nbSMTP <= 0.99 (util.c) Client-Side Command Execution Exploit

No description provided by source. / nbSMTPfsexp.c nbSMTP v0.99 remote format string exploit by CoKi [email protected] root@nosystem:/home/coki/audi ./nbSMTPfsexp nbSMTP v0.99 remote format string exploit by CoKi [email protected] Use: ./nbSMTPfsexp options options: -t arg type of target...

nbSMTP 0.99 - util.c Client-Side Command Execution

nbSMTP 0.99 - util.c Client-Side Command Execution / nbSMTPfsexp.c nbSMTP v0.99 remote format string exploit by CoKi root@nosystem:/home/coki/audi ./nbSMTPfsexp nbSMTP v0.99 remote format string exploit by CoKi Use: ./nbSMTPfsexp options options: -t type of target system -r return address -s...

Slackware 9.1 / current : xine security update (SSA:2004-111-01)

New xine packages are available for Slackware 9.1 and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2004-111-01. The text itself is copyright C Slackware...

ngIRCd <= 0.8.2 Remote Format String Exploit

No description provided by source. / ngircdfsexp.c ngIRCd = 0.8.2 remote format string exploit Note: To obtain a successful exploitation, we need that ngIRCd has been compiled with IDENT, logging to SYSLOG and DEBUG enabled. Original Reference: http://www.nosystem.com.ar/advisories/advisory-11.tx...

ngIRCd 0.8.2 - Remote Format String

ngIRCd 0.8.2 - Remote Format String / ngircdfsexp.c ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET address from 0x0806b000 + offset -l targets lis...

ngIRCd <= 0.8.2 Remote Format String Exploit

Exploit for linux platform in category remote exploits ============================================ ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET...

ngIRCd 0.8.2 - Remote Format String

/ ngircdfsexp.c ngIRCd Use: ./ngircdfsexp -h options options: -h host or IP -p ircd port by default 6667 -t type of target system -g syslog GOT address -o offset RET addr by default 0x0806b000 -b brutefoce the RET address from 0x0806b000 + offset -l targets list root@servidor:/home/coki/audit...

/usr/bin/trn Local Exploit (not suid)

Exploit for linux platform in category local exploits ===================================== /usr/bin/trn Local Exploit not suid ===================================== / /usr/bin/trn local root exploit By ZzagorR - http://www.rootbinbash.com / / sh-2.05b$ ./trn usage : ./trn ret buf example : ./trn...

CitadelUX 6.27 - Format String

CitadelUX 6.27 - Format String / citadelfsexp.c Citadel/UX v6.27 remote format string exploit Use: ./citadelfsexp -h options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address coki@nosystem:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX v6.27...

Citadel/UX <= 6.27 Remote Root Format String Exploit

Exploit for linux platform in category remote exploits ==================================================== Citadel/UX options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address email protected:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX...

Citadel/UX 6.27 - Format String

/ citadelfsexp.c Citadel/UX v6.27 remote format string exploit Use: ./citadelfsexp -h options options: -h host or IP -t type of target system -l targets list -g syslog GOT address -r RET address coki@nosystem:/audit$ ./citadelfsexp -h localhost -t0 Citadel/UX v6.27 remote format string exploit by...

CDRTools CDRecord 2.0 (Mandrake Slackware) - Local Privilege Escalation

CDRTools CDRecord 2.0 Mandrake Slackware - Local Privilege Escalation !/usr/bin/perl Cdrecord version 2.0 and local root exploit. wsxz@localhost buffer$ perl priv8cdr.pl 4 Using target number 4 Using Mr .dtors 0x808c82c Cdrecord 2.0 i586-mandrake-linux-gnu scsibus: -1 target: -1 lun: -1 Warning:...

efstool.txt

§+++++++++++++++++++++++++++++++++++++++++++++++§ | -=- SOLDIERX.COM Presents -=- | +++++++++++++++§++++++§+++++++++++++++ \//////////////// EFSTOOL LOCAL ROOT EXPLOIT \\\\\\\\// \\\\\\\\\SLACKWARELINUX///////////////// \:::::::::::::::::::::::::::::::: by...

SSA-2002-0731201128

The Slackware Linux Project: Slackware Security Advisories Slackware Security Advisories News Security Advisories /...

SSA-2002-0626204548

The Slackware Linux Project: Slackware Security Advisories Slackware Security Advisories News Security Advisories /...

CVE-1999-1489

Vulnerability summary: CVE-1999-1489 describes a buffer overflow in the TestChip function of XFree86 SuperProbe used on Slackware Linux 3.1 . The overflow enables local users to obtain root privileges by supplying a long -nopr argument. Nature and impact (as documented): Local privilege escalatio...

CVE-1999-1434

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server...

CVE-1999-1489

Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument...

CVE-1999-1498

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file...

CVE-1999-1498

Slackware Linux 3.4 pkgtool is affected by a local vulnerability where a symlink attack on the reply file allows reading and writing to arbitrary files. Root cause: symlink manipulation enabling unintended access. Impact per the description: partial confidentiality and partial integrity; availabi...