CVE-2007-1227

VShieldCheck in McAfee VirusScan for Mac Virex before 7.7 patch 1 allow local users to change permissions of arbitrary files via a symlink attack on /Library/Application Support/Virex/VShieldExclude.txt, as demonstrated by symlinking to the root crontab file to execute arbitrary commands...

Mac OS X 10.4.8 (8L2127) crashdump Privilege Escalation Exploit

Exploit for macOS platform in category local exploits =============================================================== Mac OS X 10.4.8 8L2127 crashdump Privilege Escalation Exploit =============================================================== !/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lanc...

MOAB-28-01-2007.rb.txt

!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. 1 Stop crashdump from writing to /Library/Logs via chmod 000 /Library/Logs/CrashReporter 2 Make symlink to /Library/Logs/CrashReporter/knownprog.crash.log 3 Create a program with a modified LINKEDIT segment that...

Apple Mac OSX 10.4.8 (8L2127) - crashdump Local Privilege Escalation

Apple Mac OSX 10.4.8 8L2127 - crashdump Local Privilege Escalation !/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. 1 Stop crashdump from writing to /Library/Logs via chmod 000 /Library/Logs/CrashReporter 2 Make symlink to...

MOAB-05-01-2007_cron.rb.txt

!/usr/bin/ruby c 2006 LMH code from the other exploit, porting Kevin Finisterre crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one. And works like a charm. require 'fileutils' EVILCOMMANDS = "rm...

Mac OS X 10.4.8 DiskManagement BOM (cron) Privilege Escalation Exploit

No description provided by source. !/usr/bin/ruby c 2006 LMH lmh at info-pull.com code from the other exploit, porting Kevin Finisterre kflists at digitalmunition.com crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one...

Mac OS X 10.4.8 DiskManagement BOM (cron) Privilege Escalation Exploit

Exploit for macOS platform in category local exploits ====================================================================== Mac OS X 10.4.8 DiskManagement BOM cron Privilege Escalation Exploit ====================================================================== !/usr/bin/ruby c 2006 LMH code...

Apple Mac OSX 10.4.8 - DiskManagement BOM cron Local Privilege Escalation

Apple Mac OSX 10.4.8 - DiskManagement BOM cron Local Privilege Escalation !/usr/bin/ruby c 2006 LMH code from the other exploit, porting Kevin Finisterre crontab rock and roll Second exploit for MOAB-05-01-2007, uses crontab. much more simple than the other one. And works like a charm. require...

openexec_createfile.pl.txt

!/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom \n\nTargets:\n\n"; foreach $key sortkeys %tgts $a,$b = split/:/,$tgts"$key"; print "\t$key . $a\n"; print "\n"; exit 1; $ret = pack"l", $retval; $a,$b = split/:/,$tgts"$target"; print " Target: $a $b\n";...

Xcode OpenBase 10.0.0 (OSX) - Symlink Privilege Escalation

!/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom \n\nTargets:\n\n"; foreach $key sortkeys %tgts $a,$b = split/:/,$tgts"$key"; print "\t$key . $a\n"; print "\n"; exit 1; $ret = pack"l", $retval; $a,$b = split/:/,$tgts"$target"; print " Target: $a $b\n";...

Solaris 9 (i386) : 114929-04

The remote host is missing Sun Security Patch number 114929-04 SunOS 5.9x86: etc/security/bsmconv /usr/bin/crontab Patch. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a...

Mac OS X DS_Store Arbitrary File Overwrite Exploit

No description provided by source. !/usr/bin/perl OSX Finder DSStore arbitrary file overwrite exploit. root version vade79 - [email protected] fakehalo/realhalo this will create a directory called "xfinder" in your home directory, once the root user has modified that directory using Finder in almost...

Xcode OpenBase <= 9.1.5 (root file create) Local Root Exploit (OSX)

No description provided by source. !/usr/bin/perl http://www.digitalmunition.com written by kf kflistsatdigitalmunitiondotcom http://docs.info.apple.com/article.html?artnum=61798 This won't help ftp://www.openbase.com/pub/OpenBase10.0 This will Create a new file anywhere on the filesystem with...

ViRobot Server web interface addschup buffer overflow

Added: 07/28/2006 CVE: CVE-2005-2041 BID: 13964 OSVDB: 17320 Background ViRobot Linux Server includes a web-based control interface. Problem A buffer overflow in the addschup CGI program included in the ViRobot Linux Server allows remote attackers to write arbitrary commands into the root crontab...

ViRobot Server web interface addschup buffer overflow

Added: 07/28/2006 CVE: CVE-2005-2041 BID: 13964 OSVDB: 17320 Background ViRobot Linux Server includes a web-based control interface. Problem A buffer overflow in the addschup CGI program included in the ViRobot Linux Server allows remote attackers to write arbitrary commands into the root crontab...

ViRobot Server web interface addschup buffer overflow

Added: 07/28/2006 CVE: CVE-2005-2041 BID: 13964 OSVDB: 17320 Background ViRobot Linux Server includes a web-based control interface. Problem A buffer overflow in the addschup CGI program included in the ViRobot Linux Server allows remote attackers to write arbitrary commands into the root crontab...

CVE-1999-1589

CVE-1999-1589 concerns an unspecified vulnerability in the crontab component of IBM AIX 3.2 that allows local users to gain root privileges via unknown attack vectors. The available connected documents confirm the affected product (IBM AIX 3.2 crontab) and the impact (local root access) but do no...

CVE-1999-1589

Unspecified vulnerability in crontab in IBM AIX 3.2 allows local users to gain root privileges via unknown attack vectors...

vixie security update

CentOS Errata and Security Advisory CESA-2006:0117 An updated vixie-cron package that fixes a bug and security issue is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The vixie-cron package contains the Vixie version of cron. Cron is...

vixie security update

CentOS Errata and Security Advisory CESA-2005:361 An updated vixie-cron package that fixes various bugs and a security issue is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The vixie-cron package contains the Vixie version of cron...