CVE-2011-3148

CVE-2011-3148 affects Linux-PAM (pam_env) before 1.1.5. The stack-based buffer overflow occurs in the _assemble_line function when parsing a long string of spaces at the beginning of ~/.pam_environment, enabling local users to crash the PAM process and potentially execute arbitrary code. Connecte...

KLA10232 ACE vulnerability in KMPlayer

An untrusted path vulnerability was found in KMPlayer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via dll hijacking. Original advisories - Related products KMPlayer CVE list CVE-2012-3841 critical Solution Update to...

Emesene 2.12.5 - Password Disclosure

Exploit Title: Emesene Password Disclosure Category: Local Date: 29/06/2012 Author: Daniel Godoy Author Mail: DanielGodoyatGobiernoFederaldotcom Author Web: www.delincuentedigital.com.ar Sofware web: http://blog.emesene.org/p/downloads.html Tested on: Linux The only requirement to run the script ...

Zoom Player 4.51 Standard - ".avi" Denial Of Service

Exploit for windows platform in category dos / poc !/usr/bin/perl 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS,...

Real Player 10 Gold Exception Handling

!/usr/bin/perl 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 x Official Website:...

Heap overflow

Heap-based buffer overflow in the xioscanreadline function in xio-readline.c in socat 1.4.0.0 through 1.7.2.0 and 2.0.0-b1 through 2.0.0-b4 allows local users to execute arbitrary code via the READLINE address...

PT-2012-1526 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to multiple array index errors in the sound/oss/opl3.c file of the Linux kernel. This can be exploited by local users to cause a denial of service, resulting in heap memo...

CVE-2011-2209

The CVE-2011-2209 issue affects the Linux kernel on the Alpha architecture, where an integer signedness error in osf_sysinfo (arch/alpha/kernel/osf_sys.c) could allow local users to obtain sensitive information from kernel memory via a crafted call. Vulnerable when using kernel versions before 2....

CVE-2011-2210

The CVE-2011-2210 issue affects the Linux kernel on the Alpha platform, where osf_getsysinfo in arch/alpha/kernel/osf_sys.c does not properly bound the data size for GSI_GET_HWRPB, enabling local users to read kernel memory. Public sources confirm the root cause is improper data size restriction ...

Bitsmith PS Knowbase 3.2.3 Buffer Overflow

Title: ====== Bitsmith PS Knowbase 3.2.3 - Buffer Overflow Vulnerability Date: ===== 2012-03-29 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=474 VL-ID: ===== 474 Introduction: ============= Personal Knowbase is a program for organizing free-form information using...

VLC v. 1.1.11 .mxf Memory Corruption

Exploit for windows platform in category local exploits Exploit Title: VLC v. 1.1.11 .mxf Memory Corruption Date: 3/14/2012 Author: Dan Fosco Vendor or Software Link: www.videolan.org Version: 1.1.11 Category: local Google dork: n/a Tested on: Windows XP SP3 64-bit Demo site: n/a include int main...

PT-2013-1211 · Gnu +3 · Glibc +3

Name of the Vulnerable Software and Affected Versions: glibc versions prior to 2.15-r3 Description: The issue concerns multiple vulnerabilities in the glibc package, which can lead to breaches of confidentiality, integrity, and availability of protected information. Exploitation can occur locally...

CVE-2012-0943

debian/guest-account in Light Display Manager lightdm 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT per ADT1/ADT2 due to different codebases and...

USN-1394-1: linux-ti-omap4 vulnerabilities

Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's handling of IPv4 icmp packets. A remote user could exploit this to cause a denial of service. CVE-2011-1927 Vegard Nossum discovered a leak in the kernel's inotifyinit system call. A local, unprivileged user could exploit...

DEBIAN-CVE-2011-4105

LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on /.Xauthority...

linux/x86 Search (*.php) and Inject PHP_BACKD00R

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

linux/x86 Add new User/Passwd - suid(0) - shellcode 180 bytes

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

UltraPlayer 2.112 - .avi File Denial of Service

UltraPlayer 2.112 - .avi File Denial of Service source: https://www.securityfocus.com/bid/51652/info UltraPlayer is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. UltraPlayer 2.112 is vulnerable;...

UltraPlayer 2.112 Denial Of Service

!/usr/bin/perl sub logo print STDERR Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm KedAns-Dz member from Inj3ct0r Team 1 1 0...

UltraPlayer 2.112 Buffer Overflow

!/usr/bin/perl sub logo print STDERR Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail : submitat1337day.com 1 0 0 1 1 0 I'm KedAns-Dz member from Inj3ct0r Team 1 1 0...