal the e-mail address of the user who registered it. Configuration settings can be changed remotely to, for instance, add, remove or alter personal links.
61a93d0708effa508ad832fa0a25d9deLocal / Remote D.o.S vulnerability has been discovered in IMail IMONITOR Server for WinNT Version 5.08. The status.cgi script takes up too much CPU time, if you run status.cgi lots of times, the server will crash.
8dad027ca19cadb9d2e4b31e5a502d5fAll the exploits for 1999!
5293c5d0b60fe0822637d0764a9ffeceExploits for December, 1999.
f63d8750208f8e92694f56bad811125ainitscripts-4.48-1 on RedHat Linux is vulnerable to a race condition. Contains the l0pht advisory on the subject and exploit.
d49eceb74c5c5b656bf226583a51060dThe Savant Web Server V2.0 Win9X / NT / 2K and possibly other versions has a buffer overflow caused by a NULL Character in the parsing Get Command routine.
37c609c30feae7aea4e588a1b42dfc9fA vulnerability in majordomo allows local users to gain elevated privileges.
08313a7afc34d87f11df490205a30f93Wmmon is a popular program for monitoring CPU load and other system utilization. It runs as a dockapp under WindowMaker. The FreeBSD version of this program has a feature that can be trivially exploited to gain group kmem in recent installs, or user root in really old installs. This affects the FreeBSD version because under FreeBSD the program must be installed setgid kmem or setuid root in order to access system load information through the memory devices. The Linux version should not be vulnerable because it reads information through procfs which requires no special privileges.
b69d228fe8a197a8a47d4ebe009e3826Local / Remote D.o.S Attack in CSM Mail Server for Windows 95/NT v.2000.08.A and other older versions. Possibly exploitable.
884e327248c64268b3d38a83f6df6395CamShot is a Windows 95/98/NT web server that serves up web pages containing time stamped images captured from a video camera. The images can be viewed from anywhere on the network with a web browser. UssrLabs found a Local / Remote Buffer overflow, The code that handles GET commands has an unchecked buffer that will allow arbitrary code to be executed if it is overflowed.
d69851af4fe78c129d5c6e50d73308cfUnixware 7 Vulnerability - Any local users can exploit a bug in rtpm to gain "sys" privileges.
dc5157ba332062731fdd37db19b42be8Local / Remote Remote DoS Attack in Rover POP3 Server V1.1 NT From aVirt. Source / Binary for exploit here.
38e52c5c3607f0cd918cfd6604e7b858A vulnerability in IBM's Network Station Manager will allow any local user to gain root privileges.
bf4c29643b28eef63979f695dcd4d707A vulnerability in "/usr/local/bin/pis" on SCO UnixWare will allow any user to create arbitrary files with group "sys" privileges. A full root compromise is then trivial.
e041e1e1fc5536685b28d5c0674b30c9Anyone can gain remote root access to a UnixWare 7.1 system by exploiting a vulnerability in the i2odialogd daemon. This daemon is installed and running by default.
d9923343a1ed25e1dd75174965610b5bRemote exploit for ZBServer 1.5 Pro Edition for Win98/NT. Source code. Binary available here.
65ebf12ae6f7c64fbe4f59b31d967299[w00giving #11] An exploitable buffer overflow was found in ZBServer 1.5 Pro Edition for Win98/NT. The code that handles GET commands has an unchecked buffer that will allow arbitrary code to be executed if it is overflowed. Source / Binary for the exploit available here.
a06e657a5b2fed874e163f0081266eebSeveral holes in the Solaris 2.7 SPARC/x86 dmispd daemon will allow malicious users to do various local and remote DoS attacks and probably more.
ed7830fb4ee741a4dfd0ed31296af515KDE, kmail local email-attachment symlink exploit - possible root comprimise. Kmail older than v1.1.1 is vulnerable.
b6b2c37b23848cdd7510d5f6930ce622Remote DoS attack discovered in DNS Pro 5.7 for Windows NT, caused by over 30 connections to port 53 at the same time.
99df5cc1dd61bba111e3876cea3acb6aw00w00 announcment about an exploitable buffer overflow in the POProxy program shipped with Norton Antivirus 2000 for Windows 95/98/NT/2000.
02888b2839dd145515f5ed61f8e11b6cFive new vulnerabilities have been found in Berkeley Sendmail and 'procmail'.
dabd4becde245509a1de85cc0615ae6e
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed