Debian: Security Advisory (DSA-3032-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-5536

The Bingo Bash - Free Bingo Casino aka air.com.bitrhymes.bingo application 1.31.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5536

CVE-2014-5536 concerns the Bingo Bash - Free Bingo Casino Android app (package air.com.bitrhymes.bingo), version 1.31.1. The connected documents confirm that the app does not verify X.509 certificates from SSL servers, allowing a man-in-the-middle attacker to spoof servers and access sensitive in...

CVE-2014-5536

The Bingo Bash - Free Bingo Casino aka air.com.bitrhymes.bingo application 1.31.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Echo Command Encoder

This encoder uses echo and backlash escapes to avoid commonly restricted characters. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Echo Command Encoder', 'Description' = %q This encoder uses...

screenFetch - The Bash Screenshot Information Tool

screenFetch is a "Bash Screenshot Information Tool". This handy Bash script can be used to generate one of those nifty terminal theme information + ASCII distribution logos you see in everyone's screenshots nowadays. It will auto-detect your distribution and display an ASCII version of that...

Sudo <= 1.6.8p9 (SHELLOPTS/PS4 ENV variables) Local Root Exploit

No description provided by source. Sudo local root escalation privilege vuln versions : sudo 1.6.8p10 by breno You need sudo access execution for some bash script Use csh shell to change SHELLOPTS env ie: %cat x.sh !/bin/bash -x echo Getting root!! % cat /etc/sudoers ... breno ALL=ALL...

GNU GNU bash 1.14 Path Embedded Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/119/info A vulnerability in bash may allow inadvertently running commands embedded in the path to the currently working directory. If an unsuspecting user enters a directory created by some malicious user with embedded...

Mac OS X <= 10.2.4 DirectoryService (PATH) Local Root Exploit

No description provided by source. / OS X = 10.2.4 DirectoryService local root PATH exploit DirectoryService must be crashed prior to execution, per @stake advisory. If you discover how to crash DirectoryService e-mail me at [email protected] Neeko Oni -- Assuming DirectoryService has been...

Microsoft Windows 2000 Telnet Username DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2838/info Due to a flaw in the implementation of the telnet service, it is possible for a remote client to perform a denial of service attack against a host. If approximately 4300 characters already exist in the input...

Exim <= 4.42 Local Root Exploit

No description provided by source. !/bin/sh Local Lame R00T sploit for exim = 4.42 by Dark Eagle My First Coding Release In bash Unl0ck Research Team More Effective than C-code. @env.c content: include stdio.h include string.h int mainint argc, char argv char addrptr; addrptr = getenvargv1;...

Linux x86 - execve("/bin/bash","-p",NULL) - 33 bytes

No description provided by source. / Title: Linux x86 - execve/bin/bash, /bin/bash, -p, NULL - 33 bytes Author: Jonathan Salwan Mail: [email protected] Web: http://www.shell-storm.org !Database of Shellcodes http://www.shell-storm.org/shellcode/ sh sets euid, egid to uid, gid if -p not...

GNU Bash <= 4.0 'ls' Control Character Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37776/info GNU Bash is prone to a command-injection vulnerability because it fails to adequately sanitize control characters in the 'ls' command. Attackers can exploit this issue to execute arbitrary commands in a bash...

Mountain Network Systems WebCart 8.4 Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3453/info Mountain Network Systems WebCart is a cgi based online shopping suite. An error in the webcart.cgi script allows a remote user to pass an arbitrary shell command which will be executed by the script. WebCart...

cPanel 5.0 Guestbook.cgi Remote Command Execution Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/6882/info A remote command execution vulnerability has been discovered in the cPanel CGI Application. This issue occurs due to insufficient sanitization of externally supplied data to the 'guestbook.cgi' script. An attack...

Debian Linux 2.0 Super Syslog Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/342/info After the first super buffer overflow vulnerability was discovered, another appeared shortly after. This vulnerability exists when the syslog option is enabled. The overflow is in the file error.c, in the Error...

Parallels PLESK 9.x - Insecure Permissions

No description provided by source. Exploit Title: PLESK 9.x insecure directory permission admin password revealed Date: 25/04/2012 Author: Nicolas Krassas , twitter.com/dinosn Software Link: www.parallels.com/plesk/ Version: 9.x Tested on: ubuntu / centos During backup procedures, PLESK panel is...

Bash Command Injection Vulnerability

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-14-269-01 Bash Command Injection Vulnerability that was published September 26, 2014, on the NCCIC/ICS‑CERT web site. A command injection vulnerability has been reported in the Bourne again shell bash. Bash is the...

CVE-2014-1226 s3dvt Root shell &#40;still&#41;

CVE-2014-1226 s3dvt Root shell still About s3dvt: s3dvt is part of the 3d network display server which can be used as 3d desktop environment. Vulnerability: The s3dvt developers forgot to review all the code. There is still a vulnerable function as in the previous CVE-2013-6825. At the date of Ju...

openSUSE Security Update : aaa_base (openSUSE-SU-2013:1955-1)

On systems installed via the Live Media that /etc/shadow file was readable by the 'users' group, which was not intended. bnc843230, CVE-2013-3713 Reason for this was that the user 'root' was put into the 'users' group. Also a commandline completion bug was fixed : - Use only bash and readline...