13 matches found
Astra Linux - уязвимость в curl
Due to the use of a dangling pointer, libcurl versions 7.29.0 through 7.71.1 can use the wrong connection when sending data...
EUVD-2021-10073
Malware in sbrugna...
When sending data to an MQTT server libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it *again*.
...
Due to use of a dangling pointer libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.
...
curl -- expired pointer dereference vulnerability
curl security problems: CVE-2020-8231: wrong connect-only connection An application that performs multiple requests with libcurl's multi API and sets the CURLOPTCONNECTONLY option, might in rare circumstances experience that when subsequently using the setup connect-only transfer, libcurl will pi...
How to correlate different events in Splunk and make dashboards
Recently I've spent some time dealing with Splunk. Despite the fact that I have already done various Splunk searches before, for example in "Tracking software versions using Nessus and Splunk", the correlation of different events in Splunk seems to be a very different task. And there not so many...
Pre-installed Backdoor On 700 Million Android Phones Sending Users' Data To China
Do you own an Android smartphone? You could be one of those 700 Million users whose phone is secretly sending text messages to China every 72 hours. You heard that right. Over 700 Million Android smartphones contain a secret 'backdoor' that surreptitiously sends all your text messages, call log,...
UBUNTU-CVE-2015-6792
The MIDI subsystem in Google Chrome before 47.0.2526.106 does not properly handle the sending of data, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via unspecified vectors, related to midimanager.cc, midimanageralsa.cc, and...
Jinais IRC Server 0.1.8 - NULL Pointer PoC
No description provided by source. / Jinais IRC Server 0.1.8 - NULL Pointer PoC This PoC will disconnect the affected target IRC server using a NULL Pointer vulnerability. Copyright 2010 Salvatore Fresta aka Drosophila This program is free software; you can redistribute it and/or modify it under...
Jinais IRC Server 0.1.8 NULL Pointer Proof Of Concept
/ Jinais IRC Server 0.1.8 - NULL Pointer PoC This PoC will disconnect the affected target IRC server using a NULL Pointer vulnerability. Copyright 2010 Salvatore Fresta aka Drosophila This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...
Jinais IRC Server 0.1.8 - Null Pointer (PoC)
/ Jinais IRC Server 0.1.8 - NULL Pointer PoC This PoC will disconnect the affected target IRC server using a NULL Pointer vulnerability. Copyright 2010 Salvatore Fresta aka Drosophila This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...
WinFTP Server 2.3.0 - 'PASV Mode' Remote Denial of Service
WinFTP v2.3.0 DoS exploit WinFTP URL - http://www.wftpserver.com/ DoS'ed when try to send data xdmnt -- coding: windows-1252 -- import socket import time import sys PORT = 21 def helpinfo: print "Usage: winftp \n" print "Note: anonymous is enought\n" def connhostname, username, passwd: sock =...
Special DOS-device access in Microsoft Outlook Express
It's possible to hang Outlooks Express by using prn: device as a name for bgsound or iframe. It's also possible to send data to special device...