Apache OpenSSL Remote Exploit (Multiple Targets) (OpenFuckV2.c)

Exploit for linux platform in category remote exploits =============================================================== Apache OpenSSL Remote Exploit Multiple Targets OpenFuckV2.c =============================================================== / OF version r00t VERY PRIV8 spabam Compile with: gcc ...

Passlog Daemon 0.1 - SL_Parse Remote Buffer Overflow (2)

Passlog Daemon 0.1 - SLParse Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/7261/info It has been reported that passlogd does not properly handle some types of input. Because of this, an attacker may be able to gain unauthorized access to hosts running the vulnerable...

Passlog Daemon 0.1 - SL_Parse Remote Buffer Overflow (1)

Passlog Daemon 0.1 - SLParse Remote Buffer Overflow 1 // source: https://www.securityfocus.com/bid/7261/info It has been reported that passlogd does not properly handle some types of input. Because of this, an attacker may be able to gain unauthorized access to hosts running the vulnerable...

[EXPL] Chindi DoS Exploit Code

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...

Sun SUNWlldap Library Hostname - Local Buffer Overflow

/ hoagiesolarisldap.c gcc hoagiesolarisldap.c -o hoagiesolarisldap Author: Andi Greetz to Greuff, philipp and the other hoagie-fellas :- THIS FILE IS FOR STUDYING PURPOSES ONLY AND A PROOF-OF- CONCEPT. THE AUTHOR CAN NOT BE HELD RESPONSIBLE FOR ANY DAMAGE DONE USING THIS PROGRAM. Offsets: 9208...

CesarFTP 0.99 g - Remote Username Buffer Overrun

CesarFTP 0.99 g - Remote Username Buffer Overrun source: https://www.securityfocus.com/bid/7946/info A buffer overrun vulnerability has been reported for CesarFTP. The problem is said to occur when multiple 'USER' commands are processed within a single session. When the issue is triggered, it may...

[EXPL] STMKFont Exploit Code Released

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...

SCSA009.txt

Security Corporation Security Advisory SCSA-009 PROGRAM: PHP Ping HOMEPAGE: http://www.phpapps.org/ VULNERABLE VERSIONS: v0.1 and prior DESCRIPTION PHP ping "will allow you, provided that your server turns under Windows, to realize a "ping" on the host of your choice." direct quote from PHP Ping...

Qualcomm Eudora 5.0/5.1/6.0 - Long Attachment Filename Denial of Service (1)

source: https://www.securityfocus.com/bid/7026/info Eudora may crash when handling messages which contain attachments with excessively long filenames. This condition reportedly occurs when messages with malformed attachment filenames are stored in the user's mailbox, which could result in a...

EMUMAIL5.x.txt

1EMUMAIL 5.x parameter validation vulnerability. --------------------------- Summary -------- Parameter validation bugs exist in 2 of the most popular Greek Free e-mail providers. The problem also there is on many other servers worldwide.The affected software is EMUMAIL 5.x used by Mail.gr and th...

[EXPL] RealServer 8 Remote Buffer Overflow Vulnerability (Exploit, SETUP, RTSP)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Beyond Security would like to welcome Tiscali World Online to our service provider team. For more info on their service offering IP-Secure,...

Nethack 3 - Local Buffer Overflow (2)

Nethack 3 - Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/6806/info By passing an overly large string when invoking nethack, it is possible to corrupt memory. By exploiting this issue it may be possible for an attacker to overwrite values in sensitive areas of memory,...

Unreal engine: results of my research

After almost 3 months, I have finally decided to release the huge advisory/paper about bugs founded in the Unreal engine and all the relative code for the vulnerabilities exploitation plus some tools that I have written during the reversing of the engine. The link for get the english advisory is:...

phpLinks mail() abuse Vulnerability

phpLinks mail abuse Vulnerability By Mindwarper :: [email protected] :: ------- ------- ---------------------- Vendor Information: ---------------------- Homepage : http://www.destiney.com Vendor : Could not be informed Host not found Mailed advisory: 09/01/20 Vender Response : None...

YABB SE 0.81.41.5 - Packages.php Remote File Inclusion

YABB SE 0.81.41.5 - Packages.php Remote File Inclusion source: https://www.securityfocus.com/bid/6663/info YaBB SE allows remote users to influence the location of included files. A remote attacker may exploit this condition to cause an external, attacker-supplied file to be included and executed...

phpBB 2.0.3 - privmsg.php SQL Injection

phpBB 2.0.3 - privmsg.php SQL Injection source: https://www.securityfocus.com/bid/6634/info A SQL injection vulnerability has been reported for phpBB2 systems that may result in the deletion of all private messages. phpBB2, in some cases, does not sufficiently sanitize user-supplied input which i...

GLIBC locale - Format Strings

GLIBC locale - Format Strings / su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a"...

Smart Search 4.25 - Remote Command Execution

Smart Search 4.25 - Remote Command Execution source: https://www.securityfocus.com/bid/7133/info A vulnerability has been discovered in the Smart Search CGI script. Due to insufficient sanitization of user-supplied URI parameters, it may be possible for an attacker to execute arbitrary commands o...

SQL Injection in COMMUNITY WIZARD PORTAL

Author : MaskNBTA Vendor : http://www.commwiz.com/ Version : maybe all version Problem : Admin access Security : high Date : 16/12/2002 Exploit : In login page : LOGIN : ' OR ''=' PASS : ' OR ''=' You ' re administrator . You can do anything you want . Regards [email protected] Member of HVA -...

Sun Solaris 2.5.12.67.089 Wall - Spoofed Message Origin

Sun Solaris 2.5.12.67.089 Wall - Spoofed Message Origin // source: https://www.securityfocus.com/bid/6509/info Solaris is the freely available UNIX Operating System variant distributed by Sun Microsystems. The wall client packaged with Solaris makes assumptions about a user's environment when the...