3386 matches found
Linux/x86 execve "/bin/sh" - shellcode 24 byte
Linux/x86 execve "/bin/sh" - shellcode 24 byte. Shellcode exploit for linx86 platform / ; Title: Linux/x86 execve "/bin/sh" - shellcode 24 byte ; Platform: linux/x86 ; Date: 2015-01-03 ; Author: Dennis 'dhn' Herrmann ; Website: https://zer0-day.pw BITS 32 global start section .text ; syscalls...
CVE-2015-8743
QEMU aka Quick Emulator built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged CAPSYSRAWIO user/process could use this flaw to leak or corrupt QEMU memory bytes...
x86_64 Linux bind TCP port shellcode
x8664 Linux bind TCP port shellcode. Shellcode exploit for linx86-64 platform /--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Dat...
Linux x86_64 Polymorphic execve Shellcode - 31 bytes
Linux x8664 Polymorphic execve Shellcode - 31 bytes. Shellcode exploit for linx86-64 platform / ;Title: polymorphic execve shellcode ;Author: d4sh&r ;Contact: https://mx.linkedin.com/in/d4v1dvc ;Category: Shellcode ;Architecture:linux x8664 ;SLAE64-1379 ;Description: ;Polymorphic shellcode in 31...
Linux/x86-64 - Polymorphic execve Shellcode (31 bytes)
/ ;Title: polymorphic execve shellcode ;Author: d4sh&r ;Contact: https://mx.linkedin.com/in/d4v1dvc ;Category: Shellcode ;Architecture:linux x8664 ;SLAE64-1379 ;Description: ;Polymorphic shellcode in 31 bytes to get a shell ;Tested on : Linux kali64 3.18.0-kali3-amd64 1 SMP Debian 3.18.6-1kali2...
Ubuntu 14.04 LTS : Kerberos vulnerabilities (USN-2810-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2810-1 advisory. It was discovered that the Kerberos kpasswd service incorrectly handled certain UDP packets. A remote attacker could possibly use this issue to cause...
USN-2810-1 krb5 vulnerabilities
It was discovered that the Kerberos kpasswd service incorrectly handled certain UDP packets. A remote attacker could possibly use this issue to cause resource consumption, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS. CVE-2002-2443 It was discovered that Kerberos...
The vulnerability of the Internet Information Services software allows a perpetrator to cause a service failure or execute arbitrary code.
The Internet Information Services software package contains a vulnerability in the ftpsvc2.dll module, located in the C:\Windows\system32\inetsrv directory. This vulnerability allows an attacker to cause a stack buffer overflow in a function that converts a path to a directory into its final form...
Updated php-ZendFramework/php-ZendFramework2 packages fixe security vulnerabilities
Zend Framework contained several instances where it was using incorrect permissions masks, which could lead to local privilege escalation issues CVE-2015-5723. The PDO adapters of Zend Framework 1 do not filter null bytes values in SQL statements. A PDO adapter can treat null bytes in a query as ...
OS X Regex Engine (TRE) - Integer Signedness and Overflow Issues Vulnerability
Exploit for macOS platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=429 The OS X regex engine function tretnfarunparallel contains the following code: int tbytes; ... if !matchtags numtags = 0; else numtags = tnfa-numtags; ... int rbytes,...
Linux x86_64 execve Shellcode - 22 bytes
Linux x8664 execve Shellcode - 22 bytes. Shellcode exploit for linx86-64 platform ;Title: execve shellcode 22 bytes ;Author: d4sh&r ;Contact: https://mx.linkedin.com/in/d4v1dvc ;Category: Shellcode ;Architecture:linux x8664 ;SLAE64-1379 ;Description: ;Shellcode in 22 bytes to get a shell ;Tested ...
ZendFramework1 -- SQL injection vulnerability
Zend Framework developers report: The PDO adapters of Zend Framework 1 do not filter null bytes values in SQL statements. A PDO adapter can treat null bytes in a query as a string terminator, allowing an attacker to add arbitrary SQL following a null byte, and thus create a SQL injection...
OS X x64 - tcp bind shellcode, NULL byte free 144 bytes
OS X x64 - tcp bind shellcode, NULL byte free 144 bytes. Shellcode exploit for osx platform ;OS X x64, TCP bind shellcode port 4444, NULL byte free, 144 bytes long ;ASM code ;compile: ;nasm -f macho64 bind-shellcode.asm ;ld -macosxversionmin 10.7.0 -o bindsc bind-shellcode.o BITS 64 global start...
linux/x86 - Create file with permission 7775 and exit - 31 bytes
/ --------------------------------------------------------------------------------------------------- Linux/x86 - Create file with permission 7775 and exit - 31 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa Sad-Gamaya | Tamaso Maa Jyotir-Gamaya | Mrtyor-Maa Amrtam...
Linux/x86 - execve/bin/bash - 31 bytes
Linux/x86 - execve/bin/bash - 31 bytes. Shellcode exploit for linx86 platform / --------------------------------------------------------------------------------------------------- Linux/x86 - execve/bin/bash - 31 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa...
linux/x86 - execve(/bin/bash) - 31 bytes
/ --------------------------------------------------------------------------------------------------- Linux/x86 - execve/bin/bash - 31 bytes Ajith Kp @ajithkp560 http://www.terminalcoders.blogspot.com Om Asato Maa Sad-Gamaya | Tamaso Maa Jyotir-Gamaya | Mrtyor-Maa Amrtam Gamaya | Om Shaantih...
OS X x64 /bin/sh Shellcode, NULL Byte Free, 34 bytes
OS X x64 /bin/sh Shellcode, NULL Byte Free, 34 bytes. Shellcode exploit for osx platform Author: Csaba Fitzl, @theevilbit Tested on OS X 10.10.5 OS X x64 /bin/sh shellcode, NULL byte free, 34 bytes Assembly version binsh-shellcode.asm ./nasm -f macho64 binsh-shellcode.asm ld -macosxversionmin...
freeSSHd 1.3.1 Denial Of Service
Exploit title: freesshd 1.3.1 denial of service vulnerability Date: 28-8-2015 Vendor homepage: http://www.freesshd.com Software Link: http://www.freesshd.com/freeSSHd.exe Version: 1.3.1 Author: 3unnym00n Details: ---------------------------------------------- byte SSHMSGCHANNELREQUEST uint32...
Wireshark protocol-tree denial-of-service vulnerability
Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. A security vulnerability exists in the 'prototreeaddbytesitem' function in the epan/proto.c file in the protocol-tree implementation of Wireshark versions 1.12.7 prior to 1.12.x. T...
The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure
The vulnerability of the ssleayrandbytes function in the OpenSSL library is related to buffer overflows in dynamic memory, caused by integer overflows. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by establishing multiple TLS sessions remotely...