Lucene search
K

1237 matches found

securityvulns
securityvulns
added 2004/03/17 12:0 a.m.24 views

Crafty Game Stack Overflow & Exploit

Copyright © Rosiello Security http://www.rosiello.org ADVISORY: http://www.rosiello.org/en/readbugs.php?18 BACKGROUND: by SecurityTracker EXPLOIT: http://www.rosiello.org/archivio/crafty.zip Impact: Execution of arbitrary code via local system, User access via local system Versions: 19.3 and prio...

1.3AI score
Exploits0
securityvulns
securityvulns
added 2004/02/16 12:0 a.m.37 views

problems with database files in 'SignatureDB'

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - File: LynX-adv4SignatureDB.txt Date: 15/02/2004 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - o NAME: problems with database files in...

7.5AI score
Exploits0
securityvulns
securityvulns
added 2004/01/16 12:0 a.m.50 views

[Full-Disclosure] Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows

Georgi Guninski security advisory 65, 2004 Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows Systems affected: qmail 1.03 on linux, don't know about other OSes. Risk: Unknown. maybe so, maybe no. Date: 15 January 2004 Legal Notice: This...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2003/12/09 12:0 a.m.31 views

FAT32 directory auth bypass on Linux Abyssws < 1.2

Luigi Auriemma Application: Abyss webserver http://www.aprelium.com Versions: minors than 1.2 Platforms: Linux version only Bug: Bypassing of password protected folders authorization on FAT32 filesystems Risk: medium but rarely users use Linux to run a webserver on a FAT32 partition Exploitation:...

0.4AI score
Exploits0
0day.today
0day.today
added 2003/08/25 12:0 a.m.19 views

Real Server 7/8/9 Remote Root Exploit (Windows & Linux)

Exploit for multiple platform in category remote exploits ======================================================= Real Server 7/8/9 Remote Root Exploit Windows & Linux ======================================================= / / THCREALbad 0.4 - Wind0wZ & Linux remote root exploit / Exploit by:...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2003/08/08 12:0 a.m.25 views

VMware Workstation 4.0.1 (for Linux systems) vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description - ----------- The following products have a vulnerability that can allow a non-root user of the host system to delete files. VMware Workstation 4.0.1 for Linux systems build 5289 and earlier releases Details/Impact - -------------- By...

7AI score
Exploits0
securityvulns
securityvulns
added 2003/07/24 12:0 a.m.33 views

VMware GSX Server 2.5.1 / Workstation 4.0 (for Linux systems) vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description - ----------- The following products have a vulnerability that can allow a user of the host system to start an arbitrary program with root privileges: VMware GSX Server 2.5.1 for Linux systems build 4968 and earlier releases VMware...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2003/07/16 12:0 a.m.83 views

[Full-Disclosure] SRT2003-07-07-0833 - IBM U2 UniVerse users with uvadm rights can take root via uvadmsh

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2003/07/16 12:0 a.m.31 views

[Full-Disclosure] SRT2003-07-07-0913 - Abnormal suid behavior in several applications

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2003/06/28 12:0 a.m.25 views

VMware Workstation 4.0: Possible privilege escalation on the host via symlink manipulation

It is possible for a user to gain an esclation in privileges on a system running VMware Workstation 4.0 for Linux systems by symlink manipulation in a world-writable directory such as /tmp. Affected systems: VMware Workstation 4.0 for Linux systems Dates: This was reported to VMware on 2003-06-17...

1.1AI score
Exploits0
exploitpack
exploitpack
added 2003/05/26 12:0 a.m.15 views

Ifenslave 0.0.7 - Argument Local Buffer Overflow (2)

Ifenslave 0.0.7 - Argument Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/7682/info ifenslave for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it i...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2003/04/30 12:0 a.m.77 views

OpenSSH/PAM 3.6.1p1 - Remote Users Discovery Tool

/ SSHBRUTE - OpenSSH/PAM Proof of concept code by Maurizio Agazzini Tested against Red Hat, Mandrake, and Debian GNU/Linux. Reference: http://lab.mediaservice.net/advisory/2003-01-openssh.txt $ tar xvfz openssh-3.6.1p1.tar.gz $ patch -p0 include include / an illegal user / define NOUSER...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/04/10 12:0 a.m.117 views

Samba < 2.2.8 (Linux/BSD) - Remote Code Execution

/ Remote root exploit for Samba 2.2.x and prior that works against Linux all distributions, FreeBSD 4.x, 5.x, NetBSD 1.x and OpenBSD 2.x, 3.x and 3.2 non-executable stack. sambal.c is able to identify samba boxes. It will send a netbios name packet to port 137. If the box responds with the mac...

7AI score
Exploits0
CERT
CERT
added 2003/03/03 12:0 a.m.33 views

Remote Buffer Overflow in Sendmail

Overview There is a vulnerability in sendmail that may allow remote attackers to gain the privileges of the sendmail daemon, typically root. Description Researchers at Internet Security Systems ISS have discovered a remotely exploitable vulnerability in sendmail. This vulnerability could allow an...

10CVSS6AI score0.72202EPSS
Exploits1References6
securityvulns
securityvulns
added 2003/02/12 12:0 a.m.26 views

Security bug in CGI::Lite::escape_dangerous_chars() function

SUBJECT Security bug in CGI::Lite::escapedangerouschars function, part of the CGI::Lite 2.0 package, and earlier revisions thereof. SUMMARY The CGI::Lite::escapedangerouschars function fails to escape the entire set of special characters that may have significance to the underlying shell command...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2003/01/21 12:0 a.m.25 views

ESCPUtil 1.15.2 2 - Printer Name Local Buffer Overflow

source: https://www.securityfocus.com/bid/6658/info It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory. escputil is reportedly installed setgid 'sys' on Mandrake Linux, so it is possible that this...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/01/15 12:0 a.m.43 views

GLIBC locale - Format Strings

/ su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a" "\x8d\x5f\x10\x89\x1f\x8d\x47\x18\x89\x47"...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/12/21 12:0 a.m.34 views

[RAZOR] Problems with mkstemp()

Common use of 'tmpwatch' utility and its counterparts triggers race conditions in many applications Michal Zalewski [email protected], 12/05/2002 Copyright C 2002 by Bindview Corporation 1 Scope and exposure info -------------------------- A common practice of installing 'tmpwatch' utili...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2002/09/19 12:0 a.m.24 views

apache-linux.txt

/ LINUX X86 APACHE REMOTE EXPLOIT!!!!!!!!! This is the unpublished source for apache OpenSSL handshake exploit. We obtained this exploit by modifying a circulating apache worm, created by contem@efnet BY nebunu compile: gcc -o apache-ex apache.ex.c -lcrypto run: ./apache-ex do not use hostname! u...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/08/20 12:0 a.m.38 views

SCPOnly 2.3/2.4 - SSH Environment Shell Escaping

source: https://www.securityfocus.com/bid/5526/info scponly is a freely available, open source restricted secure copy client. It is available for Unix and Linux operating systems. The default installation of scponly does not place sufficient access controls on the .ssh subdirectory. Due to this...

7AI score
Exploits0
Rows per page
Query Builder