Section: .. / 0307-exploits /

Page 1 of 3
<< 1 2 3 >> Files 1 - 25 of 64

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	0307-exploits.tgz
Description:	Packet Storm new exploits for July, 2003.
File Size:	409322
Last Modified:	Aug 13 03:46:07 2003
MD5 Checksum:	547ce621a6d09bbcafdec2ffa67f4064

/// File Name:	hlbof-client.zip
Description:	Half-Life client versions 1.1.1.0 and below (including all MODs based on the game, such as Counter-Strike and DoD) remote exploit that will pose as a server that overwrites the stored return address but does not attempt any command execution.
Author:	Auriemma Luigi
Homepage:	http://www.pivx.com/luigi/
File Size:	8268
Last Modified:	Jul 29 20:38:34 2003
MD5 Checksum:	47c81302e345d9a31e8cb8ee2dab615f

/// File Name:	hlbof-server.zip
Description:	Half-Life server versions 1.1.1.0 and below (including all MODs based on the game, such as Counter-Strike and DoD) remote exploit that will cause a denial of service.
Author:	Auriemma Luigi
Homepage:	http://www.pivx.com/luigi/
Related File:	halflife.txt
File Size:	8703
Last Modified:	Jul 29 20:24:01 2003
MD5 Checksum:	5936369be7bf61fd4c0c410f03526b21

/// File Name:	0x333-lockdexvul.txt
Description:	lockdev 1.0.0 local exploit that escalates privileges to group lock. Tested against RedHat 7.3, 8.0, and 9.0.
Author:	nic
Homepage:	http://www.0x333.org
File Size:	9705
Last Modified:	Jul 29 20:14:21 2003
MD5 Checksum:	f1abaa914fb3eae21371eee17e50e6ad

/// File Name:	dcomsploit.tgz
Description:	DCOM remote exploit utilizing the issue discussed here. Covers Microsoft Windows NT SP6/6a (cn), as well as Windows 2000 SP0-4 (cn) SP0-2 (jp) SP0-2,4 (kr) SP0-1 (mx) SP3-4 (Big 5) SP0-4 (english) SP0 Server (english), and Windows XP SP0-1 (english) SP1 (cn) SP0-1 (Big 5). Modified by sbaa
Author:	FlashSky, Benjurry
File Size:	6126
Last Modified:	Jul 29 20:07:02 2003
MD5 Checksum:	330e19366c8d5664a7f2a55efc3a8e78

/// File Name:	shatterSEH2.txt
Description:	Version two of this paper discussing more shatter attacks that are possible using SEH memory locations to escalate privileges in Windows. Exploit code included. Related information available here.
Author:	Brett Moore
Homepage:	http://www.security-assessment.com
File Size:	6359
Last Modified:	Jul 29 19:51:59 2003
MD5 Checksum:	128b5b0cdea6aee5c389eaa7ac17b801

/// File Name:	CLIVITT-2003-5.txt
Description:	Apache 1.3.x using the mod_mylo module version 0.2.1 and below is vulnerable to a buffer overflow. The mod_mylo module is designed to log HTTP requests to a MySQL database and insufficient bounds checking in mylo_log() allows a remote attacker to gain full webserver uid access. Remote exploit for SuSE 8.1 Linux with Apache 1.3.27, RedHat 7.2/7.3 Linux with Apache 1.3.20, and FreeBSD 4.8 with Apache 1.3.27 included.
Author:	Carl Livitt
File Size:	14775
Last Modified:	Jul 29 19:33:50 2003
MD5 Checksum:	b6a0cd78d32dfe4d978f56c3436cdb69

/// File Name:	elf-reloc.c
Description:	A demonstration of ELF relocation.
Author:	Soeren Bleikertz
Homepage:	http://www.sac.cc
File Size:	10869
Last Modified:	Jul 29 02:06:36 2003
MD5 Checksum:	d072fc2f8db2721c0971aa0ee90e4ab3

/// File Name:	benjurry.txt
Description:	Thorough analysis of the buffer overrun in the Windows RPC interface that was discovered by the Last Stage of Delirium. Exploit included for Windows 2000 SP4 Chinese version.
Author:	Flashsky, Benjurry
Homepage:	http://www.xfocus.org/documents/200307/2.html
Related File:	lsdRPC.txt
File Size:	17765
Last Modified:	Jul 28 05:40:01 2003
MD5 Checksum:	bcd9321ac5d7e4a8d74b197efe4a7e07

/// File Name:	sambash-release.c
Description:	Remote root exploit for samba 2.2.7a and below using reply_nttrans(). Written for the Linux x86 platform.
Author:	flatline
File Size:	25440
Last Modified:	Jul 28 02:55:41 2003
MD5 Checksum:	e79059d286adde4d8809a56206df5089

/// File Name:	DComExpl_UnixWin32.zip
Description:	Windows port of the remote exploit utilizing the DCOM RPC overflow originally coded by H D Moore.
Author:	Benjamin Lauzière
File Size:	18336
Last Modified:	Jul 28 02:52:51 2003
MD5 Checksum:	4dadfb9aafb1cdac05ab734453dcee88

