MySQL 3.23.x4.0.x - Remote Buffer Overflow

MySQL 3.23.x4.0.x - Remote Buffer Overflow / Mysql 3.23.x/4.0.x remote exploit proof of concept using jmp eax bkbll bkbll cnhonker.net,bkbll tom.com 2003/09/12 compile:gcc -o mysql mysql.c -L/usr/lib/mysql -lmysqlclient DO NOT DISTRUBITED IT / include include include include include include inclu...

SRT2003-09-11-1200 - setgid man MANPL overflow

The full version of this advisory can be found at. http://www.secnetops.com/research/advisories/SRT2003-09-11-1200.txt Quick Summary: Advisory Number : SRT2003-09-11-1200 Product : Andries Brouwer man Version : Version =1.5m1 Vendor : ftp://ftp.win.tue.nl/pub/linux-local/utils/man Class : Local...

Stunnel 3.24/4.00 - Daemon Hijacking

/ By Steve Grubb : The technique is simple. 1 Fork so that stunnel can't find you when it dies. 2 Send stunnel a SIGUSR2. Unhandled signals generally kill programs. Since you are a child of stunnel, the OS will deliver the signal. 3 Select on the leaked descriptor and start serving pages. At the...

[Full-Disclosure] Essentia Web Server 2.12 (Linux)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: Buffer Overflow in Linux Essentia Webserver. Author: By B-r00t [email protected] Date: 04/07/2003 Reference: http://www.essencomp.com/ Versions: Essentia Web Server 2.12 Linux = VULNERABLE Related Info:...

GNU Chess 5.0 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/8097/info A local buffer overflow has been reported for GNU Chess that may result in an attacker obtaining elevated privileges. The vulnerability exists due to insufficient boundary checks performed on some commandline options. Successful exploitation...

OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool

OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool / SSHBRUTE - OpenSSH/PAM Proof of concept code by Maurizio Agazzini Tested against Red Hat, Mandrake, and Debian GNU/Linux. Reference: http://lab.mediaservice.net/advisory/2003-01-openssh.txt $ tar xvfz openssh-3.6.1p1.tar.gz $ patch -p0 include...

DLA-25-06-2002.txt

Digit-Labs Security Advisory http://www.digit-labs.org/ Advisory Name: IIS Administration Web Site redirect exploits Release Date: 25.June-2002 Application: Microsoft Internet Information Server 5.0 Platform: Windows 2000 Professional Severity: Low/Medium Authors: GoLLuM.no...

Microsoft Visual Studio RAD Support - Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary commands in the context of...

Microsoft Windows - Jolt2.c Denial of Service (MS00-029)

Microsoft Windows - Jolt2.c Denial of Service MS00-029 / File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windows denial-of-serice attack described by the Razor team NTBugtraq, 19-May-00 MS00-029. This code causes cpu utilization to go to 100%...

MS Windows (Jolt2.c) Denial of Service Exploit

Exploit for unknown platform in category dos / poc ============================================== MS Windows Jolt2.c Denial of Service Exploit ============================================== / File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windo...

Microsoft Windows - 'Jolt2.c' Denial of Service (MS00-029)

/ File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windows denial-of-serice attack described by the Razor team NTBugtraq, 19-May-00 MS00-029. This code causes cpu utilization to go to 100%. Tested against: Firewall-1 Written for: My Linux box...

gnu-pop3d (FTGate problem), Savant Webserver, Guild FTPd

Yo, Errr... Sorry about saying gnu-pop3d had the same problem as FTGate - don't know how that got in my list - I assume from posting after a rather hectic party and before that vital cup of coffee the next day. : Apologies, all. Anyway, I found a stack overflow in the Savant webserver the other d...

Microsoft Windows 98a/98b/98SE / Solaris 2.6 - IRDP

source: https://www.securityfocus.com/bid/578/info This discussion is verbatim from the LHI Advisory referenced in the "Reference Section" of this vulnerability entry with very few changes The ICMP Router Discovery Protocol IRDP comes enabled by default on DHCP clients that are running Microsoft...