Showing 1 - 2 of 2

Files from Enrique A. Sanchez Montellano

First Active	2001-04-19
Last Active	2001-04-19

defcom.cyberscheduler.txt: Posted Apr 19, 2001; Authored by Enrique A. Sanchez Montellano | Site defcom.com; Defcom Labs Advisory def-2001-18 - Cyberscheduler for Linux, Windows, and Solaris lacks bounds checking on the timezone variable, allowing remote root compromise. Patch available here. Includes proof of concept exploit x-cybershcehd.c and a shell script to brute force the offset. Vulnerable systems include Mandrake, RedHat, Slackware, Caldera, Suse, Debian, Windows NT, 2000 (IIS 4.0 and 5.0), and Solaris 2.5, 2.6, 7, and 8.; tags | remote, shell, root, proof of concept; systems | linux, redhat, windows, solaris, suse, slackware, debian, mandrake; SHA-256 | 21c37966585bd74ddeb800641942dfeff9778cd7e600ab1a642ec1d919315aa4; Download | Favorite | View

defcom.innfeed.txt: Posted Apr 19, 2001; Authored by Alex Hernandez, Enrique A. Sanchez Montellano | Site defcom.com; Defcom Labs Advisory def-2001-19 - Innfeed has local stack overflow vulnerabilities in the logOrPrint() function which can be exploited to give uid=news. Tested on Slackware 7.1, Mandrake 7.0, and RedHat 7.2. Includes a patch, proof of concept exploit x-startinnfeed.c, and a shell script to brute force the offset.; tags | overflow, shell, local, vulnerability, proof of concept; systems | linux, redhat, slackware, mandrake; SHA-256 | 4138178fdea0de7a98d769d075ebec0aa842b1ff03426901f91cd2c8b12ac932; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days