1096 matches found
Apache Tomcat DoS and Information Disclosure Vulnerabilities (Apr 2017) - Windows
Apache Tomcat is prone to denial of service DoS and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
CVE-2017-5650
In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the handling of an HTTP/2 GOAWAY frame for a connection did not close streams associated with that connection that were currently waiting for a WINDOWUPDATE before allowing the application to write more data. These waiting streams each...
XNU kernel UaF due to lack of locking in set_dp_control_port (CVE-2016-7644)
setdpcontrolport is a MIG method on the hostprivport so this bug is a root-kernel escalation. kernreturnt setdpcontrolport hostprivt hostpriv, ipcportt controlport if hostpriv == HOSTPRIVNULL return KERNINVALIDHOST; if IPVALIDdynamicpagercontrolport ipcportreleasesenddynamicpagercontrolport;...
CVE-2017-5650
In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the handling of an HTTP/2 GOAWAY frame for a connection did not close streams associated with that connection that were currently waiting for a WINDOWUPDATE before allowing the application to write more data. These waiting streams each...
Denial Of Service (DoS)
tomcat-coyote is vulnerable to denial of service DoS attacks. A malicious user can send malicious HTTP/2 requests that can consume all available threads...
DHCP Exhaustion Script: DHCPig
DHCP Exhaustion Script DHCPig initiates an advanced DHCP exhaustion attack. It will consume all IPs on the LAN, stop new users from obtaining IPs, release any IPs in use, then for good measure send gratuitous ARP and knock all windows hosts offline. It requires scapy =2.1 library and admin...
Zookeeper 3.5.2 - Denial of Service Exploit
Exploit for linux platform in category dos / poc !/usr/bin/python Exploit Title: Zookeeper Client Denial Of Service Port 2181 Date: 2/7/2017 Exploit Author: Brandon Dennis Email: email protected Software Link: http://zookeeper.apache.org/releases.htmldownload Zookeeper Version: 3.5.2 Tested on:...
Dump and Analyze .Net Applications Memory: MemoScope.Net
Dump and Analyze .Net Applications Memory MemoScope.Net is a tool to analyze .Net process memory: it can dump an application’s memory in a file and read it later. The dump file contains all data objects and threads state, stack, call stack. MemoScope.Net will analyze the data and help you to find...
VMware Player Code Execution And Privilege Escalation Vulnerabilities (VMSA-2012-0015) - Windows
VMware Player is prone to code execution and privilege escalation vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Samsung Note Denial of Service Vulnerability (CNVD-2017-00581)
Samsung Note is a smartphone released by the South Korean company Samsung Samsung. A security vulnerability exists in Samsung Note devices that stems from the program's failure to limit the number of active VR service threads. An attacker could cause a system crash by creating a large number of...
CVE-2017-5351
Samsung Note devices with KK4.4, L5.0/5.1, and M6.0 software allow attackers to crash the system by creating an arbitrarily large number of active VR service threads. The Samsung ID is SVE-2016-7650...
Code injection
Samsung Note devices with KK4.4, L5.0/5.1, and M6.0 software allow attackers to crash the system by creating an arbitrarily large number of active VR service threads. The Samsung ID is SVE-2016-7650...
CVE-2017-5351
Samsung Note devices with KK4.4, L5.0/5.1, and M6.0 software allow attackers to crash the system by creating an arbitrarily large number of active VR service threads. The Samsung ID is SVE-2016-7650...
CVE-2017-5351
Samsung Note devices with KK4.4, L5.0/5.1, and M6.0 software allow attackers to crash the system by creating an arbitrarily large number of active VR service threads. The Samsung ID is SVE-2016-7650...
Windows Server 2008 R2 domain controller crashes when two threads use the same LDAP connection
Windows Server 2008 R2 domain controller crashes when two threads use the same LDAP connection Summary This update fixes an access violation on the LSASS.exe process. This issue occurs because the Lightweight Directory Access Protocol LDAP connection is disconnected and reset from another thread...
kedus.org XSS vulnerability
Vulnerable URL: http://www.kedus.org/threads-detail.php?page=317=54=32'"--!...
HatDBG - Minimal WIN32 Debugger in Powershell
The HatDBG is A pure Powershell win32 debugging abstraction class. The goal of this project is to make a powershell debugger. It is intended to be used during internal penetration tests and red team engagements. This is exclusively for educational purposes. The debugger objects implementing a...
Polycom Command Shell Authorization Bypass
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Polycom Command Shell Authorization Bypass', 'Alias' = 'pshauthbypass', 'Author' = 'Paul Haas ', module 'h00die ',...
Multi Gigabit Packet Capturing: PFQ
PFQ is a functional networking framework designed for the Linux operating system that allows efficient packets capture/transmission 10G and beyond, in-kernel functional processing and packets steering across sockets/end-points. PFQ is highly optimized for multi-core architecture, as well as for...
Apple Mac OSX - Kernel Exploitable Null Pointer Dereference in AppleGraphicsDeviceControl
Exploit for macOS platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=782 AppleGraphicsDeviceControlClient doesn't check that its pointer to its IOService at this+0xd8 is non-null before using it in all external methods. We can set this pointer to NU...