2659 matches found
Powershell Exec, Find Tag Ordinal Stager
Execute an x86 payload from a command via PowerShell. Use an established connection Module Options msf use payload/cmd/windows/powershell/vncinject/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show options ...show and set options... msf...
Powershell Exec, Find Tag Ordinal Stager
Execute an x86 payload from a command via PowerShell. Use an established connection Module Options msf use payload/cmd/windows/powershell/meterpreter/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show options ...show and set options... msf...
Powershell Exec, Hidden Bind TCP Stager
Execute an x86 payload from a command via PowerShell. Listen for a connection from a hidden port and spawn a command shell to the allowed host. Module Options msf use payload/cmd/windows/powershell/patchupmeterpreter/bindhiddentcp msf payloadbindhiddentcp show actions ...actions... msf...
Powershell Exec, Bind TCP Stager (Windows x86)
Execute an x86 payload from a command via PowerShell. Listen for a connection Windows x86 Module Options msf use payload/cmd/windows/powershell/vncinject/bindtcp msf payloadbindtcp show actions ...actions... msf payloadbindtcp set ACTION msf payloadbindtcp show options ...show and set options...
Powershell Exec, Generic x86 Debug Trap
Execute an x86 payload from a command via PowerShell. Generate a debug trap in the target process Module Options msf use payload/cmd/windows/powershell/generic/debugtrap msf payloaddebugtrap show actions ...actions... msf payloaddebugtrap set ACTION msf payloaddebugtrap show options ...show and s...
Powershell Exec, Bind TCP Stager (Windows x86)
Execute an x86 payload from a command via PowerShell. Listen for a connection Windows x86 Module Options msf use payload/cmd/windows/powershell/dllinject/bindtcp msf payloadbindtcp show actions ...actions... msf payloadbindtcp set ACTION msf payloadbindtcp show options ...show and set options...
Powershell Exec, Bind TCP Stager with UUID Support (Windows x86)
Execute an x86 payload from a command via PowerShell. Listen for a connection with UUID Support Windows x86 Module Options msf use payload/cmd/windows/powershell/dllinject/bindtcpuuid msf payloadbindtcpuuid show actions ...actions... msf payloadbindtcpuuid set ACTION msf payloadbindtcpuuid show...
Powershell Exec, Reverse TCP Stager (DNS)
Execute an x86 payload from a command via PowerShell. Connect back to the attacker Module Options msf use payload/cmd/windows/powershell/dllinject/reversetcpdns msf payloadreversetcpdns show actions ...actions... msf payloadreversetcpdns set ACTION msf payloadreversetcpdns show options ...show an...
EulerOS Virtualization 3.0.2.0 : python-pillow (EulerOS-SA-2022-1690)
According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. CVE-2022-22815 - pathgetbbox in path.c ...
mingw-glib2 bug fix and enhancement update
The mingw-glib2 package provides the MinGW Windows Glib2 library. Bug Fixes and Enhancements: qemu-ga-win Get error 'Failed to execute helper program No such file or directory' after executing command 'guest-exec' BZ2034959...
GSD-2022-1001287 exec: Force single empty string when argv is empty
exec: Force single empty string when argv is empty This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
Unbreakable Enterprise kernel security update
5.4.17-2136.306.1.3 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 5.4.17-2136.306.1.2 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34045203 5.4.17-2136.306.1.1 - netfilter: nftables: initialize...
UBUNTU-CVE-2022-1286
heap-buffer-overflow in mrbvmexec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...
PT-2022-18354 · Inhand Networks · Inrouter 900 Industrial 4G Router
Name of the Vulnerable Software and Affected Versions: InHand Networks InRouter 900 Industrial 4G Router versions prior to 1.0.0.r11700 Description: The issue is related to a stored cross-site scripting XSS vulnerability. This vulnerability can be exploited via the web exec parameter at the...
DEBIAN-CVE-2022-1201
NULL Pointer Dereference in mrbvmexec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system...
PT-2022-13708 · Mruby +1 · Mruby +1
Name of the Vulnerable Software and Affected Versions: mruby versions prior to 3.2 Description: The issue is related to a NULL Pointer Dereference in mrb vm exec with super, which can cause the mruby interpreter to crash. This affects the availability of the system. Recommendations: For versions...
Exploit for Path Traversal in Apache Http_Server
CVE-2021-41773 Docker $ sudo docker build -t . $ sudo...
UBUNTU-CVE-2022-1106
use after free in mrbvmexec in GitHub repository mruby/mruby prior to 3.2...
mruby 资源管理错误漏洞
mruby is a lightweight implementation of the Ruby language. A security vulnerability exists in mruby 3.1 and earlier, which stems from post-release reuse in mrbvmexec. No details of the vulnerability are provided at this time...
Python Exec, Python Meterpreter, Python Reverse HTTP Stager
Execute a Python payload as an OS command from a Posix-compatible shell. Run a meterpreter server in Python compatible with 2.5-2.7 & 3.1+. Tunnel communication over HTTP Module Options msf use payload/cmd/unix/python/meterpreter/reversehttp msf payloadreversehttp show actions ...actions... msf...