BFTPd 1.0.12 - Remote Overflow

BFTPd 1.0.12 - Remote Overflow / Creates a filname to exploit the bug in bftpd 1.0.12 Create the file, cwd in the shell directory and nlist the file directory. Coded by korty / include include include include define LEN 205 int main int argc, char argv char bufLEN + 12; int ret = 0xbffffa80; int ...

RedHat 6.2 usrbinrcp - SUID Local Privilege Escalation

RedHat 6.2 usrbinrcp - SUID Local Privilege Escalation !/usr/bin/perl -w exploits suid privledges on rcp Not really tested this but hey works on redhat6.2 not werk on freebsd4.1 stable bug discovered by Andrew Griffiths Exploit written by tlabs greetz to those that know me innit Please set your...

SUIDPerl 5.00503 - Mail Shell Escape (2)

source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root privileges. The suidperl program perform...

BSD Linux - lpr Local Privilege Escalation

BSD Linux - lpr Local Privilege Escalation -------------------------------------- linuxlprexploit.c ---------- include include include define DEFAULTOFFSET 50 define BUFFERSIZE 1023 long getespvoid asm"movl %esp,%eax\n"; void main char buff = NULL; unsigned long addrptr = NULL; char ptr = NULL;...