Denicomp Winsock RSHD/NT Standard Error 2.21.00 - Denial of Service

// source: https://www.securityfocus.com/bid/3659/info Winsock RSHD/NT is a Remote Shell Daemon for Windows NT and Windows 2000. It uses the standard Unix rsh and rcp commands. rsh ie "remote shell" allows the execution of a non-interactive program on another system running the server component,...

Easily and Remotely Pipe a Covert Shell on phpBB version 1.4.0 and below

note to editors: please leave all links intact. Easily and Remotely Pipe a Covert Shell on phpBB version 1.4.0 and below found and written by: [email protected] http://www.modernhacker.com phpBB, is an open source bulletin board created by the phpBB group phpbb.com . Versions 1.4.0 and belo...

PKCrew TIAtunnel 0.9 alpha2 - Authentication Mechanism Buffer Overflow

PKCrew TIAtunnel 0.9 alpha2 - Authentication Mechanism Buffer Overflow // source: https://www.securityfocus.com/bid/2831/info TIAtunnel is a freely available IRC session bouncing software package. It is distributed by the pkcrew. A problem in the software package makes it possible for a remote us...

PKCrew TIAtunnel 0.9 alpha2 - Authentication Mechanism Buffer Overflow

// source: https://www.securityfocus.com/bid/2831/info TIAtunnel is a freely available IRC session bouncing software package. It is distributed by the pkcrew. A problem in the software package makes it possible for a remote user to gain a local shell. Due to a buffer overflow in the authenticatio...

Solaris rpc.yppasswdd username Remote Overflow

The remote RPC service 100009 yppasswdd is vulnerable to a buffer overflow which allows any user to obtain a root shell on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10684; scriptversion"1.37"; scriptcvsdate"Date: 2018/11/15 20:50:22";...

iPlanet 4.1 Web Publisher - Remote Buffer Overflow (1)

iPlanet 4.1 Web Publisher - Remote Buffer Overflow 1 source: https://www.securityfocus.com/bid/2732/info iPlanet Webserver is an http server product offered by the Sun-Netscape Alliance. By sending a specially crafted request composed of at least 2000 characters it is possible to cause a buffer...

ISC BIND 8.2.x - 'TSIG' Remote Stack Overflow (2)

/ copyright LAST STAGE OF DELIRIUM feb 2001 poland ://lsd-pl.net/ / / bind 8.2 8.2.1 8.2.2 8.2.2-PX Slackware 4.0/RedHat 6.2 / / The code establishes a TCP connection with port 53 of a target system. / / It makes use of the "infoleak" bug through UDP to obtain the base / / value of the named...

Netscape Messaging Server IMAP LIST Command Remote Overflow

There is a buffer overflow in the remote imap server which allows an authenticated user to obtain a remote shell. A way to reproduce the overflow is to issue the command : list AAAAA...AAAA / %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc...

ListMail 112 - Command Execution

ListMail 112 - Command Execution !/usr/bin/perl -w Listmail v112 by P.M.Systems / PoC Exploit Listmail is a powerful, hands-free mailing list manager which is exploitable due to an insecure open call. This exploit will attempt to bind a shell at port 60179/fido by using inetd. Code to spawn an...

ListMail v112 - Command Execution

Exploit for cgi platform in category web applications ================================= ListMail v112 - Command Execution ================================= !/usr/bin/perl -w Listmail v112 by P.M.Systems / PoC Exploit Listmail is a powerful, hands-free mailing list manager which is exploitable due...

Security Advisory YYYY-NNN

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2000-014 ================================= Topic: Global-3.55 allows world-wide executable cgi. Version: any before 4.01 Severity: permits remote execution of arbitrary shell commands Abstract ======== When using the CGI interface of the...

[SECURITY] New version of cvsweb released

Package: cvsweb Vulnerability type: remote shell Debian-specific: no The versions of cvsweb distributed in Debian GNU/Linux 2.1 aka slink as well as in the frozen potato and unstable woody distributions, are vulnerable to a remote shell exploit. An attacker with write access to the cvs repository...

[SECURITY] New version of cvsweb released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Wichert Akkerman July 16, 2000 - ------------------------------------------------------------------------ Package: cvsweb Vulnerability type:...

Qpopper 2.53 remote problem, user can gain gid=mail

b u f f e r 0 v e r f l 0 w s e c u r i t y a d v i s o r y 5 Advisory Name: Remote shell via Qpopper2.53 Date: 5/23/00 Application: Qpopper 2.53 for NIX Vendor: Qualcomm Incorporated WWW: www.qualcomm.com Severity: can give users remote shell with gid=mail. Author: prizm [email protected]...

Remote xploit for MDBMS

/ MDBMS V0.96b6 remote shell xploit 11/05/2000 |TDP| [email protected] - HaCk-13 TeaM This code shows a MDBMS v0.96b6 vulnerability in which, any remote user can exec a shell. MDBMS daemon used to be ran as root user; exposing the system to serious vulnerability risks, because any attacker can obtai...

b0f5-Qpopper.txt

b u f f e r 0 v e r f l 0 w s e c u r i t y a d v i s o r y 5 Advisory Name: Remote shell via Qpopper2.53 Date: 5/23/00 Application: Qpopper 2.53 for NIX Vendor: Qualcomm Incorporated WWW: www.qualcomm.com Severity: can give users remote shell with gid=mail. Author: prizm [email protected]...

Sun Solaris 7.0 - rpc.ttdbserver Denial of Service

Sun Solaris 7.0 - rpc.ttdbserver Denial of Service // source: https://www.securityfocus.com/bid/811/info It is possible to crash rpc.ttdbserver by using the old tddbserver buffer overflow exploit. This problem is caused by a NULL pointer being dereferenced when rpc function 15 is called with...

interscan.txt

Date: Mon, 8 Nov 1999 01:50:26 +1300 NZDT From: dark spyrit To: [email protected] Subject: Interscan VirusWall NT 3.23/3.3 buffer overflow. A buffer overflow exists on the VirusWall smtp gateway - by sending a long HELO command you can overflow the buffer and execute arbitrary code. Example...

SDI.exploit4.proftpd.txt

From: Bugtraq List [email protected] on behalf of Thiago/c0nd0r [email protected] Sent: Wednesday, September 15, 1999 12:31 PM To: [email protected] Subject: SDI anonymous remote exploit for proftpd Hello, I've seen some discussion about the possibility of exploit the newest proft...

ipop2d.txt

Vulnerable Program: POP2 shipped with imap-4.4 package Platforms: Linux Impact: Remote users can spawn a shell with uid of user "nobody" Reported Initally: Chris Evans Exploit Code: bind Details: -------- POP-2 supports anonymous proxy service where remote users can connect to remote imap servers...