Section: .. / 0005-exploits /
| /// File Name: |
teso-advisory-010.tar.gz |
Description:
|
TESO Security Advisory #10 - KDE KApplication {} configfile vulnerability. Due to insecure creation of configuration files via KApplication-class, local lusers can create arbitrary files when running setuid root KDE-programs. Tested with SuSE 6.4 standard installation under KDE 1.1.2.
| | Author: | Stealth | | Homepage: | http://www.team-teso.net | | File Size: | 3358 | | Last Modified: | Jun 1 00:12:56 2000 |
| MD5 Checksum: | 6103db5015829edfd04b3e38410f29e5 |
|
| /// File Name: |
ultraboardv1.6 |
Description:
|
| | Author: | using the good old NullByte(\000) its possible to open "any" file on the webserver(with its permissions) running the "UltraBoard" forum-software. | | File Size: | 819 | | Last Modified: | May 17 19:47:08 2000 |
| MD5 Checksum: | 6b65f83ac30ae210dd1733fb08735fec |
|
| /// File Name: |
watcheador.zip |
Description:
|
Watcheador is a Windows application allows you to view ASP source code using the Index Server bug in IIS 4 & IIS 5. Written in Delphi 4.0. Comments in spanish.
| | Author: | Leon De Juda | | File Size: | 174158 | | Last Modified: | May 14 08:22:11 2000 |
| MD5 Checksum: | a9b9aedbbb66c3d3fbdfc825f1b48362 |
|
| /// File Name: |
wemilo.tcl |
Description:
|
Remote Cart32 exploit - Though L0pht released an advisory and patch for the well known Cart32 bug, this is the first exploit released to date. Allows remote command execution.
| | Author: | Futant | | Homepage: | http://r00tabega.com/group.html | | File Size: | 3998 | | Last Modified: | May 30 03:10:38 2000 |
| MD5 Checksum: | 83dd9bf64eb6edf2be0009d8544be719 |
|
| /// File Name: |
windows2k.iss |
Description:
|
There is a security problem with shtml.exe that allows anyone to explore the local path of IIS web server. Found by Frankie Zie.
| | File Size: | 1091 | | Last Modified: | May 17 20:40:59 2000 |
| MD5 Checksum: | 2bfb2f40d7fa6bb529cc10be19c8cc68 |
|
| /// File Name: |
xaosexp.c |
Description:
|
/usr/bin/xaos local root buffer overflow exploit. Works on suse 6.1, and could be modified for 6.2.
| | Author: | DiGiT | | Homepage: | http://www.security.is/ | | File Size: | 1301 | | Last Modified: | May 27 09:46:34 2000 |
| MD5 Checksum: | 8e971bebd587a0073317ced3a7ed74d4 |
|
| /// File Name: |
Xsh0k.c |
Description:
|
Xwindows remote dos attack - creates a sequence of socket connections to tcp port 6000. Xwindows slows to a crawl and sometimes does not respond to user input.
| | Author: | Norby | | Homepage: | http://www.ncl.cjb.net | | File Size: | 4435 | | Last Modified: | May 25 12:32:41 2000 |
| MD5 Checksum: | 5cd40b7fae081f4f50c85fa0c81495f2 |
|
| /// File Name: |
xsol-x.c |
Description:
|
/usr/local/games/xsoldier local root exploit. Tested under Mandrake 7.0.
| | Author: | Larry W. Cashdollar | | Homepage: | http://vapid.dhs.org | | File Size: | 2212 | | Last Modified: | May 19 20:55:37 2000 |
| MD5 Checksum: | ab4b2c944957a757a305a53df97f41ae |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps.gif){kind=small}
