CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2009/12/04 12:0 a.m.•30 views

Linux - setuid0 & execve"/sbin/poweroff -f"

Linux - setuid0 & execve"/sbin/poweroff -f". Shellcode exploit for linx86 platform include / linux/x86 ; setuid0 & execve"/sbin/poweroff -f" 47 bytes written by ka0x - lun sep 21 16:40:16 CEST 2009 greets: an0de, Piker, xarnuz, NullWave07, Pepelux, JosS, sch3m4, Trancek, Hendrix and others! / int...

7.4AI score

0day.today•added 2009/12/04 12:0 a.m.•22 views

linux/x86 setuid(0) & execve(/bin/cat /etc/shadow) 49 bytes

Exploit for linux/x86 platform in category shellcode =========================================================== linux/x86 setuid0 & execve/bin/cat /etc/shadow 49 bytes =========================================================== include / linux/x86 ; setuid0 & execve/bin/cat /etc/shadow 49 bytes...

7AI score

Tenable Nessus•added 2009/11/16 12:0 a.m.•57 views

SuSE9 Security Update : Linux kernel (YOU Patch Number 12541)

This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. The following security bugs were fixed : - A race condition in the pipe2 systemcall could be used by local attackers to execute code. CVE-2009-3547 - On x8664 systems a information leak of high register...

7.8CVSS6.7AI score0.05744EPSS

Exploits20References16

Oracle linux•added 2009/11/04 12:0 a.m.•91 views

kernel security and bug fix update

2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...

7.8CVSS1.4AI score0.13893EPSS

Exploits22

RedHat Linux•added 2009/11/03 9:56 p.m.•1 views

kernel: execve: must clear current->clear_child_tid

The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current-clearchildtid pointer, which allows local users to cause a denial of service memory corruption or possibly gain privileges via a clone system call with CLONECHILDSETTID or...

RedHat Linux•added 2009/09/29 3:31 p.m.•2 views

kernel: execve: must clear current->clear_child_tid

RedHat Linux•added 2009/09/15 8:19 a.m.•2 views

kernel: execve: must clear current->clear_child_tid

RedHat Linux•added 2009/09/02 8:0 a.m.•2 views

kernel: execve: must clear current->clear_child_tid

OpenVAS•added 2009/09/02 12:0 a.m.•35 views

Fedora Core 11 FEDORA-2009-9044 (kernel)

The remote host is missing an update to kernel announced via advisory FEDORA-2009-9044. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.8CVSS7.1AI score0.17556EPSS

Exploits28References6

OpenVAS•added 2009/09/02 12:0 a.m.•47 views

Fedora Core 11 FEDORA-2009-9044 (kernel)

The remote host is missing an update to kernel announced via advisory FEDORA-2009-9044. OpenVAS Vulnerability Test $Id: fcore20099044.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9044 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

7.2CVSS0.8AI score0.17556EPSS

Exploits28References5

RedHat Linux•added 2009/09/01 7:37 a.m.•4 views

kernel: execve: must clear current->clear_child_tid

seebug.org•added 2009/08/21 12:0 a.m.•59 views

Linux kernel execve函数本地拒绝服务漏洞

CVECAN ID: CVE-2009-2848 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的execve函数没有清除current-clearchildtid指针，在处理线程创建和退出过程中启用了CLONECHILDSETTID或CLONECHILDCLEARTID的clone系统调用会导致内存破坏。本地攻击者可以利用这个漏洞导致拒绝服务。 Linux kernel 2.6.x 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

4.7CVSS0.3AI score0.00097EPSS

Exploits2

Prion•added 2009/08/18 9:0 p.m.•30 views

Memory corruption

5.9CVSS6.7AI score0.00097EPSS

Exploits2References26Affected Software12

UbuntuCve•added 2009/08/18 9:0 p.m.•34 views

CVE-2009-2848

5.9CVSS6.3AI score0.00097EPSS

Exploits2References2

NVD•added 2009/08/18 9:0 p.m.•21 views

CVE-2009-2848

5.9CVSS6.3AI score0.00097EPSS

Exploits2References26

exploitpack•added 2009/07/20 12:0 a.m.•11 views

PulseAudio setuid - Local Privilege Escalation

PulseAudio setuid - Local Privilege Escalation !/bin/bash pulseaudio=which pulseaudio workdir="/tmp" workdir=$HOME id=which id shell=which sh trap cleanup INT function cleanup rm -f $workdir/sh $workdir/sh.c $workdir/parace $workdir/parace.c rm -rf $workdir/PATMP cat $workdir/parace.c include...

0.8AI score

seebug.org•added 2009/07/12 12:0 a.m.•19 views

Linux/x86 Port Binding Shellcode (xor-encoded) 152 bytes

No description provided by source. / Author: Rick Email: [email protected] OS: Linux/x86 Description: Port Bind 4444 xor-encoded -------------------------------------------------------------------- section .text global start start: ;socket PFINET, SOCKSTREAM, 0 push byte 0x66 pop eax push byte...

7.1AI score

Exploit DB•added 2009/07/11 12:0 a.m.•26 views

Linux/x86 - execve(/sbin/halt,/sbin/halt) Shellcode (27 bytes)

Linux/x86 - execve/sbin/halt,/sbin/halt Shellcode 27 bytes. Shellcode exploit for Linuxx86 platform include const char shellcode= "\x6a\x0b" // push $0xb "\x58" // pop %eax "\x99" // cltd "\x52" // push %edx "\x66\x68\x6c\x74" // pushw $0x746c "\x68\x6e\x2f\x68\x61" // push $0x61682f6e...

7.1AI score

Exploit DB•added 2009/07/11 12:0 a.m.•16 views

Linux/x86 - execve(/sbin/reboot,/sbin/reboot) Shellcode (28 bytes)

Linux/x86 - execve/sbin/reboot,/sbin/reboot Shellcode 28 bytes. Shellcode exploit for Linuxx86 platform include const char shellcode= "\x6a\x0b" // push $0xb "\x58" // pop %eax "\x99" // cltd "\x52" // push %edx "\x68\x62\x6f\x6f\x74" // push $0x746f6f62 "\x68\x6e\x2f\x72\x65" // push $0x65722f6e...

7.1AI score