Webmin Code Injection Vulnerability

Webmin is a set of Web-based system management tools for Unix-like operating systems. A code injection vulnerability exists in Webmin. An attacker can exploit this vulnerability to execute code with the help of specially crafted object names...

Webmin Command Injection Vulnerability

Webmin is a set of Web-based system management tools for Unix-like operating systems. A command injection vulnerability exists in Webmin. The vulnerability arises from a network system or product not properly filtering specific elements of externally entered data during the construction of...

CVE-2019-1552

OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLDIR, and is configurable with the --prefix / --openssldir configuration options. For OpenSSL versio...

Vulnerability in OpenSSL - Windows builds with insecure path defaults

OpenSSL has internal defaults for a directory tree where it can find a configuration file as well as certificates used for verification in TLS. This directory is most commonly referred to as OPENSSLDIR, and is configurable with the –prefix / –openssldir configuration options. For OpenSSL versions...

Fedora Update for dovecot FEDORA-2019-1b61a528dd

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the NTFS-3G driver for the NTFS file system in FUSE modules of Unix-like operating systems, related to buffer overflows, allows attackers to elevate their privileges to a superuser level.

The vulnerability of the NTFS-3G driver for the NTFS file system in the FUSE module of Unix-like operating systems is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to elevate their privileges to a superuser level...

IBM Sterling Connect:Direct Elevation of Privilege Vulnerability

IBM Sterling Connect:Direct is a file-based peer-to-peer file transfer solution from IBM in the United States. An elevation of privilege vulnerability exists in IBM Sterling Connect:Direct for UNIX versions 6.0.0, 4.3.0, and 4.2.0 for UNIX-based platforms, which can be exploited by an attacker to...

Reverse Shell Cheat Sheet

If you’re lucky enough to find a command execution vulnerability during a penetration test, pretty soon afterwards you’ll probably want an interactive shell. If it’s not possible to add a new account / SSH key / .rhosts file and just log in, your next step is likely to be either trowing back a...

RCE in PHP or how to bypass disable_functions in PHP installations

Today we will explore an exciting method to remotely execute code even if an administrator set disablefunctions in the PHP configuration file. It works at most popular UNIX-like systems. CVE-2018–19518 was assigned to the vulnerability was found by a man with the @crlf nickname. Let’s see details...

Shining a Light on a New Technique for Stealth Persistence

Red teamers like myself and my team are driven by a desire to out-innovate the bad guys – to help the good guys. We study their methods, strive to think like they do, work to better understand attacker techniques and test our mettle against the spectrum of technologies in use today to find new wa...

Security Bulletin: TADDM – Security improvement: More restricted permission on TADDM files on UNIX-like servers.

Summary TADDM security improvement deployed started from TADDM 7.2.1.5 and in TADDM 7.2.2 that restrict access to TADDM files on UNIX-like servers. Vulnerability Details CVE-2013-4040 Description Default TADDM file permission on UNIX-like servers, by default are 755 rwx r-x r-x, that allow all...

Exim SMTP listener base64d function one-character buffer overflow

Added: 05/16/2018 CVE: CVE-2018-6789 BID: 103049 Background Exim is a mail transfer agent used on Unix-like operating systems. Problem Exim 5.90 and earlier are vulnerable to a one-character buffer overflow in the base64d function in the SMTP listener. Resolution Upgrade to Exim 4.90.1 or higher,...

Exim SMTP listener base64d function one-character buffer overflow

Added: 05/16/2018 CVE: CVE-2018-6789 BID: 103049 Background Exim is a mail transfer agent used on Unix-like operating systems. Problem Exim 5.90 and earlier are vulnerable to a one-character buffer overflow in the base64d function in the SMTP listener. Resolution Upgrade to Exim 4.90.1 or higher,...

hBlock - Improve Your Security And Privacy By Blocking Ads, Tracking And Malware Domains

Improve your security and privacy by blocking ads, tracking and malware domains. What is this for? This POSIX-compliant shell script, designed for Unix-like systems, gets a list of domains that serve ads, tracking scripts and malware from multiple reputable sources and creates a hosts file that...

Nemesis - A Command-Line Network Packet Crafting And Injection Utility

The Nemesis Project is designed to be a command line based, portable human IP stack for UNIX-like and Windows systems. The suite is broken down by protocol, and should allow for useful scripting of injected packets from simple shell scripts. Key Features ARP/RARP, DNS, ETHERNET, ICMP, IGMP, IP,...

Command-line Network Packet Crafting and Injection Utility: nemesis

The Nemesis Project is designed to be a command line based, portable human IP stack for UNIX-like and Windows systems. The suite is broken down by protocol, and should allow for useful scripting of injected packets from simple shell scripts. Key Features ARP/RARP, DNS, ETHERNET, ICMP, IGMP, IP,...

Block All Domains That Serve Ads, Tracking Scripts and Malware: hBlock

Improve your security and privacy by blocking ads, tracking and malware domains. This POSIX-compliant shell script, designed for Unix-like systems, gets a list of domains that serve ads, tracking scripts and malware from multiple reputable sources and creates a hosts file that prevents your syste...

Important Photon OS Security Update - PHSA-2018-0105

Updates of 'linux', 'linux-esx' packages of Photon OS have been released...

Supervisor: command injection vulnerability

Background Supervisor is a client/server system that allows its users to monitor and control a number of processes on UNIX-like operating systems. Description A vulnerability in Supervisor was discovered in which an authenticated client could send malicious XML-RPC requests and supervidord will r...

Nili - Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing

Nili is a Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing. Prerequisites Python - Python Programming Language Scapy - Interactive Packet Manipulation Program Netzob - Protocol Reverse Engineering, Modeling and Fuzzing Installing Here is some Instructions for...