CVE-2003-0609

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2003-0609 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The information has been provided by inode.
For more information See: http://wayreth.eu.org/

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2003-0609

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Solaris Real World Exploits:
* ldso_ex.c v0.03 LD_PRELOAD Exploit. Working on Solaris 8/9. (CAN-2003-0609)
* padxploit.c v0.6 Remote login exploit via X25 pad. Working on Solaris 2.6/7/8. (CVE-2001-0797)

Solaris exploit templates:
Stack Overflows
* hole.c - Stack overflow vulnerable program.
* exhole_stack.c - Exploit returning into environment.
* exhole_execl.c - Exploit returning into execl of libc.
* exhole_strcpy.c - Exploit returning into strcpy for copy the shellcode on a RWX memory segment and execute it.

Heap Overflows
* heap_vuln.c - Vulnerable program to heap overflow.
* heap_exploit_dtors.c - Exploit modifing DTORS.
* heap_exploit_jmptable.c - Exploit modifing thr_jmp_table.
* heap_exploit_jmptable_auto.c - Exploit modifing thr_jmp_table with automatic search of address.

Studies:
A collection of programs/files for studying the stack creation under Solaris and the right formula for calculate the base stack padding:
sparc_stack.tar & sparc_stack_formula.txt & solaris_sparc_32bit.zip & solaris_sparc_64bit.zip

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus