4067 matches found
SendLink 1.5 - Local Password Disclosure Exploit
No description provided by source. / SendLink v1.5 Local Exploit by Kozan Application: SendLink v1.5 Vendor:Computer Knacks http://www.computerknacks.com/ Vulnerable Description: SendLink v1.5 discloses passwords to local users. Discovered & Coded by: Kozan Credits to ATmaCA Web :...
Winace UnAce 2.2 Command Line Argument Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/9002/info UnAce has been reported to be prone to a buffer overflow vulnerability. The issue presents itself when UnAce handles ace filenames that are of excessive length. When this filename is passed to the UnAce utility ...
Majordomo 1.89/1.90 lists Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2310/info Majordomo is a perl-based Internet e-mail list server. Versions prior to 1.91 are vulnerable to an attack whereby specially crafted e-mail headers are incorrectly processed, yielding the ability to execute...
TP-Link TL-SC3171 IP Cameras - Multiple Vulnerabilities
Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras 1. Advisory Information Title: Multiple Vulnerabilities in TP-Link TL-SC3171 IP Cameras Advisory ID: CORE-2013-0618 Advisory URL:...
dislocate 1.3 - Local i386 Exploit
No description provided by source. / MasterSecuritY www.mastersecurity.fr dislocate.c - Local i386 exploit in v1.3 Secure Locate v2.3 Copyright C 2000 Michel MaXX Kaempf [email protected] Updated versions of this exploit and the corresponding advisory will be made available at:...
Qpopper <= 4.0.8 (poppassd) Local Root Exploit (linux)
No description provided by source. !/bin/sh tested and working /str0ke Linux Qpopper poppassd latest version local r00t exploit by kcope August 2005 Confidential - Keep Private! POPPASSDPATH=/usr/local/bin/poppassd echo echo Linux Qpopper poppassd latest version local r00t exploit by kcope echo...
PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit
No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / // // ||||,||| ,|||||||,| || |||||| // // // // Proof of concept code from the Hardened-PHP...
IBM AIX <= 5.3 sp6 ftp gets() Local Root Exploit
No description provided by source. / 07/2007: public release IBM AIX = 5.3 sp6 AIX ftp Local Root Exploit By qaaz / include stdio.h include stdlib.h include string.h include unistd.h include sys/wait.h include sys/select.h define TARGET /usr/bin/ftp define OVERLEN 300 define MAXx,y x y ? x : y...
TerminatorX <= 3.81 stack overflow local root exploit
No description provided by source...
Notepad++ Plugin Notepad# 1.5 - Local Exploit
No description provided by source. Exploit Title: Notepad++ - Notepad plugin local exploit Google Dork: Date: 2013-12-01 Exploit Author: Sun Junwen Vendor Homepage: http://notepad-plus-plus.org/ Software Link: http://notepad-plus-plus.org/download/ Version: Notepad ++ 6.3.2 with Notepad plugin 1....
GNU a2ps "Anything to PostScript" Local Exploit (not suid)
No description provided by source. / Not added to Local Non Poc section /str0ke / include stdio.h include stdlib.h include errno.h // by lizard / lizstyleatgmail.com // greets go to slider/trog for helpin me // not suid by default ; define VULNTHING /usr/bin/a2ps define DEFRET 0xbffffffa - strlen...
GnomeHack 1.0.5 - Local Buffer Overflow Exploit
No description provided by source. / linux/debiangnomehackv1.0.5 buffer overflow, by: [email protected]. this will give you an egid=60games shell if gnomehack is sgid=2755 games on debian/2.2, which has gnomehack. this can also be applied to nethack syntax: ./debgnomehack offset alignment. exampl...
soapbox <= 0.3.1 - Local Root Exploit
No description provided by source. ----------------------------------- soapbox 0.3.1 = Local Root Exploit ----------------------------------- Vendor URI: http://dag.wieers.com/home-made/soapbox/ Credit: Jean Pascal Pereira [email protected] Description: Soapbox allows to restrict processes to wri...
iCAM Workstation Control 4.8.0.0 - Authentication Bypass
No description provided by source. Exploit Title: iCAM Workstation Control Software Local Authentication Bypass Google Dork: Vendor: Insight Media Internet Limited is based in the North West of England, and has 10 years experience in developing both internet and software solutions. Our staff are...
GSM SIM Utility 5.15 - Local Exploit Direct Ret ver.
No description provided by source. Exploit Title : GSM SIM Utility Local Exploit Direct Ret ver. Date : July 07, 2010 Author : chap0 www.seek-truth.net Download Link : http://download.cnet.com/GSM-SIM-Utility/3000-185084-10396246.html?tag=mncol Version : 5.15 OS : Windows XP SP3 Greetz to : Corel...
Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit
No description provided by source. / hoagieudpsendmsg.c LOCAL LINUX KERNEL ROOT EXPLOIT 2.6.19 - CVE-2009-2698 udpsendmsg bug exploit via output callback function used in dstentry / rtable Bug reported by Tavis Ormandy and Julien Tinnes of the Google Security Team Tested with Debian Etch r0 $ cat...
Linux Kernel 2.4/2.6 - sock_sendpage() ring0 Root Exploit (Simple Version)
No description provided by source. / 0x82-CVE-2009-2692 Linux kernel 2.4/2.6 32bit socksendpage local ring0 root exploit simple ver Tested RedHat Linux 9.0, Fedora core 411, Whitebox 4, CentOS 4.x. -- Discovered by Tavis Ormandy and Julien Tinnes of the Google Security Team. spender and venglin's...
Oracle Solaris - 'su' Local Solaris Vulnerability
No description provided by source. From http://cvs.opensolaris.org/source/xref/onnv/onnv-gate/usr/src/cmd/su/su.c 521 for j = 0; initenvj != 0; j++ 1 522 if initvar = getenvinitenvj 2 ... 535 else 536 var = char 537 mallocstrleninitenvj 3 538 + strleninitvar 539 + 2; 540 void strcpyvar, initenvj;...
CVE-2014-0012
CVE-2014-0012 affects Jinja2 2.7.2: FileSystemBytecodeCache does not securely create temporary directories, allowing a local user to gain privileges by pre-creating a temp directory with that user’s UID. The issue exists due to an incomplete prior fix for CVE-2014-1402. Several connected advisori...
CVE-2014-0135
CVE-2014-0135 affects Kafo before 0.3.17 and 0.4.x before 0.5.2 (as used by Foreman). The issue is that default_values.yaml is world-readable, allowing local users to read passwords and other sensitive information. Remediation is to upgrade Kafo to 0.3.17+ or 0.4.x to 0.5.2+ (where fixed). If not...