Dwarf.cpp is an unreleased exploit for Troll ftpd, a supposedly secure ftp server.
dfde6fefaa82e2886f43fe7bffa5e4a0OpenBSD v2.6 and 2.7 ftpd remote root exploit.
851ecd7cde4ff528736a6f54e5ea9649Koules v1.4 (svgalib version) local root exploit.
c6e905f5b258f2192813d0e28c25f3f2Inebriation.c is a local linux/x86 /bin/su + locale libc functions exploit which has been written in response to previous unreliable exploits for this vulnerability. It includes a perl wrapper to find the correct offset, can use GOT overwrites to evade stackguard, stackshield, and libsafe, uses clean overflow string creation, and has documentation and several other usability improvements.
a4ea18e81fddb4c040951cf4232de56aDarxite Daemon v0.4 password authentication buffer overflow exploit. Spawns a remote shell.
a21553e6fc2776ec55eae37041678c81The wais.pl CGI written by Tony Sanders provides means to access the waisq WAIS client via the webserver. Waisq contains buffer overflows allowing remote code execution which can be exploited via wais.pl. In addition, files owned by nobody on the webserver can be overwritten with arbitrary content. Includes exploit for Linux/x86.
795f85e6d55de6d0878a8c35c77da7a9SMEGMA is an engine for generating garbled shellcode using several encryption mechanisms and making it self-decryptable by putting an Intel x86 machine-code decryptor in front of it. It uses a hand-written C lexer to grab the shellcode from sourcefiles and try and identify it. Use SMEGMA to modify shellcode in which characters get ruined by regular expressions (often seen in CGI binaries, web applications and webservers).
651b6173fc24873f8ad4e5f846fba666SMEGMA is an engine for generating garbled shellcode using several encryption mechanisms and making it self-decryptable by putting an Intel x86 machine-code decryptor in front of it. It uses a hand-written C lexer to grab the shellcode from sourcefiles and try and identify it. Use SMEGMA to modify shellcode in which characters get ruined by regular expressions (often seen in CGI binaries, web applications and webservers).
42981bfacdfe3138a8734be57bbed972rip.c is a local exploit for the dump package version 0.3-14 and 0.4b13 (restore binary). Tested against linux, gives a UID=0 shell on 2.2.16, GID=0 on 2.2.15 and below.
72ac3db000356b4d9dbb3ddbe8d83541filterape.c exploits a new elm buffer overflow to get EGID mail on Slackware.
f86550706037b74cbfed63994fc2c787shellhit.c - TESO Hellkit contains a buffer overflow - exploit is just meant to be funny. To all scriptkiddies: You won't get root from this, go and find something more useful.
6d6584ebc64b16234ea4a4c96a84f24afdmount local root exploit - tested on Slackware 4.0. Must be in the floppy group. Modified from last version to work on Slackware 7.
73ba3d26ba0ca02c1bd711b6e11af39dThis exploit spawns an EGID mail shell on the default Slackware 4 install.
9103ea3b4c415060fa4ec20011b06106Passive Connection Shellcode. Source is well documented.
966774e7b1d15bd8e89934220bcd309dNewDSN.exe/CTGuestB.idc/Details.idc remote NT exploit.
7ff862fd59a7fc44459ffedd4d85e4e8fdmount local root exploit - tested on Slackware 4.0. Must be in the floppy group.
d2464a783b9ec3c30fce40f27d993b78CERN 3.0A Heap overflow advisory - There is a heap overflow that wastes memory space in the CERN/3.0A webserver. Close to 50000 bytes of the heap will be ruined! DoS example included.
31df937b64c0ddb4f5431cc96583b000+++ATH0 Attack - This program simply implements a spoofable version of the +++ATH0 modem bug attack. Contains modem patch string too.
4fb39402029cfc1819ae2cb531e5dac4
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed