[SECURITY] [DSA 609-1] New atari800 packages fix local root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 609-1 [email protected] http://www.debian.org/security/ Martin Schulze December 14th, 2004 http://www.debian.org/security/faq -...

AdobeMac.txt

Note: Sorry if this is a dupe, I might of sent it to the wrong address. Local root exploit on Mac OS X 10.3.6 with Adobe products installed Found by Jonathan Bringhurst Summary: It's possible to create a suid root shell with a non-privileged user on a Mac OS X 10.3.6 system with Adobe Version Cue...

Mac OS X Adobe Version Cue Local Root Exploit

Exploit for macOS platform in category local exploits ============================================= Mac OS X Adobe Version Cue Local Root Exploit ============================================= Proof of concept: haven: fintler$ cd haven: fintler$ id uid=502fintler gid=500fintler groups=500fintler...

Local root exploit on Mac OS X with Adobe Version Cue

Note: Sorry if this is a dupe, I might of sent it to the wrong address. Local root exploit on Mac OS X 10.3.6 with Adobe products installed Found by Jonathan Bringhurst [email protected] Summary: It's possible to create a suid root shell with a non-privileged user on a Mac OS X 10.3.6 syst...

Qwik SMTP 0.3 - Format String

/ qwik-smtp Remote Root Exploit ------------------------------- Bug found by: Dark Eagle Exploit coded by: Carlos Barros Home Page: http://www.barrossecurity.com Exploitation techinique: This bug is a simple format string bug. While coding this exploit, I found just two "problems". The first is...

Qwik SMTP 0.3 - Format String

Qwik SMTP 0.3 - Format String / qwik-smtp Remote Root Exploit ------------------------------- Bug found by: Dark Eagle Exploit coded by: Carlos Barros Home Page: http://www.barrossecurity.com Exploitation techinique: This bug is a simple format string bug. While coding this exploit, I found just...

WvTFTPd 0.9 Remote Root Heap Overflow Exploit

Exploit for linux platform in category remote exploits ============================================= WvTFTPd 0.9 Remote Root Heap Overflow Exploit ============================================= / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is no...

WvTFTPd 0.9 Remote Root Heap Overflow Exploit

No description provided by source. / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is not exactly straight forward. When we overflow our buffer, we overwrite a pointer that is freed before we get to trigger our overwrite. so we have to restore th...

WvTFTPd 0.9 - Remote Heap Overflow

WvTFTPd 0.9 - Remote Heap Overflow / wvtftp option name heap overflow remote root exploit infamous42md AT hotpop DOT com exploitation is not exactly straight forward. When we overflow our buffer, we overwrite a pointer that is freed before we get to trigger our overwrite. so we have to restore th...

wvtfpd remote root heap overflow

Subject: WVTFTPD heap overflow, remote root exploit ++++++++++++++++++++++++++++++++++++++++++++ Product: WVTFTPD ... the world's fastest TFTP server. http://open.nit.ca/wiki/index.php?page=WvTftp Not used much yet b/c it's rather new, but other software by this company seems to be in circulation...

SCO OpenServer 5.0.7 - MMDF deliver Privilege Escalation

/ MMDF deliver local root exploit for SCO OpenServer 5.0.7 x86 Copyright 2004 Ramon de Carvalho Valle / char shellcode= / 36 bytes / "\x68\xff\xf8\xff\x3c" / pushl $0x3cfff8ff / "\x6a\x65" / pushl $0x65 / "\x89\xe6" / movl %esp,%esi / "\xf7\x56\x04" / notl 0x04%esi / "\xf6\x16" / notb %esi /...

SCO Openserver 5.0.7 (MMDF deliver) Local Root Exploit

Exploit for sco platform in category local exploits ====================================================== SCO Openserver 5.0.7 MMDF deliver Local Root Exploit ====================================================== / MMDF deliver local root exploit for SCO OpenServer 5.0.7 x86 Copyright 2004 Ramo...

SCO OpenServer 5.0.7 - MMDF deliver Privilege Escalation

SCO OpenServer 5.0.7 - MMDF deliver Privilege Escalation / MMDF deliver local root exploit for SCO OpenServer 5.0.7 x86 Copyright 2004 Ramon de Carvalho Valle / char shellcode= / 36 bytes / "\x68\xff\xf8\xff\x3c" / pushl $0x3cfff8ff / "\x6a\x65" / pushl $0x65 / "\x89\xe6" / movl %esp,%esi /...

Monit <= 4.2 Basic Authentication Remote Root Exploit

No description provided by source. / THE EYE ON SECURITY RESEARCH GROUP - INDIA http://www.eos-india.net/poc/305monit.c Remote Root Exploit for Monit = 4.2 Vulnerability: Buffer overflow in handling of Basic Authentication informations. Server authenticates clients through: Authentication: Basic...

Debian DSA-357-1 : wu-ftpd - remote root exploit

iSEC Security Research reports that wu-ftpd contains an off-by-one bug in the fbrealpath function which could be exploited by a logged-in user local or anonymous to gain root privileges. A demonstration exploit is reportedly available. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Debian DSA-189-1 : luxman - local root exploit

iDEFENSE reported about a vulnerability in LuxMan, a maze game for GNU/Linux, similar to the PacMan arcade game. When successfully exploited a local attacker gains read-write access to the memory, leading to a local root compromise in many ways, examples of which include scanning the file for...

Debian DSA-454-1 : linux-kernel-2.2.22-alpha - failing function and TLB flush

Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...

Debian DSA-119-1 : ssh -- local root exploit, remote client exploit

Joost Pol reports that OpenSSH versions 2.0 through 3.0.2 have an off-by-one bug in the channel allocation code. This vulnerability can be exploited by authenticated users to gain root privilege or by a malicious server exploiting a client with this bug. %NASLMINLEVEL 999999 @DEPRECATED@ This...

Debian DSA-101-1 : sudo - Local root exploit

Sebastian Krahmer from SuSE found a vulnerability in sudo which could easily lead into a local root exploit. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-101. The text itself is copyrig...

Debian DSA-092-1 : wmtv - local root exploit

Nicolas Boullis found a nasty security problem in the wmtv a dockable video4linux TV player for windowmaker package as distributed in Debian GNU/Linux 2.2. wmtv can optionally run a command if you double-click on the TV window. This command can be specified using the -e command line option...