Podman / Varlink Remote Code Execution

!/usr/bin/python -- coding: UTF-8 -- pickletime.py Podman + Varlink Insecure Config Remote Exploit Jeremy Brown jbrown3264/gmail @ Oct 2019 ------- Details ------- Podman is container engine / platform similar to Docker supported by RedHat and Fedora with Varlink being a protocol to exchange...

Podman Varlink 1.5.1 - Remote Code Execution

Podman Varlink 1.5.1 - Remote Code Execution Exploit Title: Podman & Varlink 1.5.1 - Remote Code Execution Exploit Author: Jeremy Brown Date: 2019-10-15 Vendor Homepage: https://podman.io/ Software Link: dnf install podman or https://github.com/containers/libpod/releases Version: 1.5.1 Tested on:...

D-Link DIR-846 Arbitrary OS Command Execution Vulnerability (CNVD-2019-39549)

The D-Link DIR-846 is a 6-antenna 1200M full gigabit dual-band MU-MIMO wireless router. An arbitrary OS command execution vulnerability exists in the D-Link DIR-846 with firmware version 100A35. A remote attacker can exploit this vulnerability to execute arbitrary OS commands as root user by...

D-Link DIR-846 Arbitrary OS Command Execution Vulnerability

The D-Link DIR-846 is a 6-antenna 1200M full gigabit dual-band MU-MIMO wireless router. An arbitrary OS command execution vulnerability exists in the D-Link DIR-846 with firmware version 100A35. A remote attacker can exploit the vulnerability by sending /HNAP1/ request to...

CVE-2017-15041

An arbitrary command execution flaw was found in the way Go's "go get" command handled the checkout of source code repositories. A remote attacker capable of hosting malicious repositories could potentially use this flaw to cause arbitrary command execution on the client side...

CVE-2019-9535

A vulnerability exists in the way that iTerm2 integrates with tmux's control mode, which may allow an attacker to execute arbitrary commands by providing malicious output to the terminal. This affects versions of iTerm2 up to and including 3.3.5. This vulnerability may allow an attacker to execut...

CVE-2019-9535

A vulnerability exists in the way that iTerm2 integrates with tmux's control mode, which may allow an attacker to execute arbitrary commands by providing malicious output to the terminal. This affects versions of iTerm2 up to and including 3.3.5. This vulnerability may allow an attacker to execut...

CVE-2019-9535

Summary of CVE-2019-9535 (iTerm2 tmux integration RCE) : iTerm2 versions up to 3.3.5 are vulnerable to remote code execution via the tmux control mode integration, where crafted terminal output can execute arbitrary commands on a victim’s machine. Reported across multiple sources (NVD, OSV, CERT/...

CVE-2019-12735

It was found that the :source! command was not restricted by the sandbox mode. If modeline was explicitly enabled, opening a specially crafted text file in vim could result in arbitrary command execution. Mitigation The vulnerability can be triggered only if modeline is enabled. You can check...

The vulnerability of the multi-connection mode of the Microprogrammable Network Interface Device Firepower Threat Defense (FTD) allows a attacker to exit the container for their own instance of FTD and execute arbitrary commands with root privileges.

The vulnerability of the multi-connection mode of the Firepower Threat Defense FTD software relates to security configuration errors. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges from within the FTD instance...

CVE-2019-12811

ActiveX Control in MyBuilder before 6.2.2019.814 allow an attacker to execute arbitrary command via the ShellOpen method. This can be leveraged for code execution...

Command injection

ActiveX Control in MyBuilder before 6.2.2019.814 allow an attacker to execute arbitrary command via the ShellOpen method. This can be leveraged for code execution...

CVE-2019-12812

MyBuilder Viewer prior to version 6.2.2019.814 is vulnerable to arbitrary command execution via a specially crafted configuration file, enabling code execution. This is documented across multiple connected sources (e.g., RH-CVE-2019-12812, NVD entry). The exact root cause is described as insecure...

CVE-2019-12811

CVE-2019-12811 affects the ActiveX Control in MyBuilder prior to version 6.2.2019.814. The underlying issue is that the ShellOpen method can be abused to execute arbitrary commands, enabling code execution. The Red Hat entry reiterates the same flaw and impacts, but the provided documents do not ...

Command Injection in Zingbox Inspector

A command injection vulnerability exists in the Zingbox Inspector CLI that allows for an authenticated user to execute arbitrary system commands. Ref: CVE-2019-15014 The vulnerability allows for authenticated users to execute arbitrary commands within the product CLI console. This issue affects...

EulerOS 2.0 SP3 : vim (EulerOS-SA-2019-1997)

According to the version of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that the :source! command was not restricted by the sandbox mode. If modeline was explicitly enabled, opening a specially crafted text fi...

EulerOS 2.0 SP3 : libvirt (EulerOS-SA-2019-2020)

According to the versions of the libvirt packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libvirt: arbitrary file read/exec via virDomainSaveImageGetXMLDesc API CVE-2019-10161 - libvirt: arbitrary command execution via...

The vulnerability in the client application of the Cisco Webex Teams software allows a perpetrator to execute arbitrary commands.

The vulnerability in the client application of the Cisco Webex Teams software exists because measures to neutralize specific elements have not been taken. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by guiding users through a specially crafted lin...

CVE-2019-6840

A Format String: CWE-134 vulnerability exists in U.motion Server MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch 10, MEG6260-0415 - U.motion KNX Server Plus, Touch 15, which could allow an attacker to send a crafted messa...

PT-2019-18375 · U.Motion · U.Motion Server

Name of the Vulnerable Software and Affected Versions: U.motion Server affected versions not specified Description: A Format String vulnerability exists in the U.motion Server, which could allow an attacker to send a crafted message to the target server, thereby causing arbitrary commands to be...