hacking security forum

Re: [Full-Disclosure] SHOUTcast Server 1.8.x remote heap overrun exploit binary version

From: <airsupply@freebsdchina.org>
Date: Tue Feb 24 2004 - 17:19:22 EST

Alexander wrote:

>http://www.securitylab.ru/42976.html (in russian!)
>
>shoutdown.01.tar.gz: SHOUTcast 1.9.2 remote heap overrun exploit. Binds
>rootshell on port 26112.
>
>Note: this is binary version. Compiled on Linux/x86 with gcc3.2. Source code
>wont be distributed.
>
>
>
>Autor: ŠD4rkGr3y? of m00 Security
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>
>
>
our exp source code at http://www.0x557.org/release/shoutexp.py

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Tue Feb 24 02:36:45 2004

This archive was generated by hypermail 2.1.8 : Tue Feb 24 2004 - 03:01:03 EST