BSD (telnetd) Remote Root Exploit

No description provided by source. / 7350854 - x86/bsd telnetd remote root exploit TESO CONFIDENTIAL - SOURCE MATERIALS This is unpublished proprietary source code of TESO Security. The contents of these coded instructions, statements and computer programs may not be disclosed to third parties,...

Software Enumeration (SSH)

Nessus was able to list the software installed on the remote host by calling the appropriate command e.g., 'rpm -qa' on RPM-based Linux distributions, qpkg, dpkg, etc.. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

Multiple buffer-overflows in libmusicbrainz 2.1.2

Luigi Auriemma Application: libmusicbrainz http://musicbrainz.org/doc/libmusicbrainz Versions: = 2.1.2 and = SVN 8406 current SVN Platforms: Windows, nix, BSD, Mac and others Bugs: A buffer-overflow in MBHttp::Download B various buffer-overflows in rdfparse.c Exploitation: remote Date: 13 Aug 200...

CVE-2006-4046

Open Cubic Player is affected by CVE-2006-4046. The issue consists of multiple stack-based buffer overflows in Open Cubic Player versions 2.6.0pre6 and earlier on Windows, and 0.1.10_rc5 and earlier on Linux/BSD, exploitable by processing crafted files: large .S3M via mpLoadS3M, crafted .IT via i...

CVE-2006-4046

Multiple stack-based buffer overflows in Open Cubic Player 2.6.0pre6 and earlier for Windows, and 0.1.10rc5 and earlier on Linux/BSD, allow remote attackers to execute arbitrary code via 1 a large .S3M file handled by the mpLoadS3M function, 2 a crafted .IT file handled by the...

CVE-2006-4046

Multiple stack-based buffer overflows in Open Cubic Player 2.6.0pre6 and earlier for Windows, and 0.1.10rc5 and earlier on Linux/BSD, allow remote attackers to execute arbitrary code via 1 a large .S3M file handled by the mpLoadS3M function, 2 a crafted .IT file handled by the...

Festalon Heap Corruption

Luigi Auriemma Application: Festalon http://projects.raphnet.net/festalon Versions: = 0.5.5 and = 0.5.0 Platforms: Windows, nix, BSD, Winamp and XMMS plugin Bug: heap corruption in FESTAHESLoad Exploitation: local Date: 06 Aug 2006 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.o...

Multiple vulnerabilities in UFO2000 svn 1057

Luigi Auriemma Application: UFO2000 http://ufo2000.sourceforge.net Versions: = SVN 1057 Platforms: Windows, nix, BSD, Mac and more Bugs: A buffer-overflow in recvaddunit B invalid memory access in decodestringmap C possible code execution through arrays D SQL injection E mapdata global buffer...

bsd/x86 - setuid/execve shellcode 30 bytes

bsd/x86 setuid/execve shellcode 30 bytes. Shellcode exploit for bsdx86 platform / $Id: setuid-bsd.c,v 1.6 2004/06/02 12:22:30 raptor Exp $ setuid-bsd.c - setuid/execve shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi Short setuid0 and /bin/sh execve shellcode based on esdee's code. Tested on...

bsd/x86 - setuid/portbind shellcode 94 bytes

bsd/x86 setuid/portbind shellcode 94 bytes. Shellcode exploit for bsdx86 platform / $Id: portbind-bsd.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ portbind-bsd.c - setuid/portbind shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi Simple portbind shellcode that bind's a setuid0 shell on port 31337/t...

Format string bug in Sparklet 0.9.4try3

Luigi Auriemma Application: Sparklet http://sparklet.sourceforge.net Versions: = 0.9.4try3 Platforms: Windows, nix, BSD and more Bug: format string in client's display Exploitation: remote, versus clients Date: 06 Jul 2006 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

Various heap and stack overflow bugs in AdPlug library 2.0 (CVS 04 Jul 2006)

Luigi Auriemma Application: AdPlug http://adplug.sourceforge.net Versions: = 2.0 and CVS = 04 Jul 2006 Platforms: Windows, DOS, nix, BSD and more Bugs: A heap overflow in the unpacking of CFF files B heap overflow in the unpacking of MTK files C heap overflow in the unpacking of DMO files D...

[Full-disclosure] Multiple vulnerabilities in Outgun 1.0.3 bot 2

Luigi Auriemma Application: Outgun http://koti.mbnet.fi/outgun/ Versions: = 1.0.3 bot 2 Platforms: Windows, nix, BSD and more Bugs: A datafilerequest buffer-overflow B exception with big data C invalid memory access in messages handling D harmless buffer-overflow on a global variable in...

[Full-disclosure] Socket unreachable in GNUnet rev 2780

Luigi Auriemma Application: GNUnet http://www.gnunet.org Versions: = 0.7.0d and revision 2780 Platforms: Windows, nix, BSD, Mac and more Bug: UDP socket unreachable Exploitation: remote Date: 12 May 2006 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 Th...

[Full-disclosure] Buffer-overflow and NULL pointer crash in Genecys 0.2

Luigi Auriemma Application: Genecys http://www.genecys.org Versions: = 0.2 and current CVS Platforms: nix and BSD Bugs: A tellplayersurrchanges buffer-overflow B parsecommand NULL pointer crash Exploitation: remote, versus server Date: 12 May 2006 Author: Luigi Auriemma e-mail: [email protected]...

OpenTTD <= 0.4.7 (multiple vulnerabilities) Denial of Service Exploit

No description provided by source. Luigi Auriemma Application: OpenTTD http://www.openttd.org Versions: = 0.4.7 Platforms: Windows, nix, BSD, Mac and others Bugs: A program termination through big error number B broadcast clients disconnection in multiplayer menu Exploitation: A remote, versus...

DEBIAN-CVE-2006-1744

Buffer overflow in plmain.c in sail in BSDgames before 2.17-7 allows local users to execute arbitrary code via a long player name that is used in a scanf function call...

CVE-2006-1646

The CVE-2006-1646 issue concerns the Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in the Shoichi Sakane KAME Project racoon, as used by NetBSD, certain FreeBSD releases, and potentially other BSD/Linux distributions. In aggressive mode, remote attackers can trigger a deni...

CVE-2006-1539

Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...

Buffer overflow

Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another...