Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3217 matches found

OpenVAS
OpenVASadded 2009/03/20 12:0 a.m.45 views

RedHat Security Advisory RHSA-2009:0382

The remote host is missing updates announced in advisory RHSA-2009:0382. libvirt is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. libvirt also provides tools for remotely managing virtualized systems. The libvirtd daemon was...

7.2CVSS0.2AI score0.00267EPSS
Exploits7References2
NVD
NVDadded 2009/03/12 3:20 p.m.9 views

CVE-2009-0876

Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DTRPATH:$ORIGIN...

6.9CVSS6.5AI score0.00359EPSS
Exploits1References11
Prion
Prionadded 2009/03/12 3:20 p.m.13 views

Design/Logic Flaw

Sun xVM VirtualBox 2.0.0, 2.0.2, 2.0.4, 2.0.6r39760, 2.1.0, 2.1.2, and 2.1.4r42893 on Linux allows local users to gain privileges via a hardlink attack, which preserves setuid/setgid bits on Linux, related to DTRPATH:$ORIGIN...

6.9CVSS7.1AI score0.00359EPSS
Exploits1References11Affected Software1
CVE
CVEadded 2009/03/12 3:0 p.m.75 views

CVE-2009-0876

Sun xVM VirtualBox for Linux (versions 2.0.0 – 2.1.4r42893) is affected by a local privilege-escalation flaw via a hardlink attack that preserves setuid/setgid bits, related to DT_RPATH:$ORIGIN. The issue, described across multiple sources, centers on filesystem manipulation allowing a non-privil...

6.9CVSS6.8AI score0.00359EPSS
Exploits1References11Affected Software1
seebug.org
seebug.orgadded 2009/03/02 12:0 a.m.10 views

FreeBSD/x86 - setuid(0)&execve({"//sbin/ipf","-Faa",0},0); - 57 bytes

No description provided by source. ; sm4x - 2008 ; setuid0; execve"//sbin/ipf", "//sbin/ipf", "-Faa", 0, 0; ; 57 bytes ; FreeBSD 7.0-RELEASE global start start: main: ; --------------------- setuid 0 xor eax, eax xor ecx, ecx push eax push eax mov al, 0x17 int 0x80 ; --------------------- -Faa xo...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/03/02 12:0 a.m.15 views

FreeBSD/x86 - execve(/bin/cat & /etc/master.passwd) - 65 bytes

No description provided by source. ; sm4x 2008 ; /bin/cat /etc/master.passwd ; 65 bytes ; FreeBSD 7.0-RELEASE global start start: xor eax, eax ; --- setuid0 push eax push eax mov al, 0x17 int 0x80 ; --- setup /etc/master.passwd jmp short loadfile ok: pop esi ; setup /bin/cat push eax push...

7.1AI score
Exploits0
OpenVAS
OpenVASadded 2009/02/27 12:0 a.m.42 views

CentOS Update for kernel CESA-2008:0972 centos4 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2008:0972 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

6.6CVSS0.6AI score0.113EPSS
Exploits10References2
seebug.org
seebug.orgadded 2009/02/23 12:0 a.m.17 views

BSD/x86 - setuid/portbind - 94 bytes

No description provided by source. / $Id: portbind-bsd.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ portbind-bsd.c - setuid/portbind shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi [email protected] Simple portbind shellcode that bind's a setuid0 shell on port 31337/tcp based on bighawk's...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/23 12:0 a.m.17 views

BSD/x86 - setuid/execve - 30 bytes

No description provided by source. / $Id: setuid-bsd.c,v 1.6 2004/06/02 12:22:30 raptor Exp $ setuid-bsd.c - setuid/execve shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi [email protected] Short setuid0 and /bin/sh execve shellcode based on esdee's code. Tested on OpenBSD and FreeBSD. / ...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/23 12:0 a.m.16 views

BSD/x86 - execve(/bin/sh) & setuid(0) - 29 bytes

No description provided by source. / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 29 bytes. -setuid0; -execve/bin/sh; / char shellcode= "\x31\xc0" // xor %eax,%eax "\x50" // push %eax "\xb0\x17" // mov $0x17,%al "\x50" // push %eax "\xcd\x80" // int $0x80 "\x50" // push %eax...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/21 12:0 a.m.16 views

Linux/x86 - setuid(0) & execve(/bin/sh,0,0) - 28 bytes

No description provided by source. -------------------ASM---------------------- global start section .text start: ;setuid0 xor ebx,ebx lea eax,ebx+17h cdq int 80h ;execve"/bin/sh",0,0 xor ecx,ecx push ecx push 0x68732f6e push 0x69622f2f lea eax,ecx+0Bh mov ebx,esp int 80h...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/21 12:0 a.m.14 views

Linux/x86 - setuid / setgid / chroot break

No description provided by source. /----------------------------------------------------------------------/ / s390 shellcode 0x0a / 0x0 free / / setuid / setgid / chroot break / / code [email protected] / /----------------------------------------------------------------------/ char...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/21 12:0 a.m.17 views

Linux/x86 - setuid(0) && execve() - 25 bytes

No description provided by source. Hi, i've shrinked down the shellcode to 25 bytes, the smallest setuid & execve GNU/Linux shellcode without nulls that spawns a shell. -------------------------------------------------------------------------------------- SMALLEST SETUID & EXECVE GNU/LINUX x86...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/02/20 12:0 a.m.11 views

Linux/x86 - setuid(0) & chmod("/tmp",111) & exit(0)

No description provided by source. / Linux/x86 - setuid0 & chmod"/tmp",111 & exit0 Info reg ------------------ %eax = 23 %ebx = 0 %eax = 15 %ebx = /tmp %ecx = 111 %eax = 1 %ebx = 0 Shellcode 25 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Disassembly of...

7.1AI score
Exploits0
Prion
Prionadded 2009/02/13 5:30 p.m.17 views

Code injection

Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which allows local users to gain privileges by pointing an environment variable to a modified Kerberos configuration file, and then launching a PAM-based setuid...

6.2CVSS6.9AI score0.0025EPSS
Exploits6References18Affected Software1
NVD
NVDadded 2009/02/13 5:30 p.m.15 views

CVE-2009-0360

Russ Allbery pam-krb5 before 3.13, when linked against MIT Kerberos, does not properly initialize the Kerberos libraries for setuid use, which allows local users to gain privileges by pointing an environment variable to a modified Kerberos configuration file, and then launching a PAM-based setuid...

6.2CVSS6.3AI score0.0025EPSS
Exploits6References18
OSV
OSVadded 2009/02/13 5:30 p.m.1 views

DEBIAN-CVE-2009-0361

Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pamsetcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, a...

4.6CVSS6.7AI score0.0007EPSS
Exploits1References1
Prion
Prionadded 2009/02/13 5:30 p.m.15 views

Code injection

Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pamsetcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, a...

4.6CVSS6.7AI score0.0007EPSS
Exploits1References20Affected Software1
OSV
OSVadded 2009/02/13 5:30 p.m.7 views

CVE-2009-0361

Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pamsetcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, a...

6.1AI score
Exploits0References20
NVD
NVDadded 2009/02/13 5:30 p.m.14 views

CVE-2009-0361

Russ Allbery pam-krb5 before 3.13, as used by libpam-heimdal, su in Solaris 10, and other software, does not properly handle calls to pamsetcred when running setuid, which allows local users to overwrite and change the ownership of arbitrary files by setting the KRB5CCNAME environment variable, a...

4.6CVSS6.1AI score0.0007EPSS
Exploits1References20
Rows per page
Query Builder