Blog | Talks | Docs | Tools | Advisories | About | RSS

Fermín J. Serna - Advisories...

In this section you will find several advisories I have pusblished in the past...

Lsof 4.40 exploit for Linux/x86 (Only exploit)	lsof-xploit.c
w3-msql (miniSQL) xploit for Solaris/x86	w3-msql-xploit.c
Qpopper <= 3.0beta29 xploit for Linux/x86	qpop-LIST-xploit.c
Vulnerabilities in CommuniGate Pro v3.2.4	communigate.txt
Glc 0.1.4 xploit for Linux/x86	glc-xploit.c
Tcpdump 3.5 xploit for Linux/x86	tcpdump-xploit.c
Bind 8.2.* xploit for Linux/x86 (Only exploit)	bind-x.c
snmpXdmid xploit for Solaris/SPARC (Only exploit)	snmpXdmid-x.c
GuildftpD xploit for win2k/SP1 (Only exploit)	guildftp-x.zip
Ettercap, remote root compromise	NGSEC-2002-1.txt & ettercap-x.c
ISC DHCPDv3, remote root compromise	NGSEC-2002-2.txt
Solaris in.talkd, remote root compromise	NGSEC-2002-3.txt
Iplanet WebServer, remote compromise	NGSEC-2002-4.txt & iplanet-ngxss.sh
YABB SE, remote command execution	NGSEC-2003-5.txt
IPD, local system denial of service	NGSEC-2004-6.txt & ipd-dos.c
NtRegmon, local system denial of service	NGSEC-2004-7.txt & ntregmon-dos.c
Dtterm xploit for Unixware 7.1.0	dtterm-x.c
Xsco xploit for Unixware 7.1.0	Xsco-x.c
CVE-2012-0769 - Flash ASLR bypass	Flash_ASLR_bypass.pdf & InfoLeak.as & InfoLeak.swf
CVE-2012-0724 - Flash sandbox escape (I)	APSB12-07
CVE-2012-0725 - Flash sandbox escape (II)	APSB12-07