29 matches found
Debian/Ubuntu ntfs-3g Local Privilege Escalation
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Debian/Ubuntu ntfs-3g Local Privilege Escalation', 'Description' = %q ntfs-3g mount helper in Ubuntu 16.04, 16.10, Debian 7, 8,...
Debian/Ubuntu ntfs-3g Local Privilege Escalation
ntfs-3g mount helper in Ubuntu 16.04, 16.10, Debian 7, 8, and possibly 9 does not properly sanitize the environment when executing modprobe. This can be abused to load a kernel module and execute a binary payload as the root user. This module requires Metasploit: https://metasploit.com/download...
Tomabo MP4 Player 3.11.3 SEH Buffer Overflow
!/usr/bin/python Exploit Title: Tomabo MP4 Player 3.11.3 - .m3u SEH Buffer Overflow Date: 03/08/2015 Exploit Author: Saeid Atabaki E-Mail: bytecod3r gmail.com, saeid Nsecurity.org Linkedin: https://www.linkedin.com/in/saeidatabaki Vendor Homepage: http://tomabo.com/mp4-player/index.html Version:...
Calibre E-Book Reader Local Root Race Condition Exploit
No description provided by source. !/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventing symlinks and...
freeSSHd - Denial of Service (PoC)
import sys, socket, binascii print "\n" print "----------------------------------------------------------------" print "| FreeSSHd, Remote Denial of Service |" print "| Level, Smash the Stack |" print "----------------------------------------------------------------" print "\n" buf =...
Calibre E-Book Reader - Race Condition Privilege Escalation
Calibre E-Book Reader - Race Condition Privilege Escalation !/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes...
Calibre E-Book Reader - Race Condition Privilege Escalation
!/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventing symlinks and checking path prefixes. - djrbliss &...
Calibre E-Book Reader Local Root Race Condition
!/bin/sh .70-Calibrer Assault Mount by Dan Rosenberg @djrbliss and zx2c4 Yesterday we learned how Calibre's ability to mount anything anywhere resulted in a local root. Today's exploit shows a race condition to subvert recent changes preventing symlinks and checking path prefixes. - djrbliss &...
CanSecWest: Researchers Show Off Method For Disabling Phones Via SMS
VANCOUVER–A pair of security researchers from Germany demonstrated several techniques at the CanSecWest conference here Wednesday that enable them to remotely reboot, shut down or even completely disable many popular mobile phones with SMS messages. The technique that Nico Golde and Collin Mullin...