47 matches found
FACTION 安全漏洞
Faction is an open source pen inspection report generation and evaluation collaboration framework from Faction Security. A security vulnerability exists in FACTION versions prior to 1.7.1 that stems from an extension execution path that allows untrusted extension code to execute arbitrary system...
EUVD-2004-0345
Malware in sbrugna...
CVE-2025-27422
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422 FACTION Allows Authentication Bypass via User Creation
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422 FACTION Allows Authentication Bypass via User Creation
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
Faction 授权问题漏洞
Faction is an open source pen inspection report generation and evaluation collaboration framework from Faction Security. An authorization issue vulnerability exists in versions of Faction prior to 1.4.3, which stems from an attacker being able to register a new user with administrator privileges ...
List of Open Source C2 Post-Exploitation Frameworks
PenTestIT RSS Feed This post has been lying in my drafts for more than a year with edits all over. But two days ago, it was announced that Powershell Empire would no longer be supported by it's authors. Hence just like I curated a list of adversary emulation tools, I finalized this list of open...
Volition Pure Faction Stack Buffer Overflow Vulnerability
Volition Red Faction is a set of action games.Pure Faction is a patch for the Red Faction games. Volition Pure Faction 3.0c suffers from a stack buffer overflow vulnerability, which allows attackers to exploit the vulnerability to execute arbitrary code or conduct denial of service attacks...
Server buffer overflow in Pure Faction <= 3.0c
Application: Pure Faction http://www.purefaction.org Versions: = 3.0c Platforms: Windows Bug: server buffer overflow Risk: highly critical Exploitation: remote and automatic requires attacker to have joined server Date: 13 Mar 2015 Author: soulsgetnothing e-mail: soulsgetnothing at hotmail dot co...
Pure Faction game server buffer overflow
Buffer overflow via game chat...
Red Faction <= 1.20 Server Reply Remote Buffer Overflow Exploit
No description provided by source. / by Luigi Auriemma UNIX & WIN VERSION / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h include winerr.h define close closesocket else include unistd.h include sys/socket.h include sys/types.h include arpa/inet.h include netdb.h...
Volition Red Faction 1.0/1.1 Game Server/Client Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3651/info Red Faction is a commercial 3D first person shooter game developed by Volition and published by THQ. Red Faction allows up to 32 players to game across a LAN or TCP/IP. Both the Red Faction Game Server and the...
CVE-2004-0345
Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name...
CVE-2004-0345
Affected software: Red Faction client 1.20 and earlier. The issue is a buffer overflow that allows a remote server to execute arbitrary code via a long server name. This CVE entry does not include explicit remediation details in the provided documents. The exploitation status is not stated.
CVE-2004-0345
Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name...
Red Faction <= 1.20 Server Reply Remote Buffer Overflow Exploit
No description provided by source. / by Luigi Auriemma UNIX & WIN VERSION / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h include "winerr.h" define close closesocket else include unistd.h include sys/socket.h include sys/types.h include arpa/inet.h include netdb....
Red Faction <= 1.20 Server Reply Remote Buffer Overflow Exploit
Exploit for unknown platform in category dos / poc =============================================================== Red Faction include include ifdef WIN32 include include "winerr.h" define close closesocket else include include include include include endif define VER "0.1" define BUFFSZ 2048...
Red Faction 1.20 - Server Reply Remote Buffer Overflow (PoC)
/ by Luigi Auriemma UNIX & WIN VERSION / include include include ifdef WIN32 include include "winerr.h" define close closesocket else include include include include include endif define VER "0.1" define BUFFSZ 2048 define PORT 7755 define RETADDR "\xde\xc0\xad\xde" // 0xdeadc0de void stderrvoid;...
Red Faction 1.20 - Server Reply Remote Buffer Overflow (PoC)
Red Faction 1.20 - Server Reply Remote Buffer Overflow PoC / by Luigi Auriemma UNIX & WIN VERSION / include include include ifdef WIN32 include include "winerr.h" define close closesocket else include include include include include endif define VER "0.1" define BUFFSZ 2048 define PORT 7755 defin...
Clients broadcast buffer overflow in Red Faction <= 1.20
Luigi Auriemma Application: Red Faction http://www.redfaction.com Versions: = 1.20 Platforms: Windows, MacOS Bug: broadcast client buffer overflow Risk: highly critical Exploitation: remote and automatic, versus clients Date: 01 Mar 2004 Author: Luigi Auriemma e-mail: [email protected] web:...