/// File Name:	dcom.c
Description:	Remote exploit utilizing the DCOM RPC overflow discovered by LSD. Includes targets for Windows 2000 and XP. Binds a shell on port 4444.
Author:	H D Moore
Homepage:	http://www.metasploit.com/
File Size:	15014
Last Modified:	Jul 28 02:51:24 2003
MD5 Checksum:	a731771b1cd73887da81c33d2f48471f

/// File Name:	ACME-mitel.txt
Description:	An interesting bug in the Mitel Voice Over IP system that allows an attacker to discover phone numbers calling through the DHCP server.
Author:	acme
Homepage:	http://olografix.org/acme/mitel.txt
File Size:	2111
Last Modified:	Jul 28 02:45:51 2003
MD5 Checksum:	5b613c224e45a1343f68316310dd2b06

/// File Name:	ZH2003-12SA.txt
Description:	PHP-Gästebuch version 1.60 Beta is vulnerable to various attacks due to information disclosure. The md5 hashed password for the administrator user is retrievable by any remote attacker along with the guestbookdat file containing their saved settings.
Author:	Trash-80
Homepage:	http://www.zone-h.org
File Size:	1733
Last Modified:	Jul 25 01:59:38 2003
MD5 Checksum:	c8eb6e9944f034550eae837f2e8114cd

/// File Name:	dcomx.pl
Description:	Remote denial of service exploit making use of the vulnerability found in DCOM under Windows.
Author:	Knight420.
File Size:	2404
Last Modified:	Jul 24 23:48:09 2003
MD5 Checksum:	1098316c80fe73f7861565b0b8ec61ef

/// File Name:	msqlex.c
Description:	Remote exploit for miniSQL version 1.3 and below that achieves privilege escalation root gid.
Author:	The Itch, lucipher
Homepage:	http://www.netric.org/
File Size:	14277
Last Modified:	Jul 24 23:00:07 2003
MD5 Checksum:	2fc4590154b857c4bf26fc805bb66099

/// File Name:	NetScare.c
Description:	Remote buffer overflow denial of service exploit for the Netware Enterprise CGI2PERL.NLM.
Author:	Knight420.
File Size:	11683
Last Modified:	Jul 24 22:56:42 2003
MD5 Checksum:	c7063bffb5b954421951423f36a48c07

/// File Name:	0x333bru-fmtx.c
Description:	Local root exploit for bru, or Backup and Restore Utility for Unix, that makes use of a stack overflow.
Author:	nic
Homepage:	http://www.0x333.org
File Size:	2665
Last Modified:	Jul 22 02:18:54 2003
MD5 Checksum:	d98819e03bec7237629814af9f5d5a2c

/// File Name:	ciscodos.sh
Description:	Remote exploit that causes a denial of service against Cisco IOS versions 11.x through 12.x using hping.
Author:	zerash
File Size:	1868
Last Modified:	Jul 22 01:31:46 2003
MD5 Checksum:	5b4d3da440603ada84738a3464e28b7e

/// File Name:	cisco-bug-44020.tar.gz
Description:	Remote exploit that causes a denial of service against Cisco IOS versions 11.x through 12.x.
Author:	Martin Kluge
File Size:	4005
Last Modified:	Jul 22 01:30:17 2003
MD5 Checksum:	1221af8aa6ac91916c03e6b599441b55

/// File Name:	DSR-gnats.pl
Description:	Proof of concept local exploit for gnats version 3.113.1_6 tested on FreeBSD 5.0. If successful, escalates privileges to gnats.
Author:	inv
Homepage:	http://www.dtors.net/
File Size:	620
Last Modified:	Jul 20 08:34:44 2003
MD5 Checksum:	f35302b106a2fee84c4ceed3da644de6

/// File Name:	ex_bru.c
Description:	Local root exploit for bru, or Backup and Restore Utility for Unix, that makes use of a stack overflow. Includes both Linux and FreeBSD targets.
Author:	Dvdman
Related File:	SRT2003-07-16-0358.txt
File Size:	2330
Last Modified:	Jul 19 01:15:51 2003
MD5 Checksum:	9e4e064acba76fd0ff9c367ec8ea852c

/// File Name:	shadowchode.tar.gz
Description:	Remote exploit that will cause a denial of service against Cisco routers and switches.
Author:	L0cK.
Related File:	ciscoIPv4.txt
File Size:	212019
Last Modified:	Jul 18 20:59:59 2003
MD5 Checksum:	be6bf5e146a17153190577d694cf26b6

/// File Name:	ZH2003-11SA.txt
Description:	Zone-H Security Advisory ZH2003-11SA - Elite News version 1.0.0.0-1.0.0.3 Beta allows direct access to various system files which enables an attacker to retrieve the administrator login name, then utilize that name on another page to set a cookie that will be referenced by yet another page that allows an attacker to post as the administrator.
Author:	Trash-80
Homepage:	http://www.zone-h.org
File Size:	2275
Last Modified:	Jul 18 03:54:51 2003
MD5 Checksum:	e900152d55dde53d9e5ec8afebc4cf84

/// File Name:	splatt.txt
Description:	The Splatt Forum engine allows html code insertion for the post icon form input.
Author:	Black Angels, Nemesis
File Size:	1943
Last Modified:	Jul 18 03:46:43 2003
MD5 Checksum:	09c345c267efafe1d85c5484feea2ec0