OpenSSH < 6.6 SFTP - Command Execution Exploit

Exploit for linux platform in category remote exploits OpenSSH 8 else 32 print "+ bit libc mapped @ -, path: ".formatBITS, addr0, addr1, path libcbase = intaddr0, 16 libcpath = path if "stack" in line: addr = addr.split"-" saddrstart = intaddr0, 16 saddrend = intaddr1, 16...

UBUNTU-CVE-2018-12904

In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL...

KVM (Nested Virtualization) - L1 Guest Privilege Escalation

KVM Nested Virtualization - L1 Guest Privilege Escalation When KVM on Intel virtualizes another hypervisor as L1 VM it does not verify that VMX instructions from the L1 VM which trigger a VM exit and are emulated by L0 KVM are coming from ring 0. For code running on bare metal or VMX root mode th...

KVM (Nested Virtualization) - L1 Guest Privilege Escalation

When KVM on Intel virtualizes another hypervisor as L1 VM it does not verify that VMX instructions from the L1 VM which trigger a VM exit and are emulated by L0 KVM are coming from ring 0. For code running on bare metal or VMX root mode this is enforced by hardware. However, for code running in L...

KVM (Nested Virtualization) - L1 Guest Privilege Escalation Vulnerability

Exploit for linux platform in category dos / poc When KVM on Intel virtualizes another hypervisor as L1 VM it does not verify that VMX instructions from the L1 VM which trigger a VM exit and are emulated by L0 KVM are coming from ring 0. For code running on bare metal or VMX root mode this is...

CVE-2016-9065

The location bar in Firefox for Android can be spoofed by forcing a user into fullscreen mode, blocking its exiting, and creating of a fake location bar without any user notification. Note: This issue only affects Firefox for Android. Other versions and operating systems are unaffected. This...

PT-2018-1311 · Microsoft +3 · Ie +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows VBScript Engine versions prior to the fixed version Description: A remote code execution issue exists in the way the VBScript engine handles objects in memory. This allows remote attackers to execute arbitrary code and affec...

The vulnerability of the Apport software for generating and sending error reports on the Ubuntu operating system allows a perpetrator to trigger a service failure, exit from LXC, or gain root privileges.

The vulnerability of the Apport software for generating and sending error reports on the Ubuntu operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a hacker to cause service failures, trigger exits from LXC Linux Containers, or gain root...

UBUNTU-CVE-2018-1000200

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory OOM killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exitmmap, which calls munlockvmapagesall for mlocked vmas.This can happen...

DEBIAN-CVE-2018-10087

The kernelwait4 function in kernel/exit.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INTMIN value...

Linux kernel denial of service vulnerability (CNVD-2018-07824)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'kernelwait4' function in the kernel/exit.c file in versions of Linux kernel prior to 4.13. A local attacker could exploit this...

openSUSE Security Update : GraphicsMagick (openSUSE-2018-344)

This update for GraphicsMagick fixes the following issue : - CVE-2017-11524: An attacker could have used a crafted file to cause a denial of service assertion failure and application exit bsc1050087 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in th...

DEBIAN-CVE-2017-18252

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service assertion failure and application exit in ReplaceImageInList via a crafted file...

Code injection

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service assertion failure and application exit in ReplaceImageInList via a crafted file...

CVE-2017-18252

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service assertion failure and application exit in ReplaceImageInList via a crafted file...

CVE-2017-18252

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service assertion failure and application exit in ReplaceImageInList via a crafted file...

Native Receiver Access to Internal and External Store with Always-on NetScaler Gateway VPN Fails

User is connected to LAN and Receiver is accessing StoreFront directly or via LB. When moveing from LAN to Internet, Always-on VPN gets connected automatically. Now trying to launch an app results in error "There was a problem connecting: Store name". Trying to refresh the Receiver results in err...

Linux/x86 exit(0) Shellcode (5 bytes)

/ Smallest Linux/x86 - exit0 shellcode 5 bytes Author: Anurag Srivastava Tested on: i686 GNU/Linux Shellcode Length: 5 exitchotu: file format elf32-i386 Disassembly of section .text: 08048060 : 8048060: 6a 01 push 0x1 8048062: 58 pop eax 8048063: cd 80 int 0x80 ===============POC by Anurag...

Gitleaks - Searches Full Repo History For Secrets And Keys

Searches Full Repo History For Secrets And Keys. Installing go get -u github.com/zricethezav/gitleaks Usage and Explanation ./gitleaks options Gitleaks audits local and remote repos by running regex checks against all commits. Options usage: gitleaks options / Options: -u --user Git user mode -r...

exit-online.org XSS vulnerability

Open Bug Bounty ID: OBB-563369 Description| Value ---|--- Affected Website:| exit-online.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...