11 matches found
EUVD-2004-0917
Malware in sbrugna...
poppassd-freebsd.sh.txt
!/bin/sh FreeBSD Qpopper poppassd latest version local r00t exploit by kcope tested on FreeBSD 5.4-RELEASE POPPASSDPATH=/usr/local/bin/poppassd HOOKLIB=libutil.so.4 echo "" echo "FreeBSD Qpopper poppassd latest version local r00t exploit by kcope" echo "" sleep 2 umask 0000 if -f /etc/libmap.conf...
Courier-IMAP <= 3.0.2-r1 auth_debug() Remote Format String Exploit
Exploit for bsd platform in category remote exploits ================================================================== Courier-IMAP = 3.0.2-r1 authdebug Remote Format String Exploit ================================================================== / courier-imap = 3.0.2-r1 Remote Format String...
DSR-korean-elm.pl
DSR-korean-elm.pl - kokaninATdtors.net vs. /usr/ports/korean/elm offset, retaddr and shellcode is for my FreeBSD 4.7-RELEASE, YMMV reinventing the wheel, http://www.insecure.org/sploits/elm.curses.overflow.html shellcode by zillionATsafemode.org ko-elm-2.4h4.1 ELM Mail User Agent, patched for...
Upclient 5.0 b7 - Command Line Argument Buffer Overflow
// source: https://www.securityfocus.com/bid/7703/info upclient has been reported prone to a buffer overflow vulnerability when handling command line arguments of excessive length. It is possible for a local attacker to seize control of the vulnerable application and have malicious arbitrary code...
Upclient 5.0 b7 - Command Line Argument Buffer Overflow
Upclient 5.0 b7 - Command Line Argument Buffer Overflow // source: https://www.securityfocus.com/bid/7703/info upclient has been reported prone to a buffer overflow vulnerability when handling command line arguments of excessive length. It is possible for a local attacker to seize control of the...
FreeBSD - usrbintop Format String
FreeBSD - usrbintop Format String / freebsd x86 top exploit affected under top-3.5beta9 including this version 1. get the address of .dtors from /usr/bin/top using objdump , 'objdump -s -j .dtors /usr/bin/top' 2. divide it into four parts, and set it up into an environment variable like "XSEO=" 3...
W3M 0.1/0.2 - Malformed MIME Header Buffer Overflow
source: https://www.securityfocus.com/bid/2895/info W3M is a pager/text-based WWW browser similiar to lynx. A buffer overflow vulnerability exists in the 'w3m' client program. The overflow occurs when a base64-encoded string exceeding approximately 32 characters in length is received in a MIME...
FreeBSD 3.5.1/4.2 ports package local root exploit
Exploit for bsd platform in category local exploits ================================================== FreeBSD 3.5.1/4.2 ports package local root exploit ================================================== / xklock - FreeBSD 3.5.1 & 4.2 ports package local root exploit The X key lock program conta...
mtr-0.41 root exploit
/ c 2000 babcia padlina / buffer0verfl0w security www.b0f.com / / freebsd mtr-0.41 local root exploit / include stdio.h include sys/param.h include sys/stat.h include string.h define NOP 0x90 define BUFSIZE 10000 define ADDRS 1200 long getespvoid asm"movl esp, eaxn"; int mainargc, argv int argc;...
wmmon.freebsd.txt
Posted Tuesday, December 21, 1999 - 16:41 by reid: Steve Reid wrote: Wmmon is a popular program for monitoring CPU load and other system utilization. It runs as a dockapp under WindowMaker. The FreeBSD version of this program has a feature that can be trivially exploited to gain group kmem in...