SETI@home Clients - Remote Buffer Overflow

/ Seti@Home exploit by zillionatsafemode.org 2003/01/07 Credits for the vulnerability go to: SkyLined http://spoor12.edup.tudelft.nl/SkyLined%20v4.2/?Advisories/Seti@home Use this exploit in combination with a DNS spoofing utility such as the one provided in the Dsniff package...

Apache mod_ssl < 2.8.7 OpenSSL - 'OpenFuckV2.c' Remote Buffer Overflow (1)

/ E-DB Note: Updated exploit https://www.exploit-db.com/exploits/47080 E-DB Note: Updating OpenFuck Exploit http://paulsec.github.io/blog/2014/04/14/updating-openfuck-exploit/ OF version r00t VERY PRIV8 spabam Compile with: gcc -o OpenFuck OpenFuck.c -lcrypto objdump -R /usr/sbin/httpd|grep free ...

Apache mod_ssl 2.8.7 OpenSSL - OpenFuckV2.c Remote Buffer Overflow (1)

Apache modssl 2.8.7 OpenSSL - OpenFuckV2.c Remote Buffer Overflow 1 / E-DB Note: Updated exploit https://www.exploit-db.com/exploits/47080 E-DB Note: Updating OpenFuck Exploit http://paulsec.github.io/blog/2014/04/14/updating-openfuck-exploit/ OF version r00t VERY PRIV8 spabam Compile with: gcc -...

Microsoft IIS 5.0 (Windows XP/2000/NT 4.0) - WebDAV 'ntdll.dll' Remote Buffer Overflow (3)

E-DB Note: Updated Exploit https://www.exploit-db.com/exploits/22368/ source: https://www.securityfocus.com/bid/7116/info The Windows library ntdll.dll includes a function that does not perform sufficient bounds checking. The vulnerability is present in the function "RtlDosPathNameToNtPathNameU"...

ISC BIND < 4.9.5 DNS Resolver Functions Remote Overflow

The remote BIND server, according to its version number, is vulnerable to a remote buffer overflow within its resolver code. An attacker may be able to execute arbitrary code by having the remote DNS server make a request and send back a malicious DNS response with an invalid length field. C...

Passlog Daemon 0.1 - SL_Parse Remote Buffer Overflow (2)

Passlog Daemon 0.1 - SLParse Remote Buffer Overflow 2 // source: https://www.securityfocus.com/bid/7261/info It has been reported that passlogd does not properly handle some types of input. Because of this, an attacker may be able to gain unauthorized access to hosts running the vulnerable...

Passlog Daemon 0.1 - &#039;SL_Parse&#039; Remote Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/7261/info It has been reported that passlogd does not properly handle some types of input. Because of this, an attacker may be able to gain unauthorized access to hosts running the vulnerable software. / Title: Remote Multiple Buffer Overflow...

Light HTTPd 0.1 (Windows) - Remote Buffer Overflow

Buffer overflow in Light HTTPd lhttpd 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: start end module name 00400000 0041a000 lhttpd C:\Documents and Settings\Administrator\My...

Microsoft IIS 5.0 (Windows XP/2000/NT 4.0) - WebDAV &#039;ntdll.dll&#039; Remote Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/7116/info The Windows library ntdll.dll includes a function that does not perform sufficient bounds checking. The vulnerability is present in the function "RtlDosPathNameToNtPathNameU" and may be exploited through other programs that use the library if...

PXE Server 2.0 - Remote Buffer Overrun

PXE Server 2.0 - Remote Buffer Overrun // source: https://www.securityfocus.com/bid/7129/info A vulnerability has been discovered in PXE which is included with Red Hat Linux. Specifically, it is possible for a remote attacker to overrun a buffer by passing excessive data to the service. This may...

Multiple serious bugs in Lotus Domino

Bugs in server and client components, including remote buffer overflows...

Melange Chat Server 1.10 - Remote Buffer Overflow

/ Proof of Concept for Melange Chat Server 1.10 a lame remote bof exploit by innerphobia 12/24/02 Credits go to: - iDefense Labs for the advisory - blink for discovering the bug - Irian for the shellcode With careful calculation it is possible to control even the EIP, not just one byte of EIP...

Melange Chat Server 1.10 Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits ======================================================= Melange Chat Server 1.10 Remote Buffer Overflow Exploit ======================================================= / Proof of Concept for Melange Chat Server 1.10 a lame remote bof exploit ...

Melange Chat Server 1.10 - Remote Buffer Overflow

Melange Chat Server 1.10 - Remote Buffer Overflow / Proof of Concept for Melange Chat Server 1.10 a lame remote bof exploit by innerphobia 12/24/02 Credits go to: - iDefense Labs for the advisory - blink for discovering the bug - Irian for the shellcode With careful calculation it is possible to...

XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun

XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun source: https://www.securityfocus.com/bid/6241/info A remotely exploitable buffer overrun condition has been reported in the XFS font server, fs.auto used by multiple vendors. This vulnerability may be exploited by remote attackers to execut...

lightwebug.txt

======================================== INetCop Security Advisory 2002-0x82-002 ======================================== Title: Remote Buffer Overflow vulnerability in Light HTTPd. 0x01. Description Lhttpd that is improved in ghttpd for more convenient and strong webserver, is webserver that off...

libhttpdbug.txt

======================================== INetCop Security Advisory 2002-0x82-003 ======================================== Title: Remote Buffer Overflow vulnerability in Lib HTTPd. 0x01. Description LibHTTPD can be used to add basic web server capabilities to an application or embedded device...

zeroobug.txt

======================================== INetCop Security Advisory 2002-0x82-004 ======================================== Title: Remote Buffer Overflow vulnerability in Zeroo HTTP Server. 0x01. Description Zeroo HTTP Server is simple and fast webserver. Many overflow bugs exist innumerably to...

Lonerunner Zeroo HTTP Server 1.5 - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/6190/info Zeroo HTTP server is a freely available, open source web server. It is available for the Linux and Microsoft Windows platforms. It has been reported that Zeroo HTTP server does not sufficiently check bounds on some requests. This occurs when a...

IISPop 1.161/1.181 - Remote Buffer Overflow (Denial of Service) (PoC)

source: https://www.securityfocus.com/bid/6183/info IISPop is vulnerable to a denial of service caused by a buffer overflow. By sending an unusually large amount of data to IISPop on TCP port 110, the application will terminate with an access violation. Arbitrary code execution may be possible...