off.c
- switches off anti-keylogger protections on OSX allowing your already
existing keylogger to function correctly once again.
http://.digit-security.com/files/exploits/rapport-listen.c
- uses Trusteer's own functionality to 'decrypt' keys directly.
--
mu-b
(m...@digit-lab
3.0, but
sadly the most useless :(
http://digit-labs.org/files/exploits/novanet-dos.c
- - null deref remote DoS <= 13.0
- --
mu-b
(m...@digit-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct."
ose that aren't idiots would not really find it all that hard to break..
http://www.digit-labs.org/files/otherstuff/unsafecentral/
- --
mu-b
(m...@digit-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct.
hable locations
within the driver, one of which is called immediately after initialization.
http://www.digit-labs.org/files/exploits/vmware-fission.c
- --
mu-b
(m...@digit-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life
s.org/files/exploits/bsd-ktimer.c
>
> other random stuff..
>
> http://www.digit-labs.org/files/exploits/xnu-macfsstat-leak.c
> http://www.digit-labs.org/files/exploits/xnu-profil-leak.c
> http://www.digit-labs.org/files/exploits/xnu-appletalk-zip.c
>
> all the above are old now, bu
letalk-zip.c
all the above are old now, but still exist today...
christer/mu-b
--
mu-b
(m...@digit-labs.org)
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct."
- Ano
reallocated and a remote heap overflow in a call to memcpy().
PoC: http://www.digit-labs.org/files/exploits/extremail-v8.pl
- --
mu-b
([EMAIL PROTECTED])
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it is correct."
remote with IPv6.
PoC: http://www.digit-labs.org/files/exploits/safenet-dos.c
hmmm, I wonder how SafeNET think they can charge for such a
half-baked, crufty, god-awful implementation
--
mu-b
([EMAIL PROTECTED])
"Only a few people will follow the proof. Whoever does will
spend the re
i),%es:(%edi)
PoC: http://www.digit-labs.org/files/exploits/mydns-rr-smash.c
Patch: http://www.digit-labs.org/files/patches/mydns-update.c.diff
--
mu-b
([EMAIL PROTECTED])
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing people it
ult.
0xdeadbeef in ?? ()
(gdb) bt
#0 0xdeadbeef in ?? ()
#1 0x3031002e in ?? ()
#2 0x3634 in ?? ()
#3 0x in ?? ()
(gdb)
POC: http://www.digit-labs.org/files/exploits/extremail-v9.c
--
mu-b
([EMAIL PROTECTED])
"Only a few people will follow the proof. Whoever does will
s
105,7 @@
>/* child process only here */
>signal(SIGCHLD, SIG_IGN);
>
> - strcpy( query_string, pkt.buf );
> + strncpy( query_string, pkt.buf, sizeof(query_string) );
>decode_domain_name( query_string );
>debug("query: %s\n", query_string );
>
>
ep movs dword ptr es:[edi],dword ptr [esi]
es:0023:0210f4e4= ds:0023:0211=???
PoC: http://www.digit-labs.org/files/exploits/mercur-v1.pl
--
mu-b
([EMAIL PROTECTED])
"Only a few people will follow the proof. Whoever does will
spend the rest of his life convincing peopl
56d6dc ebp=0456d6ec iopl=0 nv up ei pl zr na pe nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs= efl=00010246
mercuryi!miconfig_proc_3+0xbacd:
0346ed48 8807mov byte ptr [edi],al ds:0023:0457=??
(note this may be the same as BID 21110).
--
mu-b
([EMAIL
TED])
#!/usr/bin/perl
#
# maildisable-v4.pl
#
# Mail Enable Professional/Enterprise v2.32-4 (win32) remote exploit
# by mu-b - Wed Nov 29 2006
#
# - Tested on: Mail Enable Professional v2.32 (win32) - with HOTFIX
# Mail Enable Professional v2.33 (win32)
# Mail Enable Professio
ildisable-v6.pl)
---
([EMAIL PROTECTED])
#!/usr/bin/perl
#
# maildisable-v3.pl
#
# Mail Enable Professional/Enterprise v2.32-4 (win32) remote exploit
# by mu-b - Thu Nov 23 2006
#
# - Tested on: Mail Enable Professional v2.32 (win32) - with HOTFIX
# Mail Enable Profession
#
# maildisable-v7.pl
#
# Mail Enable Professional/Enterprise v2.32-7 (win32)
# by mu-b - Wed Feb 14 2007
#
# - Tested on: Mail Enable Professional v2.37 (win32)
#
use Getopt::Std; getopts('t:', \%arg);
use Socket;
use MIME::Base64;
&print_header;
my $target;
if (d
3:8146920b=
---
([EMAIL PROTECTED])
#!/usr/bin/perl
#
# maildisable-v5.pl
#
# Mail Enable Professional/Enterprise <=v2.35 (win32)
# by mu-b - Wed Nov 29 2006
#
# - Tested on: Mail Enable Professional v2.32 (win32) - with HOTFIX
# Mail Enable Profe
17 matches
Mail list logo