Sudo 1.5/1.6 Heap Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2829/info Sudo superuser do is a security utility that allows administrator to give 'restricted' superuser privileges to certain users. Sudo contains a locally exploitable buffer overrun vulnerability. The overrun conditi...

Rxvt 2.6.1/2.6.2 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2878/info Rxvt is a color VT102 terminal emulator for X intended as an xterm1 replacement. A buffer overflow vulnerability exists in rxvt. The error occurs when certain command line options with long arguments are passed ...

Password Door 8.4 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33634/info Password Door is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the...

Mac OS X <= 10.4.7 - Mach Exception Handling Local Exploit (10.3.x 0day)

No description provided by source. / excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are invalidated, to make sure unauthorize...

BSD-Games 2.x Monop Player Name Local Buffer Overrun Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/8501/info Monop included in bsd-games is prone to a locally exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of player names. Monop is typically installed setgid games, so it is possib...

Acoustica Mixcraft <= 4.2 Universal Stack Overflow Exploit (SEH)

No description provided by source. !/usr/bin/perl Acoustica Mixcraft = 4.2 Universal Stack Overflow Exploit SEH ------------------------------------------------------ Found/Exploit by SkD [email protected] MixCraft Download = http://www.acoustica.com/mixcraft/download.htm A local exploit for the...

Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser...

MagicISO <= 5.4 (build239) - .cue File Heap Overflow PoC

No description provided by source. !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im still learning...

UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/perl Credit:To n00b for finding this bug and writing poc. Ultra ISO stack over flow poc code. Ultra iso is exploitable via opening a specially crafted Cue file..There is A limitation that the user must have the bin file in the same dir as the cue file...

WinAmp 5.63 (winamp.ini) - Local Exploit

No description provided by source. Exploit Title: winampevilskin.py Date: 25 August 2013 Exploit Author: Ayman Sagy [email protected] Vendor Homepage: http://www.winamp.com/ Version: 5.63 Tested on: Windows XP Professional SP3 Version 2002 CVE : 2013-4694 Ayman Sagy [email protected] August...

Vim 5.x Swap File Race Condition Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2927/info Vim is an enhanced version of the popular text editor vi. A race condition vulnerability exists in the swap file mechanism used by the 'vim' program. The error occurs when a swap file name for a file being opene...

Appfluent Database IDS < 2.1.0.103 (Env Variable) Local Exploit

No description provided by source...

IBM AIX <= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit

No description provided by source. !/bin/sh 07/2007: public release IBM AIX = 5.3 sp6 echo ------------------------------- echo AIX pioout Local Root Exploit echo By qaaz echo ------------------------------- cat piolib.c EOF include stdlib.h include unistd.h void init attribute constructor; void...

Sendmail 8.12.x Header Processing Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/6991/info Sendmail is prone to a remotely buffer-overflow vulnerability in the SMTP header parsing component. Successful attackers may exploit this vulnerability to gain control of affected servers. Reportedly, this...

P2P Share Spy 2.2 - Local Password Disclosure Exploit

No description provided by source. / P2P Share Spy 2.2 Local Exploit by Kozan Application: P2P Share Spy 2.2 Vendor: Rebrand Software - www.rebrandsoftware.com Vulnerable Description: P2P Share Spy 2.2 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA Web :...

Solaris 10 (libnspr) - Arbitrary File Creation Local Root Exploit

No description provided by source. !/bin/sh $Id: raptorlibnspr,v 1.1 2006/10/13 19:12:12 raptor Exp $ raptorlibnspr - Solaris 10 libnspr oldschool local root Copyright c 2006 Marco Ivaldi [email protected] Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as includ...

Linux Kernel 2.4.x/2.6.x Bluetooth Signed Buffer Index Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/12911/info A local signed-buffer-index vulnerability affects the Linux kernel because it fails to securely handle signed values when validating memory indexes. A local attacker may leverage this issue to gain escalated...

Linux Kernel <= 2.6.12-rc4 (ioctl_by_bdev) Local Denial of Service Exploit

No description provided by source. / pktcdvddos.c proof-of-concept This is only a lame POC which will crash the machine, no root shell here. --- alert7 2005-5-15 the vulnerability in 2.6 up to and including 2.6.12-rc4 gcc -o pktcdvddos pktcdvddos.c NOTE: require user can read pktcdvd block device...

Linux Kernel <= 2.6.28.3 - set_selection() UTF-8 Off By One Local Exploit

No description provided by source. / CVE-2009-1046 Virtual Console UTF-8 setselection off-by-onetwo Memory Corruption Linux Kernel = 2.6.28.3 coded by: sgrakkyu at antifork.org http://kernelbof.blogspot.com/2009/07/even-when-one-byte-matters.html Dedicated to all people talking nonsense about non...

AOL Instant Messenger AIM "Away" Message Local Exploit

No description provided by source. / subject: local PoC exploit for AIM 5.5.3595 vendor: http://www.aim.com cve: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0636 credits: Matt Murphy date: 10 August 2004 notes: exploits localy if an argument is supplied, otherwise prints the url...