ignorance isn't always an option
Showing 1 - 13 of 13 RSS Feed

Files from Marco van Berkum

First Active2001-01-06
Last Active2011-10-12
ABUS TVIP 11550/21550 File Read / File Upload / Command Execution
Posted Oct 12, 2011
Authored by Marco van Berkum

ABUS TVIP 11550/21550 suffers from arbitrary file read, file upload, and command execution vulnerabilities.

tags | exploit, arbitrary, vulnerability, file upload
MD5 | df7984b9951e899b6237afad1aec2dd2
Download | Favorite | Comments (0)
limehack.pl
Posted Mar 27, 2005
Authored by Marco van Berkum | Site jammerjoh.xs4all.nl

Limewire directory traversal exploit. Exploits bug in versions 4.1.2 - 4.5.6, inclusive.

tags | exploit
MD5 | dfa8a4ee0a01e7310d4c9ee1e46e77c3
Download | Favorite | Comments (0)
mailmgr.txt
Posted Feb 13, 2004
Authored by Marco van Berkum

mailmgr version 1.2.3 is vulnerable to symlink attacks. If the utility is run as root, any file on the system can be overwritten.

tags | advisory, root
MD5 | a0f7ca82945ecb9df067978cd8d70653
Download | Favorite | Comments (0)
majordomo_leakage.txt
Posted Feb 4, 2003
Authored by Marco van Berkum, Jakub Klausa

Majordomo, the popular mailing list utility, defaults which_access to open in the configuration file. A list of email accounts for a mailing list can be compromised by this de-facto setting by sending which @. Patch included.

tags | exploit
MD5 | 7c5a6d5fb943b636027c61c62cd94d09
Download | Favorite | Comments (0)
hackbot-2.15.tgz
Posted Nov 17, 2002
Authored by Marco van Berkum | Site ws.obit.nl

Hackbot v2.15 is an host exploration tool and banner grabber. It scans hosts for FTP banners, SSH banners, Open Relays, EXPN and VRFY options, more than 200 common CGI vulnerabilities and common indexable directories, NT unicode vulnerabilities and NT nimda infections.

Changes: Added an option to change the loglevel. Hackbot has been made more silent by default.
tags | tool, cgi, scanner, vulnerability
systems | unix
MD5 | 5202846849c754e7106f1b308cfcde34
Download | Favorite | Comments (0)
hackbot-2.14.tgz
Posted Oct 19, 2002
Authored by Marco van Berkum | Site ws.obit.nl

Hackbot v2.14 is an host exploration tool and banner grabber. It scans hosts for FTP banners, SSH banners, Open Relays, EXPN and VRFY options, more than 200 common CGI vulnerabilities and common indexable directories, NT unicode vulnerabilities and NT nimda infections.

tags | tool, cgi, scanner, vulnerability
systems | unix
MD5 | 1cdb72bd7977be5a7e1858443949959a
Download | Favorite | Comments (0)
groupwise.6.0.1.txt
Posted Jul 30, 2002
Authored by Marco van Berkum | Site ws.obit.nl

Novell GroupWise Internet Agent 6.0.1 sp1 contains a buffer overflow in the smtp service which can be exploited over port 25. Tested on Novell NetWare 5.1 sp3. Fix available here.

tags | overflow
MD5 | 83dcb3c7ed6da3d4ebe08ecd420de893
Download | Favorite | Comments (0)
script.command.txt
Posted Dec 18, 2001
Authored by Marco van Berkum | Site ws.obit.nl

The script command overwrites hardlinks named typescript in the current directory.

tags | exploit
MD5 | e546ea507ca071abe3463d61624074c1
Download | Favorite | Comments (0)
majordomo.1.94.4.txt
Posted Sep 19, 2001
Authored by Marco van Berkum | Site ws.obit.nl

Majordomo v1.94.4 contains vulnerabilities which allow local users to obtain a uid=majordomo shell.

tags | exploit, shell, local, vulnerability
MD5 | f6097b21c3e3084814496027e4c89aad
Download | Favorite | Comments (0)
xlock.txt
Posted Apr 19, 2001
Authored by Marco van Berkum

Removing the SUID bit from xlock causes enter to work as a password to unlock the screen for all users except root. With no SUID bit it can no longer read /etc/shadow, creating a blank .xlockrc, causing enter to be a valid password.

tags | exploit, root
MD5 | f33096b4c3b72a8ca3e83beb11d3f1e5
Download | Favorite | Comments (0)
whois.pl
Posted Jan 13, 2001
Authored by Marco van Berkum

Whois.pl is a remote exploit for Fastgraf's whois.cgi perl script.

tags | exploit, remote, cgi, perl
MD5 | cab6f0b2ef5ed6f5bb75170b42fd55ac
Download | Favorite | Comments (0)
tar-symlink.txt
Posted Jan 8, 2001
Authored by Marco van Berkum | Site obit.nl

GNU tar follows symlinks blindly, a problem if you untar as root.

tags | exploit, root
MD5 | 600ae24fbc5281fc8a5b4b3c636d3903
Download | Favorite | Comments (0)
whois.cgi.txt
Posted Jan 6, 2001
Authored by Marco van Berkum

Fastgraf's whois.cgi perl script lacks meta character checking, allowing remote users to execute arbitrary commands as uid of the webserver.

tags | exploit, remote, arbitrary, cgi, perl
MD5 | ea926901a6a2bcf609f547f5d7968695
Download | Favorite | Comments (0)
Page 1 of 1
Back1Next

File Archive:

May 2012

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    37 Files
  • 2
    May 2nd
    53 Files
  • 3
    May 3rd
    33 Files
  • 4
    May 4th
    4 Files
  • 5
    May 5th
    10 Files
  • 6
    May 6th
    17 Files
  • 7
    May 7th
    19 Files
  • 8
    May 8th
    36 Files
  • 9
    May 9th
    34 Files
  • 10
    May 10th
    35 Files
  • 11
    May 11th
    20 Files
  • 12
    May 12th
    18 Files
  • 13
    May 13th
    11 Files
  • 14
    May 14th
    27 Files
  • 15
    May 15th
    58 Files
  • 16
    May 16th
    54 Files
  • 17
    May 17th
    25 Files
  • 18
    May 18th
    53 Files
  • 19
    May 19th
    9 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    25 Files
  • 22
    May 22nd
    32 Files
  • 23
    May 23rd
    35 Files
  • 24
    May 24th
    26 Files
  • 25
    May 25th
    25 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2012 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Advertising
Become an Advertiser
Hosting By
Rokabear
Global Mirror List
close