745 matches found
Directory traversal
Directory traversal vulnerability in arch.php in beLive 0.2.3 allows remote attackers to read arbitrary files via a .. dot dot in the arch parameter...
Debian Security Advisory DSA 1777-1 (git-core)
The remote host is missing an update to git-core announced via advisory DSA 1777-1. OpenVAS Vulnerability Test $Id: deb17771.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1777-1 git-core Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Qbik WinGate Version Detection
Detects the installed version of Qbik WinGate. The script logs in via smb, searches for Qbik WinGate in the registry and gets the version from registry. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Unix TTY, Interact with Established Connection
Interacts with a TTY on an established socket connection This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 0 include Msf::Payload::Single def initializeinfo = supermergeinfoinfo,...
Gentoo Security Advisory GLSA 200801-01
The remote host is missing updates announced in advisory GLSA 200801-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200804-02 (bzip2)
The remote host is missing updates announced in advisory GLSA 200804-02. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200502-32 (unace)
The remote host is missing updates announced in advisory GLSA 200502-32. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows - 'WRITE_ANDX' SMB Command Handling Kernel Denial of Service (Metasploit)
require 'msf/core' module Msf module Exploits module Test class BugTest 'test exploit', 'Description' = "tests", 'Author' = 'tests', 'License' = MSFLICENSE, 'Version' = '$Revision: 0 $', 'Arch' = 'x86', 'Payload' = 'Space' = 1000 , 'Targets' = 'Windows VISTA', 'Platform' = 'win' , , 'DefaultTarge...
VNC Server (Reflective Injection), Reverse TCP Stager (No NX or Win7)
Inject a VNC Dll via a reflective loader staged. Connect back to the attacker No NX This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 177 include Msf::Payload::Stager include...
Windows Command, Double Reverse TCP Connection (via Perl)
Creates an interactive shell via perl This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 148 include Msf::Payload::Single include Msf::Sessions::CommandShellOptions def initializeinfo...
Fedora 8 : ruby-1.8.6.114-1.fc8 (2008-2443)
Tue Mar 4 2008 Akira TAGOH - 1.8.6.114-1 - Security fix for CVE-2008-1145. - Improve a spec file. 226381 - Correct License tag. - Fix a timestamp issue. - Own a arch-specific directory. - Tue Feb 19 2008 Fedora Release Engineering - 1.8.6.111-9 - Autorebuild for GCC 4.3 - Tue Feb 19 2008 Akira...
Fedora 7 : ruby-1.8.6.114-1.fc7 (2008-2458)
Tue Mar 4 2008 Akira TAGOH - 1.8.6.114-1 - Security fix for CVE-2008-1145. - Improve a spec file. 226381 - Correct License tag. - Fix a timestamp issue. - Own a arch-specific directory. - Tue Feb 19 2008 Fedora Release Engineering - 1.8.6.111-9 - Autorebuild for GCC 4.3 - Tue Feb 19 2008 Akira...
Fedora 8 : libtirpc-0.1.7-15.fc8 (2008-1017)
Thu Jan 24 2008 Steve Dickson 0.1.7-15 - Protect from buffer overflow in the GSS code. bz 362121 - Mon Dec 17 2007 Steve Dickson 0.1.7-14 - Fixed typo in /etc/netconfig file bz 414471 - Thu Oct 25 2007 Steve Dickson 0.1.7-13 - Added a check for the ARM arch bz 351071 Note that Tenable Network...
Design/Logic Flaw
The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...
Fedora Core 5 : devhelp-0.11-6.fc5 / epiphany-2.14.3-4.fc5 / seamonkey-1.0.8-0.5.1.fc5 / etc (2007-289)
The remote Fedora Core host is missing one or more security updates : yelp-2.14.3-4.fc5 : - Fri Feb 16 2007 Martin Stransky - 2.14.3-4 - Rebuild against SeaMonkey - Fri Dec 22 2006 Martin Stransky - 2.14.3-3 - Rebuild against SeaMonkey - Tue Nov 14 2006 Martin Stransky - 2.14.3-2 - Rebuild agains...
Windows Command Shell, Reverse TCP Stager
Spawn a piped command shell staged. Connect back to the attacker This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 296 include Msf::Payload::Stager include...
linux/x86 execve /bin/sh xored for Intel x86 CPUID 41 bytes
No description provided by source. / linux/x86 execve"/bin/sh", "/bin/sh", NULL / xor'ed against Intel x86 CPUID - 41 bytes The idea behind this shellcode is to use a weak pre-shared secret between the attacker and the attacked machine. So if a 3rd party side would try to run this shellcode and...
Linux Command Shell, Reverse TCP Stager
Spawn a command shell staged. Connect back to the attacker This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 123 include Msf::Payload::Stager include Msf::Payload::Linux::ReverseTcpx...
Unix Command, Interact with Established Connection
Interacts with a shell on an established socket connection This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 0 include Msf::Payload::Single include Msf::Sessions::CommandShellOptions...
PPC LongXOR Encoder
This encoder is ghandi's PPC dword xor encoder but uses a tag-based terminator rather than a length. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PPC LongXOR Encoder', 'Description' = %q Thi...