Siemens Scalance S Multiple Security Vulnerabilities

Overview ICS-CERT has received a report from Siemens regarding two security vulnerabilities in the Scalance S Security Module firewall. This vulnerability was reported to Siemens by Adam Hahn and Manimaran Govindarasu for coordinated disclosure. The first issue is a brute-force credential guessin...

Multi Gather Ping Sweep

Performs IPv4 ping sweep using the OS included ping command. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather Ping Sweep', 'Description' = %q Performs IPv4 ping sweep using the OS...

NetBIOS Name Service Spoofer

This module forges NetBIOS Name Service NBNS responses. It will listen for NBNS requests sent to the local subnet's broadcast address and spoof a response, redirecting the querying machine to an IP of the attacker's choosing. Combined with auxiliary/server/capture/smb or...

[Manual] Безопасный web-сервер. (chroot,mod-security2,etc)

1. Теория 1.0. Постановка задачи Нам требуется построить максимально безопасный web-сервер на основе минимального дистрибьютива Ubuntu, а именно: 1. Создать chroot "песочницу" с помощью debootstrap 2. Установить в песочнице apache2, php5, mysql 3. Установить и настроить mod-security2, а также...

kernel: ima: fix add LSM rule bug

The imalsmruleinit function in security/integrity/ima/imapolicy.c in the Linux kernel before 2.6.37, when the Linux Security Modules LSM framework is disabled, allows local users to bypass Integrity Measurement Architecture IMA rules in opportunistic circumstances by leveraging an administrator's...

Apache Tomcat安全管理模块本地用户权限提升漏洞

No description provided by source...

stat(2)-based Context Keyed Payload Encoder

This is a Context-Keyed Payload Encoder based on stat2 and Shikata Ga Nai. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/poly' class MetasploitModule 'stat2-based Context Keyed Payload Encoder',...

HTTP Version Detection

Display version information about each system. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Version Detection', 'Description' = 'Display version information about each system.', 'Author...

HTTP GET Request URI Fuzzer (Incrementing Lengths)

This module sends a series of HTTP GET request with incrementing URL lengths. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP GET Request URI Fuzzer Incrementing Lengths', 'Description' = ...

SMB Tree Connect Request Fuzzer

This module sends a series of SMB tree connect requests using malicious strings. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Tree Connect Request Fuzzer', 'Description' = %q This module...

Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 (Windows)

The host is installed with Firefox browser and is prone to multiple Denial of Service vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultdosvulnsep09win.nasl 5055 2017-01-20 14:08:39Z teissa $ Mozilla Firefox Multiple Denial Of Service Vulnerabilities - Sep09 Windows Authors: Shara...

Windows x64 Command Shell, Bind TCP Inline

Listen for a connection and spawn a command shell Windows x64 This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 505 include Msf::Payload::Windows include Msf::Payload::Single include...

Oracle TNS Listener Command Issuer

This module allows for the sending of arbitrary TNS commands in order to gather information. Inspired from tnscmd.pl from www.jammed.com/jwa/hacks/security/tnscmd/tnscmd This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

SIP Endpoint Scanner (UDP)

Scan for SIP devices using OPTIONS requests This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Endpoint Scanner UDP', 'Description' = 'Scan for SIP devices using OPTIONS requests', 'Author' =...

Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ============================================================= Pluck CMS 4.5.2 Multiple Local File Inclusion Vulnerabilities ============================================================= Digital Security Research Group DSecRG Advisory...

Pluck CMS 4.5.2 - Multiple Local File Inclusions

Pluck CMS 4.5.2 - Multiple Local File Inclusions Digital Security Research Group DSecRG Advisory DSECRG-08-037 Application: Pluck CMS Versions Affected: 4.5.2 Vendor URL: http://www.pluck-cms.org/ Bug: Multiple Local File Include Exploits: YES Reported: 28.07.2008 Vendor Response: 03.08.2008...

Authentication Capture: FTP

This module provides a fake FTP service that is designed to capture authentication credentials. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Authentication Capture: FTP', 'Description' = %q...

CVE-2007-5422

Unspecified vulnerability in "Solaris Auditing" in the Basic Security Module BSM in Sun Solaris 10, when configured for auditing of networking nt events, allows local users to cause a denial of service panic via unspecified vectors...

CVE-2007-5422

CVE-2007-5422 affects Sun Solaris 10, specifically the Solaris Auditing feature within the Basic Security Module (BSM). When configured to audit networking (nt) events, a local attacker can trigger a denial-of-service (panic) via unspecified vectors. The available sources describe the affected co...

NukeSentinel 2.5.05 (nukesentinel.php) File Disclosure Exploit

No description provided by source. !/usr/bin/php File Disclosure Maybe work on other versions. Interesting exploit = if$argc URL: http://www.acid-root.new.fr/ ------------------------------------------------------------------ Usage: $argv0 -url -file Options Example: $argv0 -url...