Master_Librarian - A Simple Tool To Audit Unix/*BSD/Linux System Libraries To Find Public Security Vulnerabilities

A simple tool to audit Unix/BSD/Linux system libraries to find public security vulnerabilities. To install requirements: $ sudo python3 -m pip install -r requirements.txt Overview: vulnerabilities on local libraries by CoolerVoid Example: $ python3 masterlibrarian.py -t csv $ python3...

BSD Dump Password Hashes

Post module to dump the password hashes for all users on a BSD system. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BSD Dump Password Hashes', 'Description' = %q Post module to dump the...

How to find unix broiler-vulnerability warning-the black bar safety net

Why that is I and the x-laser together with looking for broiler? Because all our operations are all in the 3 3 8 9 broiler on. First of all, we are on to the same terminal, premise:the terminal is open,rather than doing it on your own,so that only the Terminal Services Manager can be usedand then...

DSA-275 lpr-ppd - buffer overflow

Bulletin has no description...

Multiple vendors' Domain Name System (DNS) stub resolvers vulnerable to buffer overflows

Overview Buffer overflow vulnerabilities exists in the DNS stub resolver library used by BSD, ISC BIND, and GNU glibc. Other systems that use DNS resolver code derived from ISC BIND may also be affected. An attacker who is able to control DNS responses could exploit arbitrary code or cause a deni...

top format string bug exploit code (exploitable)

hi. It still seems to be affected under 3.5beta9 including this version someone said it's not the problem of exploitable vulnerability about 8 month ago , but it's possible to exploit though situation is difficult. following code and some procedure comments demonstrate it. possible to get kmem...

BSD Based FTP Server Multiple glob Function Remote Overflow

It was possible to make the remote FTP server crash by creating a huge directory structure and then attempting to list list it using wildcards. This is usually known as the 'ftp glob overflow' attack. It may be possible to exploit this to execute arbitrary code. C Tenable Network Security, Inc...

CVE-2000-0461

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call...

Серьезная DoS-атака пртив *BSD

IP-пакет с некорректным смещением параметров IP например timestamp вызывает аварийную остановку системы...

Серьезная локальная DoS-атака против *BSD

Недокументированный системный вызов, используемый в ipcs, неиспользующий проверку ACL позволяет любому пользователю заблокировать выход приложений...