CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

2464 matches found

Tenable Nessus•added 2005/06/22 12:0 a.m.•23 views

GLSA-200506-18 : Tor: Information disclosure

The remote host is affected by the vulnerability described in GLSA-200506-18 Tor: Information disclosure A bug in Tor allows attackers to view arbitrary memory contents from an exit server's process space. Impact : A remote attacker could exploit the memory disclosure to gain sensitive informatio...

5CVSS5.8AI score0.00638EPSS

Exploits0References3

Gentoo Linux•added 2005/06/21 12:0 a.m.•29 views

Tor: Information disclosure

Background Tor is an implementation of second generation Onion Routing, a connection-oriented anonymizing communication service. Description A bug in Tor allows attackers to view arbitrary memory contents from an exit server's process space. Impact A remote attacker could exploit the memory...

5CVSS6.4AI score0.00638EPSS

FreeBSD•added 2005/06/16 12:0 a.m.•17 views

tor -- information disclosure

Roger Dingledine reports: The Tor 0.1.0.10 release from a few days ago includes a fix for a bug that might allow an attacker to read arbitrary memory maybe even keys from an exit server's process space. We haven't heard any reports of exploits yet, but hey...

Exploits0References1

Packet Storm•added 2005/03/15 12:0 a.m.•29 views

exp3.pl.txt

!/usr/bin/perl Mysql CREATE FUNCTION libc arbitrary code execution. Author: Stefano Di Paola Vulnerable: Mysql 0; use constant PASS = "USEYOURPASSHERE"; Connect to the database. my $dbh = DBI-connect"DBI:mysql:database=test;host=localhost", "root", PASS ,'RaiseError' = 1; This is the opcode point...

NVD•added 2004/12/31 5:0 a.m.•21 views

CVE-2004-2536

The exitthread function process.c in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS iobitmap pointers if a process obtains IO access permissions from the ioperm function but does not drop those permissions when it exits, which allows other processes to access the per-TSS pointers,...

7.5CVSS6.6AI score0.00482EPSS

Exploits1References7

Exploit DB•added 2004/12/22 12:0 a.m.•27 views

linux/x86 Magic Byte Self Modifying Code 76 bytes

linux/x86 Magic Byte Self Modifying Code 76 bytes. Shellcode exploit for linx86 platform /-------------------------------------------------------/ / Magic Byte Self Modifying Code for surviving / / toupper & tolower / / 76bytes execve exit code by XORt /...

Exploit DB•added 2004/12/22 12:0 a.m.•19 views

linux/x86 Radically Self Modifying Code 70 bytes

linux/x86 Radically Self Modifying Code 70 bytes. Shellcode exploit for linx86 platform /-------------------------------------------------------/ / Radically Self Modifying Code for surviving / / toupper and tolower / / / / 70byte execve & exit code by XORt /...

Exploit DB•added 2004/09/26 12:0 a.m.•26 views

os-x/PPC simple write 75 bytes

os-x/PPC simple write 75 bytes. Shellcode exploit for osxppc platform / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd" "\x7f\xe8\x02\xa6\x39\x40\x01\x70" "\x38\x6a\xfe\x91\x38\x9f\x01\x38"...

seebug.org•added 2004/09/26 12:0 a.m.•18 views

os-x/PPC simple write() 75 bytes

No description provided by source. / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd" "\x7f\xe8\x02\xa6\x39\x40\x01\x70" "\x38\x6a\xfe\x91\x38\x9f\x01\x38" "\x38\x84\xfe\xf4\x38\xaa\xfe\xa7"...

0day.today•added 2004/09/26 12:0 a.m.•17 views

os-x/PPC execve /bin/sh 72 bytes

Exploit for os-x/ppc platform in category shellcode ================================ os-x/PPC execve /bin/sh 72 bytes ================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does execve/bin/sh; exit0; See ASM below. 72 Bytes. / char shellcode =...

Exploit DB•added 2004/09/26 12:0 a.m.•22 views

os-x/PPC execve /usr/X11R6/bin/xterm 141 bytes

os-x/PPC execve /usr/X11R6/bin/xterm 141 bytes. Shellcode exploit for osxppc platform / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does execve/usr/X11R6/bin/xterm -display 192.168.0.10:0 exit0; See ASM below. 141 Bytes. / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd"...

