CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

0day.today•added 2020/01/08 12:0 a.m.•84 views

Linux/x86 - Random Bytes Encoder + XOR/SUB/NOT/ROR execve(/bin/sh) Shellcode (114 bytes)

Title: Linux/x86 - Random Bytes Encoder + XOR/SUB/NOT/ROR execve/bin/sh Shellcode 114 Author: Xenofon Vassilakopoulos Tested on: Linux kali 5.3.0-kali2-686-pae 1 SMP Debian 5.3.9-3kali1 2019-11-20 i686 GNU/Linux Architecture: i686 GNU/Linux Shellcode Length: 114 bytes SLAE-ID: SLAE - 1314...

7.1AI score

Positive Technologies•added 2020/01/08 12:0 a.m.•2 views

PT-2020-19179 · Gnu +1 · Gnu Libredwg +1

Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.9.3.2564 Description: The issue is related to a heap-based buffer over-read in the copy compressed bytes function located in decode r2007.c. Recommendations: For GNU LibreDWG version 0.9.3.2564, consider updating to a...

8.8CVSS6.5AI score0.01755EPSS

Exploits7References36

OSV•added 2019/12/31 4:15 a.m.•2 views

DEBIAN-CVE-2019-20175

An issue was discovered in idedmacb in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSIIOCTLSENDCOMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 the size...

7.5CVSS7.6AI score0.03355EPSS

Exploits1References1

0day.today•added 2019/12/27 12:0 a.m.•488 views

Linux/x86 Encoder / Decoder Shellcode (117 bytes)

Title : Linux/x86 - Encoder - Random Bytes + XOR/SUB/NOT/ROR / Decoder - ROL/NOT/ADD/XOR execve/bin/sh Shellcode 117 bytes Author : Xenofon Vassilakopoulos Date : July, 2019 Tested on : Linux kali 5.3.0-kali2-686-pae 1 SMP Debian 5.3.9-3kali1 2019-11-20 i686 GNU/Linux Architecture : i686 GNU/Linu...

7.1AI score

OSV•added 2019/12/23 3:15 a.m.•0 views

UBUNTU-CVE-2019-11045

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access...

5.9CVSS6.8AI score0.08818EPSS

Exploits1References4

0day.today•added 2019/12/17 12:0 a.m.•102 views

Linux/x64 - Reverse TCP Stager Shellcode (188 bytes)

; Title: Linux/x64 - Reverse TCP Stager Shellcode 188 bytes ; Author: Lee Mazzoleni ; Tested on: Ubuntu 18.04.2 LTS ; reverse tcp stager - download and execute up to 4096 bytes of additional payload - no null bytes in this ; this code is 188 bytes total less if you delete the exit syscall at the...

7.1AI score

OSV•added 2019/12/04 5:16 p.m.•27 views

CVE-2019-11936

Various APC functions accept keys containing null bytes as input, leading to premature truncation of input. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1...

9.8CVSS6.8AI score0.01476EPSS

Exploits0References3

NVD•added 2019/12/04 5:16 p.m.•29 views

CVE-2019-11936

9.8CVSS9.5AI score0.01476EPSS

Exploits0References3

UbuntuCve•added 2019/12/04 5:16 p.m.•35 views

CVE-2019-11936

9.8CVSS7.2AI score0.01476EPSS

Exploits0References4

OSV•added 2019/12/04 5:16 p.m.•2 views

UBUNTU-CVE-2019-11936

9.8CVSS7.3AI score0.01476EPSS

CVE•added 2019/12/04 4:25 p.m.•583 views

CVE-2019-11936

CVE-2019-11936 affects HHVM: various APC functions accept keys containing null bytes, causing input truncation. Affected versions include HHVM before 3.30.12, 4.0.0–4.8.5, 4.9.0–4.23.1, and 4.24.0–4.28.1. The Connected documents corroborate the same affected version ranges and input-truncation be...

9.8CVSS9.4AI score0.01476EPSS

Exploits0References3Affected Software1

OSV•added 2019/11/26 5:15 p.m.•0 views

UBUNTU-CVE-2019-18679

An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens contain the raw byte value of a pointer that sits within heap memory allocation. This information...

7.5CVSS7.3AI score0.40982EPSS

Exploits0References4

RedHat Linux•added 2019/11/06 5:13 p.m.•4 views

Mozilla: Incorrect HTML parsing results in XSS bypass technique

A flaw was found in Mozilla Firefox and Thunderbird where null bytes were incorrectly parsed in HTML entities. This could lead to HTML comments being treated as code which could lead to XSS in a web application or HTML entities being masked from filters...

RedHat Linux•added 2019/11/05 10:28 p.m.•7 views

libarchive: Out of bounds read in archive_read_support_format_7zip.c resulting in a denial of service

libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 onwards release v3.0.2 onwards contains a CWE-125: Out-of-bounds Read vulnerability in 7zip decompression, archivereadsupportformat7zip.c, headerbytes that can result in a crash denial of service. This attack appears to be...

6.5CVSS6.4AI score0.03407EPSS

Exploits1References4

RedHat Linux•added 2019/10/31 2:15 p.m.•3 views

Mozilla: Incorrect HTML parsing results in XSS bypass technique

0day.today•added 2019/10/30 12:0 a.m.•66 views

Linux/x86 - (NOT|ROT+8 Encoded) execve(/bin/sh) null-free Shellcode (47 bytes)

Title: Linux/x86 NOT|ROT+8 Encoded execve/bin/sh null-free Shellcode 47 bytes Author: Daniel Ortiz Date: 2019-10-30 Tested on: Linux 4.18.0-25-generic 26 Ubuntu Size: 47 bytes SLAE ID: PA-9844 ----------------------- execve ------------------------------------------------ global start section .te...

7.4AI score

RedHat Linux•added 2019/10/29 1:48 p.m.•3 views

Mozilla: Incorrect HTML parsing results in XSS bypass technique

RedHat Linux•added 2019/10/29 9:53 a.m.•1 views

Mozilla: Incorrect HTML parsing results in XSS bypass technique