Packet Storm new exploits for February, 2002.
ed69a11111642e3b223c9b986d9533726b008bb1153321a113321f53f96bb6b4UCD-snmp v4.2.1 and below remote root exploit which is independent of snmpwalk. Includes instructions on getting it working against any linux system by finding the return address with gdb. Originally by Jove.
71d2aae96d921716b391fd095a13ad6b823570eca8c2e8aca4dd041f6de7e910Sortelnetd is a working telnetd 0.17 exploit (even remote if you are careful enough). alignment is critical. Includes a demo of how to find offsets and use against localhost.
6e643b30e9635a5e3b22d1113b59356de6894ddf8033ed508db6d01f8a7808f3PHP for Windows Arbitrary Uploaded File Execution - PHP version 4.0.4 and 4.1.1 for Windows allows attackers to run arbitrary php code on the server.
4f19ac5dcb05f3745e076864142537fab80c6bdfa2cc745c76bb66411f064b35The Phusion Webserver v1.0 for Windows 9x/NT/2000 contains three remote vulnerabilities which allow users to see and retrieve any file on the server. Exploit information included.
803f44e633274876ffbcfb29b2146327c1f1601a0dfad1a62a327fe9914c10b2Avirt Gateway 4.2 remote exploit.
c7c71b607fa45cf484a658d01ea6310238e1dd14cda3695bca1c9028168cf405Ettercap v0.6.3.1 and below advisory and remote root exploit against Linux. Due to improper use of the memcpy() function, anyone can crash ettercap and execute code as root user.
0707e613e12873f42925d43ba22b3e2a53a3329febbdea8c7110ba8cc31f4e41Morpheus request share files denial of service exploit.
91c20978fc47e509b6294dfef55aef106bca0c7b2e21ba8d86f9a9024fee5185Proof of concept exploit for the buffer overflow vulnerability that exists in the nick handling code of mIRC. This exploit works with mIRC version 5.91 which is the latest version that is affected by this vulnerability.
957bf70f6116314b5806d74de9c7b2cd9e687d65688b24535d1ea8dcad75616dFreeBSD/Linux exploit for a buffer overflow in the snes9x Nintendo emulator. The linux shellcode works also on FreeBSD since snes9x runs on those systems with linux emulation.
db628cc64cef1685a7de38aff3d19885b177d6ead58e67ec5e2be496541d0bc2Lotus Domino web server prior to v5.0.9 allows password protected features to be accessed without the password by sending a malformed URL.
341aaccaace7b4578c0a8e33e943b60798194133ad005fdf50c6a57861cef67dWWWThreads aka UBBThreads v5.5dev11 and below has a security hole in the upload system which allows remote users to upload php code which runs on the server. Fix available here.
ca0b26ee8d002760055da92025a6c593fa195e329b83bc4b2741a4ec67e26d63
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed