what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 9 of 9

Files from JW Oh

wd.pl

Posted Mar 27, 2003

Authored by JW Oh | Site monkey.org

Wd.pl is a remote IIS exploit in perl which exploits the bug in ntdll.dll described inms03-007. Tested on Windows 2000 Advanced Server SP3 - Korean language edition.

tags | exploit, remote, perl

systems | windows

SHA-256 | 5ea1f6ba50a1127397038bd3ad1cc1ed795a67a840eab0ac0c674e81cf2d7b19

Download | Favorite | View

eat_gopher.pl

Posted Jul 30, 2002

Authored by JW Oh | Site monkey.org

IE gopher buffer overflow exploit. Tested on W2k Korean and Wme Korean.

tags | exploit, overflow

SHA-256 | 85e52c61271025804b7c1b580740ed4678d9ae456002868ea97d71c273e26b37

Download | Favorite | View

smash_bin_login.c

Posted Dec 28, 2001

Authored by JW Oh | Site monkey.org

Solaris x86 v2.8 /bin/login via telnet remote buffer overflow exploit. Uses fixed addresses. Executes any command as root.

tags | exploit, remote, overflow, x86, root

systems | solaris

SHA-256 | 8d3fd288df4995d5d3f1e2fea300e371c51d0455b03a428ac1c07e3ded29d2ab

Download | Favorite | View

ida-exploit.sh

Posted Jul 24, 2001

Authored by JW Oh | Site monkey.org

Windows 2000 remote IIS .ida exploit - Spawns a shell on port 8008. Tested on Win2k with no service pack and SP2. Includes instructions on finding the offset.

tags | exploit, remote, shell

systems | windows

SHA-256 | a5c87b494e047e53be40395d92e556f28ceb11a767e48bdc5dfaeb792bf0cbf2

Download | Favorite | View

mon_pine.sh

Posted Dec 12, 2000

Authored by JW Oh | Site hacksware.com

Pine v4.30 and below allows outgoing mail to be hijacked if the alternate editor is enabled. Exploit script included.

tags | exploit

SHA-256 | a697070970654ece18a16dfe44b4f7ffcf5b38cb5159bafae4e725f245de46ca

Download | Favorite | View

sbo_ethereal.c

Posted Nov 19, 2000

Authored by JW Oh | Site hacksware.com

Ethereal v0.8.13 advisory and remote exploit for Linux x86. A stack overflow in the AFS packet parsing routine allows a spoofed packet to start a root shell bound to TCP port 36864.

tags | exploit, remote, overflow, shell, x86, root, spoof, tcp

systems | linux

SHA-256 | 5849011e1fbedaeca9f6469317a94d0d5df77b160e51dc2cfaf731ba6fdbc8e5

Download | Favorite | View

gbook.cgi.txt

Posted Nov 12, 2000

Authored by JW Oh | Site hacksware.com

GBook - A web site guestbook has a remote command execution vulnerability in gbook.cgi.

tags | exploit, remote, web, cgi

SHA-256 | 3432eb8381e12fc433761f3a9958b15e18568c1417a95438a04888df586aee42

Download | Favorite | View

dump.sh

Posted Nov 2, 2000

Authored by JW Oh

Dump v0.4b15 and below for Linux contains a trivial local root vulnerability. Includes proof of concept exploit tested on Redhat 6.2.

tags | exploit, local, root, proof of concept

systems | linux, redhat

SHA-256 | 619ad6db79eab76deef0e838677432fc6d3bd08d012469e9ae413de13b917212

Download | Favorite | View

ntop-w-exp.c

Posted Oct 27, 2000

Authored by JW Oh

Ntop -w v1.2a1 remote stack overflow exploit. Ntop in web mode (-w) contains an overflow when a long filename is requested. Fix available here.

tags | exploit, remote, web, overflow

SHA-256 | ce04a0904b889efb589dd7afd4461f07739d833d857e3149af3cf2126d26ec8e

Download | Favorite | View