[SECURITY] Fedora 23 Update: sos-3.2-2.fc23

Sos is a set of tools that gathers information about system hardware and configuration. The information can then be used for diagnostic purposes and debugging. Sos is commonly used to help support technicians and developers...

ISC Kea kea-dhcp4 and kea-dhcp6 Server Denial of Service Vulnerabilities

ISC Kea is an open source DHCPv4 and DHCPv6 server developed by ISC Internet Systems Consortium. A security vulnerability exists in ISC Kea's kea-dhcp4 and kea-dhcp6 servers, versions 0.9.2 and 1.0.0-beta. A remote attacker can exploit the vulnerability by sending malformed packets to cause a...

A step-by-step learn the ROP of the Android ARM 3 2-vulnerability warning-the black bar safety net

ROP stands for Return-oriented programming return-oriented programming this is an advanced memory attack techniques that can be used to bypass the modernoperating systema variety of common defenses such as the memory is not performed and code signing. Before we mainly discussed on linux in this...

ManageEngine Desktop Central 9 FileUploadServlet ConnectionId Exploit

This Metasploit module exploits a vulnerability found in ManageEngine Desktop Central 9. When uploading a 7z file, the FileUploadServlet class does not check the user-controlled ConnectionId parameter in the FileUploadServlet class. This allows a remote attacker to inject a null bye at the end of...

ManageEngine Desktop Central 9 - FileUploadServlet ConnectionId (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'nokogiri' class Metasploit3 "ManageEngine Desktop Central 9 FileUploadServlet ConnectionId Vulnerability", 'Description' = %q This module...

Apple iOS kernel security bypass vulnerability

Apple iOS is an operating system developed by Apple Inc. for mobile devices. kernel is one of the kernel components. A security vulnerability exists in the kernel of Apple iOS versions prior to 8.4.1, which stems from a failure of the program to properly restrict debugging functionality. An...

Input validation

The kernel in Apple iOS before 8.4.1 does not properly restrict debugging features, which allows attackers to bypass background-execution limitations via a crafted app...

CVE-2015-5787

The kernel in Apple iOS before 8.4.1 does not properly restrict debugging features, which allows attackers to bypass background-execution limitations via a crafted app...

CVE-2015-5787

The CVE concerns Apple iOS before 8.4.1, where the kernel fails to properly restrict debugging features, enabling bypass of background-execution restrictions via a crafted app. Affected component: iOS kernel (pre-8.4.1). Root cause: improper restriction of debugging functionality. Impact: attacke...

CVE-2015-5787

The kernel in Apple iOS before 8.4.1 does not properly restrict debugging features, which allows attackers to bypass background-execution limitations via a crafted app...

The vulnerability of the microprogramming software in Janitza UMG 508, 509, 511, 604, 605 power supply monitoring systems allows a perpetrator to read and write files or execute JASIC code.

The vulnerability of the debugging interface of Microprogramming Software for Control System Chains of Janitza UMG models 508, 509, 511, 604, and 605 is related to the absence of an authentication procedure. Exploiting this vulnerability allows a malicious actor to read and write files, or execut...

Xen Debugging Exception Handling Denial of Service Vulnerability

Xen is a virtualization technology for the Linux kernel that allows multiple operating systems to run simultaneously. A security vulnerability exists in Xen's handling of debugging exceptions, which allows the guest user to trigger a denial-of-service attack...

Beurk - Experimental Unix Rootkit

BEURK is an userland preload rootkit for GNU/Linux, heavily focused around anti-debugging and anti-detection. NOTE: BEURK is a recursive acronym for B EURK E xperimental U nix R oot K it Features Hide attacker files and directories Realtime log cleanup on utmp/wtmp Anti process and login detectio...

Tails 1.6 Information Disclosure

Tails On Tails /dev/null | grep ^amnesia amnesia:$6$r0jt1v9E$UOrWbJ70qAH/sjaKfjmCMvkXZ19bqC2ieQ2UvYk0HKwVvgxuZFtyIwjoLfgH AwrZVM3a0NTEkcsQY1hn/Uq2S0:16710:0:99999:7:::...

CVE-2015-6613

Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to send commands to a debugging port, and consequently gain privileges, via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24371736...

Command injection

Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to send commands to a debugging port, and consequently gain privileges, via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24371736...

CVE-2015-6613

CVE-2015-6613 affects Android devices running versions prior to 5.1.1 LMY48X and before 2015-11-01 on 6.0. The issue allows a local attacker via Bluetooth to send commands to a debugging port and gain privileges (Signature or SignatureOrSystem) through a crafted app. The vulnerability is tied to ...

CVE-2003-0885

Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the 1 apple2, 2 xanalogtv, and 3 pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack...

CVE-2015-7900

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote attackers to obtain sensitive debugging information by entering a crafted URL to trigger an exception, and then visiting a certain status page...

CVE-2015-7900

Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote attackers to obtain sensitive debugging information by entering a crafted URL to trigger an exception, and then visiting a certain status page...