September 2016 update rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1

September 2016 update rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1 The September 2016 update rollup includes some new improvements and fixes for the Windows 7 Service Pack 1 SP1 and Windows Server 2008 R2 SP1 platform. We recommend that you apply this update rollup as part of your...

Amber - POC Reflective PE Packer

Amber is a proof of concept packer, it can pack regularly compiled PE files into reflective PE files that can be used as multi stage infection payloads. If you want to learn the packing methodology used inside the Amber check out below. PS: This is not a complete tool some things may break so tak...

CVE-2017-12238

A vulnerability in the Virtual Private LAN Service VPLS code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service DoS condition...

Cisco IOS Software for Cisco Catalyst 6800 Series Switches Denial of Service Vulnerability

Cisco Catalyst 6800 Series Switches is a switch device from Cisco USA.IOS is one of the operating systems used for network devices. A denial of service vulnerability exists in the Virtual Private LAN Service VPLS code in the IOS in Cisco Catalyst 6800 Series Switches. An attacker could exploit th...

Cisco IOS Software for Cisco Catalyst 6800 Series Switches VPLS Denial of Service Vulnerability

A vulnerability in the Virtual Private LAN Service VPLS code of Cisco IOS Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service DoS condition. The...

PT-2017-4195 · Cisco · Cisco Ios +1

Name of the Vulnerable Software and Affected Versions: Cisco Catalyst 6800 Series Switches versions 15.0 through 15.4 Description: A memory management issue in the Virtual Private LAN Service VPLS code of Cisco IOS Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated,...

The vulnerability of the QEMU hardware emulation software allows a malicious actor to trigger a failure in the host operating system’s maintenance or execute arbitrary code.

The QEMU software contains a vulnerability related to buffer overflows when the virtionethandlemac function is called to update the MAC address table of the guest operating system. This allows the user of the guest operating system to compromise the integrity of the dynamic memory of the host...

GDB Front End: PINCE

GDB Front End: PINCE is not Cheat Engine PINCE is a front-end/reverse engineering tool for the GNU Project Debugger GDB, focused on games. But it can be used for any reverse-engineering related stuff. PINCE is an abbreviation for “PINCE is not Cheat Engine”. PINCE’s GUI is heavily “inspired;D” by...

New Angler Exploits Bypass EMET Mitigations

New Microsoft Silverlight and Adobe Flash exploits that bypass Microsoft’s Enhanced Mitigation Experience Toolkit EMET have found their way into an updated version of the Angler Exploit Kit. EMET is a suite of freely available tools for Windows machines that mitigate memory-based attacks. The...

Latest EMET Bypass Targets WoW64 Windows Subsystem

Backwards compatibility, a necessary evil for Microsoft in its need to support so many legacy applications on Windows, may be its undoing as researchers have found a way to exploit this layer in the operating system to bypass existing mitigations against memory-based exploits. Specifically in thi...

Mozilla: Use-after-free while manipulating HTML media content (MFSA 2015-106)

Use-after-free vulnerability in the HTMLVideoElement interface in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via crafted JavaScript code that modifies the URI table of a media element, aka ZDI-CAN-3176...

Wireshark WCCP dissect_wccp2r1_address_table_info Denial of Service Vulnerability

Wireshark is the most popular network protocol parser. Wireshark suffers from a denial of service vulnerability, which can be exploited by an attacker to cause a denial of service application crash...

UBUNTU-CVE-2015-6249

The dissectwccp2r1addresstableinfo function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.7 does not prevent the conflicting use of a table for both IPv4 and IPv6 addresses, which allows remote attackers to cause a denial of service application crash via a...

Microsoft Releases EMET 5.0 Exploit Mitigation Tool

The latest version of Microsoft’s freely available stopgap against zero-day exploits was released today with two new exploit mitigations and a batch of new configuration options. The update to Microsoft’s Enhanced Mitigation Experience Tool kit, or EMET, comes six months after a technical preview...

qemu: virtio-net: out-of-bounds buffer write on load

Buffer overflow in virtionetload function in net/virtio-net.c in QEMU 1.3.0 through 1.7.x before 1.7.2 might allow remote attackers to execute arbitrary code via a large MAC table...

Microsoft EMET 5.0 Technical Preview Released

SAN FRANCISCO – Enterprises beat up by wave after wave of Java exploits and calls to disable the platform may soon have some relief in sight. Microsoft’s free Enhanced Mitigation Experience Toolkit will soon have a new feature that allows users to configure where plug-ins, especially those target...

Successful Shell Attack Detected - Cisco 'show mac-address-table' Command

Binary data 6208.prm...

CVE-2005-0115

Stack-based buffer overflow in DataRescue Interactive Disassembler IDA Pro 4.7 allows attackers to execute arbitrary code via a PE file with an Import Address Table containing a long import library name...

CVE-2005-0140

Buffer overflow in PeID allows attackers to execute arbitrary code via a PE file with an Import Address Table containing a long import library name...

CVE-2005-0140

CVE-2005-0140 affects PeID: a buffer overflow in the Import Address Table when processing a PE file with a long import library name can allow arbitrary code execution. Documents consistently describe this as a buffer overflow vulnerability in PeID and do not provide a published fix or affected ve...