.:[ packet storm ]:.
                             
the one stop shop
the one stop shop

 Section:  .. / advisories / b0f  /

Page 2 of 3
<< 1 2 3 >> Files 25 - 50 of 64
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: dope_expl.c
Description:
 dopewars 1.4.4 exploit, it's been fixed now ( thanks to my patch :-) ). It dates back to oktober 1999. But i used some cool methods in it.
Author:Lamagra
Homepage:http://lamagra.seKure.de
File Size:4831
Last Modified:Apr 5 22:04:00 2000
MD5 Checksum:93f4c1cb2d73fdae1db63ed869edfd01

 ///  File Name: sc.tgz
Description:
 sc.tgz is a bunch of linux shellcodes. x86: shellexecuting, portbinding, encrypted (to avoid IDS detection), cdrom ejecting, writing (append "lamagra was here" to /etc/motd) , reading (read 255 chars and execute). tools: a tool that "creates" shellcode from the _start of a program, a list of useful syscalls + arguments. m68k: reading, shellexecuting.
Author:Lamagra
Homepage:http://lamagra.seKure.de
File Size:4644
Last Modified:Apr 5 22:04:00 2000
MD5 Checksum:a8c3ed7bd209e48aa86b7e725075d9eb

 ///  File Name: htaccess-admin.tar.gz
Description:
 htaccess.tar - Perl script for adding users to the .htaccess file. Includes information on how to set up password protected web pages.
Author:Slash
Homepage:http://b0f.freebsd.lublin.pl
File Size:4591
Last Modified:Jul 5 23:55:30 2000
MD5 Checksum:27de7a057fe0c6373a9ad4390699239f

 ///  File Name: nt.security.check.part1.txt
Description:
 Evaluating the security of a NT system. Includes security tips, logging options, and more.
Author:Slash
Homepage:http://www.b0f.com
File Size:4558
Last Modified:Feb 29 09:05:23 2000
MD5 Checksum:2fccd0d055213b6efa238ac1ccfadaf7

 ///  File Name: spider.tgz
Description:
 fs-spider is a multi-threaded bad permissions finder (user defined). It
Author:lamagra
Homepage:http://lamagra.seKure.de
File Size:4146
Last Modified:May 5 22:04:01 2000
MD5 Checksum:48bb15ad312e8be76f26b4bcc38bb6be

 ///  File Name: safe-exec.c
Description:
 safe_exec.c - execute programs in a secure environment with a specific uid/gid/user and you can specify a program to be executed before the chroot.
Author:Lamagra
Homepage:http://lamagra.seKure.de
File Size:4127
Last Modified:Apr 5 22:04:00 2000
MD5 Checksum:d10a6bf320a6d8d7c9c62955e6a0b2a2

 ///  File Name: www.c
Description:
 Novell NetWare webservers remote denial of service - Tested on Novell NetWare 4.11 with Novell-HTTP-Server/3.1R1, Novell NetWare 4.1 with Novell-HTTP-Server/2.51R1, Novell NetWare ?.? with YAWN/1.05.
Author:Venglin
Homepage:http://b0f.freebsd.lublin.pl
File Size:4069
Last Modified:Apr 3 22:04:00 2000
MD5 Checksum:576b4950d530b2d4e4aec61b212f3cdc

 ///  File Name: majordomeX.sh
Description:
 Majordomo v1.94.5 local linux exploit - run commands as the UID that majordomo runs under.
Author:Slash
Homepage:http://b0f.freebsd.lublin.pl
File Size:3665
Last Modified:Jul 5 23:51:36 2000
MD5 Checksum:5ce22449e2db60174798412395e28845

 ///  File Name: b0f1-Mailtraq.txt
Description:
 Buffer0verflow Security Advisory #1 - Mailtraq remote file retriving. The Mailtraq message server for Windows NT, 95, and 98 allows any file on the system to be read via a /../../ bug. All versions prior to 1.1.4 are affected.
Author:Slash
Homepage:http://www.b0f.com
File Size:3630
Last Modified:Apr 4 01:01:11 2000
MD5 Checksum:029249fd46ca930ece76f63e3644b1c9

