Code

CVE-2009-2669 Exploit

CVE-2009-2669 Exploit

A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE environment variables, which allows local users to gain privileges by…
WarVOX patch

WarVOX patch

iaxrecord (warvox 1.0.1) patch to enable the use of test mode of iaxclient library (needed 2.2.x), you will not need an audio device anymore. http://lab.mediaservice.net/code/iaxrecord_patch.diff MD5: f131f03ba5a877ace17329ba2d40cb85 SHA-1: e622316c7345d47d846dfb98d8ddaa055f2154c2
Singsing

Singsing

Singsing is a SYN scan library, small, fast and compatible. From the core engine, the asyncronous SYN scanner zucca has been born. Here the Singsing project page: http://lab.mediaservice.net/code/singsing/
RunAsUser v0.5

RunAsUser v0.5

RunAsUser uses DLL injection techniques to gain SYSTEM privileges abusing the LSASS.EXE process, then it duplicates the security token of the target process and runs an arbitrary program, effectively impersonating…
CVE-2008-0960 Exploit

CVE-2008-0960 Exploit

Proof of Concept for CVE-2008-0960: allows you to bypass authentication on SNMP v3 (tested on CISCO and Net- SNMP) via HMAC validation error. http://lab.mediaservice.net/code/snmpv3_exp.tgz MD5: 8b361d84155829c8b08e4342f8db6aa2 SHA-1: 4f011d1dae3b28611700b2e66158ba572d4673a6
CVE-2003-0190 PoC

CVE-2003-0190 PoC

Proof of Concept for CVE-2003-0190: timing attack on OpenSSH-portable <= 3.6.1p1 with PAM. http://lab.mediaservice.net/code/ssh_brute.c MD5: 4fbc9a1fb23e828b1fe42ff7cc65d1c1 SHA-1: b57f20c0a86c20cda82e8dc169923452fc50225c http://lab.mediaservice.net/code/openssh-3.6.1p1_brute.diff MD5: de3bc1148b93ddb427f6fc721d08a1c0 SHA-1: 9cf2b8a9bcb5e526c071f18e4bd3be5c5b716e35