ALSA-2023:0340 Moderate: bash security update

The bash packages provide Bash Bourne-again shell, which is the default shell for AlmaLinux. Security Fixes: bash: a heap-buffer-overflow in validparametertransform CVE-2022-3715 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

RHEL 9 : bash (RHSA-2023:0340)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0340 advisory. The bash packages provide Bash Bourne-again shell, which is the default shell for Red Hat Enterprise Linux. Security Fixes: bash: a...

Exploitation of Control Web Panel CVE-2022-44877

On January 3, 2023, security researcher Numan Türle published a proof-of-concept exploit for CVE-2022-44877, an unauthenticated remote code execution vulnerability in Control Web Panel CWP, formerly known as CentOS Web Panel that had been fixed in an October 2022 release of CWP. The vulnerability...

Control Web Panel 7 Remote Code Execution Vulnerability

Centos Web Panel 7 Unauthenticated Remote Code Execution + Centos Web Panel 7 - 0.9.8.1147 + Affected Component ip:2031/login/index.php?login=$whoami + Discoverer: Numan Türle @ Gais Cyber Security + Vendor: https://centos-webpanel.com/ -...

Huawei EulerOS: Security Advisory for bash (EulerOS-SA-2023-1001)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for bash (EulerOS-SA-2023-1026)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Control Web Panel 7 Remote Code Execution

Centos Web Panel 7 Unauthenticated Remote Code Execution + Centos Web Panel 7 - 0.9.8.1147 + Affected Component ip:2031/login/index.php?login=$whoami + Discoverer: Numan Türle @ Gais Cyber Security + Vendor: https://centos-webpanel.com/ -...

DEBIAN-CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

UBUNTU-CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

EulerOS 2.0 SP11 : bash (EulerOS-SA-2023-1001)

According to the versions of the bash package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

CVE-2022-3715

CVE-2022-3715 affects Bash with a heap-based buffer overflow in valid_parameter_transform. The issue allows a local authenticated attacker to overflow a buffer and execute arbitrary code in the context of the current process. Multiple advisories reference Bash fixes/upgrades to mitigate this vuln...

CVE-2022-3715

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

EulerOS 2.0 SP11 : bash (EulerOS-SA-2023-1026)

According to the versions of the bash package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parametertransform. This issue may lead to memory problems...

macOS/x64 Execve Caesar Cipher String Null-Free Shellcode (286 bytes)

Shellcode Title: macOS/x64 - Execve Caesar Cipher String Null-Free Shellcode 286 Bytes Shellcode Author: Bobby Cooke boku @0xBoku github.com/boku7 Tested on: macOS Monterey; 21.6.0 Darwin Kernel Version; x8664 Shellcode Description: macOS 64 bit shellcode. Uses execve syscall to spawn bash. The...

macOS/x64 Execve Null-Free Shellcode (253 bytes)

Shellcode Title: macOS/x64 - Execve Null-Free Shellcode 253 Bytes Shellcode Author: Bobby Cooke boku @0xBoku github.com/boku7 Date: 12/20/2022 Tested on: macOS Monterey; 21.6.0 Darwin Kernel Version; x8664 Shellcode Description: macOS 64 bit shellcode. Uses execve syscall to spawn bash. The strin...