Spear Phishing Emails, Malware, Targeting BlackBerry Users

Blackberry owners are being targeted by a new type of malware that’s beginning to spread via spear phishing emails, according to security firm Websense. According to a post on the company’s blog, Security Labs, those users who are targeted receive an email with the subject line “Your BlackBerry I...

Microsoft Windows - Service Trusted Path Privilege Escalation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

Windows Service Trusted Path Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

CVE-2012-4269

Unrestricted file upload vulnerability in eFront 3.6.11 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension via an attachment in a message...

Tunnelblick - Local Privilege Escalation (1)

Tunnelblick - Local Privilege Escalation 1 / ==== Pwnnel Blicker ==== = = = zx2c4 = = = ======================== Tunnel Blick, a widely used OpenVPN manager for OSX comes with a nice SUID executable that has more holes than you care to count. It's a treasure chest of local roots. I picked one tha...

Tunnelblick Local Root Exploit

Exploit for macOS platform in category local exploits / ==== Pwnnel Blicker ==== = = = zx2c4 = = = ======================== Tunnel Blick, a widely used OpenVPN manager for OSX comes with a nice SUID executable that has more holes than you care to count. It's a treasure chest of local roots. I...

Tunnelblick - Local Privilege Escalation (1)

/ ==== Pwnnel Blicker ==== = = = zx2c4 = = = ======================== Tunnel Blick, a widely used OpenVPN manager for OSX comes with a nice SUID executable that has more holes than you care to count. It's a treasure chest of local roots. I picked one that looked interesting, and here we have Pwnn...

Mandriva Update for file MDVSA-2012:035 (file)

Check for the Version of file OpenVAS Vulnerability Test Mandriva Update for file MDVSA-2012:035 file Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Psexec Via Current User Token

Exploit for windows platform in category remote exploits $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Scientific Linux Security Update : kernel on SL3.x i386/x86_64

A flaw was found in the handling of process death signals. This allowed a local user to send arbitrary signals to the suid-process executed by that user. A successful exploitation of this flaw depends on the structure of the suid-program and its signal handling. CVE-2007-3848, Important A flaw wa...

Small windows can be used in several ways to trick users into executing downloads

When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end...

Small windows can be used in several ways to trick users into executing downloads – Opera Security Advisories

When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end...

Unix Command Shell, Reverse TCP (via Python)

Connect back and create a command shell via Python This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Payload::Python include...

Setuid Nmap Exploit

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

MS12-051: Vulnerability in Microsoft Office for Mac Could Allow Elevation of Privilege (2721015) (Mac OS X)

The remote Mac OS X host is running a version of Microsoft Office for Mac that is affected by a privilege escalation vulnerability in the way that folder permissions are set in certain installations. If an attacker places a malicious executable in the Office 2011 folder and lures a user into...

CVE-2012-1894

Microsoft Office for Mac 2011 uses world-writable permissions for the "Applications/Microsoft Office 2011/" directory and certain other directories, which allows local users to gain privileges by placing a Trojan horse executable file in one of these directories, aka "Office for Mac Improper Fold...

Threat Outbreak Alert: Fake DHL Express Tracking Notification Email Messages on February 3, 2014

Medium Alert ID: 26262 First Published: 2012 June 27 20:46 GMT Last Updated: 2014 February 4 13:56 GMT Version: 26 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a DHL Express tracking notification for the recipient. The text in the...

Linux 3.x.x Executable File Read Exploit

Exploit for linux platform in category local exploits Exploit Title: Linux 3.x.x Executable File Read Exploit Date: 6/26/12 Author: Blade Version: 3.x.x Category:: Local Root Exploit Tested on: Linux, Ubuntu Demo site: 3 vulnerable site, this will speed up check !/bin/sh 3.x.x local root exp By:...

Ubuntu: Security Advisory (USN-1463-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: fcaps: clear the same personality flags as suid when fcaps are used

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...