516 matches found
ruby: Unintentional socket creation by poisoned NULL byte in UNIXServer and UNIXSocket
It was found that the UNIXSocket::open and UNIXServer::open ruby methods did not handle the NULL byte properly. An attacker, able to inject NULL bytes in the socket path, could possibly trigger an unspecified behavior of the ruby script...
MGASA-2018-0350 Updated sssd packages fix security vulnerability
Updated sssd packages fix security vulnerability: The UNIX socket that is used for communication between the sudo utility and the sssd-sudo responder had its permissions set to world-readable and writable, which means that anyone who can send a message using the same raw protocol that sudo and SS...
Nagios Core 4.4.1 Local Denial Of Service
Exploit Title: Nagios Core Multiple Local Denial of Service Date: 2018-07-09 Exploit Author: Fakhri Zulkifli @d0lph1n98 Vendor Homepage: https://www.nagios.org/ Software Link: https://www.nagios.org/downloads/nagios-core/ Version: 4.4.1 and earlier Tested on: 4.4.1 qhcore, qhhelp, and qhecho in...
Nagios Core 4.4.1 - Denial of Service Vulnerability
Exploit for linux platform in category dos / poc Exploit Title: Nagios Core Multiple Local Denial of Service Exploit Author: Fakhri Zulkifli @d0lph1n98 Vendor Homepage: https://www.nagios.org/ Software Link: https://www.nagios.org/downloads/nagios-core/ Version: 4.4.1 and earlier Tested on: 4.4.1...
Nagios Core 4.4.1 - Denial of Service
Nagios Core 4.4.1 - Denial of Service Exploit Title: Nagios Core Multiple Local Denial of Service Date: 2018-07-09 Exploit Author: Fakhri Zulkifli @d0lph1n98 Vendor Homepage: https://www.nagios.org/ Software Link: https://www.nagios.org/downloads/nagios-core/ Version: 4.4.1 and earlier Tested on:...
Nagios Core Null Pointer Dereference Vulnerability
Nagios Core is an open source system and network monitoring application. A null pointer dereference vulnerability exists in qhcore in Nagios Core 4.4.1 and earlier. An attacker can exploit this vulnerability by sending a specially crafted payload to a listening UNIX socket to cause a denial of...
Nagios Core null pointer dereference vulnerability (CNVD-2018-17097)
Nagios Core is an open source system and network monitoring application. A null pointer dereference vulnerability exists in qhhelp in Nagios Core 4.4.1 and earlier. An attacker can exploit this vulnerability by sending a specially crafted payload to a listening UNIX socket to cause a denial of...
Nagios Core null pointer dereference vulnerability (CNVD-2018-17098)
Nagios Core is an open source system and network monitoring application. A null pointer dereference vulnerability exists in qhecho in Nagios Core 4.4.1 and earlier. An attacker can exploit this vulnerability by sending a specially crafted payload to a listening UNIX socket to cause a local denial...
CVE-2018-13458
qhcore in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13441
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13441
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
Null pointer dereference
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
DEBIAN-CVE-2018-13458
qhcore in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13441
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
DEBIAN-CVE-2018-13441
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13441
qhhelp in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13458
qhcore in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13457
qhecho in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13458
qhcore in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...
CVE-2018-13457
qhecho in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket...