73 matches found
Alt-N MDaemon 6.5.1 - IMAPSMTP Remote Buffer Overflow
Alt-N MDaemon 6.5.1 - IMAPSMTP Remote Buffer Overflow ///////////////////////////////////////////////////////////// // Remote proof-of-concept exploit // // for // // Mdaemon IMAP server v6.5.1 // // and // // possible other version. // // Find bug: DBuG. // // Author: DBuG. // // [email protected] // /...
HP Web Jetadmin 7.5.2456 - Arbitrary Command Execution
HP Web Jetadmin 7.5.2456 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/9973/info Reportedly HP web Jetadmin is prone to a remote arbitrary command execution vulnerability. This issue is due to a failure of the application to properly validate and sanitize user supplied...
YaBB/YaBBse Cross Site Scripting Vulnerability
Advisory Name : YaBB/YaBBse Cross Site Scripting Vulnerability Release Date : Mar 14,2004 Application : YaBB/YaBBse Test On : YaBB 1 GoldSP1.3 YaBB SE 1.5.1 Final Vendor URL : http://www.yabbforum.com/ http://www.yabbse.org/ Discover : Cheng Peng Suapplesoupatmsn.com Proof of conecpt: The problem...
RhinoSoft Serv-U FTPd Server 3/4/5 - 'MDTM' Time Argument Buffer Overflow (3)
// source: https://www.securityfocus.com/bid/9751/info Serv-U FTP Server has been reported prone to a remote stack based buffer overflow vulnerability when handling time zone arguments passed to the MDTM FTP command. The problem exists due to insufficient bounds checking. Ultimately an attacker m...
Webcam Corp Webcam Watchdog 1.01.13.63 Web Server - Remote Buffer Overflow
Webcam Corp Webcam Watchdog 1.01.13.63 Web Server - Remote Buffer Overflow source: https://www.securityfocus.com/bid/9351/info A problem has been identified in the handling of remote web requests by the Webcam Watchdog software. Because of this, it may be possible for a remote attacker to gain...
Musicqueue 0.91.01.1 - Multiple Buffer Overrun Vulnerabilities
Musicqueue 0.91.01.1 - Multiple Buffer Overrun Vulnerabilities // source: https://www.securityfocus.com/bid/8903/info Multiple buffer overrun vulnerabilities have been discovered in Musicqueue. Both issues stem from the lack of bounds checking when passing user-supplied input to the sprintf libc...
MySQL 3.23.x/4.0.x Remote Exploit
No description provided by source. / Mysql 3.23.x/4.0.x remote exploit proof of concept using jmp eax bkbll bkbll cnhonker.net,bkbll tom.com 2003/09/12 compile:gcc -o mysql mysql.c -L/usr/lib/mysql -lmysqlclient DO NOT DISTRUBITED IT / include stdio.h include stdlib.h include unistd.h include...
MySQL 3.23.x4.0.x - Remote Buffer Overflow
MySQL 3.23.x4.0.x - Remote Buffer Overflow / Mysql 3.23.x/4.0.x remote exploit proof of concept using jmp eax bkbll bkbll cnhonker.net,bkbll tom.com 2003/09/12 compile:gcc -o mysql mysql.c -L/usr/lib/mysql -lmysqlclient DO NOT DISTRUBITED IT / include include include include include include inclu...
eMule/xMule/LMule OP_SERVERMESSAGE Format String Exploit
Exploit for unknown platform in category remote exploits ======================================================== eMule/xMule/LMule OPSERVERMESSAGE Format String Exploit ======================================================== / eMule/xMule/LMule OPSERVERMESSAGE Format String Vulnerability...
Cisco IOS 1112 - OSPF Neighbor Buffer Overflow
Cisco IOS 1112 - OSPF Neighbor Buffer Overflow // source: https://www.securityfocus.com/bid/6895/info Cisco IOS is prone to a remotely exploitable buffer overflow condition when handling malformed OSPF Open Shortest Path First packets. The overflow occurs when more than 255 OSPF neighbors are...
calderax.txt
The following proof of concepts were provided by Pavel Kankovsky: $ Xserver -xkbdir 'id /tmp/IWASHERE;' exit X server $ grep root /tmp/IWASHERE && echo 'Gotcha!' $ cat /tmp/xkbcomp !/bin/sh id /tmp/IWASHERE ctrl+d $ chmod a+x /tmp/xkbcomp $ Xserver -xkbdir /tmp X server executes /tmp/xkbcomp...
uuuppz.com - Advisory 002 - mIRC $asctime overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 General Info - ------------ Researched by: James Martin Full advisory: http://www.uuuppz.com/research/adv-002-mirc.htm Exploit: Proof of concept code available at above URL. Product: mIRC Website: http://www.mirc.com Version: V6.00, V6.01, V6.02. Fix:...
Microsoft Windows Server 2000 SP1SP2 - isapi .printer Extension Overflow (1)
Microsoft Windows Server 2000 SP1SP2 - isapi .printer Extension Overflow 1 / iishack 2000 - eEye Digital Security - 2001 This affects all unpatched windows 2000 machines with the .printer isapi filter loaded. This is purely proof of concept. Quick rundown of the exploit: Eip overruns at position...