Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux)

Exploit for linux platform in category local exploits ====================================================== Qpopper program.c include include include void init if !geteuid setgid0; setuid0; remove"/etc/ld.so.preload"; execl"/bin/sh","sh","-c","chown root:root /tmp/suid; chmod +s /tmp/suid",NULL;...

Qpopper &lt;= 4.0.8 (poppassd) Local Root Exploit (freebsd)

No description provided by source. !/bin/sh FreeBSD Qpopper poppassd latest version local r00t exploit by kcope tested on FreeBSD 5.4-RELEASE POPPASSDPATH=/usr/local/bin/poppassd HOOKLIB=libutil.so.4 echo "" echo "FreeBSD Qpopper poppassd latest version local r00t exploit by kcope" echo "" sleep ...

Wireless Tools 26 (iwconfig) Local Root Exploit (some setuid)

Exploit for linux platform in category local exploits ============================================================= Wireless Tools 26 iwconfig Local Root Exploit some setuid ============================================================= // if the iwconfig executable is setuid /str0ke include inclu...

Adobe Version Cue 1.0/1.0.1 (-lib) Local Root Exploit (OSX)

Exploit for macOS platform in category local exploits =========================================================== Adobe Version Cue 1.0/1.0.1 -lib Local Root Exploit OSX =========================================================== / Adobe Version Cue VCNativeOSX: local root exploit. dyld by:...

Adobe Version Cue 1.0/1.0.1 Local Root Exploit (OSX)

Exploit for macOS platform in category local exploits ==================================================== Adobe Version Cue 1.0/1.0.1 Local Root Exploit OSX ==================================================== !/usr/bin/perl Adobe Version Cue VCNativeOSX: local root exploit. by: vade79/v9...

Adobe Version Cue 1.0/1.0.1 (OSX) - Local Privilege Escalation

!/usr/bin/perl Adobe Version Cue VCNativeOSX: local root exploit. by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program writes data to a log file in the current working directory while running as setuid root. the logfile is formated as /VCNative-.log, which is easily...

Adobe Version Cue 1.0/1.0.1 (OSX) - &#039;-lib&#039; Local Privilege Escalation

/ Adobe Version Cue VCNativeOSX: local root exploit. dyld by: vade79/v9 [email protected] fakehalo/realhalo Adobe Version Cue's VCNative program allows un-privileged local users to load arbitrary libraries"bundles" while running setuid root. this is done via the "-lib" command-line option. note:...

Debian DSA-774-1 : fetchmail - buffer overflow

Edward Shornock discovered a bug in the UIDL handling code of fetchmail, a common POP3, APOP and IMAP mail fetching utility. A malicious POP3 server could exploit this problem and inject arbitrary code that will be executed on the victim host. If fetchmail is running as root, this becomes a root...

Operator Shell (osh) 1.7-13 Local Root Exploit

Exploit for linux platform in category local exploits ============================================== Operator Shell osh 1.7-13 Local Root Exploit ============================================== You must be groupoperator for permissions /str0ke !/usr/bin/perl OSH 1.7 Exploit 2 Gonna bang away at th...

kavLocalRoot.txt

FYI, a new version is already available and a proposed workaround is described at the end of the advisory. Peter URLs for this document: ftp://ftp.aerasec.de/pub/advisories/kav4unix/kav4unix-local-root-exploit.txt TXT P & C 2005 AERAsec Network Services and Security GmbH The information in this...

[SECURITY] [DSA 774-1] New fetchmail packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 774-1 [email protected] http://www.debian.org/security/ Martin Schulze August 12th, 2005 http://www.debian.org/security/faq -...

DSA-774-1 fetchmail - buffer overflow

Bulletin has no description...

Insecure directory permissions of default installation of Kaspersky Anti-Virus for Unix/Linux File Servers will lead to local root exploit

FYI, a new version is already available and a proposed workaround is described at the end of the advisory. Peter URLs for this document: ftp://ftp.aerasec.de/pub/advisories/kav4unix/kav4unix-local-root-exploit.txt TXT P & C 2005 AERAsec Network Services and Security GmbH The information in this...

[Full-disclosure] Root exploit in Lantonix Secure Console Server

/ $ An open security advisory 11 - Lantronix SCS Local Root Exploits 1: Bug Researcher: c0ntex - c0ntexbatgmail.com || [email protected] 2: Bug Released: August 05 2005 3: Bug Impact Rate: Hi 4: Bug Scope Rate: Local $ This advisory and/or proof of concept code must not be used for...

RO CP root exploit

effects all versions of ROCP on an apache based system how it is done first of all i was testing on my friends ragnarok server witch uses ROCP Version 4.3.4a on an apache based system and so i was stunmling through various files i shouldnt have access to such as...

FreeBSD : cdrdao -- unspecified privilege escalation vulnerability (d51a7e6e-c546-11d9-9aed-000e0c2e438a)

The developers of cdrdao report that there is a potential root exploit in the software. In order to be able to succesfully exploit this vulnerability cdrdao must be installed setuid root. When succesfully exploited a local user might get escalated privileges. By default this port is not installed...

[SECURITY] [DSA 725-2] New ppxp packages fix local root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 725-2 [email protected] http://www.debian.org/security/ Martin Schulze July 4th, 2005 http://www.debian.org/security/faq -...

Sudo 1.3.1 - 1.6.8p Pathname Validation Local Root Exploit (openbsd)

Exploit for bsd platform in category local exploits ==================================================================== Sudo 1.3.1 - 1.6.8p Pathname Validation Local Root Exploit openbsd ==================================================================== include include include include include...

Solaris 9 / 10 ld.so Local Root Exploit (2)

Exploit for solaris platform in category local exploits =========================================== Solaris 9 / 10 ld.so Local Root Exploit 2 =========================================== / Solaris 9 on SPARC: $ cat dupa.c / char sh = / setuid / "\x90\x08\x3f\xff\x82\x10\x20\x17\x91\xd0\x20\x08" /...

Solaris 9 / 10 ld.so Local Root Exploit (1)

Exploit for solaris platform in category local exploits =========================================== Solaris 9 / 10 ld.so Local Root Exploit 1 =========================================== / - SunOS 5.10 Generic i86pc i386 i86pc - SunOS 5.9 Generic112233-12 sun4u It does NOT work on: SunOS 5.8...