CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2016/02/07 12:0 a.m.•0 views

UBUNTU-CVE-2015-8767

6.2CVSS6.8AI score0.00121EPSS

Exploits0References14

Exploit DB•added 2016/01/02 12:0 a.m.•24 views

TCP Bindshell with Password Prompt - 162 bytes

TCP Bindshell with Password Prompt - 162 bytes. Shellcode exploit for linux platform /--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact:...

Exploit DB•added 2016/01/02 12:0 a.m.•30 views

x86_64 Linux bind TCP port shellcode

x8664 Linux bind TCP port shellcode. Shellcode exploit for linx86-64 platform /--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Dat...

0day.today•added 2016/01/01 12:0 a.m.•53 views

Linux/x86-64 - Bind 4444/TCP Port Shellcode (103 bytes)

/--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Date: January 1, 2016 Contact: https://www.facebook.com/sathish.royalmechanical...

CNVD•added 2015/12/02 12:0 a.m.•2 views

PCRE 'match' Function Information Disclosure Vulnerability

PCRE Perl Compatible Regular Expressions is a software developer Philip Hazel developed a use of C language written in open source regular expression library. A security vulnerability exists in the 'match' function in the pcreexec.c file in versions of PCRE prior to 8.37, which stems from the...

6.4CVSS9.3AI score0.01772EPSS

Exploits1References1

OSV•added 2015/12/01 12:0 a.m.•1 views

UBUNTU-CVE-2015-8382

The match function in pcreexec.c in PCRE before 8.37 mishandles the /?:abcd|?:?:?:?:abc|?:abcdefbabcdefghiabc|ACCEPT/ pattern and related patterns involving ACCEPT, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service partially initialized...

6.4CVSS7.2AI score0.01772EPSS

Exploits1References7

Kitploit•added 2015/11/21 6:33 p.m.•21 views

Hsecscan - A Security Scanner For HTTP Response Headers

hsecscan A security scanner for HTTP response headers. Requirements Python 2.x Usage $ ./hsecscan.py usage: hsecscan.py -h -P -p -u URL -R -U User-Agent -d 'POST data' -x PROXY A security scanner for HTTP response headers. optional arguments: -h, --help show this help message and exit -P,...

5.9AI score

Exploit DB•added 2015/09/10 12:0 a.m.•28 views

OS X x64 - tcp bind shellcode, NULL byte free 144 bytes

OS X x64 - tcp bind shellcode, NULL byte free 144 bytes. Shellcode exploit for osx platform ;OS X x64, TCP bind shellcode port 4444, NULL byte free, 144 bytes long ;ASM code ;compile: ;nasm -f macho64 bind-shellcode.asm ;ld -macosxversionmin 10.7.0 -o bindsc bind-shellcode.o BITS 64 global start...

7.5AI score

WPVulnDB•added 2015/09/02 12:0 a.m.•30 views

WPML 2.9.3-3.2.6 - Cross-Site Scripting (XSS) in Accept-Language Header

The sitepress-multilingual-cms WordPress plugin was affected by a Cross-Site Scripting XSS in Accept-Language Header security vulnerability...

4.3CVSS0.7AI score0.0019EPSS

Exploits1References1Affected Software1

exploitpack•added 2015/06/29 12:0 a.m.•18 views

Endian Firewall 3.0.0 - OS Command Injection (Python)

Endian Firewall 3.0.0 - OS Command Injection Python !/usr/bin/env python Endian Firewall Proxy User Password Change /cgi-bin/chpasswd.cgi OS Command Injection Exploit POC Reverse TCP Shell Ben Lincoln, 2015-06-28 http://www.beneaththewaves.net/ Requires knowledge of a valid proxy username and...

0.4AI score

Exploit DB•added 2015/03/16 12:0 a.m.•16 views

Linux/x86 - TCP Bind Shell 96 bytes

Linux/x86 - TCP Bind Shell 96 bytes. Shellcode exploit for linx86 platform / Linux x86 - TCP Bind Shell - 96 bytes Author: xmgv Details: https://xmgv.wordpress.com/2015/02/19/28/ / / global start section .text start: xor ebx, ebx ; zero out ebx mul ebx ; zero out eax, edx ; socketAFINET,...

Prion•added 2015/03/06 3:0 a.m.•13 views

Information disclosure

The RADIUS implementation in Cisco IOS and IOS XE allows remote attackers to cause a denial of service device reload via crafted IPv6 Attributes in Access-Accept packets, aka Bug IDs CSCur84322 and CSCur27693...

6.8CVSS7.2AI score0.0082EPSS

Exploits0References2

CVE•added 2015/03/06 2:0 a.m.•41 views

CVE-2015-0598

The CVE-2015-0598 entry describes a denial-of-service in Cisco IOS/IOS XE due to the RADIUS implementation when processing crafted IPv6 Attributes in Access-Accept packets (Bug IDs CSCur84322 and CSCur27693). Affected products are Cisco IOS and IOS XE; the issue enables remote attackers to trigge...

6.8CVSS6.8AI score0.0082EPSS

Exploits0References2Affected Software2

CNVD•added 2015/03/06 12:0 a.m.•2 views

Cisco IOS and IOS XE RADIUS Implementation Denial of Service Vulnerability

Cisco IOS and IOS-XE are both operating systems developed by Cisco for its network devices. A security vulnerability exists in the RADIUS implementation of Cisco IOS and IOS XE. A remote attacker could exploit this vulnerability to cause a denial of service device reload with the help of speciall...

6.8CVSS6.8AI score0.0082EPSS

CNVD•added 2015/02/21 12:0 a.m.•1 views

IBM Content Navigator Cross-Site Scripting Vulnerability

IBM Content Navigator is a Web client from IBM USA that supports searching and processing documents stored in content servers around the world from a Web browser. A cross-site scripting vulnerability exists in IBM Content Navigator, which can be exploited by remote attackers to inject arbitrary w...

4.3CVSS5.9AI score0.00236EPSS