 ///  File Name: sqlsyslogd.c
Description:
 syslogd-to-MySQL wrapper v0.1 prebeta. Stores syslog messages in a MySQL database. Written for FreeBSD.
Author:Venglin
Homepage:http://www.freebsd.lublin.pl
File Size:3452
Last Modified:Apr 26 02:55:38 2000
MD5 Checksum:9a055ca5347884d3708e659ce3ae8a55

 ///  File Name: fdmnt-smash2.c
Description:
 fdmount local root exploit - tested on Slackware 4.0. Must be in the floppy group. Modified from last version to work on Slackware 7.
Author:Scrippie
Homepage:http://b0f.freebsd.lublin.pl
File Size:3165
Last Modified:May 17 18:33:38 2000
MD5 Checksum:73ba3d26ba0ca02c1bd711b6e11af39d

 ///  File Name: connect.asm
Description:
 Passive Connection Shellcode. Source is well documented.
Author:scrippie
Homepage:http://b0f.freebsd.lublin.pl
File Size:3152
Last Modified:May 5 01:47:42 2000
MD5 Checksum:966774e7b1d15bd8e89934220bcd309d

 ///  File Name: gibd00r3.c
Description:
 gibd00r3.c is a passworded backdoor which pretends to be an ident daemon.
Author:Axess
Homepage:http://www.b0f.com
File Size:3032
Last Modified:Apr 21 22:04:00 2000
MD5 Checksum:967dd190a53f9ccca2ee70bb035b752f

 ///  File Name: access-counter.pl
Description:
 The popular CGI web page access counter version 4.0.7 by George Burgyan allows execution of arbitrary commands due to unchecked user input. Commands are executed with the same privilege as the web server.
Author:Slash
Homepage:http://b0f.freebsd.lublin.pl
File Size:2753
Last Modified:Sep 13 06:18:27 2000
MD5 Checksum:2beb4c9aa7ffd4a6559b4ee451132a24

 ///  File Name: connect.c
Description:
 This shellcode creates a connection to a host/port and starts a shell. This should be more anti-IDS then the others and it can go through a firewall.
Author:lamagra
Homepage:http://lamagra.seKure.de
File Size:2735
Last Modified:May 5 21:57:15 2000
MD5 Checksum:b92b48091663aeca497d26a0b45769f0

 ///  File Name: filterape.c
Description:
 filterape.c exploits a new elm buffer overflow to get EGID mail on Slackware.
Author:Scrippie
Homepage:http://b0f.freebsd.lublin.pl
File Size:2686
Last Modified:May 25 20:42:02 2000
MD5 Checksum:f86550706037b74cbfed63994fc2c787

 ///  File Name: slirp_bof.c
Description:
 Slirp v1.0.10(RELEASE) local buffer overflow exploit for Linux which gives you a SGID shell if /usr/local/bin/slirp is mode 2755. Tested against Slackware 3.6. Includes perl script to find the offset.
Author:Vade79
Homepage:http://www.realhalo.org
File Size:2368
Last Modified:Jun 1 01:16:23 2000
MD5 Checksum:9ddd6bd76e029236ad287810c937b7b6

 ///  File Name: sms.c
Description:
 sms.c is a remote SMS 1.8.2 (mail2sms gateway) long subject line remote buffer overflow exploit. Send the mail generated by this program and a shell will be listening on port 2222. Offsets adjusted for redhat.
Author:Venglin
Homepage:http://b0f.freebsd.lublin.pl
File Size:2324
Last Modified:Jun 1 00:35:49 2000
MD5 Checksum:836481971d25cd24f48a3187fca55303

 ///  File Name: warftpd.c
Description:
 WarFtpd dos attack - The buffer overflow seems to occur because the bound check of the command of MKD/CWD is imperfect. War FTPd 1.70-1 does fix this problem, but it contains other vulnerabilities.
Author:eth0
Homepage:http://www.b0f.com
File Size:2298
Last Modified:Apr 15 23:30:00 2000
MD5 Checksum:7b5df6570bf8564ddc9a989902540d66

 ///  File Name: pirchslap.c
Description:
 Pirch98 irc client ident/fserve daemon DoS overflow attack.
Author:eth0
Homepage:http://www.b0f.com
File Size:2270
Last Modified:Feb 29 04:38:16 2000
MD5 Checksum:80c6bf41e87af57d411685af3ab1c5f3

