Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2013/03/05 12:0 a.m.35 views

Setuid Tunnelblick Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.2CVSS0.9AI score0.03776EPSS
Exploits5
Exploit DB
Exploit DBadded 2013/03/05 12:0 a.m.25 views

Tunnelblick - Setuid Privilege Escalation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.2CVSS7AI score0.03776EPSS
Exploits5
Metasploit
Metasploitadded 2013/03/03 6:48 p.m.68 views

Setuid Tunnelblick Privilege Escalation

This module exploits a vulnerability in Tunnelblick 3.2.8 on Mac OS X. The vulnerability exists in the setuid openvpnstart, where an insufficient validation of path names allows execution of arbitrary shell scripts as root. This module has been tested successfully on Tunnelblick 3.2.8 build...

7.2CVSS10AI score0.03776EPSS
Exploits5
NVD
NVDadded 2012/08/26 7:55 p.m.25 views

CVE-2012-3485

Tunnelblick 3.3beta20 and earlier relies on argv0 to determine the name of an appropriate 1 kernel module pathname or 2 executable file pathname, which allows local users to gain privileges via an execl system call...

7.2CVSS6.3AI score0.03776EPSS
Exploits5References5
Prion
Prionadded 2012/08/26 7:55 p.m.14 views

Hardcoded credentials

The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users to delete arbitrary files by constructing a 1 symlink or 2 hard link, a different vulnerability than CVE-2012-3485...

1.2CVSS6.6AI score0.03776EPSS
Exploits6References3Affected Software1
d2
d2added 2012/08/26 7:55 p.m.528 views

DSquare Exploit Pack: D2SEC_TUNNELBLICK

Name| d2sectunnelblick ---|--- CVE| CVE-2012-3485 Exploit Pack| D2ExploitPack Description| d2sectunnelblick Notes|...

7.2CVSS1.7AI score0.03776EPSS
Exploits5
CVE
CVEadded 2012/08/26 7:0 p.m.47 views

CVE-2012-3485

CVE-2012-3485 affects Tunnelblick 3.3beta20 and earlier. The root cause is that the launcher relies on argv[0] to determine the name of an appropriate kernel module or executable pathname, enabling a local attacker to gain privileges via an execl system call. Public references and connected docum...

7.2CVSS6.5AI score0.03776EPSS
Exploits5References5Affected Software1
Circl
Circladded 2012/08/11 12:0 a.m.8 views

CVE-2012-3485

creationtimestamp| type| source ---|---|--- 2012-08-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/20443 2013-03-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24578 2018-05-29 15:50:33+00:00| seen|...

7.2CVSS5.7AI score0.03776EPSS
Exploits5References3
Rows per page
Query Builder