Google Chrome - Killing Thread (PoC)

Google Chrome - Killing Thread PoC -' pigtail23 -' -' www.remoteshell.de -.OO .- OO.- OO .-/ | '-' | | | | | | | | |'-| |'| |\ -' / --' --' -----' --' --' --' --' -----' ------' ---'' October 22, 2011 Ohh nice! What u doing google? Thx 4 ur bug! 0o Google Chrome PoC, killing thread. Exploitable o...

Visual DuxDebugger Debugger - Disassembler for Windows 64-bit

Visual DuxDebugger Debugger - Disassembler for Windows 64-bit Main features Fully support 64-bit native processes Fully support 64-bit .NET processes Full code analysis Full memory analysis Code edition Memory edition Module export formats EXE/DLL/CSV Debug multiple processes Debug multiple child...

Visual DuxDebugger Debugger - Disassembler for Windows 64-bit

Visual DuxDebugger Debugger - Disassembler for Windows 64-bit Main features Fully support 64-bit native processes Fully support 64-bit .NET processes Full code analysis Full memory analysis Code edition Memory edition Module export formats EXE/DLL/CSV Debug multiple processes Debug multiple child...

Fedora 16 : hplip-3.11.7-2.fc16 (2011-11116)

This update fixes a temporary file vulnerability in the fax support of HPLIP when debugging is enabled. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much a...

CentOS Update for systemtap CESA-2011:0841 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 15 : NetworkManager-0.8.9997-2.git20110531.fc15 (2011-7919)

This update includes no changes to NetworkManager but ensures that the latest update is installed to fix a security issue in NetworkManager-0.8.999-3.git20110526. This issue was previously fixed in NetworkManager-0.8.9997-1.git20110531.fc15 but was not marked as a security update...

Nmap NSE net: http-robots.txt

Checks for disallowed entries in '/robots.txt' on a web server. The higher the verbosity or debug level, the more disallowed entries are shown. SYNTAX: http.pipeline: If set, it represents the number of HTTP requests that'll be pipelined ie, sent in a single request. This can be set low to make...

Nmap NSE net: http-php-version

Attempts to retrieve the PHP version from a web server. PHP has a number of magic queries that return images or text that can vary with the PHP version. This script uses the following queries: '/?=PHPE9568F36-D428-11d2-A769-00AA001ACF42': gets a GIF logo, which changes on April Fool's Day...

Nmap NSE net: daap-get-library

Retrieves a list of music from a DAAP server. The list includes artist names and album and song titles. Output will be capped to 100 items if not otherwise specified in the 'daapitemlimit' script argument. A 'daapitemlimit' below zero outputs the complete contents of the DAAP library. Based on...

Nmap NSE net: hostmap

Tries to find hostnames that resolve to the target's IP address by querying the online database at http://www.bfk.de/bfkdnslogger.html. The script is in the 'external' category because it sends target IPs to a third party in order to query their database. SYNTAX: hostmap.prefix: If set, saves the...

DEBIAN-CVE-2011-1922

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DNS request that triggers improper error handling...

systemtap: does not guard against DWARF operations div-by-zero errors, which can cause a kernel panic

SystemTap 1.4 and earlier, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access...

PT-2011-1123 · Red Hat · Systemtap +1

Name of the Vulnerable Software and Affected Versions: SystemTap versions 1.4 and earlier Description: The issue allows local users to cause a denial of service via a crafted ELF program with DWARF expressions that are not properly handled by a stap script, leading to a divide-by-zero error and...

KeyFax Response Management System 3.2.2.6 XSS / Information Disclosure

PR10-17: Various XSS and information disclosure flaws within KeyFax response management system http://www.omfax.co.uk Vulnerability found: 25th August 2010 Vendor informed: Vulnerability fixed: Severity: Medium/High Description: KeyFax response management system provides professional management o...

Fiddler v2.3.3.3 New version released !

Fiddler is a Web Debugging Proxy which logs all HTTPS traffic between your computer and the Internet. Fiddler allows you to inspect all HTTPS traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended usi...

PHP 5.3.6 closes five security holes !

The PHP developers have released PHP 5.3.6, a maintenance update to the PHP interpreter. Among over 60 bug fixes are a number of fixes for security related problems. A format string vulnerability in the phar extension of PHP 5.3.5, CVE-2011-1153, may allow attackers to view memory, cause a denial...

Apple iPhone information leakage

Information about Wi-Fi keys for Personal Hotspot feature is logged to debugging console...

FreeBSD 6.4 - Netgraph Privilege Escalation

FreeBSD 6.4 - Netgraph Privilege Escalation / FreeBSD include include include...

Code injection

The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote attackers to gain privileges as that user...

Only modification code [ASM KEYGENME#1]

Решил выложить продолжение своей первой статьи, которая находить тут. В прошлой статье «Реверсинг ASM KEYGENME1 «, в самом начале пропустил момент, с само-модификацией кода тогда мы просто нажали F9, и программа все сделала сама. Сейчас подробней разберем тот фрагмент кода, а лучше напишем...