lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <102420031509.8259.2704@comcast.net>
From: amebix at comcast.net (amebix@...cast.net)
Subject: ProFTPD-1.2.9rc2 remote root exploit   

I dont know about 'decrypting' it but from what I can tell yes it is launched locally. I doubt this is a legitimate 0 day, it does look like evil code however. I would not run this on a system you cant rebuild.

>The shellcode seems to be locally launched. Anybody to "decrypt" the
>shellcode ?
chris
chris@...secure.net


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