3715 matches found
Citadel/UX <= 6.23 Remote USER Directive Exploit (Private Version)
No description provided by source. / Citadel/UX remote exploit By nebunu: pppppppal at yahoo dot com This is the version which contains targets,abuse it kiddies Bruteforce: You only have 4096/4=1024 tries. The magic offset lies about 2048 + or - 4,8,16....256 So practically speaking you have...
AOL Instant Messenger AIM "Away" Message Remote Exploit
Exploit for unknown platform in category remote exploits ======================================================= AOL Instant Messenger AIM "Away" Message Remote Exploit ======================================================= / CAN-2004-0636 / / AIM Away Message Buffer Overflow Exploit Exploit by...
SMTP Banner - Port Specific
Binary data 2005.prm...
CVE-2004-0647
shorewall 1.4.10c and earlier, and 2.0.x before 2.0.3a, allows local users to overwrite arbitrary files via a symlink attack on the chains-$$ temporary file...
[SECURITY] [DSA 519-1] New CVS packages fix several potential security problems
-------------------------------------------------------------------------- Debian Security Advisory DSA 519-1 [email protected] http://www.debian.org/security/ Martin Schulze June 15th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 476-1] New heimdal packages fix cross-realm vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 476-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 6th, 2004 http://www.debian.org/security/faq -...
Squid Proxy 2.42.5 - NULL URL Character Unauthorized Access
Squid Proxy 2.42.5 - NULL URL Character Unauthorized Access source: https://www.securityfocus.com/bid/9778/info It has been reported that Squid Proxy may be prone to an unauthorized access vulnerability that may allow remote users to bypass access controls resulting in unauthorized access to...
TYPSoft FTP Server 1.10 multiple vulnerabilities
Application: TYPSoft FTP Server http://www.typsoft.com/ Version: 1.10 Bug: + multiple vulnerabilities Denial Of Service + 100 employment of computer resources Author: intuit e-mail: intuitatlinuxmail.org web: http://rootshells.tk/ greetz to: tgs ; 1. Description 2. The bug 3. The code 4. The fix...
xploit_dbg.cpp.txt
/ Discovered and coded Jan 25, 2004 Copyright C2004 [email protected] / include include typedef int NTSTATUS; define NTAPI stdcall const IA32SYSENTERCS = 0x174; const IA32SYSENTERESP = 0x175; const IA32SYSENTEREIP = 0x176; const SelCodeKernel = 0x8; const CmosIndx = 0x0E; // CMOS Diagnostic...
AtGuard 3.2
Я тут случайно нашел в AtGuard 3.2, iamdrv.sys ver.3.22.09 size.102 976 вылетает под win2k, стандартное переполнение, проверяется как : открываешь 25 порт на прием, запускаешь atguard и retina 4.9.100 там есть такой cham attack вот через него и вылетает, я soft-ice посмотрел, простое переполнение...
IA WebMail Server 3.x - iaregdll.dll 1.0.0.5 Remote Overflow
IA WebMail Server 3.x - iaregdll.dll 1.0.0.5 Remote Overflow !/usr/bin/perl -w IA WebMail 3.x iaregdll.dll version 1.0.0.5 Remote Exploit Application Specific Shellcode: URL Downloader - www elitehaven net/ncat.exe downloaded - c:\nc.exe created By Peter Winter-Smith peter4020 hotmail com Shellco...
CVE-2003-0681
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets 1 recipient 2, final, or 3 mailer-specific envelope recipients, has unknown consequences...
PHP-Nuke v 6.7 + Windows = File Upload
Informations : °°°°°°°°°°°°° Language : PHP Version : 6.7 Website : http://www.phpnuke.org Problem : File Upload PHP Code/Location : °°°°°°°°°°°°°°°°°°° modules/WebMail/mailattach.php :...
CVE-2002-1455
Multiple cross-site scripting XSS vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via 1 test.php, 2 test.shtml, or 3 redir.exe...
Epic Games Unreal Engine 436 - URL Directory Traversal
source: https://www.securityfocus.com/bid/6775/info It has been reported that a directory traversal vulnerability exists in several games using some versions of the Unreal Engine. It is possible for attackers to traverse outside of the game's installation directory using directory traversal...
Important: Red Hat Security Advisory: kernel security update
The kernel in Red Hat Linux Advanced Server 2.1 is vulnerable to a local denial of service attack. Updated packages are available which address this vulnerability. Updated 28 August 2003 Added CAN-2003-0461 to the list of security issues that were fixed by this advisory there are no changes to th...
Simple Web Server protected files access
URL http://server.com///secret/file allows protected file access...
CVE-2002-0498
Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID 59, which could allow local users with that UID or GID to modify the files and gain privileges as other TotalView users...
CVE-2001-1143
IBM DB2 7.0 allows a remote attacker to cause a denial of service crash via a single byte to 1 db2ccs.exe on port 6790, or 2 db2jds.exe on port 6789...
Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes
Overview Various RADIUS servers and clients permit the passing of vendor-specific and user-specific attributes. Several implementations of RADIUS fail to check the Vendor-Length of the Vendor-Specific attribute. It's possible to cause a denial of service against RADIUS servers with a malformed...