UBUNTU-CVE-2016-9627

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service heap buffer overflow and crash via a crafted HTML page...

UBUNTU-CVE-2016-9423

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted HTML page...

UBUNTU-CVE-2016-9443

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

UBUNTU-CVE-2016-9629

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

PT-2016-7742 · Tatsuya Kinoshita +3 · W3M +3

Name of the Vulnerable Software and Affected Versions: w3m versions prior to 0.5.3-31 Description: An issue was discovered in the Tatsuya Kinoshita w3m fork that allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted HTML page. This is due to ...

PT-2016-7741 · Tatsuya Kinoshita +3 · W3M +3

Name of the Vulnerable Software and Affected Versions: w3m versions prior to 0.5.3-31 Description: An issue was discovered in the Tatsuya Kinoshita w3m fork. The feed table tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause a denial of...

PT-2016-7743 · Tatsuya Kinoshita +3 · W3M +3

Name of the Vulnerable Software and Affected Versions: w3m versions prior to 0.5.3-31 Description: An issue was discovered in the Tatsuya Kinoshita w3m fork that allows remote attackers to cause a denial of service heap buffer overflow crash and possibly execute arbitrary code via a crafted HTML...

PT-2016-7744 · W3M +3 · W3M +3

Name of the Vulnerable Software and Affected Versions: w3m versions prior to 0.5.3-31 Description: An issue was discovered in the w3m fork, allowing remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted HTML page. The issue is related to a heap-based buff...

CVE-2016-9627

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service heap buffer overflow and crash via a crafted HTML page...

CVE-2016-9443

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

CVE-2016-9441

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

CVE-2016-9438

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

CVE-2016-9433

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service out-of-bounds array access via a crafted HTML page...

CVE-2016-9430

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

CVE-2016-9424

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which allows remote attackers to cause a denial of service heap buffer overflow crash and possibly execute arbitrary code via a crafted HTML page...

Linux Kernel Dirty COW PTRACE_POKEDATA Privilege Escalation

// $ echo pikachu|sudo tee pokeball;ls -l pokeball;gcc -pthread pokemon.c -o d;./d pokeball miltank;cat pokeball include //// pikachu include //// -rw-r--r-- 1 root root 8 Apr 4 12:34 pokeball include //// pokeball include //// include //// o o/ include //// @@ \ include //// \ , /miltank include...

Linux Kernel 2.6.22 < 3.9 - 'Dirty COW PTRACE_POKEDATA' Race Condition (Write Access Method)

// $ echo pikachu|sudo tee pokeball;ls -l pokeball;gcc -pthread pokemon.c -o d;./d pokeball miltank;cat pokeball include //// pikachu include //// -rw-r--r-- 1 root root 8 Apr 4 12:34 pokeball include //// pokeball include //// include //// o o/ include //// @@ \ include //// \ , /miltank include...

Linux Kernel 2.6.22 3.9 - Dirty COW PTRACE_POKEDATA Race Condition (Write Access Method)

Linux Kernel 2.6.22 3.9 - Dirty COW PTRACEPOKEDATA Race Condition Write Access Method // $ echo pikachu|sudo tee pokeball;ls -l pokeball;gcc -pthread pokemon.c -o d;./d pokeball miltank;cat pokeball include //// pikachu include //// -rw-r--r-- 1 root root 8 Apr 4 12:34 pokeball include ////...

kernel: Fork of large process causes memory corruption

It was reported that on s390x, the fork of a process with four page table levels will cause memory corruption with a variety of symptoms. All processes are created with three level page table and a limit of 4TB for the address space. If the parent process has four page table levels with a limit o...

Linux/x86-64 - Ncat Shellcode (SSL, MultiChannel, Persistant, Fork, IPv4/6, Password) (176 bytes)

include include // Exploit Title: Linux 64bit Ncat + SSL + MultiChannel + Persistant + Fork + IPv4/6 + Password 176byte // Date: 7/5/2016 // Exploit Author: CripSlick // Tested on: Kali 2.0 // Version: Ncat: Version 7.01 // email protected // OffSec ID: OS-20614 // http://50.112.22.183/...