| File Name |
File Size |
Last Modified |
MD5 Checksum |
| x2.tgz | 221543 | Jul 17 2002 23:05:13 | 5ad26f20c8eeae79c09718165e21621d |
| X2 exploits the SSH CRC-32 attack detection code buffer overflow vulnerability that exists in SSH1 implementations. The exploit is distributed in binary form and has been encrypted. Includes 45 target types. This code was abandoned in a honey pot and is published under Fair Use Law 17 U.S.C.A 107 |
| 7350fun | 49723 | Jul 17 2002 23:01:07 | 55dd71bbb7d23d1220f8bb33a4b20edd |
| 7350fun is a remote exploit for mod_php v4.0.2rc1-v4.0.5 and v4.0.6-v4.0.7RC2. This exploit appears to be a revised version of the 73501867 exploit, which was written by the same author, contained less functionality and was not encrypted. Note: this exploit also causes PHP 4.1.2 versions to segfault. By Lorian. This code was abandoned in a honey pot and is published under Fair Use Law 17 U.S.C.A 107 |
| pUll.pl | 845 | Jul 8 2002 00:17:49 | ddc9cde518d7a4282d6cb3248b448e48 |
| Slrnpull '-d' buffer overflow exploit. Executes shellcode with group 'news' privileges. Tested to work on an Intel Red Hat 6.2 installation . Homepage: http://www.safemode.org. By zillion and Alex Hernandez |
| 0204-exploits.tgz | 777405 | May 6 2002 22:56:05 | da76776c09caeb80dc346c3147fe4567 |
| Packet Storm new exploits for April, 2002. |
| cisco677.pl | 2143 | May 4 2002 22:32:17 | 71acdbfebdc481e031687d06bbb810e7 |
| Cisco 677/678 Telnet Overflow denial of service perl exploit. Homepage: http://mail.dhbit.ca. By DNV |
| tshttpd.pl | 2983 | May 4 2002 22:24:59 | cb8368a36e1c06aa0f994e1dce369789 |
| AnalogX SimpleServer:WWW HTTP Server v1.1 denial of service buffer overflow exploit. By TrippinSmurfs |
| tgt_v1_x86Lnx.tar.gz | 473805 | May 1 2002 12:55:37 | 98f1f82d423d16819bc96da528d31ca8 |
| Exploit for the local root bug in Kerberos IV TGT and AFS Token implementation of the OpenSSH server (sshd) version 2.2.0 - 3.1.0. Homepage: http://mantra.freeweb.hu/. By Marcell Fodor |
| food_for_the_poor.c | 2829 | May 1 2002 12:53:32 | 02f164a7343a06b6563818a43d6d7357 |
| Food_for_the_poor is a linux exploit for a heap overflow in the Kerberos 4 ftp client which creates a suid shell in /tmp. Homepage: http://mantra.freeweb.hu/. By Marcell Fodor |
| msh3comdos.c | 4351 | May 1 2002 09:32:39 | 2bf501dc4f6312377a58c1130e5beb44 |
| 3CDaemon FTP Server v2.0 buffer overflow dos exploit. By Skyrim |
| epop.c | 821 | Apr 24 2002 23:22:30 | d53cc8ba199088d13beffe904c1f9450 |
| This exploit hangs WiredRed e/pop v2.0.3, probably works on all 2.x versions. By Cult |
| psydos.txt | 1223 | Apr 24 2002 22:03:45 | 72882c16409c851c3e19cdd8edf515a6 |
| PsyBNC v2.3 has a problem dealing with oversized passwords, making it possible to tie up all the connection slots and consume a lot of CPU on the server. By Nawok |
| iischeck.pl | 2891 | Apr 24 2002 21:40:00 | 2b2edd24b76ee0b58d5186d14b8d3923 |
| Microsoft IIS .HTR heap overflow checker. Determines remotely if patch MS02-018 has been applied. Homepage: http://filip.compsec.be. By Filip Maertens |
| screen-stuff.tgz | 4176 | Apr 24 2002 19:39:06 | bf834c1357f2a2f6814bd7bf51ecea1d |
| Screen v3.9.11 local root linux/x86 exploit for braille module bug. By Gobbles Security |
| evelyne.sh | 1043 | Apr 24 2002 18:36:31 | 6e686fc543c6ddbad436bfb0f81fd5be |
| Local root exploit for the "Suid application execution bug" (< FreeBSD 4.5-STABLE) that was discovered by Joost Pol from Pine. Homepage: http://www.netric.org. By Atje |
