150 matches found
Rekall - The Most Complete Memory Analysis Framework
The Rekall Framework is a completely open collection of tools, implemented in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory RAM samples. The extraction techniques are performed completely independent of the system being investigated but...
Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream -longterm 3.14.32 and fixes the following security issues: The microcode on AMD 16h 00h through 0Fh processors does not properly handle the interaction between locked instructions and write-combined memory types, which allows local users to cause a...
OpenSSH 6.6 SFTP Misconfiguration Proof Of Concept
OpenSSH lets you grant SFTP access to users without allowing full command execution using "ForceCommand internal-sftp". However, if you misconfigure the server and don't use ChrootDirectory, the user will be able to access all parts of the filesystem that he has access to - including procfs. On...
PaX 2.6 Kernel Patch Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10264/info PaX for 2.6 series Linux kernels has been reported prone to a local denial of service vulnerability. The issue is reported to present itself when PaX Address Space Layout Randomization Layout ASLR is enabled. T...
Linux Kernel <= 2.6.21.1 - IPv6 Jumbo Bug Remote DoS Exploit
No description provided by source. / Clemens Kurtenbach ckurtenbach at s21sec . com PoC code for exploiting the jumbo bug found in linux kernels =2.6.20 and =2.6.21.1 gcc -O2 ipv6jumbocrash.c -o ipv6jumbocrash / / io / include stdio.h include string.h include stdlib.h / network / include...
CVE-2014-0240
CVE-2014-0240 affects the mod_wsgi Apache module (daemon mode) where error codes from setuid are not properly handled on certain Linux kernels, enabling a local attacker to escalate privileges via vectors related to the number of running processes. Multiple vendors/advisories reference this flaw ...
CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
DEBIAN-CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
UBUNTU-CVE-2014-0240
The modwsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes...
[Auto Rooting v 1.0] Local root [2010 - 2011 - 2012]
Auto Rooting: 2.6.32-46-2011 2.6.37 2.6.33 2.6.18-164-2010 2.6.18-194 2.6.18-6-x86-2011 2.6.18-164 2.6.18-274-2011 2.6.28-2011 etc... CLICK HERE FOR LOGIN TO ARCHIVE Download Auto Rooting v 1.0...
[SECURITY] Fedora 18 Update: dracut-024-5.git20121019.fc18
dracut contains tools to create a bootable initramfs for 2.6 Linux kernels. Unlike existing implementations, dracut does hard-code as little as possible into the initramfs. dracut contains various modules which are driven by the event-based udev. Having root on MD, DM, LVM2, LUKS is supported as...
[SECURITY] Fedora 16 Update: dracut-018-60.git20120927.fc16
Dracut contains tools to create a bootable initramfs for 2.6 Linux kernels. Unlike existing implementations, dracut does hard-code as little as possible into the initramfs. Dracut contains various modules which are driven by the event-based udev. Having root on MD, DM, LVM2, LUKS is supported as...
[SECURITY] Fedora 17 Update: dracut-018-105.git20120927.fc17
Dracut contains tools to create a bootable initramfs for 2.6 Linux kernels. Unlike existing implementations, dracut does hard-code as little as possible into the initramfs. Dracut contains various modules which are driven by the event-based udev. Having root on MD, DM, LVM2, LUKS is supported as...
Linux Kernel IGMP Remote Denial Of Service Vulnerability
This host is running Linux and prone to remote denial of service vulnerability. OpenVAS Vulnerability Test $Id: gblinuxkerneligmpdosvuln.nasl 7141 2017-09-15 09:58:49Z cfischer $ Linux Kernel IGMP Remote Denial Of Service Vulnerability Authors: Sooraj KS Copyright: Copyright c 2012 Greenbone...
kernel: taskstats: duplicate entries in listener mode can lead to DoS
The adddellistener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does not prevent multiple registrations of exit handlers, which allows local users to cause a denial of service memory and CPU consumption, and bypass the OOM Killer, via a crafted application...
Fedora Update for dracut FEDORA-2010-17930
Check for the Version of dracut OpenVAS Vulnerability Test Fedora Update for dracut FEDORA-2010-17930 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...