Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3046)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-3046 advisory. - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308308 CVE-2015-2830 Tenable has extracted the preceding...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3045)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-3045 advisory. - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 Tenable has extracted the preceding...

OracleVM 3.3 : kernel-uek (OVMSA-2015-0072)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 213079...

Unbreakable Enterprise kernel security update

2.6.39-400.250.6 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308308 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307918 CVE-2015-1593 CVE-2015-1593...

linux/x86 - mkdir HACK & chmod 777 and exit(0) - 29 Bytes

Greetz : BombermanLeader Author : B3mB4m Auxiliary tools 50% time gain ! https://github.com/b3mb4m/Shellcode/blob/master/Auxiliary/convertstack.py https://github.com/b3mb4m/Shellcode/blob/master/Auxiliary/ASMtoShellcode.py Disassembly of section .text: 08048060 : 8048060: 31 c0 xor %eax,%eax...

linux/x86 seanux-a 1.0 execve shellcode - 80 bytes

seanux-a Linux distribution is an operating system made as a collection of software based around the Linux kernel and often around a package management system. Most distributions come ready to use and pre-compiled for a specific instruction set, while others are distributed in source code form an...

Code injection

The automatic signature update functionality in the 1 Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 through 11.6.0, ASM 10.0.0 through 11.6.0, and PEM 11.3.0 through 11.6.0 and the 2 Call Home feature in ASM 10.0.0 through 11.6.0 and PEM 11.3.0...

CVE-2014-9326

CVE-2014-9326 affects F5 BIG-IP products where the automatic update check (Phone Home) and ASM Call Home auto-signature update do not properly validate SSL server certificates, enabling MITM via crafted certificates. Affected: BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, Link Controller (versions 1...

F5 BIG-IP ASM 11.4.1 Filter Bypass

Details ======= Product: F5 BIG-IP Application Security Manager ASM Vulnerability: Web Application Firewall Bypass Author: Peter Lapp, lappsec gmail com CVE: None assigned Vulnerable Versions: Confirmed 11.4.0, 11.4.1. Should apply to all releases. Fixed Version: None Summary ======= The F5 ASM i...

linux/x86 exit(0) polymorphic shellcode - 29 bytes

// linux/x86 exit0 polymorphic shellcode - 29 bytes // Febriyanto Nugroho include char shellcode = "\xeb\x11\x5e\x31\xc9\xb1\x24" "\x80\x6c\x0e\xff\x01\x80\xe9" "\x01\x75\xf6\xeb\x05\xe8\xea" "\xff\xff\xff\x6b\x1e\x5a\xce" "\x81"; int mainint argc, char argv asm"jmp %0;" : "=m" shellcode;...

TestDisk 6.14 - 'Check_OS2MB' Stack Buffer Overflow (PoC)

, , . '.' '. ', . , '. , .', , / / / \ \ ==/ /\ \ / / \ / \ / / | \ \ Y Y \ / /| / \ /||| / / /.-. / /:wq x.0 '=.|w|.=' =''"''=. presents.. TestDisk 6.14 CheckOS2MB Stack Buffer Overflow Affected versions: TestDisk 6.14 - Linux, Windows and Mac OSX PDF:...

SOL16090 - BIG-IP Automatic Update Check and ASM Automatic Signature Update man-in-the-middle vulnerability CVE-2014-9326

The BIG-IP Phone Home and ASM Call Home automatic signature update functionality is susceptible to Man-in-the-Middle type attacks due to improper validation of server SSL certificates. CVE-2014-9326...

linux/x86 to see /proc/sys/kernel/randomize_va_space - 79 bytes

/ Exploit Title : linux/x86 execve"/bin/cat", "/bin/cat", "/proc/sys/kernel/randomizevaspace", NULL - 79 bytes Exploit Author : Febriyanto Nugroho Tested on : Linux Debian 5.0.5 / include char shellcode = "\x31\xdb" "\x6a\x17" "\x58" "\xcd\x80" "\x8d\x43\x0b" "\x99" "\x52" "\x68\x2f\x63\x61\x74"...

F5 Networks BIG-IP : Python vulnerability (K16398)

Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts. CVE-2006-4980 Impact An attacker may be able to...

Mozilla: Code execution through incorrect JavaScript bounds checking elimination (MFSA 2015-29)

The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely skipped during JIT compilation and heap access, which allows remote attackers to read or write to...

F5 BIG-IP - ASM cross-site scripting (XSS) vulnerability CVE-2015-1050

F5 BIG-IP is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if...

CVE-2015-1050

CVE-2015-1050 is a vulnerability in F5 BIG-IP ASM prior to version 11.6.0 where an attacker can inject arbitrary web script or HTML via the Response Body field during creation of a new user account. The public documentation indicates affected versions include 11.0.0–11.5.2 and earlier 10.x lines ...

[Corrected] Stored XSS Vulnerability in F5 BIG-IP Application Security Manager

Edit: Corrected the date in the timeline from 01/12/14 to 01/12/15. Details ======= Product: F5 BIG-IP Application Security Manager ASM Vulnerability: Cross Site Scripting Author: Peter Lapp, [email protected] CVE: None assigned Vulnerable Versions: Confirmed 11.4.0, 11.4.1. Likely 11.4.x-11.5.x...

CVE-2014-8730

CVE-2014-8730 is listed in Brocade ASCG advisories as addressed by security updates; the connected document shows this CVE mapped to general remote services and notes fixes are provided via ASCG updates (e.g., 3.3.0/3.3.0a). The initial description describes a POODLE-style padding issue in SSL/TL...

CVE-2014-9342

CVE-2014-9342 is an XSS vulnerability in F5 BIG-IP pl_tree.php (ASM) affecting the tree view during automatic policy generation. Exploitation allows remote attackers to inject arbitrary script/HTML via a crafted URL. The advisory (SOL15939) confirms affected BIG-IP ASM releases and recommends mit...