ïw¤ÎBlog
来源: BlogBus 原始链接: http://www.blogbus.com:80/blogbus/blog/index.php?blogid=16980&pg=4&cat= 存档链接: https://web.archive.org/web/20041124011750id_/http://www.blogbus.com:80/blogbus/blog/index.php?blogid=16980&pg=4&cat=
ïw¤ÎBlog ÃΣ¬·ÉÆðµÄµØ·½ diary (33) article (45) exploit (57) 2004 Äê 11 Ô Sun Mon Tue Wen Thu Fri Sat 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 ×îÐÂÎÄÕ SLmail 5.x POP3 Remote Pass Buffer Overflow Exploit Apache <= 2.0.52 HTTP GET Remote Denial of Service Exploit Ç÷ÊƿƼ¼½«·¢²¼Ð¿îÇ÷ÊƿƼ¼ÍøÂ粡¶¾Ç½ VeriSign³Æ£º90%ÍøÂç¹¥»÷À´×ÔÃÀ¹ú¿í´øÓû§ UBB.Threads 6.2.-6.3. one char bruteforce Exploit Multiple Antivirus Products Virus Detection Bypass PoC Exploit Eudora 6.2 Remote Attachment Spoofing Proof of Concept IPSwitch-IMail 8.13 Delete Command stack overflow Exploit Kerio Personal Firewall Multiple IP Options Denial of Service PoC NetNote Server v2.2 build 230 ×îÐÂÆÀÂÛ ¹Â¹â½£Òþ : Ö÷°åÏÔ¿¨»úÏä»»¡£. ¹Â¹â½£Òþ : ºÇºÇ¡£¡£B4½Ãñ£¬. alvashev : ͬÀÖͬÀÖ . Á´½Ó 56TECH ÄÏÒþÊÀ¼Ò ÷ÁÖÐ¡í¬ ÍøÂç¼¼ÊõÁªÃË °µµØDZÁ÷ ´æµµ 2004/05/31/-2004/05/31 2004/06/01/-2004/06/04 2004/06/05/-2004/06/28 2004/06/29/-2004/10/27 2004/10/28/-2004/11/05 2004/11/06/-2004/11/13 2004-11-10 08:11 - [ exploit ] #!/usr/bin/perl -w ###################################
IPSwitch-IMail-8.13-DELETE
Discovered by : Muts
Coded by : Zatlander
WWW.WHITEHAT.CO.IL
##################################
Plain vanilla stack overflow in the DELETE command
Restrictions:
- Need valid authenticat..............
ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-10 08:11 | ±à¼ 2004-11-10 08:06 - [ exploit ] /* HOD-kerio-firewall-DoS-expl.c: 2004-11-10 *
- Copyright (c) 2004 houseofdabus
- Kerio Personal Firewall Multiple IP Options Denial of Service PoC
- Coded by
- .::[ houseofdabus ]::.
- Bug discoveried by eEye:
- http://www.eeye.com/html/research/advisories/AD20041109.html
----------------------------------------------------------.............. ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-10 08:06 | ±à¼ 2004-11-07 12:30 - [ diary ] µ±ÎÒ²»ÔÚÖªµÀΪʲô¶ø»î£¬ÎÒËÀÁË£¡ Æäʵ£¬ÎÒ¸ù±¾Ã»»î׏ý£¬´ÓºÎ̸»î×Å~£¡ ½Åϵķ£¬ºÃÄÑ×ߣ¡ ÎÒ¿´ÎÒ×ÅËÀÈ¥£¬²»ÔÙ´æÔÚ£¬ËÀÔÚàÐÔӵijÇÊУ¬Ã»ÈËͣϽŲ½ ¼±³Û¶ø¹ýµÄÆû³µ£¬Ò»¸öƯÁÁµÄ»¡Ïߣ¬´ÓÎÒµÄʬÌåÉÁ¹ý£¬ÅÂŪÔàÁËÂÖÌ¥ Ö»ÓпÕÖÐÊÈѪµÄÄñ£¬¸©³å¶øÏ¡£¡£¡£¡£¡£¡£.............. ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-07 12:30 | ±à¼ 2004-11-05 21:06 - [ diary ] Proof of concept denial of service exploit for iptables versions below 2.6.8 that makes use of an integer overflow in the logging functionality. ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-05 21:06 | ±à¼ 2004-11-05 20:57 - [ article ] ±±¾©Ê±¼ä11ÔÂ4ÈÕ£¬ÃÀ¹ú¼ÆËã»úÓ¦¼±ÏìӦС×é(US-CERT)·¢²¼°²È«¾¯¸æ£¬ÔÚIEä¯ÀÀÆ÷ÖдæÔÚÒ»¸öÑÏÖصݲȫ©¶´£¬ÈëÇÖÕß¿ÉÒÔÀûÓÃHTMLµç×ÓÓʼþÐÅÏ¢»ò¶ñÒâÍøÒ³ ¿ØÖÆÄ¿±ê¼ÆËã»úϵͳ¡£°²È«Ñо¿ÈËÔ±±íʾ£¬ÓÉÓÚÀûÓôúÂëÒѾÔÚ¹«¿ªÓʼþÁбíÉÏ·¢²¼£¬Òò´ËÕâһ©¶´µÄΣÏÕÐÔÌرð¸ß¡£ ¸ù¾ÝÃÀ¹ú¼ÆËã»úÓ¦¼±ÏìӦС×é·¢²¼µÄ¹«¸æ£¬µ±IE´¦Àí¡°frame¡±ºÍ¡°iframe¡±HTMLÔªËØ(HTML elements)µÄÁ½ÖÖÊôÐÔʱ¾Í¿ÉÄÜ»á³öÏÖ»º³åÇøÒç³ö£¬ÐÂ.............. ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-05 20:57 | ±à¼ 2004-11-04 20:56 - [ article ] лªÍø±±¾©£±£±Ô£´Èյ磨Àîϼ¡¢Àîì㣩"Çë·ÅÐÄ´ò¿ª£¬ÕâÊÇÒ»¸öÖØÒªÎļþ£¬¿ÉÒÔ²éɱ£Ñ£Ñ²¡¶¾µÄרɱ¹¤¾ß£¬Çë²éÊÕ¸½¼þ¡£"£³ÈÕ£¬½ðɽ¶¾°Ô·´²¡¶¾ÖÐÐļà²âµ½¹úÄÚÊ×ÀýÖÐÎÄ»ìºÏÐͲ¡¶¾¡£·´²¡¶¾×¨¼ÒÌáÐÑÓû§£¬Èç¹ûÊÕµ½ÀàËƵç×ÓÓʼþ£¬Çë²»ÒªÔËÐи½¼þÀïµÄÈκÎÎļþ£¬²»È»»á±»ÇÔÈ¡¼ÆËã»úÀïµÄ¸÷ÖÖÃÜÂ룬ÆÆ»µ²Ù×÷ϵͳ¡£ ¾ÝϤ£¬ÕâÊǹúÄÚ·´²¡¶¾ÖÐÐÄÄ¿Ç°¼à²âµ½µÄµÚÒ»ÀýÀ¦°óľÂíµÄ¹ú²úÈä³æ²¡¶¾£¬¸Ã²¡¶¾±»½ðɽ¶¾°Ô·´²¡¶¾ÖÐ.............. ÔĶÁÈ«ÎÄ | ÆÀÂÛ(0) | ÒýÓÃ(0) bamb00 @ 2004-11-04 20:56 | ±à¼ ·ÖÒ³: [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] ×îºóÒ³ Ä£°åÉè¼Æ£º zhou