1086 matches found
[SECURITY] Fedora 26 Update: perltidy-20170521-1.fc26
Perltidy is a Perl script that indents and re-formats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately...
MikroTik RouterBoard 6.38.5 - Denial of Service
MikroTik RouterBoard 6.38.5 - Denial of Service !/usr/local/bin/perl use Socket; $srchost =3D $ARGV0;=20 $srcport =3D $ARGV1;=20 $dsthost =3D $ARGV2;=20 $dstport =3D $ARGV3;=20 if!defined $srchost or !defined $srcport or !defined $dsthost or !defin= ed $dstport=20 =09 =09print "Usage: $0 \n";...
MikroTik RouterBoard 6.38.5 Denial Of Service
!/usr/local/bin/perl use Socket; $srchost =3D $ARGV0;=20 $srcport =3D $ARGV1;=20 $dsthost =3D $ARGV2;=20 $dstport =3D $ARGV3;=20 if!defined $srchost or !defined $srcport or !defined $dsthost or !defin= ed $dstport=20 =09 =09print "Usage: $0 \n"; =09exit; =20 else=20 =09 =09main; =20 sub main=20...
Malware exploit: Xdh
Type: Remote Code Execution Author: shipcod3 / Jay Turla This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule Msf::Exploit::Remote Rank = ExcellentRanking include...
ImageMagick -- heap overflow vulnerability
Bastien Roucaries reports: Imagemagick before 3cbfb163cff9e5b8cdeace8312e9bfee810ed02b suffer from a heap overflow in WaveletDenoiseImage. This problem is easily trigerrable from a Perl script...
CVE-2016-7489
Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution...
CVE-2016-7489
Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution...
Code injection
Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution...
CVE-2016-7489
Teradata Virtual Machine Community Edition v15.10 is affected by an insecure file-creation flaw in the perl script /opt/teradata/gsctools/bin/t2a.pl, which creates temporary files in /tmp. The root cause is insecure handling of /tmp files, enabling a local user to inject/execute commands (e.g., b...
LDAP Amplication Denial Of Service
!/usr/bin/perl LDAP DRDoS by ShadowHatesYou use Net::RawIP; @ldapservers = qw ; if $ARGV0 eq '' print "Use: $0 \n"; exit; my $target = "$ARGV0"; my $ldapsearchrequest =...
PC Toplama 2.0 Database Disclosure
======================================================================== | Title : PC Toplama v2.0 Database Disclosure Exploit | Author : indoushka | email : [email protected] | Tested on : windows 8.1 FranASSais V.Pro | Version : v2.0 | Vendor :...
Subversion 1.6.6 / 1.6.12 Code Execution
This is an exploit for the subversion vulnerability published as CVE-2013-2088. Author: GlacierZ0ne [email protected] Exploit Type: Code Execution Access Type: Authenticated Remote Exploit Prerequisites: svn command line client available, subversion server exposes webdav through apache,...
VegaDNS 0.13.2 Remote Command Injection
!/usr/bin/perl $izd= qq aaaaaaaaaaaaaa aaaaaaa aaa aaaaaa aaaaaaa aaaaaaa aaaaaaa aaaaaaa aaaaaaaaaaaaaa aaaaaaaa aaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaa aaaaa aaa aaaaaaaaa aaaaaaaaaaa aaa aaaaaaaaaaaaaa aaaaaaaaaaa aaa aaaaa aaa aaaaaaaaaaaaaaaaaaaaa aaa aaaaaaaaaaaaaa aaaaaaaaaa...
AVS Audio Converter 8.2.1 Buffer Overflow
Document Title: =============== AVS Audio Converter 8.2.1 - Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1920 Release Date: ============= 2016-08-22 Vulnerability Laboratory ID VL-ID: ====================================...
Relay Ajax Directory Manager relayb01-071706 / 1.5.1 / 1.5.3 - Unauthenticated Arbitrary File Upload
Exploit for php platform in category web applications Unauthenticated File Upload in Relay Ajax Directory Manager may Lead to Remote Command Execution A vulnerability within the Relay Ajax Directory Manager web application allows unauthenticated attackers to upload arbitrary files to the web serv...
Relay Ajax Directory Manager relayb01-071706/1.5.1/1.5.3 - Arbitrary File Upload
Advisory: Unauthenticated File Upload in Relay Ajax Directory Manager may Lead to Remote Command Execution A vulnerability within the Relay Ajax Directory Manager web application allows unauthenticated attackers to upload arbitrary files to the web server running the web application. Details...
Uber: Stored XSS in drive.uber.com WordPress admin panel
There is another bug in the All In One Event Calendar plugin used on drive.uber.com. An attacker can inject arbitrary JavaScript in the administrative Dashboard of WordPress. The script would be evaluated under administrator privileges as only logged-in administrators can view the Dashboard. Such...
Analyzing Linux Malware Sandbox: Limon
Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect the Linux malware before execution, during execution, and after execution post-mortem analysis by...
IntelBras WRN 340 Unauthenticated Remote DNS Changer Vulnerability
IntelBras WRN 340 ADSL modem router remote unauthenticated DNS changing exploit. !/usr/bin/perl IntelBras WRN 340 ADSL Modem-Router - Unauthenticated Remote DNS Change Exploit Discovered by: Gabriel P. Lipski - gpDOTlipskiATgmailDOTcom Brazil, sept. 2015. AVISO: Este codigo foi feito apenas para...
KMPlayer 3.9.x - '.srt' Crash (PoC)
!/usr/bin/perl -w Title : KMPlayer 3.9.x - Crash Proof Of Concept Company : http://www.kmplayer.com Tested : Windows 7 / Windows 8.1 Author : Peyman Motevalli Manesh Linkedin : https://ir.linkedin.com/in/peymanmotevalli E-Mail : meatPDPnetworkdotir Website : www.PDPnetwork.ir FaceBook :...