Ubuntu/Debian Apache 1.3.33/1.3.34 (CGI TTY) Local Root Exploit

Exploit for linux platform in category local exploits =============================================================== Ubuntu/Debian Apache 1.3.33/1.3.34 CGI TTY Local Root Exploit =============================================================== / :: Kristian Hermansen :: Date: 20070229 Description...

Apache 1.3.341.3.33 (Ubuntu Debian) - CGI TTY Privilege Escalation

Apache 1.3.341.3.33 Ubuntu Debian - CGI TTY Privilege Escalation / :: Kristian Hermansen :: Date: 20070229 Description: Local attacker can influence Apache to direct commands into an open tty owned by user who started apache process, usually root. This results in arbitrary command execution...

PHP 4.4.0 - 'mysql_connect function' Local Buffer Overflow

?php / This exploit was designed to work with PHP versions 4.3.10 and 4.4.0 under Windows XP SP 1. If another operating system is used, the replacement EIP must be changed. The replacement EIP is written 261 bytes into our string. For this exploit, I used a CALL ESI from ws232.dll from Windows XP...

Apache <= 1.3.33 htpasswd local overflow

The remote host appears to be running Apache 1.3.33 or older. There is a local buffer overflow in the 'htpasswd' command in these versions that may allow a local user to gain elevated privileges if 'htpasswd' is run setuid or a remote user to run arbitrary commands remotely if the script is...