Tr: raptor's xmas pack 2004

[jerome.athias at caramail.com (Jerome ATHIAS)]

> De: Marco Ivaldi <raptor at 0xdeadbeef.info>
> A: bugtraq at securityfocus.com
> Objet: raptor's xmas pack 2004
> Date: Wed, 22 Dec 2004 21:53:31 +0100 (CET)

> Hello bugtraq,
>
> For this xmas i'm releasing some of the exploits i've developed in the
> last months. Nothing so fancy, but i believe i've deployed some
> new/interesting techniques, specially on the Solaris/SPARC platform.
>
> Here's the index:
>
> raptor_chown.c  local on Linux 2.6.x < 2.6.7-rc3 (CAN-2004-0497)
> raptor_udf.c  MySQL privilege escalation procedure (code by NGS)
> raptor_rlogin.c  remote on Solaris 2.5.1, 2.6, 7, 8 (CVE-2001-0797)
> raptor_ldpreload.c local on Solaris 2.6, 7, 8, 9 (CAN-2003-0609)
> raptor_libdthelp.c local on Solaris 7, 8, 9 (CAN-2003-0834)
> raptor_libdthelp2.c same as above, ret-into-ld.so version
> raptor_passwd.c  local on Solaris 8, 9 (CAN-2004-0360)
>
> All the exploits are in the attached tarball. They are also freely
> downloadable from my homepage, at:
>
> <A HREF="http://www.0xdeadbeef.info/"; TARGET="_blank">http://www.0xdeadbeef.info/</A>
>
> Merry xmas and happy hacking ;)
>
> -- 
> Marco Ivaldi
> Antifork Research, Inc.   <A HREF="http://0xdeadbeef.info/"; TARGET="_blank">http://0xdeadbeef.info/</A>
> 3B05 C9C5 A2DE C3D7 4233  0394 EF85 2008 DBFD B707

C est le moment de dynamiser votre bo?te mail en d?couvrant les offres CaraMail Max et Pro - http://www.caramail.com

-------------- next part --------------
A non-text attachment was scrubbed...
Name: raptor_xmas04.tgz
Type: application/octet-stream
Size: 11850 bytes
Desc: not available
URL: <http://mail.metasploit.com/pipermail/framework/attachments/20041224/b245a71f/attachment.obj>