Linux/x86-32 - ConnectBack with SSL connection - 422 bytes

No description provided by source. / Title: Linux/x86-32 - ConnectBack with SSL connection - 422 bytes Date: 2011-06-08 Tested on: ArchLinux i686 Author: Jonathan Salwan - twitter: @jonathansalwan http://shell-storm.org Configurations server...

OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit

No description provided by source. / openldap-kbind-p00f.c - OpenLDAP kbind remote exploit Only works on servers compiled with --enable-kbind enable LDAPv2+ Kerberos IV bind deprecated no by Solar Eclipse [email protected] Shoutouts to LSD for their l33t asm code and to all 0dd people...

CVE-2014-2928

CVE-2014-2928 (F5 iControl remote command execution) affects F5 BIG-IP products that expose the iControl API (LTM, APM, ASM, GTM, Link Controller, PSM, AAM, AFM, PEM, Analytics, Edge Gateway, WebAccelerator, WOM, Enterprise Manager, BIG-IQ variants). The vulnerability arises from insufficient val...

CVE-2012-3000

Summary: CVE-2012-3000 is an SQL injection vulnerability affecting multiple BIG-IP components (APM WebGUI, AVR WebGUI, and related WebGUIs) on BIG-IP LTM, GTM, ASM, Link Controller, PSM, Edge Gateway, Analytics, WebAccelerator, and WOM up to 11.2.x with specific HF3 fixes. Affected path/trigger: ...

CVE-2013-6016

The Traffic Management Microkernel TMM in F5 BIG-IP LTM, APM, ASM, Edge Gateway, GTM, Link Controller, and WOM 10.0.0 through 10.2.2 and 11.0.0; Analytics 11.0.0; PSM 9.4.0 through 9.4.8, 10.0.0 through 10.2.4, and 11.0.0 through 11.4.1; and WebAccelerator 9.4.0 through 9.4.8, 10.0.0 through...

OllyDbg / Immunity Debugger Crash

;Title : OllyDbg/Immunity Debugger - Crash POC ;Researcher : Souhail Hammou Dark-Puzzle ;Research Team : http://itsecurity.ma ;Facebook : http://www.facebook.com/dark.puzzle.sec ;Date : 29/07/2013 ;================================================================== .386 .model flat,stdcall option...

K10905 : NTP vulnerability - CVE-2009-3563

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

CVE-2013-0508

The CVE-2013-0508 entry covers multiple buffer overflows in IBM Tivoli Netcool System Service Monitors (SSM) and Application Service Monitors (ASM) versions 4.0.0 before FP14 and 4.0.1 before FP1. The vulnerability arises from processing abnormally long lines in specific files: hrfstable.idx, hrd...

CVE-2013-0509

CVE-2013-0509: Buffer overflow in the Transaction MIB agent of IBM Tivoli Netcool System Service Monitors (SSM) and Application Service Monitors (ASM) 4.0.0 before FP14 allows remote code execution. The vulnerability occurs when processing a SQL transaction containing a long table name that is no...

Linux/x86 - Bind TCP (Random TCP Port) Shell + Null-Free Shellcode (57 bytes)

Linux/x86 - Bind TCP Random TCP Port Shell + Null-Free Shellcode 57 bytes. Shellcode exploit for Linuxx86 platform / Tiny Shell Bind TCP Random Port Shellcode - C Language Linux/x86 Written in 2013 by Geyslan G. Bem, Hacking bits http://hackingbits.com [email protected] This source is licensed...

linux/x86-64 bind-shell with netcat 131 bytes

; Title: Shellcode linux/x86-64 bind-shell with netcat ; Author : Gaussillusion ; Len : 131 byte ; Language : asm BITS 64 xor rdx,rdx mov rdi,0x636e2f6e69622fff shr rdi,0x08 push rdi mov rdi,rsp mov rcx,0x68732f6e69622fff shr rcx,0x08 push rcx mov rcx,rsp mov rbx,0x652dffffffffffff shr rbx,0x30...

Design/Logic Flaw

The setdebugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service host crash by writing to the reserved bits of the DR7 debug control register...

F5 BIG-IP ASM Traffic Overview页面跨站脚本执行漏洞

CVE ID: CVE-2012-2975 F5 BIG-IP产品可为企业提供集成的应用交付服务，如加速、安全、访问控制与高可用性。 F5 ASM设备10.0.0 - 11.2.0 HF2没有正确过滤发送到流量概要页面的某些输入，可被利用在受影响站点的用户浏览器会话中执行任意HTML和脚本代码。 0 F5 TMOS 11.x F5 TMOS 10.x 厂商补丁： F5 -- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://support.f5.com/kb/en-us/solutions/public/...

CVE-2012-2975

Cross-site scripting XSS vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requests that are later listed on a summary page...

Cross site scripting

Cross-site scripting XSS vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requests that are later listed on a summary page...

CVE-2012-2975

Cross-site scripting XSS vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requests that are later listed on a summary page...

CVE-2012-2975

CVE-2012-2975 affects F5 BIG-IP ASM (traffic overview page). The vulnerability arises from inadequate input sanitization in the traffic overview interface, allowing an attacker to inject arbitrary HTML/JavaScript that may appear in the summary listings. Affected versions include BIG-IP ASM 10.0.0...

F5 Networks ASM appliance contains a cross-site scripting vulnerability

Overview F5 Networks ASM appliance versions 10.0.0 through 11.2.0 HF2 are susceptible to a cross-site scripting vulnerability in the traffic overview page. Description A cross-site scripting XSS CWE-79 vulnerability exists in the traffic overview page. By sending several malicious requests, an...

linux/x86 - [setreuid()] -> [/sbin/iptables -F] -> [exit(0)] - 76 bytes

/ Author: Sh3llc0d3 Environment: Linux/x86 Developed from: GNU ASM AT&T Syntax Purpose: setreuid - /sbin/iptables -F - exit0 Size: 76 bytes Website: root-exploit.com / char code = "\xeb\x33\x31\xc0\xb0\x46\x31\xdb\x31\xc9\xcd\x80\x5e\x31\xc0\x88\x46"...

[CAL-2012-0023]Microsoft IE Developer Toolbar Remote Code Execution Vulnerability

CAL-2012-0023Microsoft IE Developer Toolbar Remote Code Execution Vulnerability CVE ID: CVE-2012-1874 http://technet.microsoft.com/en-us/security/bulletin/ms12-037 http://blog.vulnhunt.com/index.php/2012/06/13/cal-2012-0023microsoft-ie-developer-toolbar-remote-code-execution-vulnerability/ 1...