Rxvt 2.6.1/2.6.2 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2878/info Rxvt is a color VT102 terminal emulator for X intended as an xterm1 replacement. A buffer overflow vulnerability exists in rxvt. The error occurs when certain command line options with long arguments are passed ...

GNU a2ps "Anything to PostScript" Local Exploit (not suid)

No description provided by source. / Not added to Local Non Poc section /str0ke / include stdio.h include stdlib.h include errno.h // by lizard / lizstyleatgmail.com // greets go to slider/trog for helpin me // not suid by default ; define VULNTHING /usr/bin/a2ps define DEFRET 0xbffffffa - strlen...

Password Door 8.4 Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33634/info Password Door is prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Attackers may leverage this issue to execute arbitrary code in the...

Mac OS X <= 10.4.7 - Mach Exception Handling Local Exploit (10.3.x 0day)

No description provided by source. / excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are invalidated, to make sure unauthorize...

BSD-Games 2.x Monop Player Name Local Buffer Overrun Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/8501/info Monop included in bsd-games is prone to a locally exploitable buffer overrun vulnerability. This is due to insufficient bounds checking of player names. Monop is typically installed setgid games, so it is possib...

Acoustica Mixcraft <= 4.2 Universal Stack Overflow Exploit (SEH)

No description provided by source. !/usr/bin/perl Acoustica Mixcraft = 4.2 Universal Stack Overflow Exploit SEH ------------------------------------------------------ Found/Exploit by SkD [email protected] MixCraft Download = http://www.acoustica.com/mixcraft/download.htm A local exploit for the...

Sun Solaris Netscape Portable Runtime API 4.6.1 - Local Privilege Escalation Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/20471/info The Netscape Portable Runtime API running on Sun Solaris 10 operating system is prone to a local privilege-escalation vulnerability. A successful exploit of this issue allows an attacker to gain superuser...

MagicISO <= 5.4 (build239) - .cue File Heap Overflow PoC

No description provided by source. !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im still learning...

UltraISO <= 8.6.2.2011 (Cue/Bin Files) Local Buffer Overflow PoC

No description provided by source. !/usr/bin/perl Credit:To n00b for finding this bug and writing poc. Ultra ISO stack over flow poc code. Ultra iso is exploitable via opening a specially crafted Cue file..There is A limitation that the user must have the bin file in the same dir as the cue file...

WinAmp 5.63 (winamp.ini) - Local Exploit

No description provided by source. Exploit Title: winampevilskin.py Date: 25 August 2013 Exploit Author: Ayman Sagy [email protected] Vendor Homepage: http://www.winamp.com/ Version: 5.63 Tested on: Windows XP Professional SP3 Version 2002 CVE : 2013-4694 Ayman Sagy [email protected] August...

Vim 5.x Swap File Race Condition Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2927/info Vim is an enhanced version of the popular text editor vi. A race condition vulnerability exists in the swap file mechanism used by the 'vim' program. The error occurs when a swap file name for a file being opene...

GnomeHack 1.0.5 - Local Buffer Overflow Exploit

No description provided by source. / linux/debiangnomehackv1.0.5 buffer overflow, by: [email protected]. this will give you an egid=60games shell if gnomehack is sgid=2755 games on debian/2.2, which has gnomehack. this can also be applied to nethack syntax: ./debgnomehack offset alignment. exampl...

Appfluent Database IDS < 2.1.0.103 (Env Variable) Local Exploit

No description provided by source...

IBM AIX <= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit

No description provided by source. !/bin/sh 07/2007: public release IBM AIX = 5.3 sp6 echo ------------------------------- echo AIX pioout Local Root Exploit echo By qaaz echo ------------------------------- cat piolib.c EOF include stdlib.h include unistd.h void init attribute constructor; void...

Sendmail 8.12.x Header Processing Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/6991/info Sendmail is prone to a remotely buffer-overflow vulnerability in the SMTP header parsing component. Successful attackers may exploit this vulnerability to gain control of affected servers. Reportedly, this...

P2P Share Spy 2.2 - Local Password Disclosure Exploit

No description provided by source. / P2P Share Spy 2.2 Local Exploit by Kozan Application: P2P Share Spy 2.2 Vendor: Rebrand Software - www.rebrandsoftware.com Vulnerable Description: P2P Share Spy 2.2 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA Web :...

MS HyperV Persistent DoS Vulnerability

No description provided by source. Core Security Technologies - Corelabs Advisory http://corelabs.coresecurity.com/ MS HyperV Persistent DoS Vulnerability 1. Advisory Information Title: MS HyperV Persistent DoS Vulnerability Advisory ID: CORE-2011-0203 Advisory URL:...

Solaris 10 (libnspr) - Arbitrary File Creation Local Root Exploit

No description provided by source. !/bin/sh $Id: raptorlibnspr,v 1.1 2006/10/13 19:12:12 raptor Exp $ raptorlibnspr - Solaris 10 libnspr oldschool local root Copyright c 2006 Marco Ivaldi [email protected] Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as includ...

Linux Kernel 2.4.x/2.6.x Bluetooth Signed Buffer Index Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/12911/info A local signed-buffer-index vulnerability affects the Linux kernel because it fails to securely handle signed values when validating memory indexes. A local attacker may leverage this issue to gain escalated...

Linux Kernel <= 2.6.12-rc4 (ioctl_by_bdev) Local Denial of Service Exploit

No description provided by source. / pktcdvddos.c proof-of-concept This is only a lame POC which will crash the machine, no root shell here. --- alert7 2005-5-15 the vulnerability in 2.6 up to and including 2.6.12-rc4 gcc -o pktcdvddos pktcdvddos.c NOTE: require user can read pktcdvd block device...