Debian DLA-1885-1 : linux-4.9 security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2017-18509 Denis Andzakovic reported a missing type check in the IPv4 multicast routing implementation. A user with the CAPNETADMIN capability in a...

SuSE Update for bind, bind9 SUSE-SA:2007:047

Check for the Version of bind, bind9 OpenVAS Vulnerability Test $Id: gbsuse2007047.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for bind, bind9 SUSE-SA:2007:047 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

[MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling.

MSA01240108: IE7 allows overwriting of several headers leading to Http request Splitting and smuggling. Date: March 21th, 2008 Tested Versions: Internet Explorer 7.0.5730.11 Tested OS: Windows XP Professional SP2 Italian Minded Security ReferenceID: MSA02240108 Credits: Discovery by Stefano Di...

dnscp.py.txt

!/usr/bin/env python """ DNS Cache Poison v0.3beta by posedge / Coromputer http://www.coromputer.net/ based on the Amit Klein paper: http://www.trusteer.com/docs/bind9dns.html output: ::: id: q: g: e: id: ID to predict q: number of queries from the DNS server only queries with LSB at 0 in ID g:...

BIND 9 0.3beta - DNS Cache Poisoning

!/usr/bin/env python """ DNS Cache Poison v0.3beta by posedge based on the Amit Klein paper: http://www.trusteer.com/docs/bind9dns.html output: ::: id: q: g: e: id: ID to predict q: number of queries from the DNS server only queries with LSB at 0 in ID g: number of good predicted IDs e: number of...

BIND 9 DNS Cache Poisoning Exploit (v0.3beta)

Exploit for multiple platform in category remote exploits ============================================= BIND 9 DNS Cache Poisoning Exploit v0.3beta ============================================= !/usr/bin/env python """ DNS Cache Poison v0.3beta by posedge based on the Amit Klein paper:...

"BIND 9 DNS Cache Poisoning" by Amit Klein (Trusteer)

I discovered a new weakness in BIND 9 DNS server which enables "DNS Forgery Pharming". An attacker can remotely poison the cache of any BIND 9 caching DNS server and force users who use this DNS server to reach fraudulent websites each time they try to access real websites. BIND 9 is the most...

[SA21172] Apache "Expect" Header Cross-Site Scripting Vulnerability

---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...

Microsoft IIS - WebDAV XML Denial of Service (MS04-030)

Microsoft IIS - WebDAV XML Denial of Service MS04-030 !/usr/bin/perl IIS BlowOut POC exploit for MS04-030. Found by Amit Klein. incognitoergo yahoo com usage: perl ms04-030spl.pl host port use IO::Socket; $port = @ARGV1; $host = @ARGV0; $socket = IO::Socket::INET-newPeerAddr = $host,PeerPort =...

Microsoft IIS - WebDAV XML Denial of Service (MS04-030)

!/usr/bin/perl IIS BlowOut POC exploit for MS04-030. Found by Amit Klein. incognitoergo yahoo com usage: perl ms04-030spl.pl host port use IO::Socket; $port = @ARGV1; $host = @ARGV0; $socket = IO::Socket::INET-newPeerAddr = $host,PeerPort = $port,Proto = "TCP"; for $count=1;...