Lucene search
+L

228 matches found

Metasploit
Metasploit
•added 2013/08/27 4:29 a.m.•62 views

VMWare Setuid vmware-mount Unsafe popen(3)

VMWare Workstation up to and including 9.0.2 build-1031769 and Player have a setuid executable called vmware-mount that invokes lsbrelease in the PATH with popen3. Since PATH is user-controlled, and the default system shell on Debian-derived distributions does not drop privs, we can put an...

6.9CVSS6.8AI score0.04638EPSS
Exploits4
Metasploit
Metasploit
•added 2013/02/20 5:16 a.m.•81 views

WinRM Script Exec Remote Code Execution

This module uses valid credentials to login to the WinRM service and execute a payload. It has two available methods for payload delivery: Powershell 2 and above and VBS CmdStager. The module will check if Powershell is available, and if so uses that method. Otherwise it falls back to the VBS...

7.2AI score
Exploits0
Prion
Prion
•added 2012/12/08 3:55 p.m.•17 views

Code injection

IBM Flex System Chassis Management Module CMM and Integrated Management Module 2 IMM2 allow local users to obtain sensitive information about 1 local accounts, 2 SSH private keys, 3 SSL/TLS private keys, 4 SNMPv3 communities, and 5 LDAP credentials by leveraging unspecified side effects of servic...

1.9CVSS6.4AI score0.00352EPSS
Exploits0References3
Packet Storm
Packet Storm
•added 2011/08/02 12:0 a.m.•33 views

ABC.go.com Cross Site Scripting

.. . . \ \ || | \ \ | | / \ | \ \ | | |\ / \ | \ | / / Y \ \ | / \ / / / |/\ /| / /| / / / /|| / / / / / / / / / abc.go.COM XSS vulnerability vendor: www.abc.go.com Author: Karthik R 3psil0nLambDa Email: [email protected] My blog: www.epsilonlambda.co.cc...

Exploits0
Packet Storm
Packet Storm
•added 2011/04/21 12:0 a.m.•31 views

Syctel Design Local File Inclusion

=========================================================================== Syctel Design Local File Inclusion Vulnerability =========================================================================== Name: Syctel Design Local File Inclusion Vulnerability Vendor: www.Syctel.Com Date: 2011-04-21...

0.1AI score
Exploits0
Metasploit
Metasploit
•added 2011/01/07 12:28 a.m.•42 views

Multi Gather Generic Operating System Environment Settings

This module prints out the operating system environment variables. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multi Gather Generic Operating System Environment Settings', 'Description' = %...

0.4AI score
Exploits0
OpenVAS
OpenVAS
•added 2005/11/03 12:0 a.m.•26 views

Kcms Profile Server

The Kodak Color Management System service is running. The KCMS service on Solaris 2.5 could allow a local user to write to arbitrary files and gain root access. This warning may be a false positive since the presence of the bug has not been tested. Patches: 107337-02 SunOS 5.7 has been released a...

4.6CVSS6.8AI score0.01253EPSS
Exploits1References1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•25 views

CVE-2019-10912: Prevent destructors with side-effects from being unserialized

More info at https://symfony.com/cve-2019-10912...

7.1CVSS7.2AI score0.02302EPSS
Exploits0Affected Software1
Rows per page
Query Builder