5 matches found
CVE-2014-5284
CVE-2014-5284 affects OSSEC prior to 2.8.1, where host-deny.sh writes to temporary files with predictable filenames without ownership verification. This can allow a local attacker to modify hosts.deny and gain root privileges by pre-creating temp files before automatic IP blocking occurs. The vul...
OSSEC 2.8 - Insecure Temporary File Creation Vulnerability Privilege Escalation Exploit
Exploit for linux platform in category local exploits !/usr/bin/python Exploit Title: ossec 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation Date: 14-11-14 Exploit Author: skynet-13 Vendor Homepage: www.ossec.net/ Software Link:...
OSSEC 2.8 Privilege Escalation
!/usr/bin/python Exploit Title: ossec 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation Date: 14-11-14 Exploit Author: skynet-13 Vendor Homepage: www.ossec.net/ Software Link: https://github.com/ossec/ossec-hids/archive/2.8.1.tar.gz Version: OSSEC - 2.8 Tested on: Ubunutu...
OSSEC 2.8 - hosts.deny Local Privilege Escalation
OSSEC 2.8 - hosts.deny Local Privilege Escalation !/usr/bin/python Exploit Title: ossec 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation Date: 14-11-14 Exploit Author: skynet-13 Vendor Homepage: www.ossec.net/ Software Link:...
OSSEC 2.8 - 'hosts.deny' Local Privilege Escalation
!/usr/bin/python Exploit Title: ossec 2.8 Insecure Temporary File Creation Vulnerability Privilege Escalation Date: 14-11-14 Exploit Author: skynet-13 Vendor Homepage: www.ossec.net/ Software Link: https://github.com/ossec/ossec-hids/archive/2.8.1.tar.gz Version: OSSEC - 2.8 Tested on: Ubunutu...