CVE-2004-0430

Related Files

AppleFileServer LoginExt PathName Overflow

Posted Oct 28, 2009

Authored by H D Moore | Site metasploit.com

This Metasploit module exploits a stack overflow in the AppleFileServer service on MacOS X. This vulnerability was originally reported by Atstake and was actually one of the few useful advisories ever published by that company. You only have one chance to exploit this bug. This particular exploit uses a stack-based return address that will only work under optimal conditions.

tags | exploit, overflow

advisories | CVE-2004-0430

SHA-256 | d6bfb60bac8c1bd2da8a4cbf66db3c5ce0562ab709e98ce7361c7a2a4864ea31

Download | Favorite | View

priv8afp.pl

Posted Aug 13, 2004

Authored by wsxz | Site priv8security.com

Remote root exploit for Mac OS X versions 10.3.3, 10.3.2, and 10.2.8 that makes use of the stack buffer overflow in the Apple Filing Protocol (AFP).

tags | exploit, remote, overflow, root, protocol

systems | apple, osx

advisories | CVE-2004-0430

SHA-256 | 9f288f0368bfa21ae4ec075d1d997e64fc2e774d97728922d146a07cfacfdd0a

Download | Favorite | View

Atstake Security Advisory 04-05-03.1

Posted May 7, 2004

Authored by David Goldsmith, Atstake, Dino Dai Zovi | Site atstake.com

Atstake Security Advisory A050304-1 - The AppleFileServer provides Apple Filing Protocol (AFP) services for both Mac OS X and Mac OS X server. AFP is a protocol used to remotely mount drives, similar to NFS or SMB/CIFS. There is a pre-authentication, remotely exploitable stack buffer overflow that allows an attacker to obtain administrative privileges and execute commands as root. Versions affected are Mac OS X 10.3.3, 10.3.2, and 10.2.8.

tags | advisory, overflow, root, protocol

systems | apple, osx

advisories | CVE-2004-0430

SHA-256 | d0a99458eaeba41776f013f6acd2684183376fa3765005d3b0854d047a21d569

Download | Favorite | View