TP-Link TL-WR841N Router - Local File Inclusion

TP-Link TL-WR841N Router - Local File Inclusion source: https://www.securityfocus.com/bid/56320/info TP-LINK TL-WR841N router is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to view files and...

Kindle Touch a remote code execution vulnerability-vulnerability warning-the black bar safety net

I don't know if amazon kindle fans? Recent foreign media reports, the Kindle Touch appears a remote executable code vulnerabilities. For Kindle Touch 5.1.0 firmware version, you can remotely execute code, The/etc/shadow file is sent to the specifiedweb server. Vulnerability relates to...

freeradius: does not respect expired passwords when using the unix module

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

Oracle Exadata Infiniband Switch default logins and world readable shadow file

Oracle Exadata Infiniband Switch default logins and world readable shadow file Hi Bugtraq List, I've noticed a minor issue with the 1/4 rack Oracle Exadata Solution. What is Exadata? From Oracle.com "Oracle Exadata is the only database machine that provides extreme performance for both data...

Oracle Exadata Infiniband Switch Default Logins / Poor Configuration

Oracle Exadata Infiniband Switch default logins and world readable shadow file Hi Full-Disclosure List, I've noticed a minor issue with the 1/4 rack Oracle Exadata Solution. What is Exadata? From Oracle.com "Oracle Exadata is the only database machine that provides extreme performance for both da...

BrainNET ISP/TV Provider hacked by ProDom Security

BrainNET ISP/TV Provider hacked by ProDom Security ProDom Security Hackers Hacks into Brain.net.pk an ISP/TV Provider . Hacker dump data on free file hosting sites : URL: https://www.multiupload.com/0KWDE7ZJBB . There are 3 file in archive : README = Readme File cracked.txt = Login's Cracked so...

BrainNET ISP/TV Provider hacked by ProDom Security

BrainNET ISP/TV Provider hacked by ProDom Security ProDom Security Hackers Hacks into Brain.net.pk an ISP/TV Provider . Hacker dump data on free file hosting sites : URL: https://www.multiupload.com/0KWDE7ZJBB . There are 3 file in archive : README = Readme File cracked.txt = Login's Cracked so...

DreamBox DM800 Arbitrary File Download Vulnerability

Exploit for hardware platform in category remote exploits Exploit Title: title Date: date Author: ShellVision Version: dm800 / !CDATA / functiontryvar...

Code injection

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

CVE-2010-4303

Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...

change mode 0777 of "/etc/shadow" with sys_chmod syscall

change mode 0777 of "/etc/shadow" with syschmod syscall. Shellcode exploit for linux platform / 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 //...

Fedora Update for mod_auth_shadow FEDORA-2010-6359

Check for the Version of modauthshadow OpenVAS Vulnerability Test Fedora Update for modauthshadow FEDORA-2010-6359 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

linux/x86 - chmod("/etc/shadow", 0666) shellcode 36 bytes

Exploit for linux/x86 platform in category shellcode ========================================================= linux/x86 - chmod"/etc/shadow", 0666 shellcode 36 bytes ========================================================= include include / by Magnefikko 14.04.2010 email protected promhyl.oz.pl...

DirectAdmin 1.33.6 Symlink Bypass

Subject: DirectAdmin ln /etc/shadow to make symbolic link to shadow file in any dir after that go to Create/Restore Backups in direct and make Domains Directory: Backs up the backup file will be in /home/test/backups go there then Extract tar.gz file after extract go to...

DirectAdmin 1.33.6 - Symlink Security Bypass

DirectAdmin 1.33.6 - Symlink Security Bypass Subject: DirectAdmin ln /etc/shadow to make symbolic link to shadow file in any dir after that go to Create/Restore Backups in direct and make Domains Directory: Backs up the backup file will be in /home/test/backups go there then Extract tar.gz file...

DEBIAN-CVE-2009-0579

Linux-PAM before 1.0.4 does not enforce the minimum password age MINDAYS as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner than specified...

linux/x86 chmod("/etc/shadow",666) & exit(0) 30 bytes

No description provided by source. / Linux/x86 - chmod"/etc/shadow",666 & exit0 Info reg ------------------ %eax = 15 %ebx = /etc/shadow %ecx = 666 %eax = 1 %ebx = 0 Shellcode 30 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Disassembly of section .text:...

CVE-2002-2219

The CVE pertains to chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd prior to version 2.1, where a flaw in the handling of a long user ID field enables remote disclosure of the last line of the /etc/shadow file. The vulnerability is an information disclosure via an unintended read of shadow data, ...

Sun JavaMail 1.x - Multiple Information Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/13753/info Sun JavaMail is prone to multiple information disclosure vulnerabilities. The issues exist due to a lack of sufficient input sanitization performed on user-supplied requests. The following issues are reported: A remote attacker may reveal the...

Linux Kernel 2.6.x chown() Group Ownership Alteration Exploit

Exploit for linux platform in category local exploits ============================================================= Linux Kernel 2.6.x chown Group Ownership Alteration Exploit ============================================================= / $Id: raptorchown.c,v 1.1 2004/12/04 14:44:38 raptor Exp $...