 ///  File Name: elm-smash.c
Description:
 This exploit spawns an EGID mail shell on the default Slackware 4 install.
Author:scrippie
Homepage:http://b0f.freebsd.lublin.pl
File Size:2267
Last Modified:May 5 21:03:19 2000
MD5 Checksum:9103ea3b4c415060fa4ec20011b06106

 ///  File Name: elm-exploit.c
Description:
 Linux Elm 2.4/2.5 local exploit - This will give you a shell(gid=12) if /usr/bin/elm is SGID. Tested on slackware 4.0 and redhat 5.1.
Author:Slash
Homepage:http://b0f.freebsd.lublin.pl
File Size:2111
Last Modified:Jul 5 23:53:02 2000
MD5 Checksum:82f10bfc8741bb629281379f2f03ccc9

 ///  File Name: mars.c
Description:
 mars_nwe 0.99pl14 root exploit (linux).
Author:Venglin
Homepage:http://b0f.freebsd.lublin.pl
File Size:2099
Last Modified:Apr 4 03:04:12 2000
MD5 Checksum:5b6fce38150f1e31d683c4dd22ff898e

 ///  File Name: elm_last.c
Description:
 One last elm v2.4 / v2.5 exploit - gives EGID 12. This version works against almost all vulnerable versions of elm.
Author:Vade79
Homepage:http://www.realhalo.org
File Size:2056
Last Modified:Jun 1 01:12:00 2000
MD5 Checksum:6d1932b3efa4e64a682800633f4c5a14

 ///  File Name: b0f2-NetOp.txt
Description:
 BufferOverflow Advisory #2 - The NetOp Remote Control for NT tool allows anyone with a client to connect to the host software and download any file. Version 6 is vulnerable.
Author:Axess
Homepage:http://www.b0f.com
File Size:2044
Last Modified:Apr 19 02:56:14 2000
MD5 Checksum:90008d5a73104863d3757608ebafa575
 

 ///  Last 10 Files
  1. :· pacpoll-disclose.txt
  2. :· USN-682-1.txt
  3. :· USN-681-1.txt
  4. :· BMSA-2008-09.txt
  5. :· webhub-bypass.txt
  6. :· infinite-bypass.txt
  7. :· VA_VD_87_08_XRDP.pdf
  8. :· TKADV2008-013.txt
  9. :· sqlinj-insouts.txt
  10. :· bcoos1013-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-682-1.txt
  2. :· USN-681-1.txt
  3. :· VA_VD_87_08_XRDP.pdf
  4. :· TKADV2008-013.txt
  5. :· dsa-1675-1.txt
  6. :· dsa-1674-1.txt
  7. :· dsa-1673-1.txt
  8. :· dsa-1672-1.txt
  9. :· USN-679-1.txt
  10. :· USN-680-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pacpoll-disclose.txt
  2. :· BMSA-2008-09.txt
  3. :· webhub-bypass.txt
  4. :· infinite-bypass.txt
  5. :· bcoos1013-sql.txt
  6. :· preonline-cmsqlxss.txt
  7. :· preclass-sqlxss.txt
  8. :· aspportal-disclose.txt
  9. :· preshoppingmall-cmsqlxss.txt
  10. :· ezpoll-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· vncrush.txt
  2. :· rshatter.txt
  3. :· Exomind-v0.2.tar.gz
  4. :· clamav-0.94.2.tar.gz
  5. :· cadfile.zip
  6. :· anehta-v0.6.0fixed2.zip
  7. :· tagfuzz.txt
  8. :· BrowserRider.20081124.tar.bz2
  9. :· mp3nema-v0_2.tar.gz
  10. :· squid-nufw-helper-1.1.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sqlinj-insouts.txt
  2. :· format-string-linux.txt
  3. :· frame-pointer-overwrite-linux.txt
  4. :· iptablesf.txt
  5. :· nufw-2.2.19.tar.gz
  6. :· frhack2009-cfp.txt
  7. :· oracle-forensics-scns.pdf
  8. :· cansecwest-2009.txt
  9. :· A5.1.zip
  10. :· a51-php.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice