CVE-2013-2599

CVE-2013-2599 refers to a Code Aurora Forum (CAF) patch in Android 4.1.x–4.3.x that modifies NativeDaemonConnector.java. The vulnerability arises from debug logging enabled by this patch, allowing a logcat command to reveal sensitive disk-encryption passwords. Documents from NVD/NIST describe the...

CVE-2013-2599

A certain Qualcomm Innovation Center QuIC patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum CAF releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption...

WordPress Disqus 2.7.5 CSRF / Cross Site Scripting Vulnerabilities

WordPress Disqus versions 2.7.5 and below suffer from cross site request forgery and cross site scripting vulnerabilities. Vendor: Disqus for WordPress Affected versions: up to v2.7.5 Patched: v2.7.6 release Exploit: Manage.php CSRF+XSS admin exploit Disqus is an extremely popular third-party...

The Java Debugger exploits and fixes-vulnerability warning-the black bar safety net

0x0 Foreword Recently found an interesting vulnerability-JAVA open the Debugger mode can execute arbitrary system commands. Need certain Use Conditions, you have to be open to debug the process of setting up a breakpoint, and then use this breakpoint to execute the command of the operation. 0x1...

Specify logging level to Prevent Root DEBUG from Exposing Login

h3. Summary Setting root level DEBUG can expose login information username/pw when JIRA is connected to Crowd for user management, as it outputs the REST POST contents that are transmitted through the HttpClient. h3. Environment Crowd integrated with JIRA for user management. h3. Steps to Reprodu...

Cisco Small Business SPA300 and SPA500 Series IP Phones Local Code Execution Vulnerability

A vulnerability in the Cisco Small Business SPA300 and SPA500 Series IP Phones could allow an unauthenticated, local attacker to access the debug shell and file system of the affected device. The vulnerability is due to insufficient authentication implementation in the debug console interface. An...

CVE-2014-3312

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

Design/Logic Flaw

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

CVE-2014-3312

Cisco Small Business SPA300 and SPA500 Series IP Phones are affected by CVE-2014-3312 due to an insufficiently authenticated debug console interface. The vulnerability allows a local attacker to execute arbitrary commands on the debug shell and read/modify data in memory or on the filesystem via ...

CVE-2014-3312

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

Kolibri 2.0 - Buffer Overflow RET + SEH exploit (HEAD)

No description provided by source. !/usr/bin/env python / / / / / // | / // \ | / / / / / /// / / / / / / / // / / / |/ / // / , / / // / / / / / //// //|///||/,/ / /// Live by the byte |// Members: Pr0T3cT10n -=M.o.B.=- TheLeader gsog2009 a7 homtail d0t com Sro Debug Contact:...

Agora.CGI 3.x/4.0 Debug Mode Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3702/info Agora.cgi is a freely available, open source shopping cart system. When debug mode is enabled, the Agora.cgi script does not adequately filter HTML tags when debug information is being output. Debug mode is not...

VLC Media Player 2.0.7 (.png) - Crash PoC

No description provided by source. !/usr/bin/python VLC Media Player 2.0.7 PNG Crash PoC Vendor Homepage: http://www.videolan.org/ Version: 2.0.7 Tested on: Windows 7 64-bit Author: Kevin Fujimoto Debug Information: Microsoft R Windows Debugger Version 6.12.0002.633 X86 Copyright c Microsoft...

Vikingboard Viking board 0.1.2 forum.php debug Variable Information Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/25060/info Vikingboard is prone to multiple information-disclosure weaknesses because attackers may disclose sensitive information that may be used in other attacks on the system. Vikingboard 0.1.2 is vulnerable; other...

CA iTechnology iGateway Debug Mode Buffer Overflow

No description provided by source. $Id: caigatewaydebug.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

MagicISO <= 5.4 (build239) - .cue File Heap Overflow PoC

No description provided by source. !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im still learning...

Apache 2.2 (Windows) Local Denial of Service

No description provided by source. !c:\perl\bin\ Exploit Title: Apache 2.2 local denail of service windows Date: 25/10/2010 Author: FB1H2S Software Link: http://httpd.apache.org/. Version: APACHE 2.2.16 Tested on: wINDOWS xP SERVICE PACK 3 CVE : Save the file as .pl in apache cgi-bin and Call...

lighttpd Denial of Service Vulnerability PoC

No description provided by source. 29 of November 2011 was the date of public disclosure interesting vulnerability in lighttpd server. Xi Wang discovered that modauth for this server does not propely decode characters from the extended ASCII table. The vulnerable code is below: src/httpauth.c:67...

DB4Web 3.4/3.6 Connection Proxy Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5725/info DB4Web is an application server that allows read and write access to relational databases and other information sources, via the web. The application is available for Windows, Linux, and various Unix platforms. ...

Mod_Gzip 1.3.x Debug Mode Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/7769/info Modgzip is reported prone to a stack overflow, format string vulnerability and a file corruption issue due to a predictable naming scheme for log files. Exploitation of these issues could result in execution of...