Man-db 2.6.7.1 - Privilege Escalation Exploit

Exploit for linux platform in category local exploits / EDB Note: man:man - man:root http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/ man:root - root:root http://www.halfdog.net/Security/2015/MandbSymlinkLocalRootPrivilegeEscalation/ CreateSetgidBinary.c...

Man-db 2.6.7.1 - Local Privilege Escalation

Man-db 2.6.7.1 - Local Privilege Escalation / EDB Note: man:man - man:root http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/ man:root - root:root http://www.halfdog.net/Security/2015/MandbSymlinkLocalRootPrivilegeEscalation/ CreateSetgidBinary.c...

Man-db 2.6.7.1 - Local Privilege Escalation

/ EDB Note: man:man - man:root http://www.halfdog.net/Security/2015/SetgidDirectoryPrivilegeEscalation/ man:root - root:root http://www.halfdog.net/Security/2015/MandbSymlinkLocalRootPrivilegeEscalation/ CreateSetgidBinary.c...

DEBIAN-CVE-2015-1593

The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers to bypass the ASLR protection mechanism by predicting the address of the top of the stack, related ...

Updated file packages fix security vulnerabilities

Updated file packages fix security vulnerabilities: Alexander Cherepanov reported that using the file command on a specially-crafted ELF binary could lead to a denial of service due to uncontrolled resource consumption while processing ELF section headers CVE-2014-9620, CVE-2014-9621. As part of...

MGASA-2014-0537 Updated file packages fix security vulnerabilities

Updated file packages fix security vulnerabilities: Thomas Jarosch of Intra2net AG reported that using the file command on a specially-crafted ELF binary could lead to a denial of service due to uncontrolled resource consumption CVE-2014-8116. Thomas Jarosch of Intra2net AG reported that using th...

Updated file packages fix security vulnerabilities

Updated file packages fix security vulnerabilities: Thomas Jarosch of Intra2net AG reported that using the file command on a specially-crafted ELF binary could lead to a denial of service due to uncontrolled resource consumption CVE-2014-8116. Thomas Jarosch of Intra2net AG reported that using th...

Bash Vulnerability Exploits Dropping DDoS Bots

A honeypot run by researchers at AlienVault Labs has snared two separate pieces of malware attempting to exploit the Bash vulnerability. One sample is a repurposed IRC bot written in Perl that is trying to build a botnet to be used in distributed denial of service attacks DDoS, said Jaime Blasco,...

QNX RTOS 6.4 - Malformed ELF Binary File Local Denial Of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33352/info QNX RTOS is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. QNX RTOS 6.4.0 is vulnerable; other versions may also...

File 3.x Local Stack Overflow Code Execution Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/7008/info It has been reported that a stack overflow exists in the file program. Although details of this issue are currently unavailable, it is likely that this issue could be exploited to execute code as the user invoki...

Amazon Linux AMI : systemtap (ALAS-2012-54)

An invalid pointer read flaw was found in the way SystemTap handled malformed debugging information in DWARF format. When SystemTap unprivileged mode was enabled, an unprivileged user in the stapusr group could use this flaw to crash the system or, potentially, read arbitrary kernel memory...

Oracle Linux 5 : systemtap (ELSA-2011-0841)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0841 advisory. 1.3-4.1 - bz702687 patch Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

Medium: systemtap

Issue Overview: An invalid pointer read flaw was found in the way SystemTap handled malformed debugging information in DWARF format. When SystemTap unprivileged mode was enabled, an unprivileged user in the stapusr group could use this flaw to crash the system or, potentially, read arbitrary kern...

systemtap security update

CentOS Errata and Security Advisory CESA-2011:0841 Updated systemtap packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

QNX 6.4.0 - bitflipped ELF Binary id Kernel Panic (Denial of Service)

QNX 6.4.0 - bitflipped ELF Binary id Kernel Panic Denial of Service begin 644 qnx-crash.bin M?T5,1@$!0@P!&@$"0"F'00& M"@&08;AT-$.@P7S$P/0 MT@0!04!$RP!^@"!@@/XP! M,0%!$WP$P$","@!A0$8$ MQPG-0!WH0+"P!@0C"$B!!@ M&!@$0+AU0WO;&EB+VQD6YX+G-O+C!C\ M44Y8"$$0"I"0'B@."@ M!Z:@"'P!03P!4/ M&P0,D&...

QNX 6.4.0 bitflipped elf binary (id) Kernel Panic Exploit

No description provided by source. begin 644 qnx-crash.bin M?T5,1@$!0@P!&@$"0"F'00& M"@&08;AT-$.@P7S$P/0 MT@0!04!$RP!^@"!@@/XP! M,0%!$WP$P$","@!A0$8$ MQPG-0!WH0+"P!@0C"$B!!@ M&!@$0+AU0WO;&EB+VQD6YX+G-O+C!C\ M44Y8"$$0"I"0'B@."@ M!Z:@"'P!03P!4/ M&P0,D& M"GD$"0+D/^0W"P! MT'2&!D7W07'=$0 MA@%,+2T...

QNX RTOS 6.4 - '.ELF' Binary File Local Denial of Service

source: https://www.securityfocus.com/bid/33352/info QNX RTOS is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. QNX RTOS 6.4.0 is vulnerable; other versions may also be affected...

QNX 6.4.0 bitflipped elf binary (id) Kernel Panic Exploit

Exploit for QNX platform in category dos / poc ========================================================= QNX 6.4.0 bitflipped elf binary id Kernel Panic Exploit ========================================================= begin 644 qnx-crash.bin M?T5,email protected$!0@P!&@$"0"F'00&...

QNX 6.4.0 - bitflipped ELF Binary 'id' Kernel Panic (Denial of Service)

begin 644 qnx-crash.bin M?T5,1@$!0@P!&@$"0"F'00& M"@&08;AT-$.@P7S$P/0 MT@0!04!$RP!^@"!@@/XP! M,0%!$WP$P$","@!A0$8$ MQPG-0!WH0+"P!@0C"$B!!@ M&!@$0+AU0WO;&EB+VQD6YX+G-O+C!C\ M44Y8"$$0"I"0'B@."@ M!Z:@"'P!03P!4/ M&P0,D& M"GD$"0+D/^0W"P! MT'2&!D7W07'=$0 MA@%,+2T MH=$@9P!:"T2 M@"3$HV$@"X;@!W0$"...

linux x86 shellcode obfuscator

linux x86 shellcode obfuscator. Shellcode exploit for linx86 platform / sm4x - 2008 = sm4x0rcist a7 gmail d07 com - sh3llc0der.c v0.1 beta - elf binary shellcode encryptor, NULL free for IDS payload bypassing - key is a simple int for xxp decryptionencryptionp modify to add/subtract if needed - i...