Dovecot IMAP 1.0.10 <= 1.1rc2 - Remote Email Disclosure Exploit

No description provided by source. lame Dovecot IMAP 1.0.10 - 1.1rc3 Exploit Here's an exploit for the recent TAB vulnerability in Dovecot. It's nothing special since in the wild there are few to none targets because of the special option which has to be set. see CVE Entry CVE-2008-1218 Exploit...

Apache Magicka Remote Code Execution Vulnerability

Apache and PHP remote command execution exploit that leverages php5-cgi. / Apache Magica by Kingcope / / gcc apache-magika.c -o apache-magika -lssl / / This is a code execution bug in the combination of Apache and PHP. On Debian and Ubuntu the vulnerability is present in the default install of th...

Debian DSA-2767-1 : proftpd-dfsg - denial of service

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

Debian Security Advisory DSA 2767-1 (proftpd-dfsg - denial of service)

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

DSA-2767-1 proftpd-dfsg - denial of service

Bulletin has no description...

Apache suEXEC Privilege Escalation / Information Disclosure

Apache suEXEC privilege elevation / information disclosure Discovered by Kingcope/Aug 2013 The suEXEC feature provides Apache users the ability to run CGI and SSI programs under user IDs different from the user ID of the calling web server. Normally, when a CGI or SSI program executes, it runs as...

Apache suEXEC Privilege Elevation / Information Disclosure

Apache suEXEC suffers from privilege escalation and information disclosure vulnerabilities. Apache suEXEC privilege elevation / information disclosure Discovered by Kingcope/Aug 2013 The suEXEC feature provides Apache users the ability to run CGI and SSI programs under user IDs different from the...

Apache suEXEC - Information Disclosure / Privilege Escalation

Apache suEXEC privilege elevation / information disclosure Discovered by Kingcope/Aug 2013 The suEXEC feature provides Apache users the ability to run CGI and SSI programs under user IDs different from the user ID of the calling web server. Normally, when a CGI or SSI program executes, it runs as...

Plesk 9.5.4 - Remote Command Execution

Plesk 9.5.4 - Remote Command Execution Plesk Apache zeroday / June 2013 discovered & exploited by kingcope this Plesk configuration setting makes it possible: scriptAlias /phppath/ "/usr/bin/" Furthermore this is not cve-2012-1823 because the php interpreter is called directly. no php file is...

ircd-hybrid 8.0.5 - Denial of Service

ircd-hybrid 8.0.5 - Denial of Service !/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = "hybExpl"...

ircd-hybrid 8.0.5 Denial Of Service

!/usr/bin/perl ircd-hybrid remote denial of service exploit for CVE-2013-0238 quick and dirty h4x by kingcope tested against ircd-hybrid-8.0.5 centos6 please modify below in case of buggy code. enjoy! use Socket; srandtime; $exploitingnick = "hybExpl" . intrand10000; sub connecttoserver $bool =...

FreeSSHd freeSSHd.exe 远程身份验证绕过漏洞

BUGTRAQ ID: 56785 CVECAN ID: CVE-2012-6066 freeSSHd是开源的SSH和SFTP服务器。 freeFTPd和其内置SFTP服务器存在身份验证绕过漏洞，在提供证书之前,打开SSH通道可绕过身份验证。未经身份验证的远程攻击者可利用此漏洞登录，而不提供任何证书，登录后，上传特制的文件可以系统权限执行任意代码。 0 freeSSHd 1.2.6 厂商补丁： freeSSHd -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://freesshd.com/ FreeSSHD al...

IBM System Director Agent - DLL Injection (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'IBM System Director Agent DLL...

Oracle MySQL for Microsoft Windows MOF Execution Vulnerability

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

freeSSHd 2.1.3 - Remote Authentication Bypass

freeSSHd 2.1.3 - Remote Authentication Bypass FreeSSHD all version Remote Authentication Bypass ZERODAY Discovered & Exploited by Kingcope Year 2011 Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/23080.zip Run like: ssh.exe -l valid username...

FreeSSHD Remote Authentication Bypass Zeroday Exploit

Exploit for windows platform in category remote exploits FreeSSHD all version Remote Authentication Bypass ZERODAY Discovered & Exploited by Kingcope Year 2011 http://www.exploit-db.com/sploits/23080.zip Run like: ssh.exe -l valid username might be: root admin administrator webadmin sysadmin...

MySQL 5.1/5.5 WiNDOWS REMOTE R00T (mysqljackpot)

No description provided by source. FARLiGHT ELiTE HACKERS LEGACY R3L3ASE Attached is the MySQL Windows Remote Exploit post-auth, udf technique including the previously released mass scanner. The exploit is mirrored at the farlight website http://www.farlight.org. Oracle MySQL on Windows Remote...

MySQL 5.1/5.5 (Windows) - &#039;MySQLJackpot&#039; Remote Command Execution

FARLiGHT ELiTE HACKERS LEGACY R3L3ASE Attached is the MySQL Windows Remote Exploit post-auth, udf technique including the previously released mass scanner. The exploit is mirrored at the farlight website http://www.farlight.org. Oracle MySQL on Windows Remote SYSTEM Level Exploit zeroday All owne...

freeFTPd 1.2.6 - Remote Authentication Bypass

FreeFTPD all versions Remote System Level Exploit Zero-Day -- No username needed, straightforward rooting! Discovered & Exploited By Kingcope Year 2011 -- https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/23079.zip Example banner: WeOnlyDo-wodFTPD 2.3.6.165 This...

MySQL Server for Windows Remote SYSTEM Level Exploit

No description provided by source. MySQL Scanner & MySQL Server for Windows Remote SYSTEM Level Exploit Version 1.0 By Kingcope In the Year of 2012 http://www.exploit-db.com/sploits/23083.zip http://sebug.net/paper/Exploits-Archives/2012-exploits/1212-exploits/23083.zip use this on a fast scan...