Unspecified Vulnerability in Oracle Database XML Developer's Kit for C Component

Oracle Database is a large database of commercial nature. An unspecified security vulnerability exists in the Oracle Database XML Developer's Kit for C component, which could be exploited by remote attackers to conduct denial-of-service attacks...

0d1n - Tool For Automating Customized Attacks Against Web Applications

Web security tool to make fuzzing at HTTP inputs, made in C with libCurl. You can do: brute force passwords in auth forms directory disclosure use PATH list to brute, and find HTTP status code test list on input to find SQL Injection and XSS vulnerabilities To run: require libcurl-dev or...

[SECURITY] Fedora 20 Update: ctags-5.8-16.fc20

Ctags generates an index or tag file of C language objects found in C source and header files. The index makes it easy for text editors or other utilities to locate the indexed items. Ctags can also generate a cross reference file which lists information about the various objects found in a set o...

Early Review of LibreSSL Finds Problematic PRNG

When the OpenBSD foundation sent LibreSSL out the door last weekend, it was with the full intention of getting some feedback and scrutiny in return, all in the name of making the crypto library stable and secure. What they likely didn’t expect were claims surfacing that LibreSSL shared some of th...

LibYAML input sanitization errors

oCERT reports: The LibYAML project is an open source YAML 1.1 parser and emitter written in C. The library is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is caused by lack of proper expansion for the string passed to the...

The story of MS13-002: How incorrectly casting fat pointers can make your code explode

C++ supports developers in object-orientated programming and removes from the developer the responsibility of dealing with many object-oriented programming OOP paradigm problems. But these problems do not magically disappear. Rather it is the compiler that aims to provide a solution to many of th...

Windows7 Force Shutdown Shellcode - 215 chars

/------------------------------------------------ == By Ayrbyte ====== Geng Simbe @ TKJ 1 Club ======================================== Greets To : Adit Groundd SAndd Notte, Agos Wahyo, Aguenkk Rebel Black Sweet, Ahmad Bagoes, Alvin Putra Marcdyto, Arieb Shezhaniea, Aviep Autiez, Chusnie Mubarok,...

About Shellcodes in C

This is a follow up of our previous introductory post about shellcodes. Here we aim for coding more complex shellcodes directly in C. We'll mostly use default tools like gcc and as, at the end also a small python script to reorder and pack things. We'll play with linux but the concepts and script...

Japanese Police 'Collar' Cat Carrying Malware Code

A hacker, or possibly group, that’s issued terrorists threats using remotely controlled computers in Japan remains at large despite a rare 3 million yen bounty and continuous games with media and police. The latest antic to generate considerable attention this week was leading Japanese authoritie...

Oracle VM VirtualBox 4.1 - Local Denial of Service

Oracle VM VirtualBox 4.1 - Local Denial of Service / source: https://www.securityfocus.com/bid/55471/info Oracle VM VirtualBox is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. / / This software is provided by the copyrigh...

[SECURITY] Fedora 16 Update: keepalived-1.2.3-2.fc16

The main goal of the keepalived project is to add a strong & robust keepali ve facility to the Linux Virtual Server project. This project is written in C with multilayer TCP/IP stack checks. Keepalived implements a framework based on three family checks : Layer3, Layer4 & Layer5/7. This framework...

Fedora Update for openjpeg FEDORA-2012-9602

Check for the Version of openjpeg OpenVAS Vulnerability Test Fedora Update for openjpeg FEDORA-2012-9602 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Duqu's 'Mystery Code' Not New – Just 'Old School'

Researchers around the world put their heads together and solved the identity of ‘mystery code’ in the Duqu Trojan horse program, researchers from Kaspersky Lab announced on Monday. Weeks after announcing that they had discovered computer code of unknown provenance in the innards of the Duqu...

Linux Kernel epoll Subsystem “eventpoll.c”多个本地拒绝服务漏洞

BUGTRAQ ID: 46630 CVE ID: CVE-2011-1082,CVE-2011-1083 Linux Kernel是Linux操作系统的内核。 Linux Kernel 2.6.38之前版本的fs/eventpoll.c在epoll子系统的实现上存在本地拒绝服务安全漏洞，将epoll文件描述符放置在其他epoll数据结构中，没有检查已关闭的循环或深链接，攻击者可利用此漏洞造成拒绝服务 0 Linux kernel 2.6.38 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.kernel.or...

DEC Alpha Linux <= 3.0 Local Root Exploit

No description provided by source. / DEC Alpha Linux = 3.0 local root exploit by Dan Rosenberg @djrbliss Usage: $ gcc alpha-omega.c -o alpha-omega $ ./alpha-omega Notes: -Payload specific to = 2.6.28 no cred struct, modify as needed -Socket trigger tested on 2.6.28 adjust offset as needed -INETDI...

UltraISO 9.3.6.2750 Local Buffer Overflow POC (0day)

Exploit for unknown platform in category dos / poc ==================================================== UltraISO 9.3.6.2750 Local Buffer Overflow POC 0day ==================================================== /ccd overflow string=10974 bytes img file size=109974 bytes ccd file size=11812 / include...

BSD/x86 - setuid/portbind - 94 bytes

No description provided by source. / $Id: portbind-bsd.c,v 1.3 2004/06/02 12:22:30 raptor Exp $ portbind-bsd.c - setuid/portbind shellcode for BSD/x86 Copyright c 2003 Marco Ivaldi [email protected] Simple portbind shellcode that bind's a setuid0 shell on port 31337/tcp based on bighawk's...

IntelliTamper 2.07 - HTTP Header Remote Code Execution

/ IntelliTamper 2.07 Location: HTTP Header Remote Code Execution exploit. Based on exploit by Koshi written in Perl. This one should be more stable. Just for fun and to learn more about win32 exploitation. by Wojciech Pawlikowski [email protected] / include include include include include include...

i386_set_ldt-dos.txt

include include include include include include include int mainvoid union ldtentry descs; char buf; ulong pgsz = sysconfSCPAGESIZE; if buf = char mallocpgsz 4 == -1 perror"malloc"; exitEXITFAILURE; memsetbuf, 0x41, pgsz 4; buf = char ulongbuf & pgsz + pgsz; if mprotectchar ulongbuf + pgsz 2,...

CVE-2007-3280

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...