Android Zygote - Socket Vulnerability Fork bomb Attack

No description provided by source. BootReceiver.java / Android Application that performs the fork bomb attack http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3918 Further informations can be found at http://www.ai-lab.it/bugAndroid/bugAndroid.html @author Luca Verderame...

Fork CMS 3.2.4 - Multiple Vulnerabilities (LFI - XSS)

No description provided by source...

Linux Kernel 2.4.22 "do_brk()" local Root Exploit (PoC)

No description provided by source. ; Christophe Devine devine at cr0.net and Julien Tinnes julien at cr0.org ; ; This exploit uses sysbrk directly to expand his break and doesn't rely ; on the ELF loader to do it. ; ; To bypass a check in sysbrk against available memory, we use a high ; virtual...

BSD x86 portbind + fork shellcode (111 bytes)

No description provided by source. / -------------- FreeBSD/x86 - portbind shell + fork 111 bytes-------------------- AUTHOR : Tosh OS : BSDx86 Tested on FreeBSD 8.1 EMAIL : [email protected] / include stdio.h include string.h include arpa/inet.h char shellcode =...

Xorg 1.4 to 1.11.2 File Permission Change PoC

No description provided by source. / xchmod.c -- Xorg file permission change vulnerability PoC Author: vladz http://vladz.devzero.fr Date: 2011/12/15 Software: www.x.org Version: Xorg 1.4 to 1.11.2 in all configurations. Xorg 1.3 and earlier if built with the USECHMOD preprocessor identifier Test...

openSUSE Security Update : libmariadbclient16 (openSUSE-SU-2011:0762-1)

The last security version upgrade of MariaDB a MySQL fork removed innodb support, breaking old databases. This update fixes this problem. - 704811: mariadb 'security update' breaks database %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

openSUSE Security Update : libmariadbclient16 (openSUSE-SU-2011:0762-1)

The last security version upgrade of MariaDB a MySQL fork removed innodb support, breaking old databases. This update fixes this problem. - 704811: mariadb 'security update' breaks database %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

Crowdsourcing to be Part of Phase Two of TrueCrypt Audit

TrueCrypt may yet get forked, but it won’t come at the hands of the Open Crypto Audit Project OCAP, which has a working plan to move forward with a cryptanalysis of the open source encryption software. OCAP is the brand name for the grassroots movement that arose out of the ashes of the Snowden...

DEBIAN-CVE-2013-3571

socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service file descriptor consumption via multiple request that are refused based on the 1 sourceport, 2 lowport, 3 range, or 4...

UBUNTU-CVE-2013-3571

socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of service file descriptor consumption via multiple request that are refused based on the 1 sourceport, 2 lowport, 3 range, or 4...

DEBIAN-CVE-2014-2673

The archduptaskstruct function in the Transactional Memory TM implementation in arch/powerpc/kernel/process.c in the Linux kernel before 3.13.7 on the powerpc platform does not properly interact with the clone and fork system calls, which allows local users to cause a denial of service Program...

Updated stunnel package fixes security vulnerability

A flaw was found in the way stunnel, a socket wrapper which can provide SSL support to ordinary applications, performed reinitialization of PRNG after fork. When accepting a new connection, the server forks and the child process handles the request. The RANDbytes function of openssl doesn't reset...

Stunnel PRING初始化漏洞

Bugtraq ID:65964 CVE ID:CVE-2014-0016 Stunnel是一个自由的跨平台软件，用于提供全局的TLS / SSL 服务。 Stunnel存在安全漏洞，套接字封装程序可对普通应用程序提供SSL支持，在fork后执行PRNG初始化，当接受新连接时，服务器fork，子进程处理请求。OpenSSLRANDbytes函数在fork后没有重置其状态，而是简单的添加当前进程IDgetpid至PRNG状态，可导致使用EC ECDSA或DSA证书的服务器在某些情况下泄漏私钥。 0 Stunnel 目前没有详细解决方案提供： http://www.stunnel.org...

Fedora Update for python-setuptools FEDORA-2013-23141

Check for the Version of python-setuptools OpenVAS Vulnerability Test Fedora Update for python-setuptools FEDORA-2013-23141 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

[SECURITY] Fedora 19 Update: python-setuptools-0.6.49-1.fc19

Setuptools is a collection of enhancements to the Python distutils that all ow you to more easily build and distribute Python packages, especially ones th at have dependencies on other packages. This package contains the runtime components of setuptools, necessary to execute the software that...

CVE-2013-6801

Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service CPU consumption via a malformed .doc file containing an embedded image, as demonstrated by word2003forkbomb.doc, related to a "fork bomb" issue...

CVE-2013-6801

Microsoft Word 2003 SP2/SP3 on Windows XP SP3 is affected by CVE-2013-6801, enabling a denial-of-service due to a malformed .doc containing an embedded image. The issue, demonstrated with the word2003forkbomb.doc, causes CPU consumption when processing the crafted document. Details consistently r...

Word 2003 SP2 .doc fork bomb on WinXP SP3

Exploit for windows platform in category dos / poc This is private exploit. You can buy it at https://0day.today...

[Doona] Network Protocol Fuzzer

Doona is a fork of the Bruteforce Exploit Detector, it was renamed to avoid confusion as it has a large number of of changes. You should get a copy from github if you want to try it: https://github.com/wireghoul/doona. It's currently a little short on documentation, so I will let the changelog...

PYSEC-2013-29

The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator PRNG before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a...