Not all profiles can be migrated to V2 profile

Lines of code Vulnerability details Impact There seem to be some differences in the validation logic that makes the V1 to V2 conversion for some profiles impossible. Proof of Concept // SPDX-License-Identifier: UNLICENCED pragma solidity =0.8.4; contract HandleMigration uint256 internal constant...

SUSE CVE-2021-4238

Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by...

goutils: RandomAlphaNumeric and CryptoRandomAlphaNumeric are not as random as they should be

A flaw was found in goutils where randomly generated alphanumeric strings contain significantly less entropy than expected. Both the RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This issue significantly reduces the amou...

UBUNTU-CVE-2021-4238

Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by...

GoUtils 安全特征问题漏洞

GoUtils is Masterminds open source a library . It provides users with utility functions that manipulate strings in various ways. A security vulnerability exists in Masterminds goutils that stems from the fact that randomly generated alphanumeric strings contain much less entropy than expected, an...

PT-2021-23607 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX versions prior to 1.1.1 Description: Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least o...

Disk Pulse 9.7.26 - 'Add Directory' Local Buffer Overflow

!/usr/bin/python Exploit Title: Disk Pulse v9.7.26 - Add Directory Local Buffer Overflow Date: 12-06-2017 Exploit Author: abatchy17 -- @abatchy17 Vulnerable Software: Disk Pulse v9.7.26 Freeware, Pro, Ultimate Vendor Homepage: http://www.diskpulse.com/ Version: 9.7.14 Software Link:...

tso-brute NSE Script

TSO account brute forcer. This script relies on the NSE TN3270 library which emulates a TN3270 screen for NMAP. TSO user IDs have the following rules: - it cannot begin with a number - only contains alpha-numeric characters and @, , $. - it cannot be longer than 7 chars Script Arguments...

Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes

Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes. Shellcode exploit for linux platform Title: Position independent & Alphanumeric 64-bit execve"/bin/sh\0",NULL,NULL; 87 bytes Author: Breaking.Technology Date: 06 November 2014 Vendor Homepage:...

HylaFAX+ 5.2.4 5.5.3 - Buffer Overflow

HylaFAX+ 5.2.4 5.5.3 - Buffer Overflow Details =========================================================== Application: "HylaFAX+" Version: 5.2.4 April, 2008 through 5.5.3 August 6, 2013 Type: Daemon that manages a fax server via an FTP-like protocol. Vendor / Maintainer: Lee Howard faxguy at...

Remote Anything Player 5.60.15 Denial Of Service

!python Title: Remote-Anything Player 5.60.15 PoC Author: Saint Patrick Date: 4/25/2012 Just a heads up, you can get full EIP by pushing on. However, at crash time no registers point to buffer, so I chose instead to work with the 3 byte overwrite shown here. This allows calling of other...

Free CD To MP3 Overflow 3.1 Buffer Overflow

!/usr/bin/perl +Exploit Title: Free CD to MP3 Converter 3.1 Universal DEP Bypass Exploit +Date: 07\08\2011 +Author: C4SS!0 G0M3S +Software Link: http://www.exploit-db.com/application/15480/ +Version: 3.1 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Dep bypass method:...

XRDP 0.4.1 - Remote Buffer Overflow (PoC)

XRDP 0.4.1 - Remote Buffer Overflow PoC / XRDP = 0.4.1 pre-auth remote PoC exploit. xrdp.sourceforge.net 01:59:56 root@crateria:/xrdp gcc -w -lssl -lX11 xrdp-poc.c -o xrdp-poc 02:00:29 root@crateria:/xrdp ./xrdp-poc 10.0.0.13 = Connected to 10.0.0.13 = Hit CTRL-C if the progress bar stops. Be...

Amaya Web Browser 11 (bdo tag) Remote Stack Overflow Exploit (vista)

No description provided by source. !/usr/bin/perl Amaya 11 bdo tag stack overflow author: Rob Carter [email protected] targets: windows vista sp1 modified the alpha-numeric shell-code from metasploit since the first 12 bytes didn't fall within the ASCII range of 0x01-0x7f. otherwise my payload...

IPSwitch IMAP Server LOGON Remote Stack Overflow

No description provided by source. / IpSwitch IMAP Server LOGON stack overflow. Software Hole discovered by iDEFENSE POC written by nolimit and BuzzDee First, some information for the few of you that know how this stuff works. The reason you see no SP2 or 2003 offsets is because of Windows SEH...

IPSwitch IMAP Server LOGON Remote Stack Overflow

Exploit for unknown platform in category remote exploits ================================================ IPSwitch IMAP Server LOGON Remote Stack Overflow ================================================ / IpSwitch IMAP Server LOGON stack overflow. Software Hole discovered by iDEFENSE POC written...

IPSwitch IMAP Server - LOGON Remote Stack Overflow

/ IpSwitch IMAP Server LOGON stack overflow. Software Hole discovered by iDEFENSE POC written by nolimit and BuzzDee First, some information for the few of you that know how this stuff works. The reason you see no SP2 or 2003 offsets is because of Windows SEH checks. Thats right, in this one...

linux/x86 alpha-numeric using IMUL Method shellcode 88 bytes

linux/x86 alpha-numeric using IMUL Method shellcode 88 bytes. Shellcode exploit for linx86 platform /-----------------------------------------------------/ / Alpha-Numeric Shellcode using IMUL Method / / By XORt@dallas2600 88bytes / /-----------------------------------------------------/...

linux/x86 alpha-numeric shellcode 64 bytes

Exploit for linux/x86 platform in category shellcode ========================================== linux/x86 alpha-numeric shellcode 64 bytes ========================================== /--------------------------------------/ / 64 byte alpha-numeric shellcode / / by email protected2600 64bytes /...

linux/x86 alpha-numeric using IMUL Method shellcode 88 bytes

No description provided by source. /-----------------------------------------------------/ / Alpha-Numeric Shellcode using IMUL Method / / By XORt@dallas2600 88bytes / /-----------------------------------------------------/ "\x68\x69\x58\x69\x6b" / push $0x6b695869 / "\x68\x7a\x36\x37\x70" / push...