DEBIAN-CVE-2004-0976

Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files...

trn-test.txt

/ /usr/bin/trn local root exploit By ZzagorR - http://www.rootbinbash.com / / sh-2.05b$ ./trn usage : ./trn ret buf example : ./trn 0xbfffff64 + mandrake 9.2 = 0xbfffff96 + slackware 10.0.0= 0xbfffff98 + slackware 9.1.0= 0xbfffff84 sh-2.05b$ sh-2.05b$ ./trn 0xbfffff84 128 BOO % 128 RET % bfffff84...

CVE-2005-0130

CVE-2005-0130 affects Konversation 0.15 where certain Perl scripts fail to quote shell metacharacters in (1) channel names and (2) song names when running IRC scripts, allowing remote command execution by an attacker. This is a remote, unauthenticated vector with network access and potential part...

CVE-2005-0130

Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in 1 channel names or 2 song names that are not properly quoted when the user runs IRC scripts...

konversation -- shell script command injection

Konversation comes with Perl scripts that do not properly escape shell characters on executing a script. This makes it possible to attack Konversation with shell script command injection...

Problems with various windows FTP servers

Hi, I am just writing a small set of perl scripts, to test server implementations of different protocols agains common problems i.e. Buffer overflow and format strings.. . The first script is against FTP servers, and just stupidly sends stuff to a server, verifies if the server crashes and if it...

Adcycle 0.78b Authentication

|---------------------------------------------------------------------------------| / Product: Adcycle Banner Rotation. Vendor URL: www.adcycle.com / Tested on: v0.77 - 0.78b Freeware Linux Vendor Contact: Mailed on 15th January i think Twice with NO reply / Other: Commericial version NOT tested...

Adcycle 0.77/0.78 - AdLibrary.pm Session Access

source: https://www.securityfocus.com/bid/2393/info Adcycle is a package of perl scripts available from Adcycle.com. The scripts are designed to manage banner ad rotation through a web interface, backended with a MySQL database. A problem with the suite could allow remote execution of commands. T...

Solution Scripts Home Free 1.0 - 'search.cgi' Directory Traversal

source: https://www.securityfocus.com/bid/921/info Home Free is a suite of Perl cgi scripts that allow a website to support user contributions of various types. One of the scripts, search.cgi, accepts a parameter called letter which can be any text string. The supplied argument can contain the...

swish-E.txt

Date: Mon, 9 Nov 1998 22:00:33 +0100 From: Job de Haas To: [email protected] Subject: Vulnerabilities with Swish -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, While installing the Swish search engine http://sunsite.berkeley.edu/SWISH-E at our site http://www.itsx.com we discovered sever...

perliis.txt

http://www.rootshell.com/ From [email protected] Sun Jul 12 17:42:29 1998 Date: Mon, 13 Jul 1998 01:31:11 +0100 From: Mnemonix To: [email protected] Subject: New Perl.exe, IIS exploit Russ Cooper of ntbugtraq seems unwilling to publish this information - perhaps it shows how to exploit th...