BSD-based systems (FreeBSD, NetBSD, OpenBSD) index array overflow

Index array overflow in libc gdtoa function used by printf...

KAME IKE Daemon (racoon) INITIAL_CONTACT Improper Handling (CVE-2004-0164)

Racoon is an Internet Key Exchange IKE daemon for automatically keying IPsec connections. There exists a vulnerability in the IKE daemon of some BSD systems Such as NetBSD's racoon where sending specifically crafted IKE packets could remove an IPsec SA or all SAs. Once an attacker successfully...

FreeBSD fifo_vnops.c资源泄漏本地拒绝服务漏洞

BUGTRAQ ID: 36949 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD的usr/src/sys/fs/fifofs/fifovnops.c文件中存在资源泄漏漏洞： / Open called to set up a new instance of a fifo or to find an active instance of a fifo. / / ARGSUSED / static int fifoopenap struct vopopenargs / struct vnode avp; int amode; struc...

How to find unix broiler-vulnerability warning-the black bar safety net

Why that is I and the x-laser together with looking for broiler? Because all our operations are all in the 3 3 8 9 broiler on. First of all, we are on to the same terminal, premise:the terminal is open,rather than doing it on your own,so that only the Terminal Services Manager can be usedand then...

BSD systems printf buffer overflows

Multiple vulnerabilities on f format specificator parsing...

BSD (Multiple Distributions) - 'printf(3)' Memory Corruption

source: https://www.securityfocus.com/bid/36885/info Multiple BSD distributions are prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. An attacker can exploit this issue to cause applications to crash with a segmentation...

BSD (Multiple Distributions) - printf(3) Memory Corruption

BSD Multiple Distributions - printf3 Memory Corruption source: https://www.securityfocus.com/bid/36885/info Multiple BSD distributions are prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. An attacker can exploit this issue...

SecurityReason: Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Multiple BSD printf1 and multiple dtoa/printf3 vulnerabilities Author: Maksymilian Arciemowicz SecurityReason.com Date: - - Dis.: 29.06.2009 - - Pub.: 30.10.2009 We are going inform all vendors, about this problem Affected Software official: - - OpenB...

Subversion Date Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'msf/core/exploit/http'...

XTACACSD 4.1.2 Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'XTACACSD %q...

Multiple BSD and Linux systems strfmon() libc / glibc function integer overflow

Integer overflow on format specificator in strfmon. NULL pointer dereference in printf...

BSD systems kevent race conditions

Race conditions on SMP systems...

SOL10509 - Sockstress DoS tool vulnerability CVE-2008-4609

Sockstress DoS tool CVE-2008-4609. The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate...

Multiple BSD Operating Systems setusercontext() Vulnerabilities

No description provided by source. BSD setusercontext vulnerabilites discovered by Kingcope, July 2009 lewls XD Let's go.. BSD derived operating systems have a special function to set a "user context". The function setusercontext is available on for example FreeBSD 5.0 and 7.0. An example from...

Multiple BSD Operating Systems setusercontext() Vulnerabilities

Exploit for multiple platform in category local exploits =============================================================== Multiple BSD Operating Systems setusercontext Vulnerabilities =============================================================== BSD setusercontext vulnerabilites discovered by...

[email protected]

BSD setusercontext vulnerabilites discovered by Kingcope, July 2009 lewls XD Let's go.. BSD derived operating systems have a special function to set a "user context". The function setusercontext is available on for example FreeBSD 5.0 and 7.0. An example from ftpd.c : setusercontextlc, pw, uidt0,...

BSD (Multiple Distributions) - 'setusercontext()' Multiple Vulnerabilities

BSD setusercontext vulnerabilites discovered by Kingcope, July 2009 lewls XD Let's go.. BSD derived operating systems have a special function to set a "user context". The function setusercontext is available on for example FreeBSD 5.0 and 7.0. An example from ftpd.c : setusercontextlc, pw, uidt0,...

setusercontext() privilege escalation in BSD systems

Multiple application misbihave if different limits are set via setusercontext, resulting in different exploitation scenarios...

BSD (Multiple Distributions) - setusercontext() Multiple Vulnerabilities

BSD Multiple Distributions - setusercontext Multiple Vulnerabilities BSD setusercontext vulnerabilites discovered by Kingcope, July 2009 lewls XD Let's go.. BSD derived operating systems have a special function to set a "user context". The function setusercontext is available on for example FreeB...

FreeBSD Meterpreter Service, Reverse TCP Inline

Stub payload for interacting with a Meterpreter Service This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 0 include Msf::Payload::Bsd include Msf::Payload::Single include...