792 matches found
SquirrelMail chpasswd buffer overflow
No description provided by source. / 0x3142-sq-chpasswd.c Squirremail chpasswd buffer overflow. Tested on SuSE 9. The bug was found by Matias Neiff matias neiff com ar Coded by x314 0x3142 hushmail.com c 2004 Copyright by x314. All Rights Reserved. Greets: m0s krewz. / include stdlib.h char...
Solaris 9 / 10 ld.so Local Root Exploit (2)
No description provided by source. / Solaris 9 on SPARC: $ cat dupa.c / char sh = / setuid / "\x90\x08\x3f\xff\x82\x10\x20\x17\x91\xd0\x20\x08" / execve / "\x20\xbf\xff\xff\x20\xbf\xff\xff\x7f\xff\xff\xff\x90\x03\xe0\x20" "\x92\x02\x20\x10\xc0\x22\x20\x08\xd0\x22\x20\x10\xc0\x22\x20\x14"...
AIX 5.2 paginit Local Root Exploit
No description provided by source. / IBM AIX paginit root exploit I just wanted to play with PowerPC Tested on 5.2 intropy intropy at caughq.org / include stdio.h include unistd.h include stdlib.h include string.h define DEBUG 1 define BUFFERSIZE 8000 define EGGSIZE 4003 define NOP 0x60 define...
Solaris 8/9 passwd circ() Local Root Exploit
No description provided by source. / $Id: raptorpasswd.c,v 1.1 2004/12/04 14:44:38 raptor Exp $ raptorpasswd.c - passwd circ local, Solaris/SPARC 8/9 Copyright c 2004 Marco Ivaldi [email protected] Unknown vulnerability in passwd1 in Solaris 8.0 and 9.0 allows local users to gain privileges...
Firebird 1.0.2 FreeBSD 4.7-RELEASE Local Root Exploit
No description provided by source. / DSR-firebird.c ------------------------------- Tested on: Firebird 1.0.2 FreeBSD 4.7-RELEASE This is Proof Of concept code. bash-2.05a$ ./DSR-firebird Firebird-1.0.2 Local exploit for Freebsd 4.7 by - [email protected]...
traceroute Local Root Exploit
No description provided by source. / MasterSecuritY www.mastersecurity.fr openwall.c - Local root exploit in LBNL traceroute Copyright C 2000 Michel "MaXX" Kaempf [email protected] Updated versions of this exploit and the corresponding advisory will be made available at:...
Linux Kernel 2.4.x mremap() bound checking Root Exploit
No description provided by source. / Linux kernel mremap bound checking bug exploit. Bug found by Paul Starzetz paul isec pl Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...
hztty 2.0 Local root exploit (Tested on Red Hat 9.0)
No description provided by source. / 0x333hztty = hztty 2.0 local root exploit more info : Debian Security Advisory DSA 385-1 note I adjusted some part of hztty's code since there were some errors. hope this will not influence exploitation : tested against Red Hat 9.0 : c0wboy@0x333 c0wboy$ gcc...
Tru64 UNIX 4.0g /usr/bin/at Local Root Exploit
No description provided by source. / Tru64 UNIX 4.0g JAVA /usr/bin/at local root exploit. ALPHA Author: Cody Tubbs loophole of hhp. Site: www.hhp-programming.net Email: [email protected] Date: 2/1/2000. I made this without access to gdb, It's untested... may require modification, may require...
Solaris 5.5.1 X11R6.3 xterm (-xrm) Local Root Exploit
No description provided by source. / X11R6.3 xterm exploit for solaris 5.5.1 by DCRH 28/5/97 / include stdio.h include stdlib.h include sys/types.h include unistd.h define EXTRA2 1300 define BUFLENGTH 400 define EXTRA 500 / Need an addr such that contents of addr+0xe98 = 0 / define SAFEADDR...
QNX Neutrino 6.2.1 (phfont) Race Condition Local Root Exploit
No description provided by source. !/bin/sh word, exploit for http://www.idefense.com/intelligence/vulnerabilities/display.php?id=383 greetings and salutations from www.lort.dk kokanin@dtors 18/10/2003 $ cksum /usr/photon/bin/phfont 4123428723 30896 /usr/photon/bin/phfont $ uname -a QNX localhost...
UUCP Exploit - file creation/overwriting (symlinks)
No description provided by source. / root exploit: multiple subsystem errors allowing root exploit bashack.c - Thu Nov 30 21:50:50 NZDT 2000 redhat 6.1 /etc/rc.d/ and scripts that are trusting the untrustworthy. /bin/sh acts silly when u get it to use the redirection. it creates a mode 666 file...
sudo.bin NLSPATH Local Root Exploit
No description provided by source. include unistd.h include stdio.h include stdlib.h include fcntl.h include sys/stat.h define PATHSUDO "/usr/bin/sudo.bin" define BUFFERSIZE 1024 define DEFAULTOFFSET 50 ulong getesp asm"movl %esp, %eax"; mainint argc, char argv uchar execshell =...
Apple Mac OS X (/usr/bin/passwd) Custom Passwd Local Root Exploit
No description provided by source. !/usr/bin/perl /usr/bin/passwdOSX: local root exploit. by: vade79/v9 [email protected] fakehalo/realhalo Apple OSX's /usr/bin/passwd program has support for a custom passwd file to be used instead of the standard/static path. this feature has security issues in the...
Adobe Version Cue 1.0/1.0.1 (-lib) Local Root Exploit (OSX)
No description provided by source. / Adobe Version Cue VCNativeOSX: local root exploit. dyld by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program allows un-privileged local users to load arbitrary libraries"bundles" while running setuid root. this is done via the...
Mac OS X Panther Internet Connect Local Root Exploit
No description provided by source. Date: 25.07.2004 Author: B-r00t. 2004. Email: B-r00t br00t blueyonder co uk Vendor: Apple Operating System: OSX Panther Possibly Previous Versions. Application: Internet Connect.app Tested: Panther 10.3.4 Internet Connect v1.3 Problem: Internet Connect allows an...
Adobe Version Cue 1.0/1.0.1 Local Root Exploit (OSX)
No description provided by source. !/usr/bin/perl Adobe Version Cue VCNativeOSX: local root exploit. by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program writes data to a log file in the current working directory while running as setuid root. the logfile is formated...
Infecting Elf Binaries to Gain Local Root Exploit
No description provided by source. gcc infR3.s -o infR3 strip infR3 find a writable binary example: ls ./infR3 /bin/ls when root calls the writable ls, chmod will be setuided Coded by [email protected] == [email protected] .text .global main infeccion de start para conseguir local root use ...
HP-UX 11i (swmodify) Stack Overflow Local Root Exploit
Exploit for hp-ux platform in category local exploits ====================================================== HP-UX 11i swmodify Stack Overflow Local Root Exploit ====================================================== / HP-UX swmodify buffer overflow exploit =======================================...
Samba 2.2.8 (Bruteforce Method) Remote Root Exploit
No description provided by source. / Mass Samba Exploit by Schizoprenic Xnuxer-Research c 2003 This code just for eduction purpose / include stdio.h include stdlib.h include sys/stat.h void usagechar s printf"Usage: %s \n",s; exit-1; int mainint argc, char argv printf"Mass Samba Exploit by...