header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Local Linux Exploit in aeon-0.2a

This exploit is a local Linux exploit within aeon-0.2a. It allows an attacker to gain unauthorized access to the system. The exploit uses a buffer overflow vulnerability in the aeon executable to execute arbitrary shellcode. The shellcode spawns a shell with root privileges. This exploit was coded by patr0n and released on security-tmp.h14.ru.

Php AdminPanel Free version 1.0.5 Remote File Disclosure

The Php AdminPanel Free version 1.0.5 is vulnerable to remote file disclosure. An attacker can exploit this vulnerability by accessing the download.php script and manipulating the 'file' parameter to disclose sensitive files on the server.

Proof of Concept by Daniel McNeil

This proof of concept code demonstrates a vulnerability in the AIO (Asynchronous Input/Output) functionality in Linux. It allows a local attacker to escalate their privileges by reading arbitrary files with the permissions of the targeted process. The vulnerability exists due to improper handling of IOCBs (I/O Control Blocks) in the do_aio_direct_read() function. By exploiting this vulnerability, an attacker can bypass file permissions and read sensitive information.

Stunnel Privilege Escalation

The exploit technique involves forking so that stunnel cannot find the attacker when it dies. Then sending stunnel a SIGUSR2 signal, which generally kills programs. Since the attacker is a child of stunnel, the OS will deliver the signal. Finally, the attacker selects on the leaked descriptor and starts serving pages.

Recent Exploits: