ContentNow Directory Traversal(upload.php)

ContentNow Directory Traversalupload.php ------------------------------------------ -vulnerability By: Timq -http://securitydb.org -Team Root-Shell -Email:timqathushmail.com ------------------------------------------ It appears that it is possible to view any files on a system via 'upload.php'...

ContentNow 1.30 - Arbitrary File Upload / Cross-Site Scripting

ContentNow Directory Traversalupload.php ------------------------------------------ -vulnerability By: Timq -http://securitydb.org -Team Root-Shell -Email:timqathushmail.com ------------------------------------------ It appears that it is possible to view any files on a system via 'upload.php'...

Xcode OpenBase 10.0.0 (OSX) - Symlink Privilege Escalation

!/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom \n\nTargets:\n\n"; foreach $key sortkeys %tgts $a,$b = split/:/,$tgts"$key"; print "\t$key . $a\n"; print "\n"; exit 1; $ret = pack"l", $retval; $a,$b = split/:/,$tgts"$target"; print " Target: $a $b\n";...

HP-UX 11.0/11.11 swxxx Local Root Shell Exploit

No description provided by source. / Program : xhpux11isw.c Use : HP-UX 11.11/11.0 exploit swxxx to get local root shell. Complie : cc xhpux11isw.c -o xsw;./xsw not use gcc for some system Usage : ./xsw off Tested : HP-UX B11.11 & HP-UX B11.0 Author : watercloud @ xfocus.org Date : 2002-12-11 Not...

Debian DSA-918-1 : osh - programming error

Several security related problems have been discovered in osh, the operator's shell for executing defined programs in a privileged environment. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2005-3346 Charles Stevenson discovered a bug in the...

Roxio Toast 7 - DejaVu Component PATH Variable Privilege Escalation

Roxio Toast 7 - DejaVu Component PATH Variable Privilege Escalation source: https://www.securityfocus.com/bid/19596/info Roxio Toast is prone to a local privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. As a result, local users may set their own search...

snmpXdmid overflow

The remote RPC service 100249 snmpXdmid is vulnerable to a heap overflow which allows any user to obtain a root shell on this host. OpenVAS Vulnerability Test $Id: snmpXdmid.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: snmpXdmid overflow Authors: Intranode Copyright: Copyright C 2001...

snmpXdmid overflow

The remote RPC service 100249 snmpXdmid is vulnerable to a heap overflow which allows any user to obtain a root shell on this host. SPDX-FileCopyrightText: 2001 Intranode Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

poppassd-lnx.sh.txt

!/bin/sh Linux Qpopper poppassd latest version local r00t exploit by kcope August 2005 Confidential - Keep Private! POPPASSDPATH=/usr/local/bin/poppassd echo "" echo "Linux Qpopper poppassd latest version local r00t exploit by kcope" echo "" sleep 2 umask 0000 if -f /etc/ld.so.preload ; then echo...

Qpopper 4.0.8 (Linux) - 'poppassd' Local Privilege Escalation

!/bin/sh tested and working /str0ke Linux Qpopper poppassd latest version local r00t exploit by kcope August 2005 Confidential - Keep Private! POPPASSDPATH=/usr/local/bin/poppassd echo "" echo "Linux Qpopper poppassd latest version local r00t exploit by kcope" echo "" sleep 2 umask 0000 if -f...

Qpopper 4.0.8 (FreeBSD) - Local Privilege Escalation

Qpopper 4.0.8 FreeBSD - Local Privilege Escalation !/bin/sh FreeBSD Qpopper poppassd latest version local r00t exploit by kcope tested on FreeBSD 5.4-RELEASE POPPASSDPATH=/usr/local/bin/poppassd HOOKLIB=libutil.so.4 echo "" echo "FreeBSD Qpopper poppassd latest version local r00t exploit by kcope...

Operator Shell (osh) 1.7-13 Local Root Exploit

No description provided by source. You must be groupoperator for permissions /str0ke !/usr/bin/perl OSH 1.7 Exploit 2 Gonna bang away at this until it's removed ;- EDUCATIONAL purposes only.... :- by Charles Stevenson core [email protected] Description: The Operator Shell Osh is a setuid root,...

[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 725-2 [email protected] http://www.debian.org/security/ Martin Schulze July 4th, 2005 http://www.debian.org/security/faq -...

[ Suresec Advisories ] - Mac OS X 10.4 - launchd local root vulnerability

Securesec Security Advisory - 00003 09/06/05 Apple Mac OS X 10.4 launchd race condition vulnerability Advisory: http://www.suresec.org/advisories/adv3.pdf Description: A race condition vulnerability has been found in the temporary file creation done by the suid launchd program on Mac OSX 10.4. Th...

[SECURITY] [DSA 725-1] New ppxp packages fix local root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 725-1 [email protected] http://www.debian.org/security/ Martin Schulze May 19th, 2005 http://www.debian.org/security/faq -...

AdobeMac.txt

Note: Sorry if this is a dupe, I might of sent it to the wrong address. Local root exploit on Mac OS X 10.3.6 with Adobe products installed Found by Jonathan Bringhurst Summary: It's possible to create a suid root shell with a non-privileged user on a Mac OS X 10.3.6 system with Adobe Version Cue...

Local root exploit on Mac OS X with Adobe Version Cue

Note: Sorry if this is a dupe, I might of sent it to the wrong address. Local root exploit on Mac OS X 10.3.6 with Adobe products installed Found by Jonathan Bringhurst [email protected] Summary: It's possible to create a suid root shell with a non-privileged user on a Mac OS X 10.3.6 syst...

Socat 1.4.0.2 - Not SETUID Local Format String

/ socatexp.c Socat Format String Vulnerability socat No System Group - http://www.nosystem.com.ar coki@servidor:$ make socatexp coki@servidor:$ ./socatexp socat shellcode address = 0xbfffffb9 .dtors address = 0x080740c4 2004/10/19 09:49:46 socat26197 E unknown syslog facility...

Motorola Wireless Router WR850G Authentication Circumvention

------------------------------------------------------------------------- | Motorola Wireless Router WR850G Authentication Circumvention | ------------------------------------------------------------------------- Date: 09-23-2004 Author: Daniel Fabian Product: Motorola Wireless Router WR850G,...

CDRDAO - Local Privilege Escalation

!/bin/sh DIR=pwd echo "" echo "cdrdao local root exploit - gr doesn't protect you this time" echo "Karol Wiêsek " echo "" sleep 2 umask 000 echo -n " Checking if /etc/ld.so.preload doesn't exist ... " if -f /etc/ld.so.preload ; then echo "WRONG" echo "/etc/ld.so.preload exists, write another...