Securiteam Exploits/Hacking Tools Newsletter (thread)

[NT] RealPlayer Zipped Skin File Buffer Overflow, SecuriTeam, 2004/10/28
[TOOL] HTMLer - An Automated Broken HTML Generator (Mangleme Python Port), SecuriTeam, 2004/10/26
[UNIX] Kaffeine Media Player Content-Type Overflow, SecuriTeam, 2004/10/26
[UNIX] Bugzilla Unauthorized Bug Modification And Information Disclosure Vulnerabilities, SecuriTeam, 2004/10/26
[NT] How to Break Windows XP SP2 (Drag and Drop Media Files) - Proof of Concept, SecuriTeam, 2004/10/26
[NT] Vypress Tonecast Broadcast Shutdown (Crash), SecuriTeam, 2004/10/26
[NT] How to Break Windows XP SP2 (Drag and Drop .hta files), SecuriTeam, 2004/10/26
[UNIX] HP-UX stmkfont Local Privilege Escalation Vulnerability, SecuriTeam, 2004/10/26
[NT] How to Break Windows XP SP2 (Drag and Drop media files), SecuriTeam, 2004/10/26
[UNIX] Apache Mod_include Local Buffer Overflow, SecuriTeam, 2004/10/26
[TOOL] Rssh - Restricted Shell for OpenSSH, SecuriTeam, 2004/10/26
[EXPL] Ability Server FTP STOR Buffer Overflow, SecuriTeam, 2004/10/26
[TOOL] Stp-Packet - Testing the Security of Spanning Tree Protocol, SecuriTeam, 2004/10/26
[UNIX] Buffer Overflow in Mpg123 (getauthfromURL), SecuriTeam, 2004/10/21
[EXPL] Microsoft Windows XP Metafile (.emf) Heap Overflow (MS04-032), SecuriTeam, 2004/10/21
[NT] Privateer's Bounty: Age of Sail II Server Remote Crash, SecuriTeam, 2004/10/21
[EXPL] Avoiding Stackguard and Other Stack Protection - Proof of Concept Code, SecuriTeam, 2004/10/20
[NT] Microsoft's 'Fight Spyware' Information Center, SecuriTeam, 2004/10/20
[REVS] Introduction to Shellcoding - How to Exploit Buffer Overflows, SecuriTeam, 2004/10/20
[EXPL] BitchX Local Root Exploit, SecuriTeam, 2004/10/20
[Full-Disclosure] Major Client Crash in 3D FTP, Bakchodiya, 2004/10/19
[UNIX] Multiple Vulnerabilities in CoolPHP, SecuriTeam, 2004/10/18
[NT] Multiple Cross Site Scripting Vulnerabilities in FuseTalk, SecuriTeam, 2004/10/18
[REVS] GDI+ JPEG Exploit Mutations Can Bypass Antivirus Tests, SecuriTeam, 2004/10/18
[NEWS] Detecting and Testing HTTP Response Splitting Using Browser Cookies Alert, SecuriTeam, 2004/10/18
[EXPL] Remote Buffer overflow Vulnerability in YPOPs (Windows exploit), SecuriTeam, 2004/10/18
[UNIX] Libtiff Image Decoder Parsing Flaws, SecuriTeam, 2004/10/18
[NT] ShixxNote Remote Buffer Overflow, SecuriTeam, 2004/10/18
[NT] Flash Messaging Server Crash, SecuriTeam, 2004/10/18
[NT] Yak! Directory Traversal Bug, SecuriTeam, 2004/10/18
[NT] Microsoft Excel Length Parameter Parsing Buffer Overflow Vulnerability, SecuriTeam, 2004/10/18
[NT] Limited \secure\ buffer-overflow in some old Monolith games, SecuriTeam, 2004/10/17
[NT] SetWindowLong Shatter Attacks, SecuriTeam, 2004/10/17
[NT] Microsoft IIS WebDAV (XML Parser) Attribute Blowup DoS, SecuriTeam, 2004/10/17
[REVS] Common Firewall Configuration Errors, SecuriTeam, 2004/10/17
[NT] Poisoning Cached HTTPS Documents in Internet Explorer, SecuriTeam, 2004/10/17
[UNIX] BMon Relative Path Privilege Escalation, SecuriTeam, 2004/10/17
[NT] Adobe Acrobat/Reader 6 Local Files Access, SecuriTeam, 2004/10/13
[EXPL] Writing Trojans that Bypass Windows XP Service Pack 2 Firewall, SecuriTeam, 2004/10/13
[NT] Vulnerability in NNTP Allows Remote Code Execution (MS04-036), SecuriTeam, 2004/10/13
[NT] Cumulative Security Update for Internet Explorer (MS04-038), SecuriTeam, 2004/10/13
[NT] Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow, SecuriTeam, 2004/10/13
[NT] Windows VDM #UD Local Privilege Escalation, SecuriTeam, 2004/10/13
[NT] Memory Leak and DoS in NT4 RPC server, SecuriTeam, 2004/10/13
