Linux Kernel (<= 2.4.27 2.6.8) binfmt_elf Executable File Read Exploit

No description provided by source. / binfmtelf executable file read vulnerability gcc -O3 -fomit-frame-pointer elfdump.c -o elfdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...

Linux Kernel 2.4.272.6.8 - binfmt_elf Executable File Read

Linux Kernel 2.4.272.6.8 - binfmtelf Executable File Read / binfmtelf executable file read vulnerability gcc -O3 -fomit-frame-pointer elfdump.c -o elfdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT...

MailPost vulnerable to cross-site scripting via an executable requested with a trailing slash appended to the filename

Overview A cross-site scripting vulnerability is reported to exist in MailPost version 5.1.1sv and possibly earlier versions. Description According to a report by ProCheckUp, MailPost is vulnerable to a Cross-Site Scripting attack by adding a trailing '/' character to the executable filename. The...

Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code (MS04-038)

Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code MS04-038 source: https://www.securityfocus.com/bid/11466/info The Microsoft cumulative Internet Explorer patch MS04-038 attempted to limit what files may be dragged and dropped onto the local computer from the Internet Zone ...

Debian DSA-342-1 : mozart - unsafe mailcap configuration

mozart, a development platform based on the Oz language, includes MIME configuration data which specifies that Oz applications should be passed to the Oz interpreter for execution. This means that file managers, web browsers, and other programs which honor the mailcap file could automatically...

CoD United Offensive boom boom

An update for the Call of Duty bug http://aluigi.altervista.org/adv/codboom-adv.txt The 15th September 2004 has been officially released the expansion pack called United Offensive. It is an expansion pack but uses a new executable that unfortunally has not been fixed for the shutdown bug I report...

linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes

linux/x86 cp /bin/sh /tmp/katy ; chmod 4555 katy 126 bytes. Shellcode exploit for linx86 platform / Linux/x86 /bin/cp /bin/sh /tmp/katy ; chmod 4555 /tmp/sh using fork / include char shellcode = "\xeb\x5e\x5f\x31\xc0\x88\x47\x07\x88\x47\x0f\x88\x47\x19\x89\x7f"...

bsd/PPC - execve /bin/sh 128 bytes

bsd/PPC execve /bin/sh 128 bytes. Shellcode exploit for bsdppc platform / Linux PPC shellcode execve of /bin/sh by Palante / long shellcode = / Palante's BSD PPC shellcode w/ NULL/ 0x7CC63278, 0x2F867FFF, 0x41BC005C, 0x7C6802A6, 0xB0C3FFF9, 0xB0C3FFF1, 0x38867FF0, 0x38A67FF4, 0x38E67FF3,...

Insecure file permissions in the Firefox browser for Linux >= v0.9

after installing firefox many of the permissions are set to 777, allowing anyone on the system to change the contents of the executable files. this first occured in the 0.9 release in the tar.gz release as well as in the installer. the problem or is it called a feature now? still exists in the...

Mozilla Firefox weak permissions

Weak permissions for executable files...

Microsoft Internet Explorer treats arbitrary files as images for drag and drop operations

Overview Microsoft Internet Explorer IE treats arbitrary files as images during drag and drop mouse operations. This could allow an attacker to trick a user into copying a file to a location where it may be executed, such as the Windows StartUp folder. Description IE treats any file referenced by...

linux/x86 execve /bin/sh encrypted 58 bytes

No description provided by source. / !!!!!! PRIVATE !!!!!!! // ANTI-IDS SHELLCODE // // !!!!!!!!!!!!!!!!!! // [email protected] 0x1d abril 0x7d2 ./test.c !!! Shellcode execve sh Encriptada !!! AHORA EN 58 BYTES !!!!!!!!!!!!!! Notese que la encripcion se ha hecho a toda la shellcode y no...

BlackJumboDog FTP Server 3.6.1 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================= BlackJumboDog FTP Server 3.6.1 Remote Buffer Overflow Exploit ============================================================= / 6.9.04|www.Delikon.de|Delikon BlackJumboDog FTP Serv...

CVE-2002-1548

The CVE-2002-1548 entry concerns autofs on AIX 4.3.0. When using executable maps, it may allow an attacker to execute arbitrary commands as root, potentially related to string handling around how the executable map is called. The provided documents do not include explicit remediation steps, affec...

CVE-2002-1139

The CVE-2002-1139 issue affects Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP under the Compressed Folders feature. The root cause is that the destination folder is not properly validated during ZIP decompression, allowing an attacker to place an executable in a known location ...

Gadu-Gadu 6.0 - File Download Filename Obfuscation

Gadu-Gadu 6.0 - File Download Filename Obfuscation source: https://www.securityfocus.com/bid/11017/info Gadu-Gadu is a Polish instant messaging application for Microsoft Windows operating systems. It is reported that the Gadu-Gadu instant messenger application contains a weakness allowing attacke...

Netwin WebNews Webnews.exe Remote Overflow

Binary data 1716.prm...

Linux Service Modification Service Start (via Splunk): systemd (executable .service file)

Binary data 710044.prm...

PDGSoft Shopping Cart changepw.exe Remote Overflow

Binary data 1629.prm...

Trend Micro Virus Buster cgiWebupdate.exe Arbitrary File Access

Binary data 1627.prm...