3386 matches found
Juniper Junos QFX Low Entropy Vulnerability (JSA10678)
According to its self-reported version number, the remote Juniper Junos device is affected by a low entropy vulnerability due to an insufficient number of bytes being collected from the RANDOMINTERRUPT entropy source when the device is first booted, thus resulting in the generation of weak SSH ke...
Google Android Operating System < 4.4.0 Multiple Vulnerabilities
Binary data 8664.prm...
CVE-2015-2808
The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...
OpenSSL 'multi-block' Feature Denial of Service Vulnerability
OpenSSL is an open source implementation of SSL used to enable strong encryption of network communications and is now widely used in a variety of web applications. A denial of service vulnerability exists in OpenSSL version 1.0.2 on 64-bit x86 platforms that support AES NI. The vulnerability is...
PT-2015-1686 · Openssl +1 · Openssl +3
Name of the Vulnerable Software and Affected Versions: OpenSSL versions 1.0.2 through 1.0.2a Description: The issue is related to the multi-block feature in the ssl3 write bytes function, which does not properly handle certain non-blocking I/O cases. This can allow remote attackers to cause a...
Linux/x86 - chmod 0777 /etc/shadow obfuscated 84 bytes
Linux/x86 - chmod 0777 /etc/shadow obfuscated 84 bytes. Shellcode exploit for linx86 platform / Linux x86 - execve chmod 0777 /etc/shadow Obfuscated version - 84 bytes Original: http://shell-storm.org/shellcode/files/shellcode-828.php Author: xmgv Details:...
linux/x86 - Obfuscated - map google.com to 127.1.1.1 98 bytes
linux/x86 - Obfuscated - map google.com to 127.1.1.1 98 bytes. Shellcode exploit for linx86 platform / Linux x86 - map google.com to 127.1.1.1 in /etc/hosts Obfuscated version - 98 bytes Original: http://shell-storm.org/shellcode/files/shellcode-893.php Author: xmgv Details:...
linux/x86 - Obfuscated execve"/bin/sh" 40 bytes
linux/x86 - Obfuscated execve"/bin/sh" 40 bytes. Shellcode exploit for linx86 platform / Linux x86 - execve"/bin/sh" shellcode Obfuscated version - 40 bytes Original: http://shell-storm.org/shellcode/files/shellcode-811.php Author: xmgv Details:...
Linux/x86 - TCP Bind Shell 96 bytes
Linux/x86 - TCP Bind Shell 96 bytes. Shellcode exploit for linx86 platform / Linux x86 - TCP Bind Shell - 96 bytes Author: xmgv Details: https://xmgv.wordpress.com/2015/02/19/28/ / / global start section .text start: xor ebx, ebx ; zero out ebx mul ebx ; zero out eax, edx ; socketAFINET,...
UBUNTU-CVE-2015-1420
Race condition in the handletopath function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read operations on additional memory locations by changing the handlebytes value of a file handle during the execution of this functio...
Linux/MIPS Little Endian - Chmod 666 /etc/passwd 55 Bytes
Linux/MIPS Little Endian - Chmod 666 /etc/passwd 55 Bytes. Shellcode exploit for linuxmips platform include / Title: Linux/MIPS Little Endian - chmod 666 /etc/passwd - 55 bytes Date: 2015-03-05 Author: Sang-Min LEE Email: [email protected] Blog: http://smleenull.tistory.com / char sc =...
CVE-2015-0828
Double free vulnerability in the nsXMLHttpRequest::GetResponse function in Mozilla Firefox before 36.0, when a nonstandard memory allocator is used, allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via crafted JavaScript code that makes an...
MIT krb5 kadmind libgssrpc service application information disclosure vulnerability
Kerberos is a network authentication protocol that provides user authentication using a ticket-based system for client-server systems.MIT Kerberos 5 is an open source Kerberos implementation. MIT krb5 kadmind contains a security vulnerability in the libgssrpc service application that can lead to...
IBM General Parallel File System Multiple Vulnerabilities (Windows) (POODLE)
A version of IBM General Parallel File System GPFS 3.5.x prior to 3.5.0.21 is installed on the remote Windows host. It is, therefore, affected by the following OpenSSL related vulnerabilities : - An error exists related to DTLS SRTP extension handling and specially crafted handshake messages that...
Obfuscated Shellcode Windows x86 - 1218 Bytes Add Administrator User/Pass ALI/ALI & Add ALI To RDP Group & Enable RDP From Registry & STOP Firewall & Auto Start Terminal Service
Obfuscated Shellcode Windows x86 - 1218 Bytes Add Administrator User/Pass ALI/ALI & Add ALI To RDP Group & Enable RDP From Registry & STOP Fire... Author: Ali Razmjoo Title: Obfuscated Shellcode Windows x86 1218 Bytes Add Administrator User/Pass ALI/ALI & Add ALI to RDP Group & Enable RDP From...
x64 Linux bind TCP port shellcode 81 bytes, 96 with password
x64 Linux bind TCP port shellcode 81 bytes, 96 with password. Shellcode exploit for linx86-64 platform / Author: Sean Dillon Copyright: c 2014 CAaNES, LLC. http://caanes.com Release Date: December 19, 2014 Description: x64 Linux null-free TCP bind port shellcode, optional 4 byte password Assemble...
x64 Linux reverse TCP connect 77 to 85 bytes, 90 to 98 with password
x64 Linux reverse TCP connect 77 to 85 bytes, 90 to 98 with password. Shellcode exploit for linx86-64 platform / Author: Sean Dillon Copyright: c 2014 CAaNES, LLC. http://caanes.com Release Date: December 19, 2014 Description: x64 Linux null-free reverse TCP shellcode, optional 4 byte password...
linux/x64 reverse TCP connect shellcode 85 bytes
x64 Linux reverse TCP connect shellcode 77 to 85 bytes, 90 to 98 with password / Author: Sean Dillon Copyright: c 2014 CAaNES, LLC. http://caanes.com Release Date: December 19, 2014 Description: x64 Linux null-free reverse TCP shellcode, optional 4 byte password Assembled Size: 77 - 85 bytes, 90 ...
CUPS < 2.0.1 SSLv3 Legacy Encryption Vulnerability (POODLE)
According to its banner, the CUPS printer service installed on the remote host is a version prior to 2.0.1. It is, therefore, potentially affected by a man-in-the-middle MitM information disclosure vulnerability known as POODLE. The vulnerability is due to the way SSL 3.0 handles padding bytes wh...
SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack
A flaw was found in the way SSL 3.0 handled padding bytes when decrypting messages encrypted using block ciphers in cipher block chaining CBC mode. This flaw allows a man-in-the-middle MITM attacker to decrypt a selected byte of a cipher text in as few as 256 tries if they are able to force a...