| iosmash.c | 853 | Apr 24 2002 18:24:03 | 5a17bababe3ea7ff5e73ed68e8bf079d |
| Iosmash.c is an exploit for the stdio kernel bug that resides in all releases of FreeBSD up to and including 4.5-RELEASE. The exploit uses keyinit, which is part of the S/key package, to create 5 valid root passwords that give instant root access trough S/key. By Phased |
| pos_expl.c | 2286 | Apr 22 2002 22:42:02 | aba3e4e67681520ccc17f4d5f548bbc0 |
| Posadis m5pre1 local buffer overflow exploit. Homepage: http://www.netric.org. By eSDee |
| pos_expl2.c | 1184 | Apr 22 2002 22:40:44 | 7475676aaa562e43d95925828590fb52 |
| Posadis m5pre2 local format string exploit. Homepage: http://www.netric.org. By eSDee |
| iisfux0r.txt | 2047 | Apr 22 2002 22:28:30 | 187ee85dc854e518c0b386d561dd3a33 |
| Microsoft IIS W3SVC Denial of Service - Brings down the inetinfo.exe process, crashing IIS. Homepage: http://filip.compsec.be. By Filip Maertens |
| obsd-cron.c | 570 | Apr 15 2002 00:41:12 | 72d35ea6ab315d9c96c3184343dee252 |
| OpenBSD 3.0 cron / mail local root exploit. Creates a suid shell after /etc/daily runs. By Przemysaw Frasunek |
| iis.asp.overflow.txt | 5740 | Apr 11 2002 04:41:33 | 4cdf305e59b0d7ba7de3156cc1e0c3c2 |
| A vulnerability in the ASP (Active Server Pages) ISAPI filter, loaded by default on all NT4 and Windows 2000 server systems (running IIS), can be exploited to remotely execute code of an attackers choice. Example which causes an application error included. Microsoft advisory on this vulnerability here. Homepage: http://www.eEye.com. By Marc Maiffret |
| xtelld261.c | 9193 | Apr 3 2002 01:47:15 | 1cafde97c61ae5070ffa7332f1bba3ea |
| Xtell from the Debian Linux distribution is a network messaging client for sending messages to users on different computers. Xtell 2.6.1 with at least 3 remote buffer overflows, symlink bug, ".." directory traversal, file race condition, and more. Exploit spawns a shell on port 12321. Tested against Red Hat 7.2, 7.1; Debian Potato. By Spybreak |
| logwatch211.sh | 1655 | Apr 3 2002 01:08:56 | 26509d094a11d67a23e651d2e6fd95a6 |
| LogWatch 2.1.1 is a part of the Red Hat Linux 7.2 distribution, enabled by default and daily run by the cron daemon. On a system running LogWatch, a local user is able to gain unauthorized root access, due to a race condition during the temporary directory creation. Homepage: http://www.kaybee.org/~kirk/html/linux.html. By Spybreak |
| icx.c | 13494 | Apr 2 2002 09:23:07 | 30658aa7461384b8a294cfc3db8fab5a |
| Icecast v1.3.11 and below remote root exploit for linux/x86. Binds a shell to port 30464. Tested against SuSE 7.2, Debian 2.2r2, and Slackware 8.0. By Diz |
| guninski-53.txt | 10258 | Apr 2 2002 00:05:00 | 2fbb5a730b6516363c61c5ba49238bcb |
| Georgi Guninski security advisory #53, 2002 - Two serious security vulnerabilities have been found in Microsoft Office XP. It is possible to embed active content (object + script) in HTML mail which is triggered if the user replies to or forwards mail. In addition, a bug in the Host() function of the spreadsheet allows creating files with arbitrary names and their content may be specified to some extent at which is sufficient to place an executable file (.hta) in user's startup directory which may lead to taking full control over user's computer. Homepage: http://www.guninski.com. By Georgi Guninski |
