Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
BugTraq
Back to list
|
Post reply
remote Pine <= 4.56 exploit fully automatic
Sep 15 2003 02:14PM
sorbo (sorbox yahoo com)
Ok here it is
Remote pine exploit
quite efficient since no "real offsets are needed" especially in the
first method of exploitation
Worx against grsec high security with random stack with "hard" method
since it is a return to libc tested vs slackware grsec
portbind on 6682 with FULL therminal support i.e. launch bx from ur exp =D
autodiscovers targets/offsets needed
redhat works too but only "easy" method... because of a pop ebp before a
ret.. there is no leave
worm can easily b made especially with "bruteforce" with about 99%
success!!
have fun =P
sorry i forgot to attach code ;D
[ reply ]
Privacy Statement
Copyright 2008, SecurityFocus
Remote pine exploit
quite efficient since no "real offsets are needed" especially in the
first method of exploitation
Worx against grsec high security with random stack with "hard" method
since it is a return to libc tested vs slackware grsec
portbind on 6682 with FULL therminal support i.e. launch bx from ur exp =D
autodiscovers targets/offsets needed
redhat works too but only "easy" method... because of a pop ebp before a
ret.. there is no leave
worm can easily b made especially with "bruteforce" with about 99%
success!!
have fun =P
sorry i forgot to attach code ;D
[ reply ]