Twilight WebServer 1.3.3.0 - GET Remote Denial of Service

Twilight WebServer 1.3.3.0 - GET Remote Denial of Service Denial of Service Attack against Twilight Webserver v1.3.3.0 http://www.twilightutilities.com Original author wanted the c code removed. /str0ke use strict; use IO::Socket; sub usage print "Denial of Service Attack against Twilight Webserv...

VPASP.txt

$Id: aresu-adv.6,v1 04/07/2003 aresu Exp $ 1ndonesian Security Team 1st AresU Advisory 6 VPASP SQL Injection 04/07/2003 VPASP SQL Injection Vulnerability & Exploit CODE Advisory Name: VPASP SQL Injection Vulnerability Release Date: 05/07/2003 Application: 5 Platform: Win32/MSSQL Severity: High BU...

Yahoo-ducky.txt

-Dtors Security Research- - www.dtors.net - -Package: Yahoo Messenger -Versions Affected: 5.5 -Website: http://messenger.yahoo.com -Exploit: http://www.dtors.net/exploits/ducky.c -Date: 07/05/03 -Author: [email protected] ---BACKGROUND Yahoo messenger is a world wide scale Instant Messaging client...

0006_AP.CF-rds-dump.txt

-- ------------------------- -- - AngryPacket Security Advisory - -- ------------------------- -- - +--------------------- -- - + advisory information +------------------ -- - Exploit Code: Victim1 Initial Bug Report By: rs2112 release date: 06/26/2003 +------------------- -- - + timeline of...

Advisory Name: VPASP SQL Injection Vulnerability & Exploit CODE

Advisory Name: VPASP SQL Injection Vulnerability & Exploit CODE Release Date: 05/07/2003 Application: 5 Platform: Win32/MSSQL Severity: High BUG Type: SQL Injection Discover by: AresU [email protected] & TioEuy [email protected] Author: Bosen [email protected] Vendor Status: See below. Vendor URL:...

Linux Kernel 2.4 - SUID 'execve()' System Call Race Condition Executable File Read

/ source: https://www.securityfocus.com/bid/8042/info A race condition vulnerability has been discovered in the Linux execve system call, affecting the 2.4 kernel tree. The problem lies in the atomicity of placing a target executables file descriptor within the current process descriptor and...

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow

Abuse-SDL 0.7 - Command Line Argument Buffer Overflow // source: https://www.securityfocus.com/bid/7982/info A buffer overflow vulnerability has been reported for Abuse-SDL that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient bounds checking...

MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service

MidHosting FTP Daemon 1.0.1 - Shared Memory Local Denial of Service source: https://www.securityfocus.com/bid/7956/info It has been reported that MidHosting FTP Daemon does not properly implement shared memory when the m flag -m is enabled. Because of this, an attacker could corrupt process memor...

[EXPL] Exploit Code Released for diagrpt Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Latest attack techniques. You're a pen tester, but is google.com still your R&D team? Now you can get trustworthy commercial-grade exploits...

[EXPL] Exploit Code Released for errpt

Return-Path: [email protected] Received: from adm.sci-nnov.ru adm.sci-nnov.ru 195.122.226.2 by pent.sci-nnov.ru 8.12.8p1/8.12.8 with ESMTP id h5BLXUjP039124 for [email protected]; Thu, 12 Jun 2003 01:33:30 +0400 MSD envelope-from [email protected]...

[EXPL] Exploit Code Release for lsmcode Vulnerability

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Latest attack techniques. You're a pen tester, but is google.com still your R&D team? Now you can get trustworthy commercial-grade exploits...

mnoGoSearch 3.1.20 - Remote Command Execution

!/usr/bin/perl reloaded Remote Exploit for mnoGoSearch 3.1.20 that performs remote command execution as the webserver user id for linux ix86 by pokleyzz use IO::Socket; $host = "127.0.0.1"; $cmd = "ls -la"; $searchpath = "/cgi-bin/search.cgi"; $rawret = 0xbfff105c; $ret = ""; $suffsize = 0; $port...

IBM AIX 4.3.x/5.1 - 'LSMCODE' Environment Variable Local Buffer Overflow

source: https://www.securityfocus.com/bid/7871/info Insufficient bounds checking in the lsmcode utility will allow locally based attackers to cause memory to be corrupted with attacker-supplied data. As a result, it is possible to exploit this condition to execute arbitrary attacker-supplied...

WebCortex WebStores2000 - SQL Injection

WebCortex WebStores2000 - SQL Injection source: https://www.securityfocus.com/bid/7766/info This vulnerability is reportedly caused by a lack of sufficient sanitization of user-supplied data contained in URI parameters supplied to WebStores2000. Successful exploitation may allow for modification ...

W3Mail 1.0.2 выполнение команд

Hi! Я обнаружил возможность выполнения команд в W3Mail 1.0.2. Это мощная система для работы с почтой. Это что-то вроде многопользовательского mail-клиента с web интерфейсом. Главная дыра находится в скрипте delete.cgi. Вот кусок кода файла delete.cgi: ... берём логин, пасс и сервак с ящиком...

WebCortex WebStores2000 - SQL Injection

source: https://www.securityfocus.com/bid/7766/info This vulnerability is reportedly caused by a lack of sufficient sanitization of user-supplied data contained in URI parameters supplied to WebStores2000. Successful exploitation may allow for modification of the structure of SQL queries, resulti...

Webfroot Shoutbox 2.32 - Remote Command Execution

source: https://www.securityfocus.com/bid/7746/info Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of the 'conf' URI parameter. An attacker can exploit this vulnerability to execute arbitrary...

Remote PC Access Server 2.2 Vulnerability

Dear Bugtraq Here is a full details information about the vulnerability of Remote PC Access Server 2.2, taken from our advisory includes the exploit code: http://www.ytech.co.il/advisories/rpca/rpcaccess.htm Best Regards, Yaron Tal YTECH.CO.IL -----------------------------------------------------...

Ifenslave 0.0.7 - Argument Local Buffer Overflow (1)

source: https://www.securityfocus.com/bid/7682/info ifenslave for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it is copied into an internal memory space. It is possible...

Maelstrom Player 3.0.x - Argument Buffer Overflow (2)

Maelstrom Player 3.0.x - Argument Buffer Overflow 2 // source: https://www.securityfocus.com/bid/7632/info Maelstrom for Linux has been reported prone to a buffer overflow vulnerability. The issue is reportedly due to a lack of sufficient bounds checking performed on user-supplied data before it ...