Backdoor.Win32.Wollf.m Weak Hardcoded Password

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/f375f6569e146e432e23589b8f112165.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Wollf.m Vulnerability: Weak Hardcoded Password Description: The malware runs with...

Ipswitch WS_FTP Server 3.4/4.0 FTP Command Buffer Overrun Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8542/info Ipswitch WSFTP Server is reported to be prone to buffer overruns when handling data supplied to the APPE and STAT FTP commands. An FTP user who supplies excessive input to these commands could potentially execut...

Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c)

No description provided by source. / k-rad3.c - linux 2.6.11 and below CPL 0 kernel local exploit v3 Discovered and original exploit coded Jan 2005 by sd [email protected] Modified 2005/9 by alert7 [email protected] XFOCUS Security Team http://www.xfocus.org gcc -o k-rad3 k-rad3.c -static -O2 test...

On double-byte vulnerability-vulnerability warning-the black bar safety net

by profession owe money Yesterday spent the time to look at wide character of the problem, only to find that prior understanding has been wrong. %df' is a PHP escape（open GPC, with the addslashes function, or icov, etc., a single quotation mark is combined with the backslash\ Into %df' Where\hex...

Linux Kernel &lt;= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c)

No description provided by source. / k-rad3.c - linux 2.6.11 and below CPL 0 kernel local exploit v3 Discovered and original exploit coded Jan 2005 by sd [email protected] Modified 2005/9 by alert7 [email protected] XFOCUS Security Team http://www.xfocus.org gcc -o k-rad3 k-rad3.c -static -O2 test...

Multiple OS kernel insecure handling of stdio file descriptor

XFOCUS team http://www.xfocus.org/ had discovered Multiple OS kernel insecure handling of stdio file descriptor. =================== Affected OS Version AIX 5.3 Solaris 9 HPUX B11.11 maybe other version,we did not tested =========== Description The affected OSes allows local users to write to or...

AIX 5.1 Bellmail Local Race Condition Exploit (Instructions w/ Exploit)

No description provided by source. -bash-2.05b$ -bash-2.05b$ cat xaix5bellmail.pl !/usr/bin/perl FileName: xaix5bellmail.pl Exploit "Race condition vulnerability BUGTRAQ ID: 8805" of /usr/bin/bellmail command on Aix5 to change any file owner to current user. Usage : xaix5bellmail.pl aimfile aimfi...

[Full-disclosure] [xfocus-SD-060329]MPlayer: Multiple integer overflows

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 xfocus-SD-060329MPlayer: Multiple integer overflows MPlayer is a media player capable of handling multiple multimedia file formats. XFOCUS team http://www.xfocus.org/ had discovered Multiple integer overflows .Those can lead to a heap-based buffer...

[Full-disclosure] [xfocus-SD-060314]Microsoft Office Excel Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Relase Date: 2006-03-15 CVE: CVE-2006-0031 Affected Products: ================== Microsoft Office Excel 2000 Microsoft Office Excel XP Microsoft Office Excel 2003 Impact: ======= Microsoft Excel is a popular spreadsheet program of Microsoft Office...

xfocus-SD-060206.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title:xfocus-SD-060206BCB compiler incorrect deal sizeof operator vulnerability Affected version : = BCB6+entupd4 Vendor: http://borland.com/ Url: http://www.xfocus.net/releases/200602/a849.html XFOCUS http://www.xfocus.org had already discovered a...

[Full-disclosure] [xfocus-SD-060206]BCB compiler incorrect deal sizeof operator vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title:xfocus-SD-060206BCB compiler incorrect deal sizeof operator vulnerability Affected version : = BCB6+entupd4 Vendor: http://borland.com/ Url: http://www.xfocus.net/releases/200602/a849.html XFOCUS http://www.xfocus.org had already discovered a...

xfocus-SD-060101.txt

Title:xfocus-SD-060101AIX getCommand&getShell two vulnerabilities Affected version : aix5.3 ml03,Other versions not test, should also be affected. Vendor: http://www.ibm.com/ Where: Local XFOCUS http://www.xfocus.org had already discovered some vulnerabilities in getCommand&getShell. After apply...

Linux Kernel 2.6.9 &lt; 2.6.11 (RHEL 4) - &#039;SYS_EPoll_Wait&#039; Local Integer Overflow / Local Privilege Escalation

/ k-rad3.c - linux 2.6.11 and below CPL 0 kernel local exploit v3 Discovered and original exploit coded Jan 2005 by sd Modified 2005/9 by alert7 XFOCUS Security Team http://www.xfocus.org gcc -o k-rad3 k-rad3.c -static -O2 tested succeed : on default installed RHEL42.6.9-5.EL and 2.6.9-5.ELsmp...

Linux Kernel <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c)

Exploit for linux platform in category local exploits ============================================================ Linux Kernel Modified 2005/9 by alert7 XFOCUS Security Team http://www.xfocus.org gcc -o k-rad3 k-rad3.c -static -O2 tested succeed : on default installed RHEL42.6.9-5.EL and...

Linux Kernel 2.6.9 2.6.11 (RHEL 4) - SYS_EPoll_Wait Local Integer Overflow Local Privilege Escalation

Linux Kernel 2.6.9 2.6.11 RHEL 4 - SYSEPollWait Local Integer Overflow Local Privilege Escalation / k-rad3.c - linux 2.6.11 and below CPL 0 kernel local exploit v3 Discovered and original exploit coded Jan 2005 by sd Modified 2005/9 by alert7 XFOCUS Security Team http://www.xfocus.org gcc -o k-ra...

WinEggDropShell 1.7 Multiple PreAuth Remote Stack Overflow PoC

No description provided by source. WinEggDropShell Multipe PreAuth Remote Stack Overflow PoC HTTP Server "GET" && FTP Server "USER" "PASS" command Bug Discoverd and coded by Sowhat Greetingz to killer,baozi,Darkeagle,all 0x557 and XFocus guys....; http://secway.org 2005-10-11 Affected:...

x_aix5_bellmail.pl.txt

-bash-2.05b$ -bash-2.05b$ cat xaix5bellmail.pl !/usr/bin/perl FileName: xaix5bellmail.pl Exploit "Race condition vulnerability BUGTRAQ ID: 8805" of /usr/bin/bellmail command on Aix5 to change any file owner to current user. Usage : xaix5bellmail.pl aimfile aimfile : then file wich you want to cho...

MS Outlook Express NNTP Buffer Overflow Exploit (MS05-030)

Exploit for unknown platform in category remote exploits ========================================================== MS Outlook Express NNTP Buffer Overflow Exploit MS05-030 ========================================================== include include include include pragma commentlib,"ws232" /...

Microsoft Outlook Express - NNTP Buffer Overflow (MS05-030)

Microsoft Outlook Express - NNTP Buffer Overflow MS05-030 include include include include pragma commentlib,"ws232" / win32bind - EXITFUNC=process LPORT=4444 Size=344 Encoder=PexFnstenvSub http://metasploit.com / unsigned char scode =...

AIX 5.1 Bellmail - Local Race Condition

AIX 5.1 Bellmail - Local Race Condition -bash-2.05b$ -bash-2.05b$ cat xaix5bellmail.pl !/usr/bin/perl FileName: xaix5bellmail.pl Exploit "Race condition vulnerability BUGTRAQ ID: 8805" of /usr/bin/bellmail command on Aix5 to change any file owner to current user. Usage : xaix5bellmail.pl aimfile...