[NT] IIS NNTP Service XPAT Command Vulnerabilities (PoC), SecuriTeam, 2004/10/13
[NT] Multiple Vulnerabilities in GoSmart Message Board, SecuriTeam, 2004/10/13
[UNIX] SoX ".WAV" ICRD and ISFT Buffer Overflow, SecuriTeam, 2004/10/13
[NT] Vulnerability in SMTP Allows Remote Code Execution (MS04-035), SecuriTeam, 2004/10/13
[UNIX] ocPortal File Inclusion Vulnerability, SecuriTeam, 2004/10/13
[NT] Vulnerability in Windows Shell Allows Remote Code Execution (MS04-037), SecuriTeam, 2004/10/13
[NT] Vulnerability in NetDDE Could Allow Remote Code Execution (MS04-031), SecuriTeam, 2004/10/13
[NT] Vulnerability in WebDAV XML Message Handler DoS (MS04-030), SecuriTeam, 2004/10/13
[NT] Vulnerability in Microsoft Excel Allows Remote Code Execution (MS04-033), SecuriTeam, 2004/10/13
[NT] Vulnerability in Compressed (zipped) Folders Allows Remote Code Execution (MS04-034), SecuriTeam, 2004/10/13
[NT] Security Update for Microsoft Windows (MS04-032), SecuriTeam, 2004/10/13
[UNIX] Squid Web Proxy Cache Remote DoS, SecuriTeam, 2004/10/13
[NT] Vulnerability in RPC Runtime Library Allows Information Disclosure and DoS (MS04-029), SecuriTeam, 2004/10/13
[UNIX] CubeCart SQL Injection Vulnerability, SecuriTeam, 2004/10/12
[NT] Tridcomm FTP Server Directory Traversal, SecuriTeam, 2004/10/12
[UNIX] HTTP Response Splitting in WordPress, SecuriTeam, 2004/10/11
[UNIX] BlackBoard Path Disclosure and File Inclusion Vulnerabilities, SecuriTeam, 2004/10/11
[REVS] Using the oc192-Dcom.c Exploit to Accomplish Revenge, SecuriTeam, 2004/10/07
[REVS] Worm Analysis - Microsoft LSASS Buffer Overflow from Exploit to Worm, SecuriTeam, 2004/10/07
[EXPL] Ipswitch WhatsUp Gold Remote Buffer Overflow Exploit, SecuriTeam, 2004/10/07
[EXPL] JpegOfDeath - an Advanced JPEG (GDI+) Exploit, SecuriTeam, 2004/10/07
[NT] ColdFusion MX 6.1 on IIS File Contents Disclosure, SecuriTeam, 2004/10/07
[NEWS] Default Username/Password Pairs in ON Command CCM 5.x Database Backend, SecuriTeam, 2004/10/07
[TOOL] Fakebust - Fake Exploit Code Detector, SecuriTeam, 2004/10/07
[NT] RhinoSoft DNS4ME HTTP Server DoS and CSS, SecuriTeam, 2004/10/07
[UNIX] MySQLguest Arbitrary Code Injection, SecuriTeam, 2004/10/07
[UNIX] Sudo -u Parameter File Exposure, SecuriTeam, 2004/10/07
[NEWS] Inkra 1504GX IP Protocol Parsing DoS, SecuriTeam, 2004/10/07
[NEWS] Macromedia JRun4 mod_jrun Apache Module Buffer Overflow, SecuriTeam, 2004/10/04
[EXPL] Microsoft SQL Server DoS, SecuriTeam, 2004/10/04
[NEWS] RealPlayer pnen3260.dll Heap Overflow, SecuriTeam, 2004/10/04
[UNIX] Samba Arbitrary File Access Vulnerability, SecuriTeam, 2004/10/04
[NEWS] Xerces-C++ Library Attribute Parsing Denial Of Service, SecuriTeam, 2004/10/04
[NEWS] Znif PLS Buffer Overflow, SecuriTeam, 2004/10/04
[TOOL] Hotspotter - a Wireless Honeypot, SecuriTeam, 2004/10/04
[UNIX] EPM Buffer Overflow (retlibc exploit), SecuriTeam, 2004/10/04
[EXPL] ICECast Remote Code Execution, SecuriTeam, 2004/10/04
[NT] Judge Dredd Vs. Death Format String Vulnerability, SecuriTeam, 2004/10/04
[NT] dbPowerAmp Buffer Overflow and DoS Vulnerabilities, SecuriTeam, 2004/10/04
[NT] Remote Buffer overflow Vulnerability in YPOPs!, SecuriTeam, 2004/10/04
[REVS] Microsoft PCT Exploit Analysis, SecuriTeam, 2004/10/04
[NEWS] Motorola Wireless Router WR850G Authentication Circumvention, SecuriTeam, 2004/10/04
[REVS] Analysis of Real Network's RealServer Remote Root Exploit, SecuriTeam, 2004/10/03
[UNIX] IBM AIX ctstrtcasd Local File Corruption Vulnerability, SecuriTeam, 2004/10/01
[NT] HTTP Response Splitting and SQL Injection in Megabbs Forum, SecuriTeam, 2004/10/01
[NT] Chatman Remote DoS (New User Broadcast), SecuriTeam, 2004/10/01