Samba 3.0.10 (OSX) - 'lsa_io_trans_names' Heap Overflow (Metasploit)

$Id: lsatransnamesheap.rb 9021 2010-04-05 23:34:10Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

Mandriva Update for dbus MDVA-2010:110 (dbus)

Check for the Version of dbus OpenVAS Vulnerability Test Mandriva Update for dbus MDVA-2010:110 dbus Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

KVM: Check cpl before emulating debug register access

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

jdwp-version NSE Script

Detects the Java Debug Wire Protocol. This protocol is used by Java programs to be debugged via the network. It should not be open to the public Internet, as it does not provide any security against malicious attackers who can inject their own bytecode into the debugged process. Documentation for...

VariCAD 2010-2.05 EN - Local Buffer Overflow

/ Exploit Title: VariCAD 2010-2.05 EN Local buffer overflow : Date: 15 March 2010 Author: n00b Realname: carl cope Software Link: http://www.varicad.com/en/home/ Version: All versions are affected. Tested on: Windows xp sp3,Vista sp2,Linux unbuntu CVE : if exists...

VariCAD 2010-2.05 EN Local Buffer Overflow Vulnerability

Exploit for multiple platform in category local exploits ======================================================== VariCAD 2010-2.05 EN Local Buffer Overflow Vulnerability ======================================================== / Exploit Title: VariCAD 2010-2.05 EN Local buffer overflow : Date: 1...

KVM: Check cpl before emulating debug register access

The handledr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level CPL before accessing a debug register, which allows guest OS users to cause a denial of service trap on the host OS via a crafted application...

iPhone CSS::Selector Crash Exploit

!/usr/bin/python , dM MMr 4MMML . MMMMM. xf . "M6MMM .MM- Mh.. +MM5MMM .MMMM .MMM. .MMMMML. MMMMMh MMMh. MM5MMM MMMMMMM 3MMMMx. 'MMM3MMf xnMMMMMM" 'MMMMM MMMMMM. nMMMMMMP" MMMMMx "MMM5M\ .MMMMMMM= MMMMMh "MMMMM" JMMMMMMP MMMMMM GMMMM. dMMMMMM . MMMMMM "MMMM .MMMMM .nnMP" .. MMMMx MMM" dMMMM"...

iPhone WebCore::CSSSelector() Remote Crash Vulnerability

No description provided by source. !/usr/bin/python , dM MMr 4MMML . MMMMM. xf . "M6MMM .MM- Mh.. +MM5MMM .MMMM .MMM. .MMMMML. MMMMMh MMMh. MM5MMM MMMMMMM 3MMMMx. 'MMM3MMf xnMMMMMM" 'MMMMM MMMMMM. nMMMMMMP" MMMMMx "MMM5M\ .MMMMMMM= MMMMMh "MMMMM" JMMMMMMP MMMMMM GMMMM. dMMMMMM . MMMMMM "MMMM .MMM...

iPhone - 'WebCore::CSSSelector()' Remote Crash

!/usr/bin/python , dM MMr 4MMML . MMMMM. xf . "M6MMM .MM- Mh.. +MM5MMM .MMMM .MMM. .MMMMML. MMMMMh MMMh. MM5MMM MMMMMMM 3MMMMx. 'MMM3MMf xnMMMMMM" 'MMMMM MMMMMM. nMMMMMMP" MMMMMx "MMM5M\ .MMMMMMM= MMMMMh "MMMMM" JMMMMMMP MMMMMM GMMMM. dMMMMMM . MMMMMM "MMMM .MMMMM .nnMP" .. MMMMx MMM" dMMMM"...

iPhone WebCore::CSSSelector() Remote Crash Vulnerability

Exploit for unknown platform in category dos / poc ======================================================== iPhone WebCore::CSSSelector Remote Crash Vulnerability ======================================================== !/usr/bin/python , dM MMr 4MMML . MMMMM. xf . "M6MMM .MM- Mh.. +MM5MMM .MMMM...

Joomla! Component user_id com_sqlreport - Blind SQL Injection

============================================================================== »Joomla Component userid comsqlreport Blind SQL Injection Vulnerability ============================================================================== » Script: Joomla » Language: PHP » Founder: Snakespc...

kernel: megaraid_sas permissions in sysfs

The dbglvl file for the megaraidsas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the 1 behavior and 2 logging level of the driver by modifying this file...

Winamp v5.572 whatsnew.txt Local Buffer Overflow Exploit

No description provided by source. Tested on: WinXP SP3 De !/usr/bin/perl Still learning, having some fun... Greetz to -Sid- Roadkill Jess Dawn Linki Special greetz do Debug, even i dont know you. Nice find man. Exploit has something around 70% chance of success. print "\n\n"; print " Winamp 5.57...

Winamp 5.572 Local Buffer Overflow

Exploit Title: Winamp 5.572 local buffer overflow Date: 25-01-2010 Author: NeoCortex - PoC by Debug http://www.exploit-db.com/exploits/11248 Software Link: http://www.exploit-db.com/application/11248 Version: 5.572 Tested on: WinXP SP3 De !/usr/bin/perl Still learning, having some fun... Greetz t...

Winamp 5.572 (Windows XP SP3 DE) - 'whatsnew.txt' Local Buffer Overflow

Tested on: WinXP SP3 De !/usr/bin/perl Still learning, having some fun... Greetz to -Sid- Roadkill Jess Dawn Linki Special greetz do Debug, even i dont know you. Nice find man. Exploit has something around 70% chance of success. print "\n\n"; print " Winamp 5.572 stack buffer overflow \n"; print ...

Winamp 5.572 - whatsnew.txt Stack Overflow (PoC)

Winamp 5.572 - whatsnew.txt Stack Overflow PoC Author: Debug [email protected] Version: 5.572 Tested on: Windows xpsp2 !/usr/bin/perl Replace whatsnew.txt , open Winamp click Help-about winamp- version history. hacking.org.il. EAX 00000000 ECX 00000000 EDX 00661658 EBX 00000000 ESP 00B7EDE8 ASCII...

Fedora Core 11 FEDORA-2009-13195 (merkaartor)

The remote host is missing an update to merkaartor announced via advisory FEDORA-2009-13195. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

Fedora 12 : merkaartor-0.14-2.fc12 (2009-13196)

This update fixes a possible symlink attack on the debug log merkaartor.log by no longer writing it out by default. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format ...

OpenJDK information leaks in mutable variables (6588003,6656586,6656610,6656625,6657133,6657619,6657625,6657695,6660049,6660539,6813167)

Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, might allow context-dependent attackers to obtain sensitive information via vectors involving static variables that are declared without the final keyword, related to 1 LayoutQueue, 2 Cursor.predefined, 3...