IBM i Access 7.1 - Local Buffer Overflow / Code Execution

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/IBMI-CLIENT-ACCESS-BUFFER-OVERFLOW.txt Vendor: ============== www.ibm.com Product: ==================================================== IBM i Access for Windows Release 7.1 of...

IBM i Access 7.1 - Buffer Overflow Code Execution Vulnerability

IBM i Access for Windows is vulnerable to a buffer overflow. A local attacker could overflow a buffer and execute arbitrary code on the Windows PC. IBM i Access 7.1 - Buffer Overflow Code Execution Vulnerability Vendor: ============== www.ibm.com Product:...

IBM i Access 7.1 - Local Buffer Overflow Code Execution

IBM i Access 7.1 - Local Buffer Overflow Code Execution + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/IBMI-CLIENT-ACCESS-BUFFER-OVERFLOW.txt Vendor: ============== www.ibm.com Product:...

CVE-2009-1527

Race condition in the ptraceattach function in kernel/ptrace.c in the Linux kernel before 2.6.30-rc4 allows local users to gain privileges via a PTRACEATTACH ptrace call during an exec system call that is launching a setuid application, related to locking an incorrect credexecmutex object...

Apple Safari - User-Assisted Applescript Exec Attack (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Safari User-Assisted Applescript Exec Attack', 'Description' = %q In versions of Mac OS X before 10.11.1, the applescript:// URL...

PfSense命令注入漏洞

漏洞简介 该漏洞的编号为CVE-2014-4688，存在于PfSense的2.1.3以及更低版本中。该漏洞源于php程序中没有对用户的输入值进行严格的校验，导致用户恶意输入达到命令执行函数时会产生严重后果。其中，diagdns.php， diagsmart.php， statusrrdgraphimg.php三个脚本文件受到该漏洞的影响。 漏洞分析 在diagdns.php中，用户提交的host值经过处理后将传到dig变量中执行。攻击者通过构造host值执行任意命令。...

HP-UX PHKL_44305 : s700_800 11.11 exec(2) patch

s700800 11.11 exec2 patch : A potential security vulnerability have been identified with HP-UX programs using the execve2 system call. The vulnerability could be exploited locally to create an elevation of privilege. References: CVE-2015-2132 SSRT102037. %NASLMINLEVEL 70300 C Tenable Network...

CVE-2015-2442

The CVE-2015-2442 entry concerns Microsoft Internet Explorer (IE) versions 8–11 and Edge, described as a memory corruption vulnerability that allows remote code execution or denial of service when a user visits a crafted site. The description explicitly labels it as a Memory Corruption Vulnerabil...

Micro Focus NetIQ Security Solutions for iSeries Stack Buffer Overflow Vulnerability

NetIQ Security Solutions for NetIQ, Inc. Micro Focus NetIQ Security Solutions for iSeries version 8.1 The NetIQExec.dll file in the NetIQExecObject.NetIQExec.1 ActiveX control's ' SafeShellExecute' method in the NetIQExecObject.NetIQExec.1 ActiveX control in the NetIQExec.dll file contains a...

php: pcntl_exec() accepts paths with NUL character

It was found that certain PHP functions did not properly handle file names containing a NULL character. A remote attacker could possibly use this flaw to make a PHP script access unexpected files and bypass intended file system access restrictions...

linux/x86 exec('/bin/dash') - shellcode 45 bytes

/ Title: Linux/x86 exec'/bin/dash' - shellcode 45 bytes Platform: linux/x8664 Date: 2015-06-15 Author: Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes , reza.esparghamatgmaildotcom Website : www.reza.es Twitter : https://twitter.com/rezesp FaceBook :...

linux/x86 exec ('/bin/dash') - shellcode 45 bytes

/ Title: Linux/x86 exec'/bin/dash' - shellcode 45 bytes Platform: linux/x8664 Date: 2015-06-15 Author: Mohammad Reza Espargham Linkedin : https://ir.linkedin.com/in/rezasp E-Mail : meatrezadotes , reza.esparghamatgmaildotcom Website : www.reza.es Twitter : https://twitter.com/rezesp FaceBook :...

Marktplaats: Multiple Apache 2.2.22 Vulnerabilities (XSS/ Code Exec/ DoS)

Hello, Your current version of apache 2.2.22 for http://aanbieding.marktplaats.com is vulnerable to many issues like DoS, XSS and Code Exec 1. DoS Refer: http://www.cvedetails.com/cve/CVE-2014-0231/ http://www.cvedetails.com/cve/CVE-2014-0098/ http://www.cvedetails.com/cve/CVE-2013-6438/...

openSUSE Security Update : fuse (openSUSE-2015-401)

Update to version 2.9.4 - fix exec environment for mount and umount bsc931452, CVE-2015-3202 - properly restore the default signal handler - fix directory file handle passed toioctl method. - fix for uids/gids larger than 2147483647 - initialize stat buffer passed to getattr and fgetattr...

Microsoft Internet Explorer HTTP Response Double Free Memory Corruption (MS08-045) - Ver2 (CVE-2008-2256)

Microsoft Internet Explorer is the most widely used Internet browser. . A remote code execution vulnerability was reported in the way Microsoft Internet Explorer accesses an object that has not been correctly initialized or that has been deleted. By convincing a user to visit a specially crafted...

Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17

Title: Remote file upload vulnerability in wordpress plugin videowhisper-video-presentation v3.31.17 Author: Larry W. Cashdollar, @larry0 Date: 2015-03-29 Download Site: https://wordpress.org/plugins/videowhisper-video-presentation/ Vendor: http://www.videowhisper.com/ Vendor Notified: 2015-03-29...

CVE-2015-2754

CVE-2015-2754 affects the FreeXL library. A vulnerability in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) and potentially execute arbitrary code via a crafted Excel workbook, related to a “premature EOF.” The issue affects FreeXL versions earlier th...

WordPress Plugin InBoundio Marketing 1.0 - Shell Upload Vulnerability

Exploit for php platform in category web applications Dx . Made In Algeria . xZ Title : WordPress plugin InBoundio Marketing Shell Upload Vulnerability Author : KedAns-Dz + E-mail : ked-h @hotmail.com + FaCeb0ok : fb.me/K3d.Dz + TwiTter : @kedans Platform : PHP / WebApp + Cat/Tag : File Upload /...

CVE-2015-0644

CVE-2015-0644 affects Cisco IOS XE AppNav. The vulnerability arises from improper handling of TCP packets, allowing an unauthenticated, remote attacker to cause either arbitrary code execution or a device reload (DoS) via a crafted TCP packet. Affected are IOS XE 3.8–3.10 before 3.10.3S, 3.11 bef...

WordPress InBoundio Marketing Shell Upload

Dx . Made In Algeria . xZ Title : WordPress plugin InBoundio Marketing Shell Upload Vulnerability Author : KedAns-Dz + E-mail : ked-h @hotmail.com + FaCeb0ok : fb.me/K3d.Dz + TwiTter : @kedans Platform : PHP / WebApp + Cat/Tag : File Upload / Code Exec 3 3 Greetings t0 Palestine 3 3 ! Vendor :...