Linux/x86 - Download File (http://192.168.2.222/x) + chmod() + execute Shellcode (108 bytes)

Linux/x86 - Download File http://192.168.2.222/x + chmod + execute Shellcode 108 bytes. Shellcode exploit for Linuxx86 platform / ; Filename: downloadexec.nasm ; Author: Daniel Sauder ; Website: http://govolution.wordpress.com/ ; Tested on: Ubuntu 12.04 / 32Bit ; License:...

Linux/x86 - setuid(0) + chmod(/etc/shadow, 0666) Shellcode (37 bytes)

Linux/x86 - setuid0 + chmod/etc/shadow, 0666 Shellcode 37 bytes. Shellcode exploit for Linuxx86 platform / Title: linux/x86 setuid0 + chmod"/etc/shadow", 0666 Shellcode 37 Bytes Type: Shellcode Author: antrhacks Platform: Linux X86 / / ASSembly 31 db xor %ebx,%ebx b0 17 mov $0x17,%al cd 80 int...

linux/x86 - append rsa key to /root/.ssh/authorized_keys2 295 bytes

linux/x86 append rsa key to /root/.ssh/authorizedkeys2 295 bytes. Shellcode exploit for linx86 platform / linux/x86 shellcode to append rsa key to /root/.ssh/authorizedkeys2 keys found at http://xenomuta.tuxfamily.org/exploits/authkey/ ssh -i idrsapwn root@pwned-host 295 bytes by XenoMuta | |/ / ...

S/Key和OPIE数据库漏洞

在使用S/Key或OPIE认证的服务器上存在一个安全漏洞。这个漏洞允许本地用户获得对S/Key或OPIE数据库的访问权。 S/Key是使用一次性口令技术的认证机制。系统管理员可以进行配置，使用户能够通过S/Key认证访问使用login8的任何服务，如Telnet和FTP。制定认证类型的配置文件是/etc/login.conf。 为了配置一个用户能够使用S/Key，管理员或该用户（如果程序是suid root）首先必须使用skeyinit（或keyinit）程序。这个程序初始化S/Key数据库（/etc/skeykeys）中的用户入口项。这个数据库文件包含输入S/Key口令时需要比较的信息...

Fedora 9 : perl-5.10.0-27.fc9 (2008-5739)

CVE-2008-2827 perl: insecure use of chmod in rmtree Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Perl rmtree()函数本地不安全权限漏洞

BUGTRAQ ID: 29902 CVECAN ID: CVE-2008-2827 Perl是一种免费且功能强大的编程语言。 Perl的lib/File/Path.pm文件中的rmtree函数在执行chmod时没有正确地检查权限： my $nperm = $perm & 07777 | 0600; if $nperm != $perm and not chmod $nperm, $root if $ForceWriteable error$arg, "cannot make file writeable", $canon;...

DEBIAN-CVE-2008-2827

The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448 and CVE-2004-0452...

Serv-U FTPD 3.x/4.x "SITE CHMOD" Command Remote Exploit

No description provided by source. / ----------------------------------------------------------------------- Servu.c - Serv-U FTPD 3.x/4.x "SITE CHMOD" Command Remote stack buffer overflow exploit Copyright C 2004 HUC All Rights Reserved. Author : lion : [email protected]...

Linux Chmod

Runs chmod on specified file with specified mode This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Linux Chmodfile, mode Kris Katterjohn - 03/03/2008 module MetasploitModule CachedSize = 36 include Msf::Payload::Single...

LightBlog 9.5 cp_upload_image.php Remote File Upload Vulnerability

No description provided by source. LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from vendor! 2008-02-01...

lightblog-upload.txt

LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from vendor! 2008-02-01 Published! Description : Lightblog...

LightBlog 9.5 - cp_upload_image.php Arbitrary File Upload

LightBlog 9.5 - cpuploadimage.php Arbitrary File Upload LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from...

Directory traversal

Directory traversal vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter...

CVE-2007-5491

Directory traversal vulnerability in the translation module translator.php in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter...

CVE-2007-5491

Summary of CVE-2007-5491 family in SiteBar : The translation module (translator.php) in SiteBar 3.3.8 is vulnerable to a directory traversal attack via the lang parameter (using .. sequences), allowing remote authenticated users to chmod arbitrary files to 0777. Related entries (CVE-2007-5492, CV...

Analysis of the server-u site chmod vulnerability-vulnerability warning-the black bar safety net

author:wujianqiang 18/2/2004 email :[email protected] homepage:http://wujianqiang. 5 3 3. net Q:groomer when? A:Play exp... In fact, this procedure is not difficult, is the shellcode requires a little bit of trouble; Start dimming from each command to start the tone, the trouble might ...

ShoutPro 1.5.2 - shout.php Remote Code Injection

ShoutPro 1.5.2 - shout.php Remote Code Injection ?php echo "\n"; echo " Special Greetings To - Timq,Warpboy,The-Maggot \n"; echo "\n\n\n"; //Writes Files - Under 100 bytes to meet requirements $temppayload = "...

Chatness 2.5.3 - '/options.php/save.php' Remote Code Execution

?/ Files: options.php, save.php Affects: Chatness = 2.5.3 Date: 12th April 2007 Issue Description: =========================================================================== Chatness suffers with two main vulnerabilities, the first of these in /admin/options.php the problems occur because the...

Chatness 2.5.3 - options.phpsave.php Remote Code Execution

Chatness 2.5.3 - options.phpsave.php Remote Code Execution ?/ Files: options.php, save.php Affects: Chatness = 2.5.3 Date: 12th April 2007 Issue Description: =========================================================================== Chatness suffers with two main vulnerabilities, the first of...

Linux Kernel 2.6.17 - 'Sys_Tee' Local Privilege Escalation

source: https://www.securityfocus.com/bid/22823/info The Linux kernel is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to gain superuser privileges, facilitating the complete compromise of affected computers. Linux 2.6.16 - 2.6.17.6 local root...