0day.today•added 2004/09/26 12:0 a.m.•14 views

os-x/PPC setuid(0) + execve /bin/sh 88 bytes

Exploit for os-x/ppc platform in category shellcode ============================================ os-x/PPC setuid0 + execve /bin/sh 88 bytes ============================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does setuid0; execve/bin/sh; exit0; See ASM below. 88 Bytes. / char...

seebug.org•added 2004/09/26 12:0 a.m.•15 views

linux/x86 iptables -F 58 bytes

No description provided by source. / The shellcode flushs the iptables by running /sbin/iptables -F no exit greetz to zilion: man, my code is shorter! size = 58 bytes OS = Linux i386 written by /rootteam/dev0id www.sysworld.net BITS 32 jmp short callme main: pop esi xor eax,eax mov byte esi+14,al...

seebug.org•added 2004/09/26 12:0 a.m.•13 views

os-x/PPC execve /bin/sh 72 bytes

No description provided by source. / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does execve/bin/sh; exit0; See ASM below. 72 Bytes. / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd" "\x7d\x68\x02\xa6\x3b\xeb\x01\x70" "\x39\x40\x01\x70\x39\x1f\xfe\xcf" "\x7c\xa8\x29\xae\x38\x7f\xfe\xc8"...

Exploit DB•added 2004/09/26 12:0 a.m.•22 views

os-x/PPC execve /bin/sh 72 bytes

os-x/PPC execve /bin/sh 72 bytes. Shellcode exploit for osxppc platform / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does execve/bin/sh; exit0; See ASM below. 72 Bytes. / char shellcode = "\x7c\xa5\x2a\x79\x40\x82\xff\xfd" "\x7d\x68\x02\xa6\x3b\xeb\x01\x70" "\x39\x40\x01\x70\x39\x1f\xfe\xcf"...

0day.today•added 2004/09/26 12:0 a.m.•15 views

os-x/PPC simple write() 75 bytes

Exploit for os-x/ppc platform in category shellcode ================================ os-x/PPC simple write 75 bytes ================================ / PPC OSX/Darwin Shellcode by B-r00t. 2003. Does write; exit; See ASM below. 75 Bytes. / char shellcode = "\x7c\x63\x1a\x79\x40\x82\xff\xfd"...

0day.today•added 2004/09/12 12:0 a.m.•20 views

linux/ppc execve /bin/sh 112 bytes

Exploit for linux/ppc platform in category shellcode ================================== linux/ppc execve /bin/sh 112 bytes ================================== / Linux PPC shellcode execve of /bin/sh by Palante / long shellcode = / Palante's linuxPPC shellcode w/ NULL/ 0x7CC63278, 0x2F867FFF,...

0day.today•added 2003/10/09 12:0 a.m.•19 views

MS Windows (DCOM RPC2) Universal Shellcode

Exploit for win32 platform in category shellcode ========================================== MS Windows DCOM RPC2 Universal Shellcode ========================================== ; Segment type: Pure code ;seg000 segment byte public 'CODE' use32 ; assume cs:seg000 ; assume es:nothing, ss:nothing,...

securityvulns•added 2002/05/03 12:0 a.m.•30 views

KPMG-2002017: Snapgear Lite+ Firewall Denial of Service

-------------------------------------------------------------------- Title: Snapgear Lite+ Firewall Denial of Service BUG-ID: 2002017 Released: 02nd May 2002 -------------------------------------------------------------------- Problem: ======== Several issues with the Snapgear Lite+ Firewall coul...

0day.today•added 2001/05/07 12:0 a.m.•22 views

execve of /bin/sh after setreuid(0,0)

Exploit for linux/x86 platform in category shellcode ===================================== execve of /bin/sh after setreuid0,0 ===================================== / $Id: execve-setreuid.c,v 1.1 2001/05/02 18:10:52 raptor Exp $ execve-setreuid.c v1.0 - shellcode for Linux/i386 Copyright c 